Bonum Certa Men Certa

Stallman Was Right About 'Secure' Boot (Matthew Garrett's Work Now Used to Prevent Users Adopting New Ubuntu Releases/Derivatives)

Summary: Matthew Garrett pushed a malicious 'feature' (antifeature) of Microsoft and now we all pay for it; instead of working to remove the restrictions, Garrett is nowadays working hard to remove RMS (the messenger)

MS in 2021:

You cannot upgrade Ubuntu
Sources: It's FOSS, OMG!Ubuntu and plenty more (if they make it enough of a pain or a risk, they hope people will stay with Windows and maybe use WSL, not real GNU/Linux)



RMS in 2012: Direct download as Ogg (0:13:28, 5.5 MB)

Dr. Roy Schestowitz: I want to know how big a threat you think the so-called "secure" boot is considered to be to the Free software movement.

Richard StallmanDr. Richard Stallman: It's a disaster. Well, except that it's not secure boot that's a disaster, it's restricted boot. Those are not the same. When it's front of the control of the user, secure boot is a security feature. It allows the user to control what programs can run on a machine and thus prevent -- you might say -- unexpected malware from running. We have to distinguish the unexpected malware such as viruses from the expected malware such as Windows or Mac OS or Flash Player and so on, which are also malware; they have features that hurt the user but users know what they are installing. In any case, what secure boot does is that it causes the machine to only work with (?) programs that are signed with a certain key, your keys. And as long as the user controls which keys they are, then it's a security feature. However, it can be chained into a set of digital handcuffs when the user doesn't control the keys. And this [is] happening.

"We have to distinguish the unexpected malware such as viruses from the expected malware such as Windows or Mac OS..."Microsoft demands that ARM computers sold for Windows 8 be set up so that the user cannot change the keys; in other words, turn it into restricted boot. Now, this is not a security feature. This is abuse of the users. I think it ought to be illegal.

It's a matter of control by the vendor of course, not control by the user himself

Exactly, and that's why it's wrong. That's why non-free software is wrong. The users deserve to have control of their computers/

I think that not only Windows is going to be an issue in fact, if you consider the fact that even a modified kernel is going to be in a position where it's perhaps not seen as verified for execution. Right, I'm saying, it might not only be a malicious feature in case of something like Windows running on it, it's also for -- let's say -- a user of the offered operating system but it's free if the user wants to modify the operating system, for example...

The thing is, if the user doesn't control the keys, then it's a kind of shackle, and that would be true no matter what system it is. After all, why is GNU/Linux better than Windows? Not just 'cause it has a different name. The reason it's better is because it's freedom-respecting Free software that the users control. But if the machine has restricted boot and the users can't control the system, then it would be just as bad as Windows. So, if the machine will only run a particular version of GNU/Linux, that is a restriction feature. And I haven't heard anyone doing that yet with GNU/Linux, but that's what Red Hat and Ubuntu are proposing to do things -- somewhat like that -- for future PCs that are shipped for Windows. But it's not exactly that. And my reason is, the users will be able to change the keys. They will be able to boot their own modified version of the system of Fedora or Ubuntu if they want. So, what Fedora and Ubuntu were proposing doesn't go all the way there. They're proposing to do things to make it more convenient for users to install the standard version of those systems. But if things go as it has been announced, users will still be able to change the keys and boot their own versions. So, if all the restricted boot -- but it will be something that goes sort of half-way there -- it's somewhat distasteful.

"The thing is, if the user doesn't control the keys, then it's a kind of shackle, and that would be true no matter what system it is."On the other hand, with Android, which is another mostly Free operating system which contains Linux but doesn't contain GNU, it's quite common for the product to have something equivalent to restricted boot, and people have to struggle to figure out how they can install a modified and more free version of Android. So, the presence of the kernel Linux in a system doesn't guarantee it's going to be better. And I've heard someone say -- oh, it hasn't been checked -- that a particular or kind of Android device is actually using an Intel chip with restricted boot.

One of the concerns that I think is worth raising is the fact that, as far as I know, with many of the embedded devices, especially those based on ARM, I believe it's not even possible to get into boot menu to disable so-called "secure"...

That's where Microsoft is really going all out, because Microsoft has ordered essentially -- demanded -- that those shipping ARM devices for Windows 8 make it restricted boot with no way to get around it.

Yeah, which also means of course waste of... all sorts of impacts on the environment. Any time that hardware become obsolete with the operating system itself is not being used of course...

