Comment by dist-epoch

Comment by dist-epoch 6 months ago

1 reply

> sign every kernel/initrd update

If you believe that the those SecureBoot private keys were leaked, why not also believe that the linux kernel signing keys were also leaked and that you are downloading a backdoored one.

jakogut 6 months ago

It's quite easy to generate your own signing keys which you use to sign a kernel you've built yourself.