07.15.12

Gemini version available ♊︎

UEFI Debate Rages on While New Workarounds and Advice Surface

Posted in FSF, Microsoft at 2:35 am by Dr. Roy Schestowitz

Defence

Summary: Routes that are less complicit with Microsoft are noted in light of the anti-competitive UEFI scheme

THE UEFI saga has got booting freedom at stake and within a day or two I will have a chance to speak to Dr. Stallman about it. Canonical did not follow the FSF’s advice, as we noted before. “There’s been plenty of speculation as to Canonical’s rationale,” writes this one pundit. “Meanwhile, reports of murmurings on the topic among Debian developers have kept imaginations active, as has the arrival of the first retail PCs to support UEFI Secure Boot. Bottom line? No proverbial “fat lady” is going to be singing around here anytime soon. On Slashdot and beyond, the flames of controversy just keep getting higher.”

The Debian position was mentioned here before [1, 2, 3] and it intersects with the attempt by Debian to fully satisfy the FSF. Brian from Linux Today fame says that “[t]he Debian Project, developers of the Debian GNU/Linux distribution, are making a concerted effort to get within the good graces of the Free Software Foundation.

“The Debian position was mentioned here before and it intersects with the attempt by Debian to fully satisfy the FSF.”“Debian Project Leader Stefano Zacchiroli proposed the plan over the US holiday last week, specifically stating that project members “should either get Debian in FSF free-distros list, or document (from our [point of view]) why Debian is not there.”

The FSFE's advice was something along the same lines that Steven J. Vaughan-Nichols mentioned in his latest coverage where he speaks to a GNU/Linux-friendly vendor. To quote: “Will the advent of Windows 8 really mean that Microsoft’s secure boot lock-in will be on every PC? Cathy Malmrose, CEO of the Linux PC vendor ZaReason doesn’t think it should.

“Malmrose told me “With UEFI’s Secure Boot around the corner, we are hoping to raise awareness that [GNU/]Linux distributors don’t need to sign with Microsoft [or use their secure boot. Computers that are rooted with open bootloader are available. That’s what we ship.”

“ZaReason’s mission isn’t just to make free/open hardware: it’s to ensure that there is always a free-as-in-free-speech option for your computing needs.”
      –Cory Doctorow
“She knows, “UEFI’s Secure Boot is implemented at OEM (originial equipment manufacturer) level, all new PCs purchased (with the intent of loading your favorite distro) will have Secure Boot.” This cripples them as far as Malmrose is concerned.

““Yes, you can disable it. But ‘disabling’ something that’s ‘secure’ makes you bad.” Besides as Malmose told me, “the keystroke(s) needed to get [GNU/]Linux to run on machines post-2012 will be simple at first, becoming increasingly complex at a non-shocking rate. It’s a monumental shift at OEM level.” Malmrose fears that this will desktop [GNU/]Linux “too difficult to new users, [and this will cause] slow death by suffocation” for [GNU/]Linux.

“So what can [GNU/]Linux users do instead? Malmrose thinks we can avoid a “Greek Tragedy “ by recognizing that Linux needs hardware vendors, like ZaReason, “who can keep things open, [who keep our collective foot in the door at the factories.” Malmrose insists that it isn’t about her particular company. “There is 0 profit.* If we ever did have profit, we would donate to support the EFF, FSF, Software Freedom Conservancy, LinuxFests, GNOME Foundation, various conferences, the works. Hopefully someday there will be but most months it’s a stretch to make payroll.”

“So why take this stance? Cory Doctorow, in describing ZaReason, put it well, “ZaReason’s mission isn’t just to make free/open hardware: it’s to ensure that there is always a free-as-in-free-speech option for your computing needs.”

“She’s right. We need to support [GNU/]Linux-friendly hardware vendors. There is no law that says computers with UEFI must use Secure Boot. Yes, Microsoft may want it that way, but if we support companies that offer open systems we can still get open hardware to go with our open-source software.

“The myth that it contributes to security will be spread again and there will be no defence against secure boot being mandated by governments.”
      –Sam Varghese
Another writer who has criticised Red Hat’s and Ubuntu’s (or Canonical’s) decision right from the start notes that “[b]y going along with Microsoft, and not even bothering to join together and raise a stink, the rest of the computer industry has created a situation where Microsoft can surface again a couple of years down the track and lobby for making secure boot mandatory for all devices. After all, the company can argue that secure boot has been widely accepted – this will be true – and nobody has objected. Everyone has adapted and started to use it.

“The myth that it contributes to security will be spread again and there will be no defence against secure boot being mandated by governments. Is there any guarantee that the cost of a key to implement secure boot will cost $US99 at that stage? It will turn out to be a nice little earner.”

This analysis from Sam Varghese hits many of the important points — the same points stressed by Techrights right from the get-go. The above will prove handy for future reference.

Share in other sites/networks: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Reddit
  • email

Decor ᶃ Gemini Space

Below is a Web proxy. We recommend getting a Gemini client/browser.

Black/white/grey bullet button This post is also available in Gemini over at this address (requires a Gemini client/browser to open).

Decor ✐ Cross-references

Black/white/grey bullet button Pages that cross-reference this one, if any exist, are listed below or will be listed below over time.

Decor ▢ Respond and Discuss

Black/white/grey bullet button If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

DecorWhat Else is New


  1. A Parade of Fake News About the UPC Does Not Change the General Consensus or the Simple Facts

    European Patents (EPs) from the EPO are granted in violation of the EPC; Courts are now targeted by António Campinos and the minions he associates with (mostly parasitic litigation firms and monopolists), for they want puppets for “judges” and for invalid patents to be magically rendered “valid” and “enforceable”



  2. Welcome to 2022: Intentional Lies Are 'Benefits' and 'Alternative Facts'

    A crooks-run EPO, together with the patent litigation cabal that we’ve dubbed ‘Team UPC’ (it has nothing to do with science or with innovation), is spreading tons of misinformation; the lies are designed to make the law-breaking seem OK, knowing that Benoît Battistelli and António Campinos are practically above the law, so perjury as well as gross violations of the EPC and constitutions won’t scare them (prosecution as deterrence just isn’t there, which is another inherent problem with the UPC)



  3. From Software Eating the World to the Pentagon Eating All the Software

    “Software is eating the world,” according to Marc Andreessen (co-founder of Netscape), but the Empire Strikes Back (not the movie, the actual empire) by hijacking all code by proxy, via Microsoft, just as it grabbed a lot of the world’s communications via Skype, bypassing the world's many national telecoms; coders need to fight back rather than participate in racist (imperial) shams such as GitHub



  4. Links 22/1/2022: Skrooge 2.27.0 and Ray-Tracing Stuff

    Links for the day



  5. IRC Proceedings: Friday, January 21, 2022

    IRC logs for Friday, January 21, 2022



  6. Peak Code — Part II: Lost Source

    "Debian and Mozilla played along. They were made “Yeoman Freeholders” in return for rewriting their charters to “work closely with the new Ministry in the interests of all stakeholders” – or some-such vacuous spout… because no one remembers… after that it started."



  7. Links 22/1/2022: Ubuntu MATE 21.10 for GPD Pocket 3, MINISFORUM Preloads GNU/Linux

    Links for the day



  8. Computer Users Should be Operators, But Instead They're Being Operated by Vendors and Governments

    Computers have been turned into hostile black boxes (unlike Blackbox) that distrust the person who purchased them; moreover, from a legislative point of view, encryption (i.e. computer security) is perceived and treated by governments like a threat instead of something imperative — a necessity for society’s empowerment (privacy is about control and people in positions of unjust power want total and complete control)



  9. Peak Code — Part I: Before the Wars

    Article/series by Dr. Andy Farnell: "in the period between 1960 and 2060 people had mistaken what they called "The Internet" for a communications system, when it had in fact been an Ideal and a Battleground all along - the site of the 100 years info-war."



  10. Links 21/1/2022: RISC-V Development Board and Rust 1.58.1

    Links for the day



  11. IRC Proceedings: Thursday, January 20, 2022

    IRC logs for Thursday, January 20, 2022



  12. Gemini Lets You Control the Presentation Layer to Suit Your Own Needs

    In Gemini (or the Web as seen through Gemini clients such as Kristall) the user comes first; it's not sites/capsules that tell the user how pages are presented/rendered, as they decide only on structural/semantic aspects



  13. The Future of Techrights

    Futures are difficult to predict, but our general vision for the years ahead revolves around more community involvement and less (none or decreased) reliance on third parties, especially monopolistic corporations, mostly because they oppress the population via the network and via electronic devices



  14. [Meme] UPC for CJEU

    When you do illegal things and knowingly break the law to get started with a “legal” system you know it’ll end up in tears… or the CJEU



  15. Links 20/1/2022: 'Pluton' Pushback and Red Hat Satellite 6.10.2

    Links for the day



  16. The Web is a Corporate Misinformation/Disinformation Platform, Biased Against Communities, Facts, and Science

    Misinformation/disinformation in so-called 'news' sites is a pandemic which spreads; in the process, the founder of GNU/Linux gets defamed and GNU/Linux itself is described as the problem, not the solution to the actual problems



  17. Links 20/1/2022: McKinsey Openwashing and Stable Kernels

    Links for the day



  18. IRC Proceedings: Wednesday, January 19, 2022

    IRC logs for Wednesday, January 19, 2022



  19. Links 20/1/2022: Linuxfx 11.1 WxDesktop 11.0.3 and FreeIPMI 1.6.9 Released

    Links for the day



  20. Links 19/1/2022: XWayland 22.1 RC1 and OnlyOffice 7.0 Release

    Links for the day



  21. Links 19/1/2022: ArchLabs 2022.01.18 and KDE's 15-Minute Bug Initiative

    Links for the day



  22. When Twitter Protects Abusers and Abuse (and Twitter's Sponsors)

    Twitter is an out-of-control censorship machine and it should be treated accordingly even by those who merely "read" or "follow" Twitter accounts; Twitter is a filter, not a news/media platform or even means of communication



  23. IRC Proceedings: Tuesday, January 18, 2022

    IRC logs for Tuesday, January 18, 2022



  24. Links 19/1/2022: Wine 7.x Era Begins and Istio 1.12.2 is Out

    Links for the day



  25. Another Video IBM Does Not Want You to Watch

    It seems very much possible that IBM (or someone close to IBM) is trying to purge me from Twitter, so let’s examine what they may be trying to distract from. As we put it 2 years ago, "Watson" is a lot more offensive than those supposedly offensive words IBM is working to purge; think about those hundreds of Red Hat workers who are black and were never told about ethnic purges of blacks facilitated by IBM (their new boss).



  26. What IBM Does Not Want You to Watch

    Let's 'Streisand it'...



  27. Good News, Bad News (and Back to Normal)

    When many services are reliant on the integrity of a single, very tiny MicroSD card you're only moments away from 2 days of intensive labour (recovery, investigation, migration, and further coding); we've learned our lessons and took advantage of this incident to upgrade the operating system, double the storage space, even improve the code slightly (for compatibility with newer systems)



  28. Someone Is Very Desperate to Knock My Account Off Twitter

    Many reports against me — some successful — are putting my free speech (and factual statements) at risk



  29. Links 18/1/2022: Deepin 20.4 and Qubes OS 4.1.0 RC4

    Links for the day



  30. Links 18/1/2022: GNOME 42 Alpha and KStars 3.5.7

    Links for the day


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts