hot take:
Secure boot is nothing more than chains that shackle OEM-ed devices from its users, who are supposed to have full access to their own devices. It only erects barriers to other distros which are not certified by Microsoft, since users are no longer able to boot from them effortlessly. (It is also quite intimidating. Users get warned that they must disable SECURE boot in order to boot from distros they are trying to reach!)
Even if we put aside prejudices against Secure Boot and acknowledge the merit in its technical considerations, its track record is concerning. The numerous vulnerabilities introduced by Secure Boot demonstrate that while it may be sound in theory, its practical implementations have consistently fallen short, making it hard to regard the concept as truly beneficial in practice.
Secure Boot 不过是彻头彻尾的商业产物,它让用户失去了对设备的完整控制,人为地设起了一道壁垒,阻碍用户自由选择他们喜欢的发行版(你将要安装的发行版没有经过我们的认证,因此你必须要关闭“安全”启动才能从这些发行版进行引导和启动!)
即便放下对 Secure Boot 是一种垄断行为的无理指控,试图肯定 Secure Boot 背后的技术考量确实存在道理。历史上数次因 Secure Boot 引入的严重安全风险也在不断地说明就算 Secure Boot 是个好点子,但它从来没被好好地实践过。而一个总是在实践时出现问题的点子从来都不是什么好点子
Secure boot is nothing more than chains that shackle OEM-ed devices from its users, who are supposed to have full access to their own devices. It only erects barriers to other distros which are not certified by Microsoft, since users are no longer able to boot from them effortlessly. (It is also quite intimidating. Users get warned that they must disable SECURE boot in order to boot from distros they are trying to reach!)
Even if we put aside prejudices against Secure Boot and acknowledge the merit in its technical considerations, its track record is concerning. The numerous vulnerabilities introduced by Secure Boot demonstrate that while it may be sound in theory, its practical implementations have consistently fallen short, making it hard to regard the concept as truly beneficial in practice.
Secure Boot 不过是彻头彻尾的商业产物,它让用户失去了对设备的完整控制,人为地设起了一道壁垒,阻碍用户自由选择他们喜欢的发行版(你将要安装的发行版没有经过我们的认证,因此你必须要关闭“安全”启动才能从这些发行版进行引导和启动!)
即便放下对 Secure Boot 是一种垄断行为的无理指控,试图肯定 Secure Boot 背后的技术考量确实存在道理。历史上数次因 Secure Boot 引入的严重安全风险也在不断地说明就算 Secure Boot 是个好点子,但它从来没被好好地实践过。而一个总是在实践时出现问题的点子从来都不是什么好点子