"So it's a very damaging thing that Microsoft is doing and so we need to look for every possible way to stop them or tweak what they're doing."Well, it's worse than that. It means basically that those devices, you have to throw them out if you want to escape to the free world. And this -- in the past -- we were able to install, to liberate a computer by installing Free software on it instead of its user-restricting operation system, and this of course was tremendously helpful to the spread of GNU/Linux because it meant that users could move to freedom. It would be much harder if they had to buy another computer to do so. So it's a very damaging thing that Microsoft is doing and so we need to look for every possible way to stop them or tweak what they're doing.

As embedded (HTML5):





Keywords: UEFI Coreboot GRUB GNU FSF

Download:

Ogg Theora



Recent Techrights' Posts

In Malawi, Windows Down to 10%, GNU/Linux Growing
it's not a small country
[Meme] Featuritis
Newer is not always better
Ireland Last to Report Election Results
Daniel Pocock's involvement in Australian politics goes back to his university days
Never Sleeps, Never Slumbers
We're going to try to improve not just in quantity but also in quality
EPO Has Gotten So Bad That Workers Need to Ask to be Allocated a Desk (at Work)
Wow!!!! An “allocated workplace”!!
 
Nationwide Eventually Did Listen
Miles better than their original nonresponse
The Corruption of Open Source Initiative (OSI), a Front Group of Microsoft and GAFAM, Openwashing Proprietary Things and Even Plagiarism, GPL Violations
Stefano Maffulli (and Microsoft's staff that works with him) basically profits from anti-FOSS
"AI" Tech Bubble
How much "hype quotient" does this whole "hey hi" (AI) thing have left in it?
Links 13/06/2024: Science, Politics, and Gemini
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, June 12, 2024
IRC logs for Wednesday, June 12, 2024
Gemini Links 12/06/2024: The Rodent Revolution and Adding Twisty Puzzles
Links for the day
Links 12/06/2024: Ukraine War Updates and Many Patents Being Subjected to Squashing Bounties
Links for the day
[Meme] The Purpose of Life is to Find a Desk
dogs have desks
Tux Machines Parties Going Well Do Far
Cross-posted from Tux Machines
In Many Countries, Both Large and Small, Vista 11 is Losing Market Share (Despite New PCs Coming Preloaded With It)
One need not even consider large nations in isolation
By "Going Public" the Raspberry Pi Ensures It'll No Longer Serve the Public
It'll be owned and controlled by whatever people wish to control it
Dave Wreski Also Plays the Bot Game (Chatbot) at LinuxSecurity to Fake 'Articles' About "Linux"
How much longer can they fool search engines (SEO) and readers?
[Meme] Indisputable Success
MICROSOFT buys shares of MICROSOFT
Links 12/06/2024: 'Hey Hi' (AI) Bubble Imploding Already, Danish Media Threatens to Sue OpenAI
Links for the day
Links 11/06/2024: Floods in Germany and Brazil, Political Violence
Links for the day
Gemini Links 12/06/2024: Sketching Plants, OpenBSD Pubnix
Links for the day
"2025 the year of Linux on the Desktop"
Charlie Stross quote
In Bahrain, Historically Low on GNU/Linux Adoption, Things Change for the Better
They have some people who understand Free software
Daniel Pocock Received Twice as Many Votes as Andreas Tille (Debian Project Leader After 2024 Election)
From the media yesterday...
Debian is Built by Hundreds of Volunteers and 524 Irish People Voted for Daniel Pocock
524 in that area went to the polling station to vote Daniel Pocock (Ind)
[Meme] RMS is 'Too Old', Says Company Run by a Person 5 Years His Junior (Ginni Rometty) and 10 Years His Junior (Arvind Krishna)
Never again?
[Meme] Women in Computer Science
Grace Hopper, Ada Lovelace etc.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, June 11, 2024
IRC logs for Tuesday, June 11, 2024
Togo: GNU/Linux Growing Fast This Year, Now Measured at 6%
Sending Bill Gates with a suitcase to bribe African officials isn't enough anymore
Free Software Projects Need to Chase Away Men Who Attack Women Rather Than The Women Who Complain
A just society holds people accountable rather than covers up such blunders
Improving the Image of Women in Free Software by Hiring and Promoting the Proficient Ones
Million's shaman background isn't the problem, or even the superstitious ghost-chasing. The problem is that she has absolutely no background in Free software.
They Say Cash is King
People who value their freedom will pay with cash any time they can
'Team Microsoft' Wants to Leverage Our Popularity as a Weapon Against Us
In the past 2 days we published 64 articles and served over a million HTTP/S requests
[Meme] Microsoft Has Enough of Its Own Problems (Layoffs Abundant), It Won't Rescue IBM or Canonical
"It's OK, we're partners"
Know Your Allies, Know Your Enemies
The answer to censorship attempts is more speech, not less speech
Debian is Back to Taking Money From Microsoft, the Company That's Attacking Linux From the Inside
If Debian fails to understand what's wrong with it, that's a problem
Ghana: Windows Down From 97% to Just 15%
The doors are closing on Windows
Links 11/06/2024: Practice of Retaliatory Layoffs at Microsoft
Links for the day
Gemini Links 11/06/2024: GMID 2.0.5 and More
Links for the day
The United States Will Cut Off or Cull Firefox
It is only a matter of time
[Meme] Firefox Is Not an Alternative to Google, Only to Chrome (and It Has Become Proprietary or OSPS Like Chromium)
The illusion of remaining "choice" on the Web
No, the World Wide Web Isn't Open (and Hasn't Been for Years)
It's proprietary all the way now
The War on Free Software Reporters - Part VII - Groupthink, Censorship Demands, and Ultimatums
There's a lot of groupthink in the Free software community
Microsoft Told Us That LLMs Were a Boon for Azure and 'Clown Computing', But the Thousands of Layoffs This Month Prove That It Was a Lie All Along
Azure is collapsing
Why We Post Statistics About the Usage of Operating Systems Worldwide
We're hoping to see GNU/Linux at over 10% (on desktops/laptops) some time in the coming years
Winning Defamation Cases is Incredibly Difficult (for Plaintiffs), Even in the United States and the United Kingdom
SLAPP should always backfire
In Kuwait, Microsoft's Windows Fell From 97% to Just 15%
According to statCounter
GNU/Linux in Philippines Climbs to New Levels
This is an all-time high
Links 11/06/2024: Windows Outcry and Climate News
Links for the day
Tux Machines Was Always a Women-Run Site (the Real Voices of GNU/Linux, Not Political Props in Corporate Events)
Corporate "diversity" is more of a marketing/PR gimmick than real, genuine diversity
Macao: GNU/Linux Desktop/Laptop Operating System Market Share Rising Close to 7%
GNU/Linux Rises to Record High in Macao
FSF is Now 50% Female, Unlike Red Hat (Which Moaned About Lack of "Diversity" at FSF)
Isn't the hypocrisy just astounding?
Since COVID-19 Lockdowns Windows Fell From Almost 50% to Just 10% in Loas
According to statCounter
[Meme] Quantity Says Nothing About Worth, Value, or Quality
People will generally gravitate towards things of quality and reputation
Microsoft's Windows in Gabon: From 20% 'Market Share' Down to Around 10% in a Few Months
Gabon is not a small country
Meanwhile at canonical.com
Canonical knows exactly what Ubuntu users want
[Meme] Microsoft (and the NSA) Will Never Forget
The user trying to permanently disable 'recall'
Windows Falls Below 20% in United Arab Emirates This Month
According to statCounter
"Windows 11's Recall AI, known to take snapshots and recordings of user computers regularly, including key presses, was discovered to store all its information in an unencrypted local folder."
"You can copy the data from another user's "recall" folder as another user."
Fedora Week of Diversity (FWD) 2024 Outsourced to Proprietary Spyware of GAFAM
Need to use proprietary software to participate
IRC Proceedings: Monday, June 10, 2024
IRC logs for Monday, June 10, 2024
Over at Tux Machines...
GNU/Linux news for the past day
[Meme] Clown Computing is Better For...
Clown: they said clown computing enhances security
One in a Thousand Voters Chose to Vote Daniel Pocock (as First Preference)
He got about 4 times more votes than what had him win FSFE elections
Daniel Pocock on Good Performance in His EU Election Campaign: Thanking the voters of Midlands-North-West, Ireland
Reprinted with permission from Daniel Pocock
The 'IT Industry' is Already in Ruins
The "powers that be" do not want the "hoi polloi" to possess skills and systems
Microsoft's Windows is Sliding Away Into Minority Platform Territories, Even in Rich Countries With Affluent Computer Users
We seem to be striking a nerve at Microsoft every time we say this
Self-Hosting Should be Taught and Embraced, Outsourcing Creates More Problems (or Risks) Than It Solves
One can control one's destiny...