Bonum Certa Men Certa

Matthew Garrett’s Twitter Log Shows Exactly Why We Need to Give Security Theater the Boot

Guest post by Ryan, reprinted with permission from the original

Matthew Garrett put Security Theater Boot support into the Linux kernel some time ago, and he got a Free Software Treachery Award for it from the joke that the FSF has turned into.



"Bootkits just really aren’t much of a problem on desktop GNU/Linux..."Now on his Twitter log, he shows us some of the mess he has caused.



See, if you have “Secure” Boot turned on, and you shouldn’t, but if you do, you’ll see the Linux kernel complain that it is disabling hibernation support, and while that alone really isn’t a huge problem because as long as you can suspend and resume (which still is far from given these days even though we were lied to and told uEFI would be better, over ten years ago), it really shows where we’re at now.



Bootkits just really aren’t much of a problem on desktop GNU/Linux, and I doubt they were ever a real problem on much of anything involving a competently-administered GNU/Linux systems, except maybe embedded hardware, where they can lock it down all they want, but those people don’t care about security. If some asshole at Netgear can make a cable modem based on a Linux 2.6 kernel, you’d better believe they’ll do it. After all, you probably won’t know if your modem is compromised.



In reality, I strongly suspect that even on the Windows side, Security Theater Boot was implemented to make it harder to crack Windows using a boot activation exploit. While it’s true that Microsoft laid off the locking people out of their computer over activation failures, for now, the truth is that after Windows 11 requires Security Theater Boot, OEMs may just make it mandatory and stick you with it, and then Microsoft could decide at any time to stop signing shim, and there’s no way to boot GNU/Linux on a PC anymore. The minute they think they can, they will. The only reason you could turn it off up until now was that they had legacy software and hardware in support, but that’s going away.



"But in exchange for false security which doesn’t gain us anything, we’re forced to deal with no hibernation..."It’s part of the “Up yours, buy new stuff!” theme of Windows 11 where lots of expensive computers won’t run it because they’re 36 months old. (But switching to GNU/Linux on these is probably an option for you.).



But in exchange for false security which doesn’t gain us anything, we’re forced to deal with no hibernation, an entire “kernel lockdown” (unauthorized access… by you, the owner of the machine) patch set whose entire goal was to remove the user’s control over kernel settings from userspace (which Microsoft didn’t even publicly demand in exchange for signing the shim bootloader after Red Hat and Canonical bent the knee instead of filing lawsuits), and has left us unable to extend the kernel that runs our own machines with out-of-tree drivers that we feel like running.



Since people can delete tweets and make them unavailable for critical comment, here’s what this sanctimonious asshole has been up to lately.



UEFI troll tweet



UEFI troll tweet

UEFI broken
Yes, that FAMOUS GNU/Linux bootloader, “Windows Bootloader”. There it is, under P:\EFI\Microsoft\Boot\en-us. I’d recognize it anywhere!



He guesses and gets it into the kernel, and you get to wonder if your OS will work later. He also exaggerates, misdirects, and misleads. (see above) But that’s what carnival barkers do.



That is sort of what happens when you have a failed biologist implementing Security Theater from Microsoft. Getting money from them by proxy to do it with.



The company that brought you Windows.



The operating system that goes “Herr! Derr! Here you go, have some files dumped on this here flash drive because the letter belonged to your portable hard disk earlier! Here’s some Microsoft Defender, don’tcha know!?”.



Anyway, I really do wish I had all day to read his Twitter blogs where he pontificates about how the police who protect him from the rioters are evil murderers. But I’ve thought about him too much for one day just for this post.



Anyway, enjoy Windows 11. I’m sure it’ll be great.

Recent Techrights' Posts

The Peril of the Electronic Frontier Foundation (EFF) Illuminates the Dangers of Founders Leaving or Being Forced Out
Whatever you may think they stand for, you risk being fixated on what they originally were and perhaps what their Web sites still say
Difficult Times at Soylent News
We hope that Soylent News will recover from this
Crimes of the EPO Are Costing Everybody in Europe
Since virtually everyone in Europe is a user of software (almost nobody is a forest dweller like in countries near the equator), this impacts everybody
OSI's Blog is Still 100% Microsoft-Sponsored Attacks on Free/Open Source Software
OSI is a compromised, defunct body. It exists to serve the enemies of its original mission.
Red Hat is Suing to Protect From Patent Trolls
Why doesn't Red Hat (IBM) also lobby to eliminate all software patents once and for all?
Free Software Foundation (FSF) Probably Has No Choice But to Shut Down Its Office
Net Income -$686,366
Modern spyware and the problems of "Discord newspeak"
The history of modern instant messaging...
 
Links 10/09/2024: Big Brother Awards Germany 2024 and Telling the Unemployed to 'Drive Uber'
Links for the day
Gemini Links 10/09/2024: DUIs and Useless Analytics
Links for the day
New Article in redhat.com: How to Install Microsoft Windows
That's just about as bad as that sounds...
A Decade Ago Things Became So Bad at the European Patent Office (EPO) That Staff Jumped Out the Window During Working Hours
Colleagues saw the suicide; the EPO's response wasn't to tackle the causes but to bolt down the windows (like factories in China installing controversial 'suicide nets')
COVID-19 Ushered in Attacks on Human Rights and Things They Said They Had Introduced Temporarily Are Still in Effect/Operation Today
COVID-19 changed a lot of things
Quitting Academia When Its IT Systems Are Dominated by Clowns Who Outsource
It seems like a common trajectory
Why the Free Software Foundation (FSF) Owning or Renting Office Space Mattered
"In the long term, the FSF needs to own its future office space, but then the deadly risk is that the property ownership becomes the end goal rather than software freedom."
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, September 09, 2024
IRC logs for Monday, September 09, 2024
Nearly Two Years After Quitting My Job
My colleagues and I were bullied by managers (grievance complaint got filed) who didn't even know what "Linux" was
Terms of Service (TOS) Under Scrutiny - Part XVIII - In Conclusion
Many activities can be done offline without having to sign anything
Links 09/09/2024: More Trash Balloons and Collapse of Real Estate Market in China
Links for the day
Gemini Links 09/09/2024: ROOPHLOCH and More
Links for the day
Wrong Priorities at IBM
Lavish spendings on a 16-year contract for the most expensive place while firing tens of thousands of staff
Links 09/09/2024: LLMs Manipulated to Lie, More Corruption Found in COVID-19 Contracts
Links for the day
The Best Interface is Outdoors, It's Nature!
Not everything should be replaced by or emulated by digital devices
Terms of Service (TOS) Under Scrutiny - Part XVII - A Personal Perspective
The bottom line is, it's possible to reduce (albeit not entirely eliminate) how many things one signs, presses "OK" on and so on
[Video] Richard Stallman's New Talk in Germany Covers What Free Software Means, Why LLMs are "Bullshit", and Lots More (Web3 Summit 2024 Berlin)
Closing Keynote Day 3 - Dr. Richard Stallman - Web3 Summit 2024 Berlin
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, September 08, 2024
IRC logs for Sunday, September 08, 2024
Always Taking Things Up a Notch
Nothing will stop us
[Meme] EPO Keeps Masking Its Corruption With "Diversity and Inclusion" (Hiring the Wife of a Friend of Someone Who Bribed His Way Into EPO Presidency)
chain of nepotism
Very Large EPO Applicants Now Threaten a Boycott of the EPO (the EPO Management is Trying to Bribe Them to Change Their Plans/Minds While Hiding It From Staff)
If corruption prevails to this extent, it will have severe international effect
Gemini Links 09/09/2024: Gemini Application Developer Guide and ROOPHLOCH 2024
Links for the day
Links 09/09/2024: 'Dieselgate' Criminal Trial Starts Late, Mass Layoffs at Volkswagen
Links for the da
On Losing the Job at Google After Talking About Committing Acts of Violence Against Colleagues
We still have a highly toxic element trying to enter and fracture our community
[Meme] Patent Monopolies as Bribes at the European Patent Office (EPO)
bloggers who report crime are being threatened with lawsuits by several law firms hired by the EPO to cover up crimes
New EPO Letter Expressing Concerns About EPO Violating Its Charter, Clearly Violating Rules (Possibly Bribing Siemens With Monopolies) and Granting Loads of Fake Patents to Make More Money
Why does the EU tolerate the EPO's crimes and how much longer will this go on for?
NIST is Threatening to Sue You With Patents on Mathematics (That Aren't Even Legal in the First Place) If They Don't Like You
They're asserting monopolies on mathematics
[Meme] EPO 'Hush Money' to Companies That Point Out EPO Breaks the Rules
A bribed doorman: "We have patent examiners, but if you say the right words, we'll bypass them for you"
Gemini Links 08/09/2024: WebDAV, OpenBSD, Pocket Reform, and More
Links for the day
Links 08/09/2024: Super Typhoon and Lots of Climate Journalism
Links for the day
Certificate Authorities (CAs) Are Serving the Authorities, Not You
The centralised CAs "model" is not working
Rage in the Propaganda Machine
There has never been a better time to quit social control media
The Free Software Movement Must Not Assume That Truth and Science Always Win
Sometimes the bad people and the liars get ahead
Peter Eckersley and 'Afterlife'
It's better to look after one's health at present than to pursue all sorts of perceived 'insurance' policies
Terms of Service (TOS) Under Scrutiny - Part XVI - When Radio is No Longer "Read-Only" (Listening Mode) Because Someone Listens and Sells Your Data
Who would want to put up with this?
Terms of Service (TOS) Under Scrutiny - Part XV - "Zoom's terms of service change sparks worries over AI uses" (and More)
Then they wonder why users get all grumpy?
redhat.com is Promoting Revisionism and Lies Regarding the Origin of the Term "Open Source"
debunked many times before
Software Patents Against GNU/Linux Again
Patent extortion against OpenShift and Red Hat Enterprise Linux
IBM is Cutting - Almost in Half - Its Office Space in Austin, So Expect Many Layoffs (RAs)
IBM reduces office space by 187,00 square feet or 37%
IRC Proceedings: Saturday, September 07, 2024
IRC logs for Saturday, September 07, 2024
Over at Tux Machines...
GNU/Linux news for the past day