09.22.11

Gemini version available ♊︎

Microsoft Finds Another Excuse to Block GNU/Linux

Posted in GNU/Linux, Microsoft, Vista 8 at 8:35 pm by Dr. Roy Schestowitz

Summary: UEFI is Microsoft’s latest excuse for leaving GNU/Linux out in the cold

MICROSOFT loves blocking or suppressing GNU/Linux installations, typically using a process it keeps describing as a feature. Microsoft has been sabotaging the MBR using the excuses that it is hard to support it (funny how one or two GRUB developers can handle it just fine). There is antitrust evidence about it going decades back and there there is the war on fast booting systems and battles against Linux using VM restrictions (fighting Linux with a Windows EULA). We have covered many such examples, even those that extend to ACPI.

Well, in a blog post that we mentioned a couple of days ago, a detailed explanation was provided about Microsoft’s next mischievous move:

Computer scientists warn that proposed changes in firmware specifications may make it impossible to run “unauthorised” operating systems such as Linux and FreeBSD on PCs.

Proposed changes to the Unified Extensible Firmware Interface (UEFI) firmware specifications would mean PCs would only boot from a digitally signed image derived from a keychain rooted in keys built into the PC. Microsoft is pushing to make this mandatory in a move that could not be overridden by users and would effectively exclude alternative operating systems, according to Professor Ross Anderson of Cambridge University and other observers.

“Microsoft could lock out Linux with Tivoization” was Homer’s (Slated.org) explanation. He pointed out that “The upshot is that in order to run Linux on machines with UEFI secure boot enabled, the new bootloader, kernel and all other binaries must be signed by a key that is accepted and distributed by the OEM. In practice this means Linux will only run on machines that are either preinstalled with Linux by the OEM, or on machines where UEFI secure boot is not enabled. Given Microsoft’s demands, the latter seems unlikely, and the former would essentially spell an end to Linux (or any other OS) users having any sort of autonomy WRT which distro they use, on the extremely rare occasion Microsoft’s subjugated “partners” even bothered to preinstall Linux at all. On most machines, Linux would simply be locked out entirely.

“If this does pan out the way I’m sure Microsoft would like it to, our only hope is for antitrust regulators step in and force OEMs to allow consumers to opt-out of UEFI secure boot, to enable them to install whatever they want on their own damned property.

“This is by far the biggest threat to consumers’ freedom and choice we’ve yet seen on PCs. It literally turns the keys to the entire PC industry over to Microsoft.

“I wonder how much Linus “likes Tivoization” now?”

Sam Varghese writes

Is Microsoft finally resigned to the fact that Windows can never again be the dominant operating system on our planet? Or is the behemoth planning to make one final attempt to control what you use?

Sean Michael Kerner has good coverage, whereas Sam Dean apologises somewhat or gives the benefit of the doubt to Microsoft by writing: “It’s highly doubtful this will end up being a concern when the final version of Windows 8 comes to fruition. Microsoft has become increasingly aware that IT administrators are interested in heterogenous environments where many people want to use multiple operating systems. We’ve also noted that Windows 8 is taking some of its cues from Linux. It’s not in Microsoft’s best interest to box out alternative operating systems.”

Well, gentle headlines exist as well and they come from the expected sources. Microsoft boosters try to belittle the problem, whereas Linux advocates do not. Based on antitrust material we know that Microsoft often does this knowingly and deliberately, citing internal communication.

According to other articles, this debacle “was discovered by Linux developer Matthew Garrett, who’s been doing a lot of work with EFI booting in general for his day job. Recent UEFI specifications have allowed for “secure boot” that requires an OS to have a signed key in system firmware to work.”

Mr. Corbet summarises Garrett’s article as follows:

Matthew Garrett has posted an article about the UEFI “secure boot” feature and its potential impact on Linux.

Katherine Noyes, a great GNU/Linux advocate, challenges this move by Microsoft and Steven J. Vaughan-Nichols says that “Microsoft tries to block Linux off Windows 8 PCs” (he does not give Microsoft the benefit of the doubt).

If this wasn’t so sad, it would be funny. After Microsoft recently declared victory over Linux, it turns out that Microsoft appears is still trying to arrange it so that Linux won’t even boot on the next generation of PCs that come with Windows 8. Yeah, Linux isn’t on your enemy list anymore right Microsoft? Sure.

Matthew Garrett, a Red Hat engineer, gets the credit for spotting Microsoft’s latest anti-Linux move. In a blog posting, Garrett explains that Windows 8 logo guidelines require that systems have Unified Extensible Firmware Interface (UEFI) secure boot enabled. This, in turn, would block Linux, or any other operating system, from booting on it.

There’s nothing in UEFI that’s wrong. Indeed there’s a lot of good in UEFI. It’s a 21st century replacement for your PC’s basic input/output system (BIOS). Its job is to initialize your hardware and then hand over control over to the operating system.

