Torvalds Opposes Tying UEFI Secure Boot to Kernel Lockdown Mode

An anonymous reader quotes Phoronix: The kernel lockdown feature further restricts access to the kernel by user-space with what can be accessed or modified... Pairing that with UEFI SecureBoot unconditionally is meeting some resistance by Linus Torvalds. The goal of kernel lockdown, which Linus Torvalds doesn't have a problem with at all, comes down to "prevent both direct and indirect access to a running kernel image, attempting to protect against unauthorised modification of the kernel image and to prevent access to security and cryptographic data located in kernel memory, whilst still permitting driver modules to be loaded." But what has the Linux kernel creator upset with are developers trying to pair this unconditionally with UEFI SecureBoot. Linus describes Secure Boot as being "pushed in your face by people with an agenda." But his real problem is that Secure Boot would then imply Kernel Lockdown mode... "Tying these things magically together IS A BAD IDEA."

Still expensive here in Australia

[jonwil]

I wish I could afford to upgrade from my current GTX 750 to something better (mostly so I can use the Fallout 4 HD texture pack :) but all the cards that are suitable still cost more than all the bits I bought for my most recent upgrade combined (Skylake Core i5 CPU, Gigabyte motherboard, 8GB RAM, case, PSU)