From owner-freebsd-questions@FreeBSD.ORG  Wed Jun  6 07:32:13 2012
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id E371E1065741
	for <freebsd-questions@FreeBSD.org>;
	Wed,  6 Jun 2012 07:32:13 +0000 (UTC)
	(envelope-from matthew@FreeBSD.org)
Received: from smtp.infracaninophile.co.uk (smtp6.infracaninophile.co.uk
	[IPv6:2001:8b0:151:1:3cd3:cd67:fafa:3d78])
	by mx1.freebsd.org (Postfix) with ESMTP id 6CBB68FC1A
	for <freebsd-questions@FreeBSD.org>;
	Wed,  6 Jun 2012 07:32:13 +0000 (UTC)
Received: from seedling.black-earth.co.uk (seedling.black-earth.co.uk
	[81.187.76.163]) (authenticated bits=0)
	by smtp.infracaninophile.co.uk (8.14.5/8.14.5) with ESMTP id
	q567W8W5028261
	(version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO);
	Wed, 6 Jun 2012 08:32:09 +0100 (BST)
	(envelope-from matthew@FreeBSD.org)
X-DKIM: OpenDKIM Filter v2.5.2 smtp.infracaninophile.co.uk q567W8W5028261
Authentication-Results: smtp.infracaninophile.co.uk/q567W8W5028261;
	dkim=none (no signature); dkim-adsp=none
Message-ID: <4FCF0772.8000609@FreeBSD.org>
Date: Wed, 06 Jun 2012 08:32:02 +0100
From: Matthew Seaman <matthew@FreeBSD.org>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6;
	rv:12.0) Gecko/20120428 Thunderbird/12.0.1
MIME-Version: 1.0
To: FreeBSD <freebsd-questions@FreeBSD.org>
References: <CADy1Ce7MihpmMowc265+S_RKorMO3KEKsCgr=pdnjg2jzq-dYQ@mail.gmail.com>
	<20120605203717.5663bdf7.freebsd@edvax.de>
	<Pine.GSO.4.64.1206051653120.5642@nber6>
	<20120605181055.4af65fdb@scorpio>
In-Reply-To: <20120605181055.4af65fdb@scorpio>
X-Enigmail-Version: 1.4.1
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature";
	boundary="------------enigBF5E2C979C77396F49AE282C"
X-Virus-Scanned: clamav-milter 0.97.4 at lucid-nonsense.infracaninophile.co.uk
X-Virus-Status: Clean
X-Spam-Status: No, score=-2.6 required=5.0 tests=ALL_TRUSTED,AWL,BAYES_00
	autolearn=ham version=3.3.2
X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on
	lucid-nonsense.infracaninophile.co.uk
Cc: Jerry <jerry@seibercom.net>
Subject: Re: Is this something we (as consumers of FreeBSD) need to be aware
 of?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Jun 2012 07:32:14 -0000

This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enigBF5E2C979C77396F49AE282C
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

On 05/06/2012 23:10, Jerry wrote:
> I thought this URL <http://mjg59.dreamwidth.org/12368.html> also shown
> above, answered that question.

Signing bootloaders and kernels etc. seems superficially like a good
idea to me.  However, instant reaction is that this is definitely *not*
something that Microsoft should be in charge of.  Some neutral[*] body
without any commercial interests should do that job, and
bootloader/kernel signing should be freely available.

On deeper thought though, the whole idea appears completely unworkable.
 It means that you will not be able to compile your own kernel or
drivers unless you have access to a signing key.  As building your own
is pretty fundamental to the FreeBSD project, the logical consequence is
that FreeBSD source should come with a signing key for anyone to use.

Which completely abrogates the whole point of signing
bootloaders/kernels in the first place: anyone wishing to create malware
would be able to sign whatever they want using such a key.  It's
DRM-level stupidity all over again.

My conclusion: boycott products, manufacturers and/or OSes that
participate in this scheme.  FreeBSD alone won't make any real
difference to manufacturers, but I hope there is still enough of the
original spirit of freedom within the Linux camp, and perhaps from
Google/android to make an impact.

I'm pretty sure there can be a way of whitelisting bootloaders and so
forth to help prevent low-level malware, but this isn't it.

	Cheers,

	Matthew

[*] I suggest ICANN might be the right sort of organization to fulfil
this role.

--=20
Dr Matthew J Seaman MA, D.Phil.
PGP: http://www.infracaninophile.co.uk/pgpkey



--------------enigBF5E2C979C77396F49AE282C
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.16 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk/PB3gACgkQ8Mjk52CukIx9LgCbBmNtDg1YqRwO+oa46m4gSmQa
ca4An3YfDY/vqC5q64TnUIPPyP9yA2vW
=7TiR
-----END PGP SIGNATURE-----

--------------enigBF5E2C979C77396F49AE282C--