On Mon, 11 May 2020 at 09:32, Steve <st...@easy2boot.com> wrote: > > A Secure Boot UEFI BIOS can only boot signed UEFI boot files. > If it could boot to any other type of boot file then it wouldn't be secure! > If you disable Secure Boot, then you can UEFI-boot to unsigned UEFI boot > files.
Yes, but if I use the Kaspersky UEFI shim, then I can "chainload" unsigned code. > > Legacy\MBR BIOSes can only boot via the old Legacy BIOS methods. This is not 100% true. Using Clover EFI bootloader (or others, like rEFInd) it is possible to boot UEFI software on legacy systems (that only have legacy BIOS).