Here is another take from a pro-Linux site:

Microsoft cheered Windows users earlier this month when it demonstrated the upcoming Windows 8 operating system booting in eight seconds. Part of the technology behind the fast boots, however, could enable Microsoft and its PC vendor partners to block users from loading Linux on a Windows 8 PC, according to a Matthew Garrett, a mobile Linux developer at Red Hat, writing in a Sept. 20 blog post.

We also covered this issue in tonight’s episode of TechBytes (to be published shortly). “Microsoft must clarify the Windows 8 boot spec and how it impacts Linux” says this last article we that we wanted to mention:

This is not a small issue. If Microsoft does attempt to make it impossible for the average consumer to install and run Linux aside of Windows 8, it will lose whatever inroads that it has made with developers in the past few years. Even more, it’s restrictive and could open the company to even more anti-trust scrutiny.

Perhaps there is no issue. It could be that Microsoft has foreseen this issue and has a workaround (at worst). But we don’t know, because Microsoft won’t tell us. They will, but the company will have suffered from its reticence to not pipe up with the truth.

The bottom line is, Microsoft is already under a lot of pressure and it’s unlikely to get away with this trick ‘by surprise’. Same ol’ Microsoft is up to no good.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

6 Comments

  1. Michael said,

    September 22, 2011 at 10:15 pm

    Gravatar

    Given the high demand for Linux on the desktop, surely OEMs would allow Linux to run.

    There is high demand… right?

    twitter Reply:

    Microsoft, not OEMs will hold the keys or Windows and Windows updates won’t run either.

    Desktops are a tiny fraction of the world’s computers.

    If you want to see a customer free dead zone, go to any computer store and look at the $400 Windows 7 laptop section. The only thing that can sell worse is Tivoized Windows 8 computers. No one is going to buy them and the bad reputation will destroy what’s left of the Windows ecosystem as long as the inflexible non computers are on the market. I imagine Microsoft will start things off with a hardware dump of epic proportions but that will only bankrupt them. People who want to live in a jail will pick one that works from Apple or Android.

    Michael Reply:

    Ah, so Windows is about to go away. Thanks for letting me know.

    twitter Reply:

    “Windows” as you knew it is already gone. There was once a relatively open and vibrant collection of companies built around the PC and Windows. It was not sustainable or just because Microsoft held all of the power and users were helpless. Microsoft exercised that power and very little is left of the ecosystem. Vista and Windows 7 were both egregious exercises of power and market failures. Windows 8 will not be a general computing platform. Microsoft is imploding.

    Michael Reply:

    Yeah, Microsoft has about six months until the file for bankruptcy. I am so happy Linux pushed them there. What would we do without Linux.

    LOL!

  2. twitter said,

    September 23, 2011 at 1:34 am

    Gravatar

    What we really see here is Microsoft’s planned take over of the desktop. They launched the effort as Palladium in 2001 or so and Richard Stallman decried it as Treacherous Computing. If you compare what RMS warned us about to jailed devices of today we can easily see the future of Windows 8 as one huge jail and an end to general purpose hardware.

    I do not think they will succeed without government mandates. “Secure” Windows 8 computers will have all the flexibility of computerized typewriters of the early 90s and few people will buy them. Cablegate shows us how Microsoft and publishers have been working to force a new “Intellectual Property Regime” (IPR) on the world but government and business need general purpose computing more than they need to protect US controlled media giants.

DecorWhat Else is New


  1. [Meme] António Campinos Wants to Be F***ing President Until 2028

    António Campinos insists he will be EPO President for 10 years, i.e. even longer than Benoît Battistelli (despite having appalling approval rates from staff)



  2. European Patent Office Staff Losing Hope

    The EPO’s management with its shallow campaign of obfuscation (pretending to protect children or some other nonsense) is not fooling patent examiners, who have grown tired and whose representatives say “the administration shows no intention of involving the staff representation in the drafting of the consultant’s mandate” (like in Sirius ‘Open Source’ where technical staff is ignored completely for misguided proposals to pass in the dark)



  3. IRC Proceedings: Thursday, January 26, 2023

    IRC logs for Thursday, January 26, 2023



  4. Sirius Relegated/Demoted/Destined Itself to Technical Hell by Refusing to Listen to the Technical Staff (Which Wanted to Stay With Asterisk/Free Software)

    In my final year at Sirius ‘Open Source’ communication systems had already become chaotic; there were too many dysfunctional tools, a lack of instructions, a lack of coordination and the proposed ‘solution’ (this past October) was just more complexity and red tape



  5. Geminispace Approaching Another Growth Milestone (2,300 Active Capsules)

    The expansion of Geminispace is worth noting again because another milestone is approached, flirted with, or will be surpassed this coming weekend



