On Thu, Oct 20, 2011 at 4:58 AM, Thomas Bendler <[email protected]> wrote: > > Secure boot is simply a design mistake. Instead of giving everyone the > opportunity to upload own certificates to the certificate store (like > browsers do), they implemented a hard coded list of certificates so that > only a few systems benefit from secure boot (the general idea of secure boot > is fine). This is the problem, the root of trust is moved to the vendors > instead of the owner. Unfortunately a lot of commercial interests will most > likely push it to the market as it is, so the only hope will be to be able > to switch it off.
The only intelligent post in this totally OT thread...
