Chris Murphy wrote:
If you want to take the risk of acquiring a rootkit that can permanently take control of your firmware, that is up to you. It should not be a distribution recommendation to subject users to such bad advice.
And the "good advice" would be to accept that your computer will only run operating systems approved by Microsoft and to accept a security model that prevents basic functionality such as hibernation, third-party kernel modules, etc.?
And for the record, my computer's UEFI firmware is so old that "Secure Boot" cannot even be enabled at all, even if I wanted to.
Kevin Kofler