Bonum Certa Men Certa

With UEFI, TPM, Pluton Etc. Microsoft and Intel/AMD Trashed an Entire Generation of Computers, Made Security a Lot Worse in Order to Curtail GNU/Linux and BSD Adoption



Reprinted with permission from Ryan Farmer.

UEFI is Trash: Part 2 “Destroy the Computer to Continue Using Windows 11!”



This is a follow-up to my last post about System76 getting rid of UEFI and putting in Coreboot for their laptops.



UEFI is a security disaster.



Lenovo has patched my UEFI over 30 times and there are still releases like this month’s.



Modified:
1.  Enhancement to address security vulnerability CVE-2022-44611, CVE-2023-22616, CVE-2023-22615, CVE-2023-22612, CVE-2021-38578,
                                                  CVE-2022-24350, CVE-2023-22613, CVE-2021-38575
2.  Enhancement to address security vulnerability CVE-2022-46897, CVE-2023-27373, CVE-2023-26090, CVE-2023-27471, CVE-2022-24351,
                                                  CVE-2023-0286, CVE-2022-4304, CVE-2023-0215, CVE-2022-4450, CVE-2023-28468
3.  Enhancement to address security vulnerability CVE-2022-40982
4.  Enhancement to address security vulnerability CVE-2022-36392, CVE-2022-38102, CVE-2022-29871

-Lenovo


That’s TWENTY-TWO security vulnerabilities with a CVE that they’ve patched in one update (out of over thirty since this laptop was released in November 2020).



They’ve all been about like this.



“Security Expert” Matthew Garrett shows up to many debates about firmware, talking UEFI up as if it were possible to secure, if they even knew what they were doing with it.



Which they obviously, demonstrably, do not.



The recent Windows 11 “Unsupported Processor” error, had Microsoft say they were “working with OEMs” to provide “firmware updates”.



You’d need Windows to install the update, and Windows is already hosed if you got the update this month (you are making backups, right?), because it caused the system to Blue Screen of Death before the desktop is available to run any programs.



And even if you do install UEFI updates, which most users do not ever do, even once, you run the risk of bricking the entire computer to get Windows to behave itself enough to even do anything after you install the August Update.



(That’s if it doesn’t install the August Update and try to reboot itself while you’re trying to update the firmware. Does it still do things like this? Windows 10 was forcibly restarting for updates while people were live streaming games and had Microsoft Office open.)



Every time you update your firmware, any one of a million things can go wrong and leave the computer’s main board (which in a laptop has the CPU, RAM, and SSD soldered in sometimes, so kiss everything goodbye) utterly ruined.



That could be a Windows program (or virus) messing up the update process, Windows itself malfunctioning and freezing the computer before the update goes all the way in, the power going out, etc.



Of course you’re going to play Russian Roulette with your Lenovo laptop three dozen times, right? Right?



And even if it appears to update the UEFI, I have actually lost a motherboard (from Acer) while updating the correct firmware revision, and then had Acer refuse to do anything about it, so I had to find another motherboard that fit the case, and rebuild the entire desktop computer. (Which I’m sure all of you know how to do.)



So if you’re affected by Windows refusing to let you continue until you update the UEFI, it’s safer to just remove Windows and install Linux instead, because Linux doesn’t have fake errors like this.



It’s also worth mentioning that when I started tinkering with Windows 98 as a child and gutting the operating system of Internet Explorer, the Trident engine, the Windows 98 Shell Update (installing the Windows 95 B Shell), Outlook Express, and the several dozen useless components of Windows, using RoM II, I rebooted.



I said, “This is cool! Without all that Internet Explorer junk around, my games run 10% faster!”.



It was like a free graphics card, RAM, CPU, and hard disk update!



Even back then things were, relatively speaking, as bad as they are now, with the bloat.



You had a 4 GB hard disk and here comes Microsoft to spew at least 300 MB of useless trash all over it, you had a PC that came from the factory with 32 MB of RAM, or 64 if you were lucky, uh oh, here’s a bloated shell with IE stuff in it that takes up 11 MB more than it should!



They’ve always considered everything in your PC pretty much theirs to waste. You have an expensive PC? They’re wasting it on things you don’t even want to run.



But today, 25 years later, I say, “Let’s remove all this Windows junk so my games can go wheeeeeeee!”.



But for the adult in you, the average Linux distribution includes tons of Free and Open Source Software (as in freedom and price), including an entire Microsoft-compatible office suite that doesn’t go into “read-only” mode if your subscription to “Microsoft 365” lapses, saying “Pay Up, Chump!”.



Windows 11 treats its users like they’re running some kind of awful browser game with in-app purchases.



It’s not even really an operating system.



And you’re supposed to risk damaging a $1,500 laptop to continue running it because Microsoft is too incompetent to fix bugs?



Recent Techrights' Posts

In Defence of Courts' Privacy Policies
If you want friends, go offline. Meet real people and share real experiences.
Why I Quit Academic Career (or Academia) Nearly 15 Years Ago
I am told by people who stayed that it has only gotten worse
EPO "Cocaine Communication Manager" - Part XV - Nazi-Like Thinking at the European Patent Office (EPO) Not a Thing of the Past
antisemitism inside the EPO
Daniel Pocock Running for Office Again, Clacton-on-Sea By-election
By-election - code name "Pocock-on-Sea"
Links 17/07/2026: Microsoft is Cutting OneDrive Coverage, Larry Ellison Sued by Paramount Investor
Links for the day
Microsoft Whistleblowers Explain How Brutal the Latest Cull is (Layoffs in Seconds-Long Calls, Mass Elimination of Whole Studios and High-Level Officials)
we see anonymous leakers or whistleblowers in the media today
 
Andy Burnham as National Leader Would be Excellent for Techrights
Burnham has envisioned a British "centre of power" (or gravity) that moves northwards, isn't concentrated in the southeast anymore
Farage Out, Daniel Pocock in?
Can Pocock beat his previous voting record?
Layoffs at Microsoft Are Massive, Go Under the Radar for the Most Part
Microsoft is in a really bad shape
One Heck of a Week for IBM, the 'Grandpa' of 'High-Tech', International Business Machines Corporation (NYSE:IBM) Under Investigation by Bronstein, Gewirtz & Grossman, LLC
If IBM gets busted or might be busted, will the CEO jump, get pushed, or be arrested?
“Why Open Source Misses the Point of Free Software”
As Dr. Richard Stallman once put it
GNU/Linux Grows at the Expense of Microsoft Windows in Croatia, Now Close to 8%
Croatia has been mentioned a lot lately in relation to EPO "lobbying" (vote-rigging)
27-Year IBM Veteran on IBM: "Worse than the Titanic and Perhaps Just Like Madoff, Enron, etc."
several comments we saw today envisioned the CEO of IBM in an orange suit (in US prison)
ServiceNow/ServiceLine and Slop at the EPO is Becoming a Health Risk to Staff
PD44 has historically been the oppressor at the EPO
IBM Can Burn Pensioners to Appease Wall Street and Protect the Billionaire CEO With His Humongous Bonuses
Its stock it set to open 2.82% in the red
IBM SHAREHOLDER INVESTIGATION: Potential Securities Claims Involving International Business Machines (IBM)
there's a risk of criminal action against executives
Tux Machines Moving Onwards and Upwards
"...tasks expand to fill the time available"
The Register MS is Publishing Spam for Gartner Group to Spread Hype About "AI", Mentioned 30 Times in the Paid (Fake) Article
One sure thing is, the so-called 'tech media' is profoundly compromised by American corporations
"Market Share" of GNU/Linux Nearly Trebled in Cambodia This Month
GNU/Linux is still measured at 8% by statCounter
GitHub is Dying (Traffic Down Despite Bots and Slop), Microsoft Will Eventually Cull it - Just Like XBox - to Limit the Losses
Do not stay on GitHub (Microsoft) under the false assumption that it is "free hosting" or will always be around
Teaser: Daniel Pocock is About to Go Mainstream Again
Stay tuned, Pocock has something in store
Microsoft Has Just Been Sued Over Layoffs
If the rumours are true, there is yet another wave of layoffs at Microsoft
Richard Stallman Always Cautioned, Upfront, That His Political Views Were Wholly Separate From His Scientific Work or GNU
Notice that he already spoke a lot about politics
Nichirei and Asahi Beer Need to Take Cyberattacks as Hint of Opportunity to Move to Free Software
Windows TCO
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, July 16, 2026
IRC logs for Thursday, July 16, 2026
Gemini Links 17/07/2026: Sunlight in the Clouds, Techno-Therapy, and Sloppifying Original Text
Links for the day
Links 16/07/2026: Slop Recognised as a Waste of Energy, Hong Kong Cracking Down on Dissent/Opposition Some More
Links for the day
GNU/Linux Approaching 5% "Market Share" in Oceania, Almost Trebling in 12 Months
It is difficult to ignore the gains made by GNU/Linux this month
Gemini Links 16/07/2026: esp32-gemserv, Slop-Contaminated Free Software, and Moving Systems
Links for the day
Last Summer Microsoft Mass Layoffs Came in Two Large Waves, Rumours Say Next Week Another Large Wave is Coming
If many more Microsoft layoffs are formally admitted next week we will not be surprised
Tomorrow is Another Strike Day at Europe's Second-Largest Institution, the Media is Still Deliberately Ignoring It
Fridays are now recommended “anchor days" for EPO strikes
Public Interest News Foundation Shows News Drought or News Deserts in the United Kingdom