  6. [Meme] Cannot Get a Phone to Work... in 2022

    Sirius ‘Open Source’ wasted hours of workers’ time just testing the phone after it had moved to a defective system of Google (proprietary); instead of a rollback (back to Asterisk) the company doubled down on the faulty system and the phones still didn’t work properly, resulting in missing calls and angst (the company just blamed the workers who all along rejected this new system)



  7. [Meme] Modern Phones

    Sirius ‘Open Source’ is mistaking “modern” for better; insecurity and a lack of tech savvy typically leads to that



  8. The ISO Delusion: Sirius Corporation Demonstrates a Lack of Understanding of Security and Privacy

    Sirius ‘Open Source’, emboldened by ISO ‘paperwork’ (certification), lost sight of what it truly takes to run a business securely, mistaking worthless gadgets for “advancement” while compelling staff to sign a new contract in a hurry (prior contract-signing scandals notwithstanding)



  9. Links 26/01/2023: LibreOffice 7.4.5 and Ubuntu Pro Offers

    Links for the day



  10. Links 26/01/2023: GNU poke 3.0 and PipeWire 0.3.65

    Links for the day



  11. IRC Proceedings: Wednesday, January 25, 2023

    IRC logs for Wednesday, January 25, 2023



  12. Companies Would Collapse Upon Abandoning Their Original Goals (That Attracted All the Productive Staff)

    Staff with technical skills won't stick around in companies that reject technical arguments and moreover move to proprietary software in a company that brands itself "Open Source"



  13. [Meme] Listen to Your Workers, Avert Disaster

    Companies that refuse to take input from staff are doomed to fail



  14. The ISO Delusion: When the Employer Doesn’t Understand the Company's Value Proposition (Building Systems) and Rejects Security

    Sirius ‘Open Source’ has failed to sell what it was actually good at; instead it hired unqualified people and outsourced almost everything



  15. Links 25/01/2023: NuTyX 23.01.1 and GNU Guile 3.0.9 Released

    Links for the day



  16. Links 25/01/2023: Stratis 3.5.0 and Many Political Links

    Links for the day



  17. New Record Low: Only One 'Linux' Article in ZDNet in More Than Two Weeks

    Only a few years ago ZDNet published about 3 “Linux” stories per day (mostly FUD pieces); now it’s a ghost town, painted in ‘alien green’; considering ZDNet’s agenda (and sponsors) maybe it’s better this way



  18. Links 25/01/2023: Pale Moon 32.0 and DXVK 2.1

    Links for the day



  19. IRC Proceedings: Tuesday, January 24, 2023

    IRC logs for Tuesday, January 24, 2023



  20. ISO Certification Hardly Tackles Any of the Real Issues

    The real-world threats faced by private companies or non-profit organisations aren't covered by the ISO certification mill; today we publish the last post on this topic before proceeding to some practical examples



  21. [Meme] Medical Data Sovereignty

    What happens when your medical records/data are accessible to a company based abroad after a mysterious NDA with the Gates Foundation? The International Organization for Standardization (ISO) does not mind.



  22. The ISO Delusion: Sirius Open Wash Ltd. and Medical Data/Projects at Risk/Peril

    Sirius ‘Open Source’ was good at gloating about “ISO” as in ISO certification (see our ISO wiki to understand what ISO truly is; ISO certification needs to be more widely condemned and exposed) while signing all sorts of dodgy deals and lying to clients (some, like the Gates Foundation, were never mentioned because of a mysterious NDA); security and privacy were systematically neglected and some qualified as criminal negligence (with fines/penalties likely an applicable liability if caught/reported)



  23. Links 24/01/2023: Wine 8.0 is Ready, FSF Bolsters Copyleft

    Links for the day



  24. Azure Has Layoffs Again, Microsoft Still Cutting

    Even supposed ‘growth’ areas at Microsoft are being culled (this growth is faked, it is a lie)



  25. Links 24/01/2023: Tails 5.9 and ArcoLinux v23.02

    Links for the day



  26. Links 24/01/2023: GStreamer 1.22 and Skrooge Gets New Site

    Links for the day



  27. IRC Proceedings: Monday, January 23, 2023

    IRC logs for Monday, January 23, 2023



  28. The Inside(r) Story of ISO 'Certification' Mills

    Based on my experiences inside Sirius ‘Open Source’ — as I was there for nearly 12 years — I finally tell what I’ve witnessed about ISO certification processes (see ISO wiki for prior experiences)



  29. [Meme] ISO Selling 'Reputation' to Small Businesses (for a Large Fee)

    As we’re hoping to demonstrate throughout the week, ISO certification is, in practice, worse than worthless (just a waste of small businesses’ resources, much like patents); call it the ‘ISO tax’, an artificial barrier to entry that boils down to money



  30. [Meme] ISO Certification for Paying for Certificates on Time

    ISO is a phony authority; it makes business by issuing mostly worthless paperwork that wastes people’s time and accomplishes nothing (except making ISO in rich Switzerland even richer)


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts