Bonum Certa Men Certa

With UEFI, TPM, Pluton Etc. Microsoft and Intel/AMD Trashed an Entire Generation of Computers, Made Security a Lot Worse in Order to Curtail GNU/Linux and BSD Adoption



Reprinted with permission from Ryan Farmer.

UEFI is Trash: Part 2 “Destroy the Computer to Continue Using Windows 11!”



This is a follow-up to my last post about System76 getting rid of UEFI and putting in Coreboot for their laptops.



UEFI is a security disaster.



Lenovo has patched my UEFI over 30 times and there are still releases like this month’s.



Modified:
1.  Enhancement to address security vulnerability CVE-2022-44611, CVE-2023-22616, CVE-2023-22615, CVE-2023-22612, CVE-2021-38578,
                                                  CVE-2022-24350, CVE-2023-22613, CVE-2021-38575
2.  Enhancement to address security vulnerability CVE-2022-46897, CVE-2023-27373, CVE-2023-26090, CVE-2023-27471, CVE-2022-24351,
                                                  CVE-2023-0286, CVE-2022-4304, CVE-2023-0215, CVE-2022-4450, CVE-2023-28468
3.  Enhancement to address security vulnerability CVE-2022-40982
4.  Enhancement to address security vulnerability CVE-2022-36392, CVE-2022-38102, CVE-2022-29871

-Lenovo


That’s TWENTY-TWO security vulnerabilities with a CVE that they’ve patched in one update (out of over thirty since this laptop was released in November 2020).



They’ve all been about like this.



“Security Expert” Matthew Garrett shows up to many debates about firmware, talking UEFI up as if it were possible to secure, if they even knew what they were doing with it.



Which they obviously, demonstrably, do not.



The recent Windows 11 “Unsupported Processor” error, had Microsoft say they were “working with OEMs” to provide “firmware updates”.



You’d need Windows to install the update, and Windows is already hosed if you got the update this month (you are making backups, right?), because it caused the system to Blue Screen of Death before the desktop is available to run any programs.



And even if you do install UEFI updates, which most users do not ever do, even once, you run the risk of bricking the entire computer to get Windows to behave itself enough to even do anything after you install the August Update.



(That’s if it doesn’t install the August Update and try to reboot itself while you’re trying to update the firmware. Does it still do things like this? Windows 10 was forcibly restarting for updates while people were live streaming games and had Microsoft Office open.)



Every time you update your firmware, any one of a million things can go wrong and leave the computer’s main board (which in a laptop has the CPU, RAM, and SSD soldered in sometimes, so kiss everything goodbye) utterly ruined.



That could be a Windows program (or virus) messing up the update process, Windows itself malfunctioning and freezing the computer before the update goes all the way in, the power going out, etc.



Of course you’re going to play Russian Roulette with your Lenovo laptop three dozen times, right? Right?



And even if it appears to update the UEFI, I have actually lost a motherboard (from Acer) while updating the correct firmware revision, and then had Acer refuse to do anything about it, so I had to find another motherboard that fit the case, and rebuild the entire desktop computer. (Which I’m sure all of you know how to do.)



So if you’re affected by Windows refusing to let you continue until you update the UEFI, it’s safer to just remove Windows and install Linux instead, because Linux doesn’t have fake errors like this.



It’s also worth mentioning that when I started tinkering with Windows 98 as a child and gutting the operating system of Internet Explorer, the Trident engine, the Windows 98 Shell Update (installing the Windows 95 B Shell), Outlook Express, and the several dozen useless components of Windows, using RoM II, I rebooted.



I said, “This is cool! Without all that Internet Explorer junk around, my games run 10% faster!”.



It was like a free graphics card, RAM, CPU, and hard disk update!



Even back then things were, relatively speaking, as bad as they are now, with the bloat.



You had a 4 GB hard disk and here comes Microsoft to spew at least 300 MB of useless trash all over it, you had a PC that came from the factory with 32 MB of RAM, or 64 if you were lucky, uh oh, here’s a bloated shell with IE stuff in it that takes up 11 MB more than it should!



They’ve always considered everything in your PC pretty much theirs to waste. You have an expensive PC? They’re wasting it on things you don’t even want to run.



But today, 25 years later, I say, “Let’s remove all this Windows junk so my games can go wheeeeeeee!”.



But for the adult in you, the average Linux distribution includes tons of Free and Open Source Software (as in freedom and price), including an entire Microsoft-compatible office suite that doesn’t go into “read-only” mode if your subscription to “Microsoft 365” lapses, saying “Pay Up, Chump!”.



Windows 11 treats its users like they’re running some kind of awful browser game with in-app purchases.



It’s not even really an operating system.



And you’re supposed to risk damaging a $1,500 laptop to continue running it because Microsoft is too incompetent to fix bugs?



Recent Techrights' Posts

Open Source Initiative (OSI) Resists Software Freedom, Even by Attacking Its Own
The OSI is compromised
 
Links 28/08/2025: Chatbots Distorting/Fabricating History and Also Driving Suicide
Links for the day
Gemini Links 28/08/2025: Back in Japan and Why "Hacker News" Sucks
Links for the day
A Much-Needed Wake-up Call to Users of Wordpress.com, Blogspot, Substack and All Those Other Outsourced (and Centralised) Platforms
There are several lessons in there
The UEFI 9/11 - Part II - Campaign of Censorship and Defamation Against Critics
In dictatorships, humour serves an important role. It's tragic.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, August 27, 2025
IRC logs for Wednesday, August 27, 2025
Slopwatch: linuxsecurity.com, Slopfarms in Google News, and More
Some readers of ours end up sending us links that are from slopfarms, not realising those are slopfarms
Gemini Links 27/08/2025: Katrina Memories and Google Versus Software Freedom
Links for the day
Links 27/08/2025: Police Against Media Freedom in the UK, Energy-Hungry Countries Targeted by China
Links for the day
Microsoft Windows Fell to All-Time Lows in Egypt This Summer, Vista 11 Adoption Decreases While GNU/Linux Increases
Vista 11 is going down rather than up
Links 27/08/2025: Microsoft Demoralises Staff With Slop Demands, Leaving Mastodon Explained
Links for the day
12 Hours Ago The Register MS Published a Fake (Paid-for) Article, But This One for a Change Did Not Promote a Ponzi Scheme
There are also Free software alternatives, but they don't pay The Register MS for "synthetic" so-called 'journalism'
More People Need to Call Out and Put a Stop to Serial Sloppers
Unless slopfarms are stopped, people will read and share Microsoft propaganda made by chatbots
Gemini Links 27/08/2025: Headphones and Tartarus
Links for the day
Morale at Microsoft is Terrible (Proprietary Plagiarism Machines Have No Future, LLM Slop is a Bubble)
The slop sceptics/critics are going to have lots of "told you so" moments
GNOME "governance issues, staff reduction, etc." amidst Albanian whistleblowing and women trafficking
Notice the connection to Software Freedom Conservancy (SFC) and GNOME
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, August 26, 2025
IRC logs for Tuesday, August 26, 2025
Richard Stallman (RMS) Was Right About "Sideloading" in 1996
We now have computers that treat booting GNU/Linux like an act of "Sideloading"
Panama: Windows Down From 97% "Market Share" to Less Than 30%
In 2009, Windows was measured at 97.24% (compared to 62.32% right now or less than 30% if one also counts Android)
The UEFI 9/11 - Part I - Introduction to Impending Catastrophe (Microsoft Preventing People From Booting Non-Windows Systems)
eight-part series
Why Techrights is Slow Today (Bot Floods)
We don't know if those bots are connected to LLMs (we have not checked), but that is a possibility
Slopwatch: DDoS Slop, LinuxBSDos.com Spam, and Slopfarms in Google News, Including webpronews.com
Among the news we also found fakes, albeit not so much today
Links 26/08/2025: "Ballooning Debt" in France and "Transnational Repression in the UK"
Links for the day
Gemini Links 26/08/2025: Listening to Alcest and Google Doing Evil (Users Installing Software is "Sideloading" and Prohibited)
Links for the day
Links 26/08/2025: DNS Tampering and TikTok Layoffs
Links for the day
Microsoft's Windows "Market Share" Overestimated
Microsoft's income sources are shrinking
We Shall See...
My wife and I are hardly the first victims of Brett Wilson LLP
This New Determination on a Case Echoes the Modus Operandi of Microsoft's Serial Strangler vs Techrights (Its Online Decision/Judgment Says Truth and Public Interest Defend the Publisher)
Noel Anthony Clarke hopefully has enough money left to pay his victims, which include the publishers
Going Offline
There was life before the Net
The Register MS Has Apparently Shut Down Its Office
It is basically a fake address on the face of it
There Are Also Expectations of IBM Layoffs Very Soon With "Narrative Control."
Some of them mention Red Hat and how IBM failed to achieve anything substantial with that acquisition
After at Least Two Rounds of Mass Layoffs in August Microsoft Said to Have "September Layoff Confirmed - Performance Based"
Those "M5 level meetings" sound plausible
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, August 25, 2025
IRC logs for Monday, August 25, 2025