For the folk here that don't follow fd. The author is a well know and respected security researcher. Just for info. Best regards ---------- Forwarded message ---------- From: Georgi Guninski <guninski@xxxxxxxxxxxx> Date: Thu, 12 Jul 2012 10:13:58 +0300 Subject: [Full-disclosure] The right to read, debuggers and building future Fedora kernels To: full-disclosure@xxxxxxxxxxxxxxxxx I know this is old. In The Right to Read RMS writes "In 2047, Frank was in prison, not for pirate reading, but for possessing a debugger." [1] Helped by m$, Fedora are actively working this to become true [2] [3] Q: What if I want to build a custom kernel or load 3rd party kernel modules? A: You will need to disable Secure boot, or setup your own keys and sign everything with them. Q: what about ARM? A: On ARM Microsoft Windows 8 ready requirements say that Secure boot should be enabled by default and cannot be disabled. Fedora has no plans to support secure boot on that platform and suggests buying Non Windows 8 ready hardware. Q: Whats this about a $99 fee? A: There is a one time fee of $99 to access the Microsoft sysdev portal in order to get your binaries signed by the Microsoft key (shipped by default in all Windows 8 ready devices). [4] That could lead to a lot of key churn, especially if, as Alan Cox suggests, every kernel hole will require that its certificate be revoked. [1] http://www.gnu.org/philosophy/right-to-read.html [2] https://fedoraproject.org/wiki/Secureboot [3] http://mjg59.dreamwidth.org/12368.html [4] http://lwn.net/Articles/500231/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -- Inviato dal mio dispositivo mobile -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel
