Slashdot Mirror

← Back to Stories (view on slashdot.org)

Free Software Foundation Campaigning To Stop UEFI SecureBoot

Posted by timothy on from the no-one-will-ever-name-a-child-uefi dept.

hypnosec writes "The Free Software Foundation is on an offensive against restricted boot systems and is busy appealing for donations and pledge in the form of signatures in a bid to stop systems such as the UEFI SecureBoot from being adopted on a large-scale basis and becoming a norm in the future. The FSF, through an appeal on its website, is requesting users to sign a pledge titled 'Stand up for your freedom to install free software' that they won't be purchasing or recommending for purchase any such system that is SecureBoot enabled or some other form of restricted boot techniques. The FSF has managed to receive, as of this writing, over 41,000 signatures. Organizations like the Debian, Edoceo, Zando, Wreathe and many others have also showed their support for the campaign."

13 of 355 comments (clear)

  1. Antitrust in EU? by Anonymous Coward · · Score: 5, Informative

    The secure boot crap could be an antitrust issue.
    German goverment has spoken abit about it
    http://www.h-online.com/open/news/item/German-government-advocates-security-in-the-hands-of-users-1753715.html

  2. UEFI Signature Infrastructure by Microlith · · Score: 5, Insightful

    If anything, the FSF should push to have how UEFI handles its signature database, and who handles signing, fixed so that it isn't so wholly Microsoft centric. You can tell because it puts key acquisition and installation in the hands of the system vendors, and the only one they'll independently acquire with any regularity is Microsoft's. And as a result everyone goes to them for signing.

    If key handling were decentralized and standardized across all vendors, and adding your own key wasn't mutually exclusive with other keys (as it effectively is now,) then it probably wouldn't be such a problem. Hell, if they included a system-specific key installed on each platform and a hardcopy of the key, that would probably eliminate most of the concerns expressed here.

    Unfortunately, doing this would likely require them becoming a promoter ($200,000) and contributing code out the ass to see it happen. As it stands the only OS vendor at that level in the UEFI Foundation is Microsoft. All the Linux vendors are Contributor or lower and can't possibly have a voice as loud as Microsoft. Net result a perfectly good security concept gets twisted into a Microsoft-specific hazard.

  3. Re:Grub? by Ynot_82 · · Score: 5, Insightful

    How isn't this sufficient?

    It's not sufficient, because it doesn't solve the problem.

    The problem is that MS's implementation of secure boot allows them to control what can and cannot boot on a device.
    It is entirely at their discretion.

    This is already in practice with the surface tablets
    See Mathew Garrett's recent blog post
    http://mjg59.dreamwidth.org/21189.html

    As you can see, locking out other OSs is already in place for the Surface tablet, which is unable to boot any other system (even with the boot-loader shims done by RedHat, Ubuntu and the Linux foundation.)

  4. Bread buttered by EmperorOfCanada · · Score: 5, Insightful

    Desktop motherboard manufacturers know that in the past and in the present that following the dictates of Microsoft is how to survive. But those days are mostly over. I doubt any of the MB manufacturers are going to stand up and fart in Microsoft's face and say NO. But I suspect they know the trend is moving away from Microsoft and with the Linux noises that companies like Valve are making that Microsoft will only get weaker. Thus they will probably pretend to put UEFI onto the motherboard but make it really really easy for anyone with the capability to install linux to turn it off. So I suspect that the motherboards will soon come with UEFI enabled by default (maybe) but that you can either go into the bios and turn it off or short a jumper.

    Other options would be to leave a weakness in the system so that it is easily hacked and thus bypassed; this way they can meet the letter of Microsoft's law but not at all the spirit. And of course they don't need to make a hole, they know people will find a hole and they won't bother patching it. But I just don't see the manufacturers coming out and directly attracting Microsoft's rage. Plus companies know that all kinds of businesses will want to put a whole range of products on their systems from oddballs like DOS with many wanting XP, Vista, and Windows 7. It wasn't that long ago that I saw an ATM running OS/2. I suspect the guts of the ATM were newish.

    But in the near term Microsoft is going to ask "Who farted?" and the various manufacturers are going to pretend that they didn't.

    All that said, Microsoft's worst nightmare would be for a company to start releasing Motherboards/Machines with UEFI disabled as a feature and telling the world that smart discerning high-end customers buy systems without UEFI and that the drones buy what the suits at Microsoft tell them. What microsoft seems to forget that while computer nerds running things like Linux are not a significant market share in and of themselves they are who guides, or outright chooses what systems get picked. Minimally how many slashdoter's are involved by their families when they are picking machines. Without starting a religious war about my personal tastes I can say that when people around me are buying a system I give them a fairly narrow range of choices that if they stray from I won't take their "urgent" calls at 10pm when things are going wrong a month later. "Oh your poorly designed laptop that sucks cooling air in only from the bottom overheated when sitting on the sofa and now you need your data pulled from its carcass? How about no." So while people like us probably only represent 1% of the market we probably influence 30+% of the market. So if we don't like UEFI the manufacturers will soon find that we have a bigger vote than simplistic market surveys might otherwise suggest. So even if they totally cave to MS I suspect cracks will appear fairly quickly.

  5. Secure Boot is just a waste and fixes no problem. by VortexCortex · · Score: 5, Interesting

    Let's put on our thinking caps folks. Return Oriented Programing is an exploit engineering technique that uses the existing signed and/or encrypted code to create the exploit code. That means Secure Boot is defenseless to stop this type of exploit. If the application or OS code has mistakes in it then a function pointer on the stack, or in the heap (read/write memory) can be overwritten and be used by exploits via return oriented programming, and SecureBoot won't help one bit -- The code that's running is signed and/or encrypted. So if the Application or OS code isn't secure (which it won't be) then SecureBoot is pointless. What that? It won't be able to infect a boot sector? Well, if you've got malicious code running on your system then there exists an exploit vector that cane simply be re-exploited next time you boot up. See? Pointless.

    Ah, but what if the Application and OS code could be written to be secure against stack smashing and undesired code pointer manipulations? Well then, there wouldn't be any exploit vectors that you needed SecureBoot to protect you against. See? Pointless.

    Well, I say "Pointless", but what I mean is useless from an end user perspective. I don't mean to gloss over the only real use SecureBoot has: To prevent you from installing your own OSs and Applications, and having control over your own computers.

  6. Re:Grub? by Ynot_82 · · Score: 5, Insightful

    and when will it become relevant to you?

    When they push Windows-only "secure boot" on laptops?
    When they push Windows-only "secure boot" on servers?
    When they push Windows-only "secure boot" on desktop machines?

    When, exactly, will this obviously evil and anti-competitive move be of relevance to you?

  7. Re:Grub? by cheesybagel · · Score: 5, Interesting

    What Ubuntu did was very unsatisfactory. You still cannot easily compile your own kernel. What that ex-RedHat guy did was a lot better since you can load anything you want as long as you confirm your choice on boot.

    Here is what RMS should be doing instead of this petition which is going to get nowhere:

    1. Restart work on coreboot
    2. Make coreboot work with Windows and Linux as is
    3. Convince more motherboard manufacturers to support coreboot
    4. Ask Linux users on install if they want to backup their old BIOS and install coreboot as their default BIOS

  8. Re:Grub? by Anonymous Coward · · Score: 5, Funny

    When they put Windows-only "secure boot" on Surfaces I didn't say anything because I didn't own a Surface.
    When they put Windows-only "secure boot" on laptops I didn't say anything because I didn't own a laptop.
    When they push Windows-only "secure boot" on servers I didn't say anything because I didn't own a server.
    When they push Windows-only "secure boot" on desktop machines I didn't say anything because I didn't own a Desktop.
    Boy, am I glad I own an iMac, iPad and iPhone ... um, wait ...

  9. Re:Grub? by Nerdfest · · Score: 5, Insightful

    Someone wanting to try Linux to see what it's like will most definitely see that it's there.

  10. We, the FSF, like Secure Boot by gnujoshua · · Score: 5, Interesting

    This post is a little misleading. We think Secure Boot is OK so long as computer makers implement it in a way that it still allows a user to control his or her own computer. What we don't want computer makers to do is implement UEFI in such a way that a user is unable to sign their own software (e.g. bootloader) AND they are unable to turn Secure Boot off -- we call such an implementation Restricted Boot (because we want to emphasize that it instead of providing security, it exists to restrict a user from controlling his or her own device). We hope that computer makers will choose to implement UEFI in a way that truly does provide security and control, and many are implementing Secure Boot in this way.

    Joshua Gay
    Licensing & Compliance Manager
    Free Software Foundation

  11. Re:Grub? by Anonymous Coward · · Score: 5, Insightful

    This is almost as simple as "write high quality open source drivers for all graphics chips". Let's do it!

  12. Re:Grub? by Bengie · · Score: 5, Insightful

    SecureBoot is a standard that allows the end user to limit their system to only booting signed code. Next thing you'll be complaining about SSL and how it can also limit the end user from working with untrusted sources.

    If you don't like it, disable it. You can also add your own certs. This applies to most motherboards and I can almost guarantee, all servers. Ever work in the real world? IT has A TON of custom boot code that won't work with default SecureBoot. Any hardware manufacturer that targets Servers/Enterprise/Enthusiast, WILL have at least a way to disable SecureBoot and at best a way to manage certs.

    Commonly used tools in IT that WILL break based on your flawed understanding:
    PXE Boot
    Memtest
    NSA Secure Erase Linux Distro
    Bart PE
    Norton Ghost
    Firmware Updates
    Win7
    WinXP

    Any hardware manufacturer that ruined the above would be committing business suicide.

    If IT needs to manage, test, or fix it, SecureBoot will have to be configurable.

  13. Re:Grub? by phantomfive · · Score: 5, Insightful

    Linux seems to have bad relations with BIOS makers.

    It's the other way around. BIOS makers only implement whatever minimal subset of functionality they need to get Windows to boot, and they only test it on Windows. They don't support other systems at all.

    In the past it's been even worse in EFI world. I don't know how UEFI is.

    --
    "First they came for the slanderers and i said nothing."