Bonum Certa Men Certa

UEFI Apologists Versus Germany's Government Judgment on UEFI Insecurity

Flag of Germany



Summary: Proponents of UEFI support, who are sometimes Mono proponents as well, may struggle to reason in favour of crippleware given the way UEFI rejects Linux and the reasons the German authorities reject UEFI

T

HE Windows franchise is collapsing (ignore the Microsoft PR machine, which we'll address in a separate post), so Microsoft created a breed of machines that won't boot Linux. One blogger writes:

So do not buy that new shiny computer without knowing what pitfalls you may have to overcome in order to run a free operating system. As a footnote, the Secure Boot link is from an article on the Linux Foundation’s efforts written on ZDNet’s website all about how Microsoft is delaying the keys for Linux. Hmm, just one more reason to buy new equipment from alternate retailers that put Linux first or buy used.


Bottomley and the Linux Foundation cannot say much after they sold out (Novell plays a role for both) and Michael Larabel writes:

James Bottomley wrote a new blog post this morning about why the Linux Foundation really isn't concerned about UEFI SecureBoot on ARM hardware (smart-phones, tablets, etc) compared to the work they are doing on x86 PCs with UEFI SecureBoot support for Linux.

Last month the Linux Foundation announced their UEFI SecureBoot plans for dealing with Microsoft Windows 8 PCs. Their plans basically equated to legally obtaining a Microsoft key and signing a small pre-bootloader that in turn could chain load a predesignated boot loader that would in turn boot Linux or any other operating system without having to deal with the SecureBoot mess. The signed pre-bootloader will be available from the Linux Foundation web-site for anyone to use along with the source-code, albeit not their private key. The foundation is still working to obtain a SecureBoot key and their SecureBoot focus has just been for x86 hardware.

With Linux users wondering why the Linux Foundation isn't diving into some SecureBoot solution for ARM, James Bottomley wrote a lengthy explanation.


We also saw some feedback from vocal UEFI apologists, who are sometimes the same people who promote Mono. Yes, promoters of Microsoft's (and Novell's) Mono also promote or downplay the issues with Microsoft's UEFI demands, but we won't be linking to them. They provoke against this site. Anyway, here is the original post that seeded this debate. It says:

The answer to this comes in several parts: firstly in the PC space, Microsoft has an effective headlock on the OEM and ODMs: no desktop PC ships without a Windows compatibility sticker (the situation is different in the server market, but this is specifically about desktop PCs). Therefore in order to continue simply booting Linux on laptops and desktops, it is a huge priority to find a solution to this problem. Secondly: in the overall mobile marketplace, which encompasses tablets and smartphones, Microsoft has a very tiny presence: somewhere between 2-5%. Linux (Android) has the majority presence: by some counts, Android is >50% in this market space with Apple a close second. Therefore, a Microsoft mandate in an industry where they have no dominance is simply not really threatening (unlike the PC space where they have complete dominance).



The German authorities have already banned UEFI for their own use/machines on the face of it. So-called 'secure' boot is bad for national security. The "German government issues white paper on secure boot," writes LWN:

A press release from FSF Europe (issued November 20) welcomes a white paper from the German federal government on trusted computing and secure boot. "Another demand by the FSFE is addressed by the government's white paper. That before purchasing a device, buyers must be informed concisely about the technical measures implemented in this device, as well as the specific usage restrictions and their consequences for the owner: 'Trusted computing security systems must be deactivated (opt-in principle)' when devices are delivered… And 'Deactivation must also be possible later (opt- out function) and must not have any negative impact on the functioning of hard- and software that does not use trusted computing functions.'" The white paper is in essence a non-binding call to manufacturers, but is significant as a statement from a major national government against restrictions imposed via secure boot that may foreshadow more significant government action. The white paper is available in both English and German.


The war on UEFI should carry on until this malpractice is eradicated. It is a defect, not a feature. It gives remote control over hardware.

Comments

Recent Techrights' Posts

Passkeys Are Vendor Lock-in and Imperialism, Not Security, So Escape Them Before They Latch Onto Your Workflows
This is their 'grand vision' of computing. You merely 'rent' what you assumed you truly bought to own.
Let's Put Slop In the Casket Once and for All (Call Out the Sites and People Who Produce and Spread Slop)
Together, through a movement of integrity and solidarity, we can marginalise the spread of slop in all its forms, including code
Windows Down in the Largest Countries, Microsoft Cannot Dodge This Reality Forever
Talking about "clown" and "hey hi" (AI) - sometimes "Quantum" - is like telling bedtime stories to infantile investors who don't understand those buzzwords
 
Happy 20th Birthday to OpenDocument Format (ODF)
nowadays many companies use "online" "webapps" to collaborate on various things
Links 03/05/2025: Amazon and Apple Problems (the A's in GAFAM), Hard to Hide Any Longer; Australia’s Election
Links for the day
Why Law Firms and Courts in Particular Should Dump Microsoft
Giving a notoriously corrupt and chronically law-breaking company control over one's systems and data is a recipe for disaster
Gemini Links 03/05/2025: Showerhead Mod and Micro Dosing on LSD
Links for the day
Links 03/05/2025: Bribery in Dutch Microsoft DC Probe, Zuckerberg Conflates Slop With 'Friends'
Links for the day
Today is World Press Freedom Day, 3rd of May
2025 World Press Freedom Day
Gemini Protocol's Momentum Ahead of Its 6th Anniversary (Next Month)
The more capsules go online, the more people participate in writing, not just reading
Corporate Media, a Cheerleader of Wall Street Facade, Spent Days Saying "META" and "MSFT" Lifted "the Market", But Their Debt Soared
Facebook's debt has never been higher
Microsoft Windows Falls to a Meager 9% "Market Share" in South Africa While GNU/Linux Rises Above 5% in Desktops/Laptops
South Africa is where the founder of Ubuntu (or Canonical) comes from
Links 03/05/2025: Australian Election and manpage for Gemini Considered
Links for the day
Links 03/05/2025: UK Arrests for Bribery Connected to Microsoft Datacentres
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, May 02, 2025
IRC logs for Friday, May 02, 2025
Not Just an OSU Open Source Lab Issue
Prominent and very prolific news sites about Linux ask for help
GNU/Linux Has Risen to All-Time High in South America, Windows Has Fallen a Lot Due to Android
What will the rest of the year bring?
Richard Stallman (RMS) Says US "Magats" Have Destroyed Press Freedom in the US
Now they're exporting their attacks on the media to the UK
In Africa, GNU/Linux Rose From 3% to 4% in Just Two Months
So says statCounter anyway... What will it be like by the end of this year?
Gemini Links 02/05/2025: Bandcamp and Spying "Smart Glasses"
Links for the day
Microsoft Says Demand/Budget for "AI" is Decreasing, Bing is Also Moving Down and Down This Year ("Bing Chat" Was an Utter Failure, People Want Sites, Not Slop)
Skype is about to shut down, XBox will likely die soon
Asia is Running Away From USA-ware (Trump or 'Tariff Regime'), Including Microsoft Windows
The nationalism harms Microsoft
Data Shows Largest EU Economies Shifting to GNU/linux
all-time highs
Microsoft President Panics Over Europe's Abandonment of Microsoft/GAFAM/Trump's USA, These Figures Show Us Why
Microsoft is bluffing
Microsoft Windows Falls Below Quarter in "Market Share" (While Microsoft Fakes Rising Dominance... in Buzzwords and Fake Accounting)
Cooking the books while Windows gets 'cooked'
Links 02/05/2025: Expedia Group Undergoes Layoffs, Twitter Exodus in Europe
Links for the day
Techrights Statement: The Solution is Not More Censorship or Moving to Another Mastodon Instance, the Core Problem is Social Control Media Including Mastodon
Censorship typically leads to additional (new) issues
Good News, Bad News: Groklaw is Back Online, SoylentNews Apparently Loses Editor
Jan ought to change the resignation into a mere pause
Manchester Computing Centre (MCC) Made the First GNU/Linux Distro, But You Probably Never Heard of It
People like Owen are barely remembered, not because they didn't do valuable work but because they didn't suck up to "The Establishment"
Online Mobs and Crabs: Doing to Fabrice Bellard What They Did to Richard Stallman and Linus Torvalds
They just don't want skilled people to be productive
E-mail is Not HTML, Web Pages Aren't a Form of E-mail
as an associate remains us, always use "plain text, it was good enough for Shakespeare"
Slopwatch: Stigma-Baiting by the Serial Sloppers and Latest Garbage From the Slopfarm LinuxSecurity.com (Also Slopping Away at "OpenBSD" With SEO SPAM Made by LLMs)
Microsoft et al are trying to profit from blurring away information
Links 02/05/2025: Mineral Selloff and Chinese Sanctions
Links for the day
Gemini Links 02/05/2025: Hens and Tmux
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, May 01, 2025
IRC logs for Thursday, May 01, 2025
Gopher/Gemini Links 01/05/2025: Slop/LLM Bot Troubles and Driving Angry
Links for the day
Links 01/05/2025: Apple Lies to Courts, European Patents Thrown Out by British Courts Again
Links for the day
Microsoft's CEO is Hyping Up 'AI' (Plagiarism) to Distract From Falling Interest in It and Missed Expectations (Investors Run Out of Patience as Reality Does Not Meet or Match Early False Promises)
Microsoft clearly needs 1) a distraction and 2) hype about "AI"
No, Microsoft, Plagiarism is Not "AI"
"Satya Nadella says as much as 30% of Microsoft code is written by AI"
Microsoft Has Become Almost Extinct in Web Servers, Netcraft Now Ranks It in Only One Category (Microsoft Down Sharply), Deranked/Outranked in All the Rest
Microsoft used to be in all categories, now it's in just one
Gemini Links 01/05/2025: Small Web and Going Offline
Links for the day
Microsoft Has Hundred of Layoffs Again, Same Week as the Company's Fake Results
those people were in effect Microsoft employees, just classified as contractors
Sirius Open Source in Court
I personally was a witness and an alibi
What GNU/Linux Means to Us
Linux without freedom is like becoming a vegetarian "except on special occasions"
Links 01/05/2025: Slop Blowback, Social Control Media as Vehicle of "Sextortion"
Links for the day
Disinformation and Marketing Spam From and For OIN (GAFAM's and IBM's Weapon Against Free Software Activists and Reformists Against Software Patents)
All in all, this anniversary is just a PR stunt with revisionism
Some of the Evidence We'll Be Relying Upon in the Lawsuits Against Matthew J. Garrett
Finally facing the consequences for his actions
Symptom or Hallmark of Ponzi Schemes: Microsoft Says It Gains Over 100 Million Dollars in "Goodwill" and Its Speculative "Value" Nearly Doubled to $119,329,000,000 in the Past Year Alone
Total liabilities are now over $240,000,000,000
Gemini Links 01/05/2025: Trying OpenBSD and Usenet Reborn Released
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, April 30, 2025
IRC logs for Wednesday, April 30, 2025