Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Responds To Linux Concerns Over Windows 8 and UEFI Secure Boot

Posted by Soulskill on from the putting-out-fires dept.

CSHARP123 writes "A few days ago, Red Hat employee Matthew Garrett speculated that OEM machines shipping with copies of Windows 8 may lock out support for Linux installations. Garrett highlighted Microsoft's new Secure Build OEM requirements for Windows 8 systems. Microsoft chose to directly respond to confusion surrounding Windows 8's use of the UEFI Secure Boot feature on Thursday. Tony Mangefeste of Microsoft's Ecosystem team said, 'Microsoft supports OEMs having the flexibility to decide who manages security certificates and how to allow customers to import and manage those certificates, and manage secured boot. We believe it is important to support this flexibility to the OEMs and to allow our customers to decide how they want to manage their systems.'"

5 of 389 comments (clear)

  1. translation by drinkypoo · · Score: 5, Insightful

    "Microsoft will attempt to use our gorilla status to force OEMs to lock out non-Windows operating systems, but ultimately, it's their decision as to whether they want to make it possible for you to run what you want on their computer, or whether they want us to not bomb them into the stone age and build a parking lot on the smoking ruins of their company."

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  2. I see what you did there... by DontBlameCanada · · Score: 5, Insightful

    Nutshell summary after actually reading the TFA:
            "You can launch any operating system you like, but if you want to benefit from UEFI secure boot protection, you can only launch Windows 8."

    From their screenshots and commentary, there doesn't appear to be any opportunity to add a new "trusted" O/S images to their database. So even signing your secure Red Hat Enterprise Linux won't help you. If you want to use it, you need to turn the bootloader security checks off. The obvious implication, if you want MBR protection you must run Windows 8. Anything else opens the door.

    Yup, Red Hat's take on the situation seems the most accurate.

  3. Re:Translation by GordonBX · · Score: 5, Insightful

    Considering the reaction here; the OEMs that would do this would get so much bad PR, that a significant number of customers would flee to some other manufacturer.

    Of course you're right.

    That's exactly what has happened with mobile phones. (cough).

  4. Re:Translation by JamesP · · Score: 5, Insightful

    No, the problem is:

    BIOS vendors are complete idiots

    "EFI" vendors are the same guys

    It's a crapfest of proprietary extensions, NIH syndrome and a million ways to change monitor brightness. And of course it's only tested on the latest Windows version, well, because...

    Of course, Intel is to blame with the whole ACPI mess and looseness. Typical engineer mentality a standard that standardizes nothing.

    Really, Intel and AMD should join forces in this: Make 'to change monitor brightness write a value from 0 (darker) to 0xff (brighter) to register 0xABC PERIOD'. "but but but", "I SAID PERIOD".

    --
    how long until /. fixes commenting on Chrome?
  5. Re:Translation by Anthony+Mouse · · Score: 5, Insightful

    Maybe one day you will realize that every field protects itself. Doctors and lawyers restrict their trade. Regulators and government employees have direct access to government cash.

    Economists call this behavior "rent seeking" and it is considered inefficient and undesirable. The idea that Microsoft should not be criticized for engaging in it is highly misguided.