On Thu, Oct 20, 2011 at 4:58 AM, Thomas Bendler
<[log in to unmask]> wrote:
>
> Secure boot is simply a design mistake. Instead of giving everyone the
> opportunity to upload own certificates to the certificate store (like
> browsers do), they implemented a hard coded list of certificates so that
> only a few systems benefit from secure boot (the general idea of secure boot
> is fine). This is the problem, the root of trust is moved to the vendors
> instead of the owner. Unfortunately a lot of commercial interests will most
> likely push it to the market as it is, so the only hope will be to be able
> to switch it off.
The only intelligent post in this totally OT thread...