Repository : http://git.fedorahosted.org/git/?p=docs/uefi-secure-boot-guide.git
On branch : master
commit a6b886d952aa19d10fb78467755e1d1a009e6cdb Author: Josh Bressers josh@bress.net Date: Thu Jan 31 14:01:48 2013 -0600
Add a note about a danger of disabling secure boot.
Signed-off-by: Eric Christensen sparks@redhat.com
en-US/What_is_Secure_Boot.xml | 9 +++++++++ 1 files changed, 9 insertions(+), 0 deletions(-)
diff --git a/en-US/What_is_Secure_Boot.xml b/en-US/What_is_Secure_Boot.xml index b13206e..f04666a 100644 --- a/en-US/What_is_Secure_Boot.xml +++ b/en-US/What_is_Secure_Boot.xml @@ -42,6 +42,15 @@ restricted, but user space malware cannot. This of course doesn't mean Secure Boot isn't useful, just that it currently only serves a single purpose, which is protecting the boot loader. </para> + <note> + <title>Do not disable secure boot</title> + <para> + It is important you do not disable Secure Boot if +your system fails to boot. A plausible attack would be replacing the shim +with something dangerous and hoping a user will disable Secure Boot to +solve their problem. + </para> + </note> </section> </chapter>