efi file must be signed, but it can be self-signed) You can see how this is very bad!! A backdoor, which MS put in to secure boot because they decided to not let the user turn it off in certain devices, allows for secure boot to be disabled everywhere! Specific Secure Boot policies, when provisioned, allow for testsigning to be enabled, on any BCD object, including element as well, which allows bootmgr to run what is effectively an unsigned. Some weird animation thing on that site is murdering my phone so here's the text for others:
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |