Bonum Certa Men Certa
Coming Soon: Richard Stallman Interview for 30th GNU Anniversary | Another Financial 'Collapse' is Coming, We Need to Facilitate Banking Whistleblowers

Former Novell Staff Still Pushing the Linux Foundation Into Restricted Boot Territory, Ignoring the Real Threat (Back Doors)

Greg Kroah-Hartman
Photo by Sebastian Oliva



Summary: Back doors in code, embedded in blobs, and even shoehorned into encryption is the overlooked security threat, which gets pushed aside in favour of phantom threats which Microsoft 'sells' through former Novell staff (i.e. funded by Microsoft)

A MONTH or two ago we mostly ignored exaggerated (sexed-up) reports about something called "Hand of Thief". When there's a Windows security threat the press does not call out Windows, but when it relates to GNU/Linux then tabloids like ZDNet scream from the rooftops. This thing called "Hand of Thief" is basically a malicious program which GNU/Linux users need to install themselves in order for it to do malicious things. It is not a virus, it does not spread, and it hardly even uses social engineering to get itself installed. We cited some reports which stress these facts and now comes a belated one too [1]. LynuxWorks is now offering some "Linux rootkit detector" [2] as if rootkits on GNU/Linux are a common issue. In a sense, since the Linux Foundation seems to insist on helping UEFI restricted boot, we are led to the belief that bootkits are a common threat to Linux. As the Linux Foundation's site put it, as in the words of the employee it acquired from Novell:



Now that The Linux Foundation is a member of the UEFI.org group, I’ve been working on the procedures for how to boot a self-signed Linux kernel on a platform so that you do not have to rely on any external signing authority.


Greg K-H has been working on all sorts of other kernel-level projects that help Microsoft. He did this while being paid by Novell, which was in turn being given money by Microsoft. That's the power of money. Other former Novell employees also helped promote UEFI restricted boot, as we showed before. Rogue influence by Novell in the Linux Foundation is a subject we have written about for half a decade, showing numerous examples.

The bigger security issue right now might be back doors, which might also exist in Linux, even in encryption form [3] (giving away passwords over the network for example), so hard-to-crack passwords [4] might not be enough. Microsoft's and Sony's network compromises sure reveal the massive financial effects of system intrusions, so this subject should not be taken lightly.

UEFI restricted boot is actually a security threat, not a security solution, especially when a signature is provided and managed by some rogue company in the United States -- one which has been secretly in bed with the NSA. With UEFI restricted boot, hardware can be bricked remotely. In a way, UEFI restricted boot deserves the name "unsecure boot". In some devices it can block the user from accessing his/her own computer. Nobody should promote such treacherous computing.

Related/contextual items from the news:



  1. Hand of Thief, Not
    Linux's biggest vulnerability is the software that users install with full "superuser" privileges. If you just install applications from your distro's official repository, that's not a problem. But if you download software from dubious web sites, or if you add a mysterious repository to your package manager, you're opening yourself up for an infection. Always, always make sure you know what software you are installing, why you are installing it, and where it's from.


  2. Linux rootkit detector adds hardware punch to security scanning
    LynuxWorks is stepping up the battle with the release of the first hardware-based rootkit detection system powered by the LynxSecure separation kernel. Called the RDS5201, it combats and detects stealthy advanced persistent threats. Built on the LynxSecure 5.2 separation kernel and hypervisor, this small form factor appliance has been designed to offer a unique detection capability that complements traditional security mechanisms as they try to protect against the growing number and complexity of cyber threats.


  3. RSA warns developers not to use RSA products
    In today's news of the weird, RSA (a division of EMC) has recommended that developers desist from using the (allegedly) 'backdoored' Dual_EC_DRBG random number generator -- which happens to be the default in RSA's BSafe cryptographic toolkit. Youch.
  4. How-to make hard-to-crack passwords you can easily remember


  5. Australian who boasted of hacking to plead not guilty to charges stemming from raid
    Dylan Wheeler, who claimed in February to have breached Microsoft's and Sony's networks, has not been charged with hacking




Coming Soon: Richard Stallman Interview for 30th GNU Anniversary | Another Financial 'Collapse' is Coming, We Need to Facilitate Banking Whistleblowers

Recent Techrights' Posts

At Least 23 Days of EPO Strikes
Why does the media not deem this newsworthy?
The Energy Crisis Will Likely Carry on and Kill the Slop Industry
To the slop charlatans, "this is the end, my friend..."
SLAPP Censorship - Part 44 Out of 200: Garrett and Graveley 'Copypasta' Sunday (Copy-Paste, Add One Word, Change 'T' to 't')
recycling text
 
Tens of Thousands of Days of Strike at Europe's Second-Largest Institution, Nobody in the Media Has Mentioned It
Since the "extraordinary general meeting"
SPAM That Mentions "AI" 16 Times (in "Security" Clothing, But Selling Back Doors), a Paid Placement in The Register MS
This will doom the reputation of the publication, The Register MS
Links 13/04/2026: Impersonating ProPublica Reporter, More Attacks on the Press (Occupation With Little and No Compensation, Only High Risk)
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, April 12, 2026
IRC logs for Sunday, April 12, 2026
Gemini Links 13/04/2026: Freiburg, GUIX, and Announcing Satellite Antenna (SA)
Links for the day
Links 12/04/2026: Climate, Conflict, and Change in Hungaristan
Links for the day
Gemini Links 12/04/2026: Passports, Science, and Lateral Thinking with Withered Technology
Links for the day
EPO on Strike This Past Friday (All Major Sites), Massive Strike Continues Tomorrow
strikes have trebled, not trembled, compared to last month (in Munich)
Links 12/04/2026: SLAPPs Against Thai Journalists Who Expose High-Level Corruption, Maharlika (Philippines/Marcos) Threatens to Lawyer Up Against GAFAM to Demand Censorship of Critics
Links for the day
Racism and IBM
at IBM and Red Hat people who are hard-working and proficient are now being fired based on their ethnicity and nationality (or either)
When Cruelty is the Point (American SLAPPs in London, the United Kingdom, Europe)
Consider the following
Resistance to SLAPPs in the UK: Coalition Growing
thankfully awareness of SLAPPs in the UK is improving
Links 12/04/2026: Mass Rebellion Against Slop, UK Crackdown on Nudification by Slop
Links for the day
Gemini Links 12/04/2026: "Objective Truth" and Flutter
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, April 11, 2026
IRC logs for Saturday, April 11, 2026
Red Hat: We Kill People, But Please Obey the CoC or We'll Banish You
From Red Hat's own site
SLAPP Censorship - Part 43 Out of 200: Garrett and Graveley Particulars of Claims Almost Identical and 5RB Needs to Investigate Its Barristers (Its Reputation is at Stake)
Scrolling up and down in social control media
Gemini Links 11/04/2026: Floppy Disks on Linux and Junix
Links for the day
statCounter: Microsoft Windows Falls to All-Time Low This Month in France
French government agencies are ordered to move to GNU/Linux
Disgruntled IBMers Explain Why IBM is Circling Down a Death Spiral, Gerstner (Recently Deceased) Destroyed IBM in April 1993, and IBM Now Weaponises PIPs to Attack Its Own
We've just checked if anyone has covered mass layoffs at IBM Red Hat. Nope.
The Central Staff Committee of the EPO Explains Late March Meetings Coinciding With Commencement of the Non-Stop Strikes at Europe's Second-Largest Institution
The fifth meeting report and sixth meeting report show some of the concerns leading up to the mass strikes
Gemini Links 11/04/2026: Critique of Delta Chat and Why Trying to Emulate Centralised, Addictive "Facebook" is Misguided
Links for the day
Links 11/04/2026: Scam Altman’s Trust Issues at OpenAI and EFF Quitting Twitter
Links for the day
Links 11/04/2026: Twitter Presence Considered Harmful to News Sites, "The Future of Everything is Lies"
Links for the day
thenextweb.com (TNW) Appears to Have Become a Slopfarm, Fake Articles About France and GNU/Linux Flood the Web
If you're not against slop, you're part of the problem
Almost 3 Days Later, Still Zero Press Coverage (Except One Publisher) About Mass Layoffs at Red Hat, Almost 500 People Laid Off (Over 400 for Sure)
"A document posted by FOSS advocacy site Techrights appears to be that memo and explains that Red Hat has devised a location strategy under which it has identified key sites for prioritized hiring and strategic workforce investment."
The Register MS, About 6 Million Pounds in Debt, Helps Promote Microsoft's Gartner Group and Prop Up the Ponzi Scheme of Slop Plagiarism, Fake Article Mentions "AI" About 20 Times
What was now known as The Register UK not only works against the interests of the UK; it works for charlatans and frauds
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, April 10, 2026
IRC logs for Friday, April 10, 2026