SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I totally agree that this issue is being overblown.
It doesn't affect me but there's more to security these days then giving up root access. There are systems with guarantees even if you have physical access and root access and this breaks those guarantees.
Sending out patches not fully tested is never good though.
Right now, I'm so glad I blew away the EFI partition system and went back to the "legacy BIOS" boot chain.
EFI was just another Microsoft "innovation" waiting to be exploited.
Only Secure Boot, which is an optional feature of the UEFI specification was initially proposed by Microsoft. The PE/COFF format of EFI images is described in a Microsoft document, but this document is public and the format is unambiguously specified, which is a very good thing. It is also good that the file system of the ESP be FAT (also, initially from Microsoft) as it is not only well specified and stable but also very simple. The advantages and disadvantages of EFI over BIOS are stated in https://en.wikipedia.org/wiki/Unifie...ware_Interface, the details are in https://uefi.org/sites/default/files..._8_A_Feb14.pdf.
FYI the new Slint installer will have an "auto" aka "guided" mode helping to share a drive with another (already installed) system, but only if the installer booted in EFI mode and the drive has a GPT, as this is way safer than BIOS and a DOS partition table in this use case, and allows to make both systems truly independent of each other.
Anyway in a few years you won't find motherboards with an hybrid firmware, so better be prepared
Last edited by Didier Spaier; 08-01-2020 at 02:23 AM.
Not your problem. I wasn't citing you or speaking to you. I was being generic because so many Slackware forum threads these days degenerate.
Let me get this right, you have issues with some unspecified threads where quality of discussion does not meet your expectations?
Meanwhile, creating a new thread warning Slackers that your Debian system may have crashed is totally fine in your book.
Not only that, but in the title you make it look like Slackware had shipped a bad patch, and in the post it's just a warning that Slackware may or may not ship a bad patch in the future.
What if windows users came here to post clickbait titles, do you think that would help regenerate the forum?
It'd help with keeping the forum on-topic, right?
I'm not going to derail any further, just wanted to say you did actually quote my post there so I assumed you're trying to make it my problem.
Last I checked, it doesn't, then this shocking security flaw on Grub is not our problem. It does not make our UEFI boot more insecure as already it is.
[1] like in: kernels signed with developer certificates issued by Microsoft, Inc. which should be the only things accepted for execution by bootloader.
Last edited by LuckyCyborg; 08-01-2020 at 01:51 PM.
I'm not going to derail any further, just wanted to say you did actually quote my post there so I assumed you're trying to make it my problem.
Ah, no. Really, my off-hand statement was generic, directed to nobody in particular but everybody generically. I only wanted to warn Slackers and Pat of the potential breakage. A simple public service announcement (PSA). I wrote my off-hand generic statement because I did not want the thread to devolve, but you seem well on the way of doing just that.
Let me get this right, you have issues with some unspecified threads where quality of discussion does not meet your expectations?
Meanwhile, creating a new thread warning Slackers that your Debian system may have crashed is totally fine in your book.
Not only that, but in the title you make it look like Slackware had shipped a bad patch, and in the post it's just a warning that Slackware may or may not ship a bad patch in the future.
What if windows users came here to post clickbait titles, do you think that would help regenerate the forum?
It'd help with keeping the forum on-topic, right?
I'm not going to derail any further, just wanted to say you did actually quote my post there so I assumed you're trying to make it my problem.
Are you a native English speaker? Or simply someone with poor reading skills?
Are you a native English speaker? Or simply someone with poor reading skills?
No, how is that even relevant to the title of the thread?
Title is clickbait, it does not say whether or not Slackware has actually shipped the "bad-grub-security-patch"
Just saying threads about Debian breakage should go into Debian sub, if quality of the forum in general is a main concern here.
If not, then why do we have different subforums anyway? We could all just post bugs in general forum.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.