On Sun, Jun 12, 2016 at 06:54:20AM +0200, Arnt Karlsen wrote:
> ..another new(?) step towards Debian systemd:
> linux-image-4.6.0-1[-rt]-amd-signed, with MSTF keys... :
> https://packages.debian.org/sid/linux-image-4.6.0-1-rt-amd64-signed
> https://wiki.debian.org/SecureBoot
> https://burtness.wordpress.com/2014/02/08/secure-boot-with-debian-testing/
Eh? How exactly is this related to systemd?
Yeah, Treacherous Computing kernels are a new (for Linux) peril that needs
to be avoided at all costs, but there's no connection to the other peril.
Such kernels disable a lot of functionality you could do as root before,
block loading of non-Tivoized modules, kexec and so on but they don't stop
you from running a modular init inside that padded jail. Until systemd gets
some DRM components, that is.
--
An imaginary friend squared is a real enemy.