Note it's possible to use grub2 configuration directives to lock down privileged operations (such as access to the shell). The 'superusers' and 'password*' directives can be used to require user auth before certain operations. It even looks like it's possible to completely disable these privileged operations by setting 'superusers' to an empty string. For more information see:
https://www.gnu.org/software/grub/manual/grub/grub.html#Security -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1798384 Title: Grub allows to load unsigned kernel even BIOS enabled secure boot To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/grub2/+bug/1798384/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
