**Klaus Zimmermann** @kzimmermann@fosstodon.org · Oct 13, 2022, 11:52

**Klaus Zimmermann** @kzimmermann@fosstodon.org · Oct 13, 2022, 11:52

Klaus Zimmermann @kzimmermann@fosstodon.org

Oct 13, 2022, 11:52

Klaus Zimmermann @kzimmermann@fosstodon.org

Sound advice from a dog. #secureboot

406f6f5f627694b2.png

**Trammell Hudson** @th@v.st · 2022-10-13T12:08:52Z

Trammell Hudson @th@v.st

@kzimmermann @rysiek@mastodon.technology I'm going to be that Linux reply-guy and shout "**Don't do it!**". Check out https://safeboot.dev/ for scripts to take control of UEFI Secure Boot with your own keys for better security.

4a73003715c6deed.jpg

Oct 13, 2022, 12:08 · · · ·

**arya** @arya@fedi.vern.cc · Oct 13, 2022, 13:41

**arya** @arya@fedi.vern.cc · Oct 13, 2022, 13:41

Oct 13, 2022, 13:41

arya @arya@fedi.vern.cc

@th oh my legendary keyboard

**Klaus Zimmermann** @kzimmermann@fosstodon.org · Oct 13, 2022, 14:07

**Klaus Zimmermann** @kzimmermann@fosstodon.org · Oct 13, 2022, 14:07

Oct 13, 2022, 14:07

Klaus Zimmermann @kzimmermann@fosstodon.org

@th many thanks for providing this! We really need to know the alternatives and how to take control of it. Pity that it's not a very straightforward thing to do!
@rysiek

**Trammell Hudson** @th@v.st · Oct 13, 2022, 15:34

**Trammell Hudson** @th@v.st · Oct 13, 2022, 15:34

Oct 13, 2022, 15:34

Trammell Hudson @th@v.st

@kzimmermann @rysiek@mastodon.technology yeah, I mention in my OSFC talk that if you as an end user have to choose to install `safeboot`, then we've failed as a community. mostly secure and user-controlled keys should be the base level defaults, not the domain of experts. "*your threat model is not my threat model*", although there are likely some common basics between them.

f83dd3e71a7f7179.jpg

Resources

Developers

What is Mastodon?

v.st

More…