trying to fix

2022-01-03 12:41:35 -06:00 · 2022-01-03 12:41:35 -06:00 · e013d7569e
commit e013d7569e
parent fa407dfeb6
22945 changed files with 447936 additions and 0 deletions
--- a/var/elfeed/db/data/c4/c4c4723ab55778ba0e0af4ccfec1016e88090079
+++ b/var/elfeed/db/data/c4/c4c4723ab55778ba0e0af4ccfec1016e88090079
@ -0,0 +1 @@
+<!-- SC_OFF --><div class="md"><p>After seeing a few YT videos and reading the Arch wiki about secure boot, I understand it can be useful to prevent kernel tampering. However it does seem like a lot of effort and by using 3rd party key solutions, it wouldn&#39;t make things any more secure right? If someone tampered with the kernel when booted, it can probably even sign it perfectly fine?</p> <p>Anyway I&#39;m using systemd-boot and the given solutions seems to be a bit mixed either. The most easy way seems to sign your own keys by adding prehooks that run on every kernel upgrade?</p> <p>I would like to use SB to upgrade Windows, but with all those things considered I simple could just run W11 in a VM instead.</p> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/improve-me-coder"> /u/improve-me-coder </a> <br/> <span><a href="https://www.reddit.com/r/archlinux/comments/q8kcet/is_secure_boot_worth_the_effort/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/archlinux/comments/q8kcet/is_secure_boot_worth_the_effort/">[comments]</a></span>
				`@ -0,0 +1 @@`
				<!-- SC_OFF --><div class="md"><p>After seeing a few YT videos and reading the Arch wiki about secure boot, I understand it can be useful to prevent kernel tampering. However it does seem like a lot of effort and by using 3rd party key solutions, it wouldn't make things any more secure right? If someone tampered with the kernel when booted, it can probably even sign it perfectly fine?</p> <p>Anyway I'm using systemd-boot and the given solutions seems to be a bit mixed either. The most easy way seems to sign your own keys by adding prehooks that run on every kernel upgrade?</p> <p>I would like to use SB to upgrade Windows, but with all those things considered I simple could just run W11 in a VM instead.</p> </div><!-- SC_ON --> submitted by <a href="https://www.reddit.com/user/improve-me-coder"> /u/improve-me-coder </a> <br/> <span><a href="https://www.reddit.com/r/archlinux/comments/q8kcet/is_secure_boot_worth_the_effort/">[link]</a></span> <span><a href="https://www.reddit.com/r/archlinux/comments/q8kcet/is_secure_boot_worth_the_effort/">[comments]</a></span>