Re: [GIT PULL] Load keys from signed PE binaries
From: ownssh
Date: Wed Feb 27 2013 - 04:39:54 EST
David Howells <dhowells <at> redhat.com> writes:
>
>
> Florian Weimer <fw <at> deneb.enyo.de> wrote:
>
> > Seriously, folks, can we go back one step and discuss what problem you
> > are trying to solve? Is it about allowing third-party kernel modules
> > in an environment which does not allow unsigned ring 0 code execution?
>
> Let me try and lay things out:
>
> (1) Like it or not, the reality is that machines exist that have UEFI secure
I think, redhat should have their own root key to sign binary files.
Bootloader of install media can be sign by MS certificates, but only use to add
the redhat root key to UEFI database before install.
It will solve many problems like MS blacklist the keys although redhat said MS
wont do that forever.
And, even you do the all things of A-G, it still wont safe because many
vulnerabilities can let the attacker enter ring0 only use to exploit the exist
signed kernel module or kernel itself.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/