secure boot and kernel module signing test?
Blibbet
blibbet at gmail.com
Thu Jul 16 14:56:02 UTC 2015
Hi,
I recently got a comment from a UEFI security researcher:
"Ubuntu appears to have shim and do secure boot but not enforce kernel
module signing."
The person in question had just made a liveboot USB for an EFI training
class with ubuntu so you can run some UEFI security tools on with secure
boot and no signatures.
Sorry, I don't have any more information. One sentence I think I am
reading between the lines was that Fedora did things differently than
Ubuntu, perhaps it was enforcing kernel module signing?
Perhaps it would be useful to add a new test that checks for this?
Thanks,
Lee
RSS: http://firmwaresecurity.com/feed
More information about the fwts-devel
mailing list