Public Interest News Foundation shows that we should be deeply concerned
Illusions of Choice
Choices can be differently bad or equally bad
Windows Down to 10% in India
Windows is a "burning platform"
One Year Has Passed
Our aim is to repair an injured system wherein "abuse of process" can be turned into a weapon, leveraged even by foreigners who are funded by affluent third parties
Techrights is Annoying People Who Work for (and Serve) People Who Annoy (and Abuse) Society
Working against us (instead of with us) has historically been a bad strategy
No Skinnerboxes, No Slop, No False Idols or Corporate Prophets
Torvalds does not understand the everyday struggles of tech workers and tech users because he is a millionaire
IBM's Next Stop: $199 (Market Cap Already Under 2.5 Times IBM's Debt)
Don't rush to call us "sensationalist" over it
Links 16/07/2026: Solar Greenwashing by Energy-Wasting GAFAM and Growing Concerns About Harm by Social Control Media
Links for the day
Gemini Links 16/07/2026: Photography, Agility, and "Today I have Truly Become a Linux User."
Links for the day
Rebellion Brewing at Microsoft
As always, we welcome Microsoft whistleblowers
Technology Against Human Nature
Losing a sense of what it means to be alive
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, July 15, 2026
IRC logs for Wednesday, July 15, 2026
IBM Down to $211.20, the Market in General is Up
No recovery for IBM today
UEFI 'Secure Boot' Still Not Secure in 2026, New Holes (or Bypasses) Still Being Found
In 2026 there are still many people who call it "secure" and pretend to themselves that it is about security. It's not. It never was.
Gemini Links 15/07/2026: Lab 6, Retrospective 2, and "Getting Back Into Gemini"
Links for the day
Links 15/07/2026: "Gianni Infantino Under Fire" and "Todd Blanche's Record Raises Alarming Questions About the Future of the US DOJ"
Links for the day
Allegedly More IBM RAs (Mass Layoffs) Same Day the Stock Crashed
No paper trail, so it never happened, right?
Techrights Was Right: Microsoft's Layoffs Tally Was False, Far More People Are Being Sacked
"The Xbox Bloodbath Is Actually Way Bigger Than It Seems"
Get Ready for Increase in PIPs and RAs at IBM, Red Hat, and Other Companies Devoured by IBM
IBM's "market cap" has just fallen to 199 billion dollars and it has about 70 billion dollars in debt
IBM Sinking to Lowest Levels Since 2024, But Will Any Executives Be Arrested for Securities Fraud?
52-week high of $332.46 and now down to $212.94
Microsoft Whistleblowers Say "The Entire Thing is Going to Fall Apart" and There Are "No Benefits" to Being Part of Microsoft
"Multiple sources, who chose to remain anonymous for fear of reprisal"
IBM's Crash Continues Today
Stocks go up and down, but they don't typically go down by over 25% in a single day
Like Kyndryl, Multiple Securities Fraud Investigations Into IBM
Remember what happened to Kyndryl
How Long Before GNU/Linux is Measured at 20% in Chad?
The main way to get people to adopt Vista 11 is to sell them a new PCs and in poor countries it happens a lot less
Making Techrights Faster Down Under (Australia and New Zealand)
there's more to life than speed
Strikes at the EPO Approved for the Rest of the Year, "€1,3 Billion Taken From Staff Income"
Intensity can be revised and increased over time
Focusing on What We Really Ought to Focus on
Today we'll focus mostly on EPO affairs
Violence is Not a Joke
"Police say Widdecombe killing was targeted but motive remains unclear"
How to Properly Measure the Performance of a Patent Office
A "contribution from staff [which] is published by SUEPO Munich."
Who Next After IBM? (Bubbles Don't Last Forever)
the demise of companies with "ai" in their name/domain
EPO "Cocaine Communication Manager" - Part XIV - "Not One of Us" (How the Group Dubbed by EPO Insiders "Alicante Mafia" Pushes Out Talent, Replacing It With Friends)
misuses the EPO's budget like it is a fountain of money for his friends
LibreTech Collective Abandons Microsoft GitHub and All Other Proprietary Software
Each time a project eliminates control by a hostile party it stands to gain
GNU/Linux Estimated at 8% "Market Share" Today (in statCounter)
Days ago it said 7.1%, then 7.3% or 7.4%
Links 15/07/2026: US Regime "Cuts Two Utah National Monuments by More Than 90%", "Hormuz is Less Crucial Than It Was"
Links for the day
Gemini Links 15/07/2026: Old Computer Challenge, "Trial by Fire", LLM Slop Destroying Companies
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, July 14, 2026
IRC logs for Tuesday, July 14, 2026