GeneralThis forum is for non-technical general discussion which can include both Linux and non-Linux topics. Have fun!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
"Microsoft's Lennart Poettering proposes tightening up Linux boot process
Building your own initial RAMdisk? That's insecure!"
"Microsoft's Lennart Poettering" Funny. I chortled when I saw it, but my then mood changed upon reading the story. In that story there were some links to these comments on Hacker News:
"As somone who never really viewed systemd as a problem I'm starting to think the systemd "haters" were actually right, at least somewhat... Viewing Poettering as some kind malicious entity undermining projects sounds like a conspiracy theory. But now with him working for Microsoft his actions do look like a lot like the "embrace, extend, and extinguish" pattern to me. Yes, yes "Microsoft <3 Linux", of course... And now I am supposed to cheer for the groundwork for the creation of an allmighty authority with the ability to "sanction" some (parts of) operating systems, but not others?" https://news.ycombinator.com/item?id=33341718
"I always thought this outcome was obvious. Systemd controls everything that happens before Linux boots. It controls everything that happens after Linux boots. Might as well call it GNU/Systemd at this point. It's the silent revolution no one wanted. The name itself implies a manifest destiny because System D is 100x greater than System V and they intentionally break POSIX compliance too. Now that the guy who owns the systemd project works for Microsoft, in addition to the fact that the Linux kernel now needs to be a Windows executable in order to boot, that really tells you all you need to know." https://news.ycombinator.com/item?id=33341938
Emphasis mine.
There doesn't seem to be much discussion about this. I, for one, am quite concerned about the direction this is going.
Distribution: Slackware/Salix while testing others
Posts: 1,718
Rep:
Thank you for posting this. I would not be a bit surprised if he was working with or for Microsoft for some time and just announced it publicly when the time was right. But I tend to follow the money trail back to the source when things smell/look fishy.
Actually, "the initrd step" in a great many distros is(!) a vulnerability, since this is the "pre-boot' step in which the kernel attempts to automagically adapt itself to whatever hardware environment it may be faced with. Although this precursory step of the process is not well-understood by many, to finger it as a "potentially exploitable vulnerability" – although IMHO fairly unlikely – cannot be entirely dismissed. "If one puts their mind to it, any point in the process is 'potentially exploitable.'"
Distribution: Slackware/Salix while testing others
Posts: 1,718
Rep:
Quote:
Originally Posted by sundialsvcs;6389062 "If one puts their mind to it, [u
any[/u] point in the process is 'potentially exploitable.'"
This is why ones philosophy personal and project is of the utmost importance. I am reminded of the American statesman Benjamin Franklin:
Quote:
“Those who would give up essential liberty to purchase a little temporary safety, deserve neither liberty nor safety.”
With each addition Pottering et al seem adamant about "taking over" or taking control of most everything and often in the name of security/complexity this is how everyone else does it etc... Is the dog wagging the tail or the tail wagging the dog, and at what point is the tail replaced with tale.
Actually, "the initrd step" in a great many distros is(!) a vulnerability
As a locally compiled kernel could be. Does that mean we need to obtain authority from Microsoft before being allowed to use a customised kernel on our own hardware?
Is the frog boiled yet? Seems like it's almost done.
Does that mean we need to obtain authority from Microsoft before being allowed to use a customised kernel on our own hardware?.
Having "our own hardware" is variable, there is hardware which is soldered together prohibiting replacement of faulty modules.
So having software which is "soldered" together totally makes sense when you look at any and all profit driven software development.
It's nothing new BTW, remember SecuROM?
The trouble will be finding a computer that doesn't have all these Microsoft lock ins!
That'll be a non-issue for most, I think. What really put things in perspective for me, is one video I saw long time ago.
The F-Secure crew went through some malware code, and found an address of the guys making it.
They actually went there and found some dudes in extremely poor condition, with a trash-type of PC, writing the malware for fun.
What these guys probably do is they find the nearest trash dump to get broken hardware, solder it together, and re-sell it on the flea market.
They could not care any less about some suits, who think they could buy trust. This is why I think the lock-in situation really depends on what you buy and where.
Now that extremely hairy disk systems have been removed and the processes streamlined, surely you just need the modules to mount / in an initrd. If you compile those modules in, you don't need one at all. I survived for years without one and only went back to them through laziness.
...
There doesn't seem to be much discussion about this [Linux kowtowing to microsoft]. I, for one, am quite concerned about the direction this is going.
Are you not concerned by it? If not, why not?
Any other thoughts or comments?
I am concerned, and as a result am dusting off plans to drop Linux in favour of OpenBSD (about to rebuild an old PC to practice on).
Distribution: Debian Sid AMD64, Raspbian Wheezy, various VMs
Posts: 7,680
Rep:
Lennart Poettering can complete Pulse Audio before he does anything else. Could I write it? No. Would I pester everybody so that they took up my system then make it not work for years, then almost work like it should then give up on it? No.
This is not an Ad Hominem, well it is sort-of, but more a "Why the hell trust this guy who is full of shit?".
And, yes, the fact he migrated to Microsoft no matter what their perceived situation regarding open source at the moment (OK they're not the MS of "Linux is cancer" any more) is also not a good sign.
So you're fine with a software house having authority over hardware you own?
That notion goes against my grain.
Maybe I was not clear before.. It really does depend on what you buy, and who installed the OS.
I didn't see you complain when folks started losing warranty for replacing the android boot loader.
But to make it clear: I'm against locking up the loader/bios and I don't use secure boot, but I never buy stuff with pre-installed OS.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.