Bonum Certa Men Certa

How Secure Boot Could Have Ruined My First Linux Experience And Why IBM Is Making Things Worse.

Reprinted with permission from Ryan Farmer. Also available in Gemini

Historically, using Free and Open Source Software has been a “license to tinker”, and Linux was no exception.



If it didn’t do something you needed it to do, you could patch it with “something I found”.



If that hadn’t been the case, I would have never been able to start using Mandrake Linux in the 1990s.



You see, the family computer had this horrible piece of hardware in it called a “Winmodem”. And let me tell you about those.



Pretty much as the name implies, the manufacturer dropped a Windows driver, which essentially was the modem.



Theoretically, this had benefits, like the modem could be updated by simply installing a new driver, since most of the logic for the thing is in the software, which runs on the computer, in the Windows 98 kernel in my case.



But that benefit hardly ever materialized. If any manufacturer actually sold you a modem and then later updated you to v.90 or v.92 or something, I’m not aware of it.



They left me at K56Flex and x2, two competing specifications written by rival companies, that predated the ITU standard for v.90 and v.92 56k dial up modems.



Fortunately, most ISPs supported one, the other, or both, in which case it would go ahead and work, but the modem itself was STILL a problem.



Because you only had the Windows driver, and because it implemented the entire modem, without Windows, the modem did nothing. You had no Internet access at all. Dead hardware.



Fortunately, I found the source code to a module that I could compile and add to Linux, and it made the modem work well enough, that I could at least get by until I had saved enough to buy a Zoom 56k modem that supported the actual ITU standards.



The Winmodem was a parasite. Even under Windows, the damn thing made the entire system hang whenever it picked up or hung up the phone line, and then while it was running, it stole CPU time for the driver.



So, this is basically my “Richard Stallman and the Printer” story.



Eventually I was able to remove the Winmodem and the (somewhat unstable) out-of-tree driver, but when I needed to patch the kernel, nothing stopped me. Nothing could have stopped me because nobody had lost their mind and thought Microsoft was a security company.



We didn’t have these ridiculous “Security” charades by the purveyor of the least secure software on the planet.



(“Secure” Boot offers no advantages and the GNOME Desktop has even been tarred and feathered by a “Security” Theater screen by people at IBM Red Hat…… I use KDE now.)



While it is much less common now to encounter the need to run unsigned modules, everyone should be allowed to, without Microsoft in their way. Or in the way of even booting the computer.



Unfortunately with IBM Red Hat’s assistance, crazier things than “Secure” Boot are happening.



This includes the outlandish notion that most of the file system should be read-only (“immutable”) and shouldn’t be within the user’s reach because Apple does this with a toy OS.



How is the user supposed to edit flat configuration files to make systemd (their other disaster) behave differently? How is the user supposed to take software they want in /opt and put it in /opt?



I don’t think you can. And the “Transactional Upgrade” system sounds horrible.



An “everything or nothing” upgrade of every package on the system, even if some are broken, and the only thing you can do if some are is roll the entire thing back?



I will never install a distribution with an immutable file system.



These distributions are worse than useless.



Even IBM Fedora, which has been banging this drum the loudest, has had an immutable “spin” forever, says they’ll make it “Workstation” someday, and well, that hasn’t happened.



There’s just no way to make it actually work. Not if you want to configure the system at all, or do something like dnf update –security.



Don’t even get me started on “kernel lockdown”, where even root is somehow not allowed to change kernel variables.



If a user has so seriously misconfigured their system that a vulnerability exists, let them live with that.



But this really has nothing to do with Security. It’s about walling the user off from their own computer to enforce Windows, or at the very least, make Digital Restrictions Malware (DRM) more effective on Linux.



Quit screwing up my laptop.

Recent Techrights' Posts

UEFI "Secure Boot Doesn’t Play Nice at the Moment"
UEFI "Secure Boot" does not improve security. It's an artificial obstacle in service of monopoly.
If You Want to "make your 'Windows PC' lean, mean, and fast" You Will Install GNU/Linux or Some BSD
That kind of article says a lot about IDG
 
