Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://t3n.social/@t3n" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>t3n</span></a></span> nicht wirklich ungewiss:</p><p><a href="https://infosec.space/tags/BestCase" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BestCase</span></a>: Leute lassen sich nicht von <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> verarschen, werweigern sivh <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> und schauen uaf <a href="https://endof10.org" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">endof10.org</span><span class="invisible"></span></a> nach Alternativen.</p><p>Wacheinlichstes Szenario: Tausende Tonnen 100% vermeidbarer <a href="https://infosec.space/tags/eWaste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eWaste</span></a> wird generiert aber die allermeisten System kommen billig in den Gebrauchtmarkt.</p><p><a href="https://infosec.space/tags/WorstCase" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WorstCase</span></a>: Tausende Tonnen 100% vermeidbarer <a href="https://infosec.space/tags/eWaste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eWaste</span></a> wird generiert!</p>
dice.camp is one of the many independent Mastodon servers you can use to participate in the fediverse.
A Mastodon server for RPG folks to hang out and talk. Not owned by a billionaire.
Administered by:
Server stats:
1.5Kactive users
dice.camp: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.2
#CensorBoot
2 posts · 1 participant · 0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://myside-yourside.net/@StarkRG" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>StarkRG</span></a></span> I agree and I do the same.</p><ul><li>It's just gotten so bad that I know companies are literally willing to pay <a href="https://infosec.space/tags/IdiotTax" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IdiotTax</span></a> and trash perfectly fine hardware because <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> like <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a> can't do <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> and/or <em>8 GB RAM are not enough</em> if you want to use more than 2 messengers at the time and still have like a ticketing system, wiki, softphone and eMail client open (aka. <a href="https://infosec.space/tags/TechSupport" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechSupport</span></a>)…</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@LaF0rge" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>LaF0rge</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@sysmocom" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>sysmocom</span></a></span> granted, I do trust the GSMA more than Beijing, but that's more due to the fact that conflicting desires if GSMA members tend to be harder to steer.</p><ul><li>Similarly GAFAMs conflicting ideas prevented them from enshittifying Linux.</li></ul><p>Still, I think that end users and device integrators should have full control over the certificates and root of trust, including the ability to add alternative Root-CAs and even removing GSMA's Root-CA (similar to how <em>"Secure Boot"</em> should've been done instead of <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a>!) </p><ul><li>Whether it would be a wise decision to yeet the GSMA cert is a different story, but given what I know in terms of <em>"security"</em> I'd certainly not trust <a href="https://infosec.space/tags/Bundesdruckerei" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Bundesdruckerei</span></a> and it's subsidiaries to be competent.</li></ul><p>Certainly being able to exercise full control would make a lot of <a href="https://infosec.space/tags/osmocom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>osmocom</span></a>'s development easier.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://friendica.a-zwenkau.de/profile/franky" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>franky</span></a></span> <span class="h-card" translate="no"><a href="https://bonn.social/@ulrichkelber" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ulrichkelber</span></a></span> <span class="h-card" translate="no"><a href="https://sueden.social/@kontrollierterWahnwitz" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>kontrollierterWahnwitz</span></a></span> es heißt <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a>, denn <a href="https://infosec.space/tags/HoldenKeyBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HoldenKeyBoot</span></a> macht <em>"<a href="https://infosec.space/tags/SecureBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureBoot</span></a>"</em> unfixable unsicher!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@mrgrumpymonkey" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mrgrumpymonkey</span></a></span> it is.</p><p>One can repartition Windows installations on the fly whilst running (and even then there are tools like <a href="https://infosec.space/tags/Wubi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Wubi</span></a> that made it easy to setup <a href="https://infosec.space/tags/dualboot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dualboot</span></a> <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> & <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a>.</p><ul><li>ISOLINUX does allow for <em>"load image into RAM and boot"</em> setups. I literally use that on <span class="h-card" translate="no"><a href="https://infosec.space/@OS1337" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>OS1337</span></a></span> because no system that can boot it will have > 16 MB RAM anyway ( 8 MB is the hard limit for bare linux kernel) so merely making Windows' bootloader to chainload <a href="https://infosec.space/tags/isolinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>isolinux</span></a> to load that image in RAM and yeet it isn't out of the question.</li></ul><p>I just have neither a <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> machine nor time and spoons to make such a tool, much less to basically create even said <em><a href="https://infosec.space/tags/ProofOfConcept" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProofOfConcept</span></a> "<a href="https://infosec.space/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a>"</em>…</p><ul><li>But thanks to <a href="https://infosec.space/tags/GoldenKeyBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GoldenKeyBoot</span></a>, <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> is unfixably insecure!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@mrgrumpymonkey" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mrgrumpymonkey</span></a></span> better even if you can build a <a href="https://infosec.space/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a> that automagically installs <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> over a <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a>'ed <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@Cheatha" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Cheatha</span></a></span> <em>nodds in agreement</em></p><p>Keep the envoirment safe, ditch <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> & <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a>!</p><p><a href="https://enof10.org" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">enof10.org</span><span class="invisible"></span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@itsfoss" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>itsfoss</span></a></span> <em>nodds in agreement</em> the amount of <a href="https://infosec.space/tags/eWaste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eWaste</span></a> <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> creates is s absurd, it'll make hee <a href="https://infosec.space/tags/EU" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EU</span></a> converting to <a href="https://infosec.space/tags/IEC60906_1" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IEC60906_1</span></a> look like envoirmentally responsible by comparison. </p><ul><li>OFC <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>EUCommission</span></a></span> didn't do that citing 700.000t of <a href="https://infosec.space/tags/eWaste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eWaste</span></a> as argument against it.</li></ul><p>I wounder how many millions of PCs get replaced for no good reason because Microsofts's new <a href="https://infosec.space/tags/Govware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Govware</span></a> requires <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a>! </p><p><a href="https://en.wikipedia.org/wiki/IEC_60906-1" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">en.wikipedia.org/wiki/IEC_6090</span><span class="invisible">6-1</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://blob.cat/users/Jain" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Jain</span></a></span> <span class="h-card" translate="no"><a href="https://brotka.st/users/kaia" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>kaia</span></a></span> +9001%</p><p>Liegt eher an <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a>!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://eupolicy.social/@jmaris" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>jmaris</span></a></span> <span class="h-card" translate="no"><a href="https://floss.social/@kde" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>kde</span></a></span> I think getting rid of <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> is the correct approach.</p><ul><li><a href="https://infosec.space/tags/EndOf10" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EndOf10</span></a> should also mark the end of <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a> and a ban of <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> for creating thousands of tons of 100% avoidable <a href="https://infosec.space/tags/eWaste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eWaste</span></a> due to <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a>.</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mk.moth.zone/@eri" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>eri</span></a></span> worse even is the <a href="https://infosec.space/tags/EoL" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EoL</span></a> of <a href="https://infosec.space/tags/Winfows10" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Winfows10</span></a> and <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> mandating <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> for <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a>, thus generating.thousands of tons of 100% avoidable <a href="https://infosec.space/tags/eWaste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eWaste</span></a> in return!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://m.ai6yr.org/@ai6yr" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ai6yr</span></a></span> and guess what: <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> caused this issue by mandating <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> via <a href="https://infosec.space/tags/TPM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TPM</span></a> 2.0 for no valid reason.</p><ul><li>This <em>is</em> an <a href="https://infosec.space/tags/EnvoirmentalCrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EnvoirmentalCrime</span></a> and they should be forced to undo the <em>harm caused</em>!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mk.absturztau.be/@Eyedust" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Eyedust</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.space/@topher" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>topher</span></a></span> <em>exactly that</em> is my main gripe.</p><p>The reason the <a href="https://infosec.space/tags/EU" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>EU</span></a> refused to standardize upon <a href="https://en.wikipedia.org/wiki/IEC_60906-1#Possibility_of_acceptance_in_European_Union" rel="nofollow noopener" target="_blank">IEC 60906-1</a> was because they expected it to generate 700.000t of 100% avoidable <a href="https://infosec.space/tags/eWaste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eWaste</span></a> (or ~ 1,4 kg per EU citizen).</p><ul><li>IDK about you, but even if people were to only throw out mainboards due to <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> (which noone does!) we'd easily see way more eWaste due to <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a> in the EU alone, yet <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>EUCommission</span></a></span> and <span class="h-card" translate="no"><a href="https://social.bund.de/@Bundesregierung" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Bundesregierung</span></a></span> don't even bat an eye.</li></ul><p>And that really infuriates me like this:</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.space/@topher" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>topher</span></a></span> the problem is the <a href="https://infosec.space/tags/Enshittifiaction" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Enshittifiaction</span></a> and <a href="https://infosec.space/tags/Enfattening" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Enfattening</span></a> of <a href="https://infosec.space/tags/Websites" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Websites</span></a> and <a href="https://infosec.space/tags/Applications" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Applications</span></a>! </p><p>Seriously, I think that <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> should be sued into insolvency for the way they create 100% avoidable <a href="https://infosec.space/tags/eWaste" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>eWaste</span></a> with <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> and <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a> to the point that if I didn't have my current job, I'd basically collect all the old machines from companies that are stupid enough to use <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a> [and they'll likely give them away for free <em>minus SSDs / HDDs</em> instead of paying €5+ for <a href="https://infosec.space/tags/recycling" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>recycling</span></a>], shove some <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> on [i.e. <a href="https://infosec.space/tags/RaspberryPiOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RaspberryPiOS</span></a>, <a href="https://infosec.space/tags/BunsenLabsLinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BunsenLabsLinux</span></a> or <a href="https://infosec.space/tags/UbuntuLTS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UbuntuLTS</span></a>] and sell those off as <em>used electronics</em> for a good profit.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://transfem.social/@puppygirlhornypost2" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>puppygirlhornypost2</span></a></span> <span class="h-card" translate="no"><a href="https://social.vlhl.dev/users/navi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>navi</span></a></span> <em>nodds in agreement</em> the entire <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a>-Stack is literally done to maximize pain and frustration, brick <a href="https://infosec.space/tags/DualBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DualBoot</span></a> / <a href="https://infosec.space/tags/MultiBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MultiBoot</span></a> setups and is by <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a>'s <a href="https://www.youtube.com/watch?v=U7VwtOrwceo&t=11m10s" rel="nofollow noopener" target="_blank">own admission inherently & unfixably insecure</a>.</p><ul><li>As can be seen by the fact that they literally didn't even bother with <em>"<a href="https://infosec.space/tags/SecureBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureBoot</span></a>"</em> on the <a href="https://infosec.space/tags/XboxOne" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XboxOne</span></a> which remains uncracked to this day...</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://hachyderm.io/@lucasmz" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>lucasmz</span></a></span> yes and no..</p><ul><li><p>Yes in that one can just revoke said keys and deploy one's own!</p></li><li><p>No if you can't revoke the preset <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> keys in your <a href="https://infosec.space/tags/UEFI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UEFI</span></a>.</p></li><li><p>No in that these keys are default and that any revocation is 100% reversibe AFAICT.</p></li><li><p>No in that this would brick <a href="https://infosec.space/tags/Windows10" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows10</span></a>, <a href="https://infosec.space/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a> and even some <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> install media.</p></li></ul><p>Personally I'd wish for <a href="https://infosec.space/tags/heads" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>heads</span></a> and <a href="https://infosec.space/tags/PGO" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PGO</span></a> <a href="https://infosec.space/tags/SelfSigned" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfSigned</span></a> code to be the norm providing the user/owner with full control over what is executeable!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@brouhaha" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>brouhaha</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@catsalad" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>catsalad</span></a></span> yeah, <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> is really keen on forxing <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> down everyones throat despite <a href="https://www.youtube.com/watch?v=U7VwtOrwceo&t=12m" rel="nofollow noopener" target="_blank">publicly admitting</a> that <a href="https://infosec.space/tags/TPM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TPM</span></a> is insecure.</p><ul><li>Otherwise they would've used it in the <a href="https://infosec.space/tags/XboxOne" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XboxOne</span></a>!</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.heise.de/@heiseonline" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>heiseonline</span></a></span> tja, <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> in Aktion! </p><p><a href="https://infosec.space/tags/ToldYaSo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ToldYaSo</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://eightpoint.app/@JenWithGravy" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>JenWithGravy</span></a></span> <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> was already irrevocably fucked when <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> lost the <a href="https://infosec.space/tags/PrivateKeys" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrivateKeys</span></a> for that.</p><ul><li><a href="https://infosec.space/tags/GoldenKeyBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GoldenKeyBoot</span></a> basically means all <em>"<a href="https://infosec.space/tags/SecureBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureBoot</span></a>"</em> is unfixably insecure!</li></ul><p>And Microsoft admitted to that <a href="https://infosec.space/tags/insecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>insecurity</span></a> with the <a href="https://infosec.space/tags/XboxOne" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XboxOne</span></a>'s design in their own words!<br><a href="https://youtu.be/U7VwtOrwceo&t=663" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/U7VwtOrwceo&t=663</span><span class="invisible"></span></a></p><p><a href="https://infosec.space/tags/TLDW" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TLDW</span></a>: Don't trust any <a href="https://infosec.space/tags/blackbox" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>blackbox</span></a> to do what it claims to do!</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@Cappyjax" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Cappyjax</span></a></span> <span class="h-card" translate="no"><a href="https://chaos.social/@necrosis" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>necrosis</span></a></span> Even then it would not have resulted in machines basically self-<a href="https://infosec.space/tags/ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransomware</span></a>'ing and making data recovery impossible - and even if someone were to use <a href="https://infosec.space/tags/CensorBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CensorBoot</span></a> on <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> (plz don't!) it would be faster and easier to reproducibly setup a machine from scratch and restore a backup.</p><ul><li>In fact, I did precisely that with a payment processor's frontend + backend and documented that in a reproducible fashion.</li></ul><p>OFC, <a href="https://infosec.space/tags/CrowdStrike" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CrowdStrike</span></a> lays bare not just <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a>'s issues but most importantly the affected organizations <em>"<a href="https://infosec.space/tags/TechDebt" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechDebt</span></a>"</em> and lack of <a href="https://infosec.space/tags/contingencies" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>contingencies</span></a> to cold-start & rebuild their organization's <a href="https://infosec.space/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IT</span></a> from scratch if need be, which is unnecessarily complex and.slow with Windows compared to any Linux distro!</p>
TrendingLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload