Am 23.10.23 um 12:17 schrieb sympathischerwal:
Hi,I am running secure boot with my own keys. I signed the efi binary myself with my own keys and put it to the efi partition. On a systemd-boot upgrade, the postinst overwrites these files, which made my bootable system unbootable.
You could install a dpkg and/or apt hook which does the signing automatically after a package update.
See e.g. the needrestart package for how to use such a hook.
OpenPGP_signature.asc
Description: OpenPGP digital signature
