Please make it a well-documented and supported option for a power user to:
* Generate their own key during an install * Save the key and reboot to add it to UEFI * Boot back to the install, take the key and compile their own custom shim loader
CLI tools could even be wrapped in a pretty GUI ("Do you need to make a key?", "Already have your key and added it? Click here to continue", etc)
So a power user could get all the potential security benefits of Secure Boot without having any ties to Microsoft.
Power management, mobile and firmware developer on Linux. Security developer at Aurora. Ex-biologist. mjg59 on Twitter. Content here should not be interpreted as the opinion of my employer. Also on Mastodon.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
Power User Installs
Date: 2012-05-31 09:07 pm (UTC)* Generate their own key during an install
* Save the key and reboot to add it to UEFI
* Boot back to the install, take the key and compile their own custom shim loader
CLI tools could even be wrapped in a pretty GUI ("Do you need to make a key?", "Already have your key and added it? Click here to continue", etc)
So a power user could get all the potential security benefits of Secure Boot without having any ties to Microsoft.