Mailinglist Archive: opensuse (924 mails)

< Previous Next >
Re: [opensuse] Re: UEFI
On Wed, Oct 24, 2012 at 4:39 PM, Greg Freemyer <greg.freemyer@xxxxxxxxx> wrote:
The SUSE Secure Boot extension module is itself extensible. It
creates a small database to securely hold private keys. There is in
turn a mechanism provided to update that private key database. Red
Hat has already said they like the sounds of that and will likely use
the same solution. (After all the SUSE module code is opensource (I
assume) so they can add it to their own boot CDs etc..)

I very much meant "public" keys in the above.

The keys themselves are public, but you as the hardware owner will
have to approve keys being added to public key database and therefore
ensure you are only adding public keys for entities you trust.

Greg
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >