GNOME To Warn Users If Secure Boot Disabled, Preparing Other Firmware Security H...
source link: https://www.phoronix.com/news/GNOME-Secure-Boot-Warning
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
We Rely On Your Support: This site is primarily supported by advertisements. We do our best to ensure only clean, relevant ads are shown, when any nasty ads are detected, we work to remove them ASAP. If you would like to view the site without ads while still supporting our work, . You can also consider a tip via PayPal.
GNOME To Warn Users If Secure Boot Disabled, Preparing Other Firmware Security Help
GNOME and Red Hat developers are working on integrating firmware security tips and recommendations into the desktop for warning users about platform/firmware security issues like if UEFI Secure Boot is disabled and other possible avenues their system could be exploited.
Within the GNOME Control Center there is a firmware security area being worked on to show whether UEFI Secure Boot is active, various security protection details like the TPM status, whether Intel BootGuard is present and enabled, IOMMU protection state, and more. Ultimately those involved hope to allow triggering actions in some areas for fixing these issues when found to be in a less than ideal state.
The Plymouth boot splash screen is also preparing a warning image that would be displayed if Secure Boot is not enabled. That open merge request from Red Hat argues, "Secure boot is used against several security threats when malware tries to infect the firmware of the system. Users may inadvertently disable or software may intentionally disable the secure boot. Consequently, the system is running on an insecure platform with incorrect configuration. If Plymouth could offer a warning to the user, the user could reboot and reconfigure their system or asks for help immediately."
Building off that, Richard Hughes of Red Hat has blogged about work being done with Fwupd for allowing emulated host profiles. This emulated support is for helping to test firmware security states in arbitrary configurations for testing of the proposed GNOME Control Center additions and other work.
Recommend
-
19
PSPTool PSPTool is a Swiss Army knife for dealing with firmware of the AMD Secure Processor (formerly known as Platform Security Processor or PSP ). It locates AMD f...
-
23
On a computer when when an application dereferences a NULL pointer or tries to access kernel memory we can catch it pretty easily thanks to the features provided by the
-
53
A few months ago, Dell asked if I’d like to co-mentor an intern over the summer. The task was to create a GTK “ power user ” application for managing firmware. The idea being that someone like Dell support could ask the...
-
5
WhatsApp accounts can be disabled without the users consent Search It’s a bit of a process, but unfortunately, a fairly gaping hole (via
-
3
Snapchat Shares New Data on How Its Users Are Preparing for a Return To Normal, Pre-COVID Life Published June 23, 2021 By
-
6
Tell HN: AT&T disabled phone numbers and accounts of users using the old phones
-
6
Accessibility overlays are not the answer for sites looking to provide a more inclusive experience for online users with disabilities.
-
8
AMD patches botched firmware that disabled cores on Ryzen 5 7600X AMD was quick to fix the odd mistake By
-
8
Why disabled users joined the Reddit blackout / The site and the official app are so inaccessible that a sighted person had to flip the switch to make r/blind go dark.By
-
6
How big tech embraced disabled users by Jules Bonnard and Joseph Boyle with Glenn Chapman in San Francisco...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK