Groups | Search | Server Info | Login | Register
Groups > comp.os.linux.misc > #37460
| From | "Carlos E.R." <robin_listas@es.invalid> |
|---|---|
| Newsgroups | comp.os.linux.misc |
| Subject | Re: uefi malware--threat to all? |
| Date | 2023-03-07 09:07 +0100 |
| Message-ID | <vv7jdjx518.ln2@Telcontar.valinor> (permalink) |
| References | <tu5afp$qf3$1@dont-email.me> <tu5h5u$j3i$3@dont-email.me> <tu60tv$49m8$1@dont-email.me> <tu630a$4hb3$1@dont-email.me> |
On 2023-03-07 02:11, Bobbie Sellers wrote: > On 3/6/23 16:36, pH wrote: >> On 2023-03-06, Marco Moock <mo01@posteo.de> wrote: >>> Am 06.03.2023 um 18:13:14 Uhr schrieb pH: >>> >>>> https://arstechnica.com/information-technology/2023/03/unkillable-uefi-malware-bypassing-secure-boot-enabled-by-unpatchable-windows-flaw/ >>>> >>>> I'm not up on my acronyms, but I've seen uefi mentioned here at times. >>>> >>>> I'm assuming since this runs first, Linux is therefore not immune to >>>> this malware. >>>> >>>> Would a workaround be enabling legacy boot and running an older distro >>>> until...well, I'll wait for any comments from you smarter guys out >>>> there. >>> >>> No, classic BIOS boot (called CSM/legacy when UEFI firmware is being >>> used) doesn't contain SecureBoot at all. If a software can change the >>> boot loader, it can infect every system. >>> >>> Also attacks on the firmware directly are still possible, just like a >>> normal BIOS/UEFI firmware update. >>> >> >> OKay, thanks for the comments. >> >> I'm gathering that secure boot is actually a *good* thing and not just >> some >> microsoft introduction. >> >> Since I install so seldom I'm really not up on these things. >> >> pH > Secure Boot is not a good thing but a Microsoft attempt to satisfy > it's corporate customers and to lock out the possibility of > using Linux on a Windows machine. There are further attempts to > foreclose the possibility of using a secure OS on machines installed > with Windows. In corporate circumstances it locks down the systems > against unauthorized intrusions by any but the assigned IP technicians. > Just to point out than many corporate users will learn enough to turn > it off but it does provide a little security. > > When installing Linux to a machine with the Secure Boot enabled > most of us disable it. Some few Linux systems have paid the toll to > Microsoft and gotten a key which will satisfy the Secure Boot system. > When using Windows and any Linux system on the same hardware you must > be aware that Windows without warnings sends new kernels to the system > and when that happens the previous boot setting are over-written messing > up the Linux boot as well. You will need a Live Linux Distribution to > fix the broken boot syste. Hasn't ever happened to me. I only heard some histories, long ago, of some vendors, not Microsoft, selling machines with incorrect firmware that would not allow different installs. Same as there are (were?) motherboards that are designed incompatible with Linux. This is just paranoia. -- Cheers, Carlos.
Back to comp.os.linux.misc | Previous | Next — Previous in thread | Next in thread | Find similar
uefi malware--threat to all? pH <wNOSPAMp@gmail.org> - 2023-03-06 18:13 +0000
Re: uefi malware--threat to all? Richard Kettlewell <invalid@invalid.invalid> - 2023-03-06 19:14 +0000
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-06 21:07 +0100
Re: uefi malware--threat to all? pH <wNOSPAMp@gmail.org> - 2023-03-07 00:36 +0000
Re: uefi malware--threat to all? "28B.I874" <28B.I874@noabzba.net> - 2023-03-06 20:10 -0500
Re: uefi malware--threat to all? Bobbie Sellers <bliss@mouse-potato.com> - 2023-03-06 17:11 -0800
Re: uefi malware--threat to all? "28B.I874" <28B.I874@noabzba.net> - 2023-03-07 00:46 -0500
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-07 08:42 +0100
Re: uefi malware--threat to all? Bobbie Sellers <bliss@mouse-potato.com> - 2023-03-07 08:01 -0800
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-07 16:49 +0000
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-07 19:08 +0100
Re: uefi malware--threat to all? Bobbie Sellers <bliss@mouse-potato.com> - 2023-03-07 21:33 -0800
Re: uefi malware--threat to all? "28B.A864" <28B.A864@noqbgba.net> - 2023-03-16 01:24 -0400
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-16 09:59 +0000
Re: uefi malware--threat to all? TJ <TJ@noneofyour.business> - 2023-03-16 15:18 -0400
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-16 21:05 +0100
Re: uefi malware--threat to all? Robert Heller <heller@deepsoft.com> - 2023-03-16 21:06 +0000
Re: uefi malware--threat to all? "29V.X746" <29V.X746@noqb1u.net> - 2023-03-16 22:43 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-17 11:20 +0100
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-17 11:56 +0000
Re: uefi malware--threat to all? Dan Espen <dan1espen@gmail.com> - 2023-03-17 15:00 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-17 22:57 +0100
Re: uefi malware--threat to all? "29V.X746" <29V.X746@noqb1u.net> - 2023-03-17 22:03 -0400
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-18 09:55 +0000
Re: uefi malware--threat to all? "29V.X746" <29V.X746@noqb1u.net> - 2023-03-17 21:55 -0400
Re: uefi malware--threat to all? Robert Riches <spamtrap42@jacob21819.net> - 2023-03-19 04:13 +0000
Re: uefi malware--threat to all? "29V.X746" <29V.X746@noqb1u.net> - 2023-03-19 02:38 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-19 11:40 +0100
Re: uefi malware--threat to all? Bobbie Sellers <bliss@mouse-potato.com> - 2023-03-19 13:12 -0700
Re: uefi malware--threat to all? "29V.X746" <29V.X746@noqb1u.net> - 2023-03-20 01:05 -0400
Re: uefi malware--threat to all? Robert Riches <spamtrap42@jacob21819.net> - 2023-03-21 03:09 +0000
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-20 20:27 +0000
Re: uefi malware--threat to all? "29V.X746" <29V.X746@noqb1u.net> - 2023-03-20 21:48 -0400
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-17 11:47 +0000
Re: uefi malware--threat to all? TJ <TJ@noneofyour.business> - 2023-03-17 12:36 -0400
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-17 11:46 +0000
Re: uefi malware--threat to all? TJ <TJ@noneofyour.business> - 2023-03-17 12:44 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-16 22:14 +0100
Re: uefi malware--threat to all? TJ <TJ@noneofyour.business> - 2023-03-17 13:09 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-17 23:35 +0100
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-17 11:39 +0000
Re: uefi malware--threat to all? Roger Blake <rogblake@iname.invalid> - 2023-03-21 02:03 +0000
Re: uefi malware--threat to all? "29V.X746" <29V.X746@noqb1u.net> - 2023-03-21 01:13 -0400
Re: uefi malware--threat to all? Richard Kettlewell <invalid@invalid.invalid> - 2023-03-21 09:00 +0000
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-21 11:52 +0100
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-21 11:52 +0100
Re: uefi malware--threat to all? TJ <TJ@noneofyour.business> - 2023-03-21 10:30 -0400
Re: uefi malware--threat to all? Robert Heller <heller@deepsoft.com> - 2023-03-21 15:43 +0000
Re: uefi malware--threat to all? TJ <TJ@noneofyour.business> - 2023-03-21 12:29 -0400
Re: uefi malware--threat to all? Robert Heller <heller@deepsoft.com> - 2023-03-21 17:46 +0000
Re: uefi malware--threat to all? Fritz Wuehler <fritz@spamexpire-202303.rodent.frell.theremailer.net> - 2023-03-23 23:44 +0100
Re: uefi malware--threat to all? jeshgrca <jeshgrca@gmail.com> - 2023-03-23 21:56 -0500
Re: uefi malware--threat to all? Fritz Wuehler <fritz@spamexpire-202303.rodent.frell.theremailer.net> - 2023-03-25 01:58 +0100
Re: uefi malware--threat to all? "27E.G756" <27E.G756@noq24u.net> - 2023-03-26 20:26 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-27 02:37 +0200
Re: uefi malware--threat to all? "27E.G756" <27E.G756@noq24u.net> - 2023-03-26 23:11 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-27 11:45 +0200
Re: uefi malware--threat to all? "27E.G756" <27E.G756@noq24u.net> - 2023-03-28 01:09 -0400
Re: uefi malware--threat to all? Charlie Gibbs <cgibbs@kltpzyxm.invalid> - 2023-03-28 01:26 +0000
Re: uefi malware--threat to all? "27E.G756" <27E.G756@noq24u.net> - 2023-03-28 01:16 -0400
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-21 08:28 +0100
Re: uefi malware--threat to all? TJ <TJ@noneofyour.business> - 2023-03-21 10:22 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-21 15:54 +0100
Re: uefi malware--threat to all? Charlie Gibbs <cgibbs@kltpzyxm.invalid> - 2023-03-21 18:25 +0000
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-21 21:20 +0100
Re: uefi malware--threat to all? "27E.G756" <27E.G756@noq24u.net> - 2023-03-26 23:25 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-27 11:47 +0200
Re: uefi malware--threat to all? "27E.G756" <27E.G756@noq24u.net> - 2023-03-28 23:01 -0400
Re: uefi malware--threat to all? Computer Nerd Kev <not@telling.you.invalid> - 2023-03-29 16:43 +1000
Re: uefi malware--threat to all? "22T.R732" <22TR732@noq24u.net> - 2023-03-30 21:41 -0400
Re: uefi malware--threat to all? TJ <TJ@noneofyour.business> - 2023-03-21 10:46 -0400
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-07 09:07 +0100
Re: uefi malware--threat to all? "David W. Hodgins" <dwhodgins@nomail.afraid.org> - 2023-03-07 13:00 -0500
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-07 19:09 +0100
Re: uefi malware--threat to all? "David W. Hodgins" <dwhodgins@nomail.afraid.org> - 2023-03-07 14:56 -0500
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-07 19:09 +0100
Re: uefi malware--threat to all? "28B.I874" <28B.I874@noabzba.net> - 2023-03-07 21:39 -0500
Re: uefi malware--threat to all? "David W. Hodgins" <dwhodgins@nomail.afraid.org> - 2023-03-07 22:35 -0500
Re: uefi malware--threat to all? "28B.I874" <28B.I874@noabzba.net> - 2023-03-08 01:29 -0500
Re: uefi malware--threat to all? "David W. Hodgins" <dwhodgins@nomail.afraid.org> - 2023-03-08 01:48 -0500
Re: uefi malware--threat to all? "28C.I874" <28C.I874@noabgba.net> - 2023-03-08 20:35 -0500
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-08 07:57 +0000
Re: uefi malware--threat to all? Richard Kettlewell <invalid@invalid.invalid> - 2023-03-08 08:59 +0000
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-08 10:15 +0000
Re: uefi malware--threat to all? Richard Kettlewell <invalid@invalid.invalid> - 2023-03-08 15:14 +0000
Re: uefi malware--threat to all? Robert Heller <heller@deepsoft.com> - 2023-03-08 16:06 +0000
Re: uefi malware--threat to all? Rich <rich@example.invalid> - 2023-03-08 16:59 +0000
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-08 17:55 +0000
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-08 17:59 +0000
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-08 20:33 +0100
Re: uefi malware--threat to all? Robert Heller <heller@deepsoft.com> - 2023-03-08 22:35 +0000
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-21 08:49 +0100
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-07 08:40 +0100
Re: uefi malware--threat to all? "Andrei Z." <no-email@invalid.invalid> - 2023-03-07 18:11 +0300
Re: uefi malware--threat to all? pH <wNOSPAMp@gmail.org> - 2023-03-07 20:44 +0000
Re: uefi malware--threat to all? "David W. Hodgins" <dwhodgins@nomail.afraid.org> - 2023-03-07 16:32 -0500
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-21 08:27 +0100
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-07 21:38 +0000
Re: uefi malware--threat to all? Bobbie Sellers <bliss@mouse-potato.com> - 2023-03-07 21:38 -0800
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-08 12:00 +0100
Re: uefi malware--threat to all? The Natural Philosopher <tnp@invalid.invalid> - 2023-03-08 11:06 +0000
Re: uefi malware--threat to all? Marco Moock <mo01@posteo.de> - 2023-03-08 12:50 +0100
Re: uefi malware--threat to all? "Carlos E.R." <robin_listas@es.invalid> - 2023-03-08 13:20 +0100
csiph-web