Links 15/09/2025: Bitcoin ATMs Scam and "Conservative Cryptography" (Backdoors Fantasies)
Links for the day
EPO Imitates Microsoft: "Three Days or More Per Week" Inside the Office to Get a Desk to Work on; "the Office Breaches Its Promise Towards Staff and Acts in Breach of Its Duty of Care"
The EPO serves no actual function in Europe
Links 15/09/2025: Political Affairs, Censorship, and Copyrights
Links for the day
Gemini Links 15/09/2025: Music Genres, Invisible Networks, and Akademy 2025
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, September 14, 2025
IRC logs for Sunday, September 14, 2025
Satya's Plan B: Try to Hide the Massive Extent/Scale/Scope of Microsoft Layoffs
fewer people buy Microsoft
Red Hat News About De Facto Mass Layoffs (Bluewashing) Gone From Reddit (Censored by Gatekeepers), Still Online in The Register
With RTOs, PIPs, relocation etc. expect IBM to "shed off" many Red Hatters
Gemini Links 14/09/2025: ROOPHLOCH, Music, and Reddit
Links for the day
Slopwatch: Google News Infested With Slop (About Half of the Results for "Linux" Today)
This is the sort of junk one finds when looking for "Linux" in Google News these days
Links 14/09/2025: Ricky Hatton Dies and McDonald's Declares War on Tipping Culture
Links for the day
Links 14/09/2025: Disasters for CEOs Obsessed With Slop and Slop Companies School Like Fish
Links for the day
"Bad Shim Signature" (Microsoft 'Secure' Boot)
"Fresh install not booting"
What Microsoft Garrett and Microsoft Lunduke Have in Common
Similar tactics, different "wings"
Links 14/09/2025: US "Economy Sagging", "Michigan Economy Wobbles From Tariffs"
Links for the day
Gemini Links 14/09/2025: Minimalist Snippet Manager and Omarchy Linux
Links for the day
The Face of the Digital Far Right: Microsoft Lunduke
Microsoft Lunduke is an online extremist that belongs to and panders to the far right
20 Years Later and Academia Isn't the Same
"I never dreamed of being a professor"
'Cancel Culture' by the Right: Microsoft Lunduke Contacts People's Employers Trying to Get Them Fired
Microsoft Lunduke panders to extremists online
"Bad Shim Signature"; So 'Secure' That It Overrides Users' Preferences and Turns Itself Back on (Coercive Measure)
This was a few hours ago
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, September 13, 2025
IRC logs for Saturday, September 13, 2025
Microsoft is Rapidly Dropped From Web Servers, Shows Survey
Microsoft lost about 8% "market share" in just 3 months
Many GNU/Linux Users Report MOK (Machine Owner Key) Issues in Recent Days
many people don't report this online and never post in Reddit
We Covered UEFI 'Secure Boot' Scandals. The World Listened.
To hell with UEFI 'secure boot'
Links 13/09/2025: Escalations in East Europe and POTUS’ Health Cover-Up
Links for the day
Gemini Links 13/09/2025: Lagrange Turns 5 and Lagrange 1.19.2 Released
Links for the day
Microsoft Inside Your Linux: "Security vulnerability that allowed an attacker to bypass UEFI Secure Boot."
2 hours ago
A New Low for "Linux Journal": Promoting MICROSOFT WINDOWS Using LLM Slop
They've just jumped the shark entirely
Fake News With Fake Numbers About Microsoft
"This is what happens when the world's economy is governed by sick old men"
Slopwatch: "Google News" is Fast Becoming a Mashup of Slopfarms, Linux Journal ("LJ") is a Dump of LLM Slop
Well done, Google News. Google itself can flourish as a slopfarm mashup.
Torturing Users Who Just Want to Run GNU/Linux on Their Own PC
"Linux does not want to install"
The Register MS Still Takes Money to Hype Up "AI" in Articles by Microsoft Resellers With the Term "AI" 30+ Times in Them
Notice how many times they mention "AI"
The Apache Logo News is VERY Old, Racists and 'Anti-Woke' Bigots Look for Something to Incite Other Bigots With
Nothing to see here, move along
Linux Mint 9/11: "4th One Today..." (in Reddit)
Remember that not everyone having an issue reports it to social control media like Reddit
Nepal Will Fall Without a Single Shot Fired, Thanks to Social Control Media
Or very few shots (by the authorities)
European Corruption in the European Patent Office (EPO) Targets Culture
"In reality, the project includes a new “legal instrument” shifting administrative burden and liability on EPO staff while creating new uncertainty and externalising Amicale activities."
European Authorities, Already Bribed and Infiltrated by Microsoft, Won't Help You Find BigBlueButton, Jami, Ring, and Jitsi
Because they're paid by Microsoft and are Microsoft 'addicts' themselves
UEFI Secure Boot Failing, as Expected for Nearly 15 Years Already (Techrights Said This Since 2012)
in the media
Debian 9/11
people report this issue
Gemini and Web Links 13/09/2025: MElon's Slop Grift and "Autonomous Trains"
Links for the day
Moving From Content Management Systems (CMSs) to Static Site Generators (SSGs) Saves You Time, Makes You a Lot More Productive
try to reduce the cost (financial and computational) of running your site
Pursuing Peace Through Violence
You cannot "see" a person's mind, until the mouth opens
Leak: European Patent Office (EPO) is Now Attacking Amicale Clubs
corruption has become the norm and scientists are robbed of any dignity
Can We Please Stop Celebrating Shooters?
"An important point to hammer on is that CoCs were never intended for uniform or symmetric application"
Oracle Fraud (or Defrauding Shareholders)
"the obvious [lie] is that watts are (wasted) electricity [and] and FLOPS are computing capacity"
Geminispace is Growing Faster in 2025 Than It Did in 2024
What matters is that corporations haven't ruined it and LLM slop is extremely rare
Links 13/09/2025: China Punishes for 'Negative' Posts, US Police Unable to Find Shooter
Links for the day
Who's the Mystery Financier of SLAPP Against Techrights and Is That a Millionaire/Billionaire?
Whose idea was it to fund meritless lawsuits against my wife and I?
Slopwatch: Slow Slop Day
This distracts from or may take traffic away from the original articles, actually written by actual people
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, September 12, 2025
IRC logs for Friday, September 12, 2025