Go Job Hunting at the LQ Job Marketplace
Go Back > Forums > Linux Forums > Linux - News
User Name
Linux - News This forum is for original Linux News. If you'd like to write content for LQ, feel free to contact us.
All threads in the forum need to be approved before they will appear.


  Search this Thread
Old 05-31-2012, 09:38 AM   #1
Senior Member
Registered: Apr 2003
Location: Costa Rica
Distribution: Kubuntu, Debian, Knoppix
Posts: 2,055
Blog Entries: 1

Rep: Reputation: 90
Fedora will be using keys signed by Microsoft to do UEFI secure boot

Well, I personally find it disturbing (on Free-Software promotion and principle approach... not to mention money arriving at Microsoft's pocket) but....

The juicy bit:

The last option wasn't hugely attractive, but is probably the least worst. Microsoft will be offering signing services through their sysdev portal. It's not entirely free (there's a one-off $99 fee to gain access), but it's cheaper than any realistic alternative would have been. It ensures compatibility with as wide a range of hardware as possible and it avoids Fedora having any special privileges over other Linux distributions. If there are better options then we haven't found them. So, in all probability, this is the approach we'll take. Our first stage bootloader will be signed with a Microsoft key.
(Bolded text is mine)
Old 06-04-2012, 08:19 AM   #2
Registered: Mar 2006
Location: USA
Distribution: Fedora & Ubuntu
Posts: 215
Blog Entries: 2

Rep: Reputation: 20
I admit I don't totally understand all of it, but I don't like it. Playing by MS's rules only encourages them and makes their way seem ligit. This is a really good reason to support Linux vendors and buy your computers from them. Though I do realize a lot of people will want/need Windows atleast for dual boot for various reasons.
Old 06-04-2012, 09:06 AM   #3
Registered: Dec 2009
Location: Germany
Distribution: Whatever fits the task best
Posts: 16,864
Blog Entries: 2

Rep: Reputation: 4678Reputation: 4678Reputation: 4678Reputation: 4678Reputation: 4678Reputation: 4678Reputation: 4678Reputation: 4678Reputation: 4678Reputation: 4678Reputation: 4678
There is no money arriving in Microsoft's pocket, the key is bought from Verisign. Microsoft is in here only for one reason. Any board out there that comes with Secure Boot implemented will already have the Microsoft key in the ROMs, so using that key to sign your own bootloader/kernel is the logical thing to do to get maximum compatibility with all boards. This is not playing by Microsoft's rules.
Also, see it from a commercial view. Fedora is a testbed for RHEL. Not long in the future Secure Boot will be a requirement in large companies and Red Hat has to support it or they will have serious problems.


fedora, key, microsoft, uefi

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Microsoft Says No to Disabling UEFI Secure Boot on ARM LXer Syndicated Linux News 0 01-16-2012 07:40 AM
LXer: Management of UEFI secure booting LXer Syndicated Linux News 0 11-01-2011 05:30 AM
LXer: Making UEFI Secure Boot Work With Open Platforms LXer Syndicated Linux News 1 10-29-2011 05:30 AM
UEFI secure booting and the future mipia General 60 09-24-2011 05:53 PM
LXer: UEFI secure booting (part 2) LXer Syndicated Linux News 2 09-24-2011 01:06 PM

All times are GMT -5. The time now is 10:59 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration