Hi Konstantin, can you please share with us your knowledge how to do this properly ?
>From what i know and understood, first i have to sign shim rpm with M$ certificate, then build final shim with previous signed shim bit this time with "our" certificate, am i right ? 2015-09-11 13:43 GMT+02:00 Konstantin Vlasov <[email protected]>: > Hi, Tomasz. > > For that you'll have to sign shim with Microsoft. It contains the built-in > certificate for your key (which will be considered trusted), and therefore > you cannot use existing shims from another vendor, you need to recompile it > to include the correct certificate. > > > > > > 2015-09-11 11:44 GMT+02:00 Bernhard Rosenkraenzer <[email protected]>: > Btw, what use is signing this stuff? I don't presume we have access to a > generally accepted signing key? > ttyl > bero > > There are people which do not know how to disable secure boot which by > default is enabled. > So basically those people who burned OMDV iso image simply gave up. > > I think we can sign efi images with our own key with use of shim. > > > > > > > *-- Bye. With best regards, > Konstantin Vlasov.* >
_______________________________________________ OM-Cooker mailing list [email protected] http://ml.openmandriva.org/listinfo.cgi/om-cooker-openmandriva.org
