On Wed, 2018-02-28 at 00:03 -0500, taii...@gmx.com wrote: The first part of your post is correct. But in the interest of avoiding misinformation I gotta correct the record on this paragraph.
> SystemD systems take minutes to boot even without the bogus "start/stop > job running for *thing*" whereas devuan takes 15 seconds, it isn't > better in any way but the so called experts of the world clamor for it > and insist your thoughts on the matter don't matter - the same people > who think that a non-owner controlled MS "secure" boot is just fine > because oh hey a MS signed grub comes with RHEL. SystemD only takes unusual time to boot if something is wrong. For example I had a misbehaving USB memory card reader that stalled. Otherwise Fedora boots faster than the machine POSTs. Of course my other machine (a slower laptop) running Devuan also boots faster than it POSTs. The big reason we were pitched systemd stopped mattering about the time everyone moved to booting from ssd. But of course, as you noted, that wasn't the reason at all. Second, Microsoft is actually doing the industry a favor by hosting the signing authority for UEFI. Windows doesn't even sign with those keys, system makers preload an entirely different one for Windows. Others were offered an opportunity to step up and be the official UEFI signing authority, including leading entities in the FOSS world; they all looked at the effort and expense and declined the honor. While we should always be wary where Microsoft, Google or Apple are involved in a piece of critical infrastructure, to date they have played it straight and signed boot loaders for everyone who wants to play the secure boot game. Considering the effort to support secure boot for a distribution, the $100 fee is not a serious burden. Also keep in mind that motherboards properly implementing the secure boot spec do permit changing out the keys, it is just enough hassle that distros, probably rightly, believe that if they don't just get signed by the preloaded keys few would ever use secure mode.
signature.asc
Description: This is a digitally signed message part
_______________________________________________ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
