mas.to

Nicolas Fränkel 🇺🇦🇬🇪Implementing <a href="https://mastodon.top/tags/Container" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Container</a> Runtime <a href="https://mastodon.top/tags/Shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Shim</a>: <a href="https://mastodon.top/tags/runc" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#runc</a><a href="https://iximiuz.com/en/posts/implementing-container-runtime-shim/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://iximiuz.com/en/posts/implementing-container-runtime-shim/</a>

Alien BOBLiveslak 1.8.2 re-adds Secure Boot supportWhen Slackware-current upgraded the Grub package to 2.12,  liveslak lost the ability to boot on a computer with Secure Boot enabled.Grub 2.12 is a lot stricter than the previous 2.06 release when it comes to trusting the files it loads and executes. The way it works now is as follows (step 1 and 2 a<a href="https://alien.slackbook.org/blog/liveslak-1-8-2-re-adds-secure-boot-support/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://alien.slackbook.org/blog/liveslak-1-8-2-re-adds-secure-boot-support/</a><a href="https://fosstodon.org/tags/Slackware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Slackware</a> <a href="https://fosstodon.org/tags/Software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Software</a> <a href="https://fosstodon.org/tags/certificate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#certificate</a> <a href="https://fosstodon.org/tags/gpg" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#gpg</a> <a href="https://fosstodon.org/tags/grub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#grub</a> <a href="https://fosstodon.org/tags/liveslak" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#liveslak</a> <a href="https://fosstodon.org/tags/secureboot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#secureboot</a> <a href="https://fosstodon.org/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a>

josmit<a class="hashtag" href="https://cuyes.mooo.com/tag/linux" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a class="hashtag" href="https://cuyes.mooo.com/tag/lmde" rel="nofollow noopener noreferrer" target="_blank">#LMDE</a> <a class="hashtag" href="https://cuyes.mooo.com/tag/mint" rel="nofollow noopener noreferrer" target="_blank">#Mint</a> / <a class="hashtag" href="https://cuyes.mooo.com/tag/problema" rel="nofollow noopener noreferrer" target="_blank">#Problema</a> Llevo ya casi 2 semanas con un verdadero dolor de muelas... y es que el puto paquete <a class="hashtag" href="https://cuyes.mooo.com/tag/shim" rel="nofollow noopener noreferrer" target="_blank">#shim</a>-signed no se deja actualizar, ni remover. Desactive <a class="hashtag" href="https://cuyes.mooo.com/tag/uefi" rel="nofollow noopener noreferrer" target="_blank">#UEFI</a> y borre la particion que contenia los archivos para el arranque (ya que esta tarea la deje subordinada a otra distro) y ahora no puedo quitar este pequete, porque seria indispensable para el sistema bajo ¿UEFI? ¿Como se puede remover algo que te dice "E: Removing essential system-critical packages is not permitted. This might break the system."?

🄻 🅂 🄳I have the following <a href="https://mastodon.social/tags/problem" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#problem</a> in <a href="https://mastodon.social/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://mastodon.social/tags/Ubuntu" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Ubuntu</a> When I installed it on the <a href="https://mastodon.social/tags/Lenovo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Lenovo</a> P50, I did not find the option to change the mode from <a href="https://mastodon.social/tags/UEFI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UEFI</a> to <a href="https://mastodon.social/tags/Legacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Legacy</a>, so I installed Ubuntu with UEFI mode enabled. Is it possible to disable UEFI mode and remove the <a href="https://mastodon.social/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a>-signed package (and its dependencies) inside Ubuntu?

IT News“Something has gone seriously wrong,” dual-boot systems warn after Microsoft update - Enlarge (credit: Getty Images) Last Tuesday, loads of Linux us... - <a href="https://arstechnica.com/?p=2044381" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://arstechnica.com/?p=2044381</a> <a href="https://schleuss.online/tags/securitypatches" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securitypatches</a> <a href="https://schleuss.online/tags/secureboot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#secureboot</a> <a href="https://schleuss.online/tags/microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#microsoft</a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#biz</a>⁢ <a href="https://schleuss.online/tags/sbat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sbat</a> <a href="https://schleuss.online/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a>

Thorsten Leemhuis (acct. 1/4)Interesting detail in the description of the main EFI changes merged for <a href="https://fosstodon.org/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> 6.9[1]:"'"Avoid creating mappings that are both writable and executable while running in the EFI boot services. This is a prerequisite for getting the x86 <a href="https://fosstodon.org/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> loader signed by MicroSoft again, which allows the distros to install on x86 PCs that ship with EFI secure boot enabled."'"[1] <a href="https://git.kernel.org/torvalds/c/70ef654469b371d0a71bcf967fa3dcbca05d4b25" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://git.kernel.org/torvalds/c/70ef654469b371d0a71bcf967fa3dcbca05d4b25</a><a href="https://fosstodon.org/tags/Kernel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Kernel</a> <a href="https://fosstodon.org/tags/LinuxKernel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LinuxKernel</a> <a href="https://fosstodon.org/tags/SecureBoot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecureBoot</a>

Linux MagazinePatch Now: Shim vulnerability affects nearly all Linux distros <a href="https://www.linux-magazine.com/Online/News/Bootloader-Vulnerability-Affects-Nearly-All-Linux-Distributions" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.linux-magazine.com/Online/News/Bootloader-Vulnerability-Affects-Nearly-All-Linux-Distributions</a> <a href="https://fosstodon.org/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://fosstodon.org/tags/bootloader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bootloader</a> <a href="https://fosstodon.org/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> <a href="https://fosstodon.org/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://fosstodon.org/tags/CVSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVSS</a> <a href="https://fosstodon.org/tags/HTTP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HTTP</a> <a href="https://fosstodon.org/tags/bug" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bug</a> <a href="https://fosstodon.org/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://fosstodon.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> <a href="https://fosstodon.org/tags/patch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#patch</a> <a href="https://fosstodon.org/tags/FOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FOSS</a>

Marcel SIneM(S)US<a href="https://social.tchncs.de/tags/Bootloader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Bootloader</a>-Lücke: Viele <a href="https://social.tchncs.de/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a>-Distributionen sind gefährdet | Security <a href="https://www.heise.de/news/Bootloader-Luecke-gefaehrdet-viele-Linux-Distributionen-9624201.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.heise.de/news/Bootloader-Luecke-gefaehrdet-viele-Linux-Distributionen-9624201.html</a> <a href="https://social.tchncs.de/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a>

Christoph Schmees<a href="https://milliways.social/@mcfly" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mcfly</a> No, the <a href="https://social.tchncs.de/tags/SHIM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SHIM</a> vulnerability is NOT a "Remore Code Execution vulnerability" [sic]. Unless of course one would be so silly as to remote boot over the public internet. It is a mere inside threat. Exploitation would need a quite sophisticated "evil maid". So in the end it is 'nothing to write home about'.

Pyrzout :vm:Vulnerabilidad crítica que afecta a la mayoría de las distribuciones de Linux permite bootkits <a href="https://blog.elhacker.net/2024/02/vulnerabilidad-critica-distros-linux-bootkit.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://blog.elhacker.net/2024/02/vulnerabilidad-critica-distros-linux-bootkit.html</a> <a href="https://social.skynetcloud.site/tags/vulnerabilidad" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerabilidad</a> <a href="https://social.skynetcloud.site/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://social.skynetcloud.site/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> <a href="https://social.skynetcloud.site/tags/cve" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cve</a>

Richi JenningsA Microsoft researcher found it—and it’s somehow Microsoft’s fault.A critical vulnerability in most <a href="https://vmst.io/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> distributions now has a patch ready. Enterprise users especially need this if booting using HTTP or PXE.So go get it. In <a href="https://vmst.io/tags/SBBlogwatch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SBBlogwatch</a>, we patch <a href="https://vmst.io/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> and update the DBX. At @TechstrongGroup’s @SecurityBlvd: <a href="https://securityboulevard.com/2024/02/linux-shim-bootkit-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://securityboulevard.com/2024/02/linux-shim-bootkit-richixbw/?utm_source=richisoc&utm_medium=social&utm_content=richisoc&utm_campaign=richisoc</a>

Thorsten Leemhuis (acct. 4/4)"Shim macht auf Linux-Systemen Secure Boot nutzbar."[1] ist irgendwie wie "Nasse Straßen führen zu Regen", wie es Michael Crichton beim "Gell-Mann Amnesia Effect"[2] erwähnt. 🤔Klar, irgendwie stimmt der Satz. Aber irgendwie auch nicht, denn ohne etwas wie <a href="https://social.tchncs.de/tags/Shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Shim</a> ließen sich <a href="https://social.tchncs.de/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a>-Distributionen auf modernen <a href="https://social.tchncs.de/tags/UEFI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#UEFI</a>-Systemen out-of-the-box gar nicht erst nutzen, solange <a href="https://social.tchncs.de/tags/SecureBoot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecureBoot</a> aktiv ist. 🤨[1] <a href="https://www.golem.de/news/shim-kritische-schwachstelle-gefaehrdet-secure-boot-unter-linux-2402-181956.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.golem.de/news/shim-kritische-schwachstelle-gefaehrdet-secure-boot-unter-linux-2402-181956.html</a>[2] <a href="https://en.wikipedia.org/wiki/Michael_Crichton#Gell-Mann_amnesia_effect" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://en.wikipedia.org/wiki/Michael_Crichton#Gell-Mann_amnesia_effect</a>

Hamish MSo the shim boot loader has a serious bug in its HTTP handling, but TIL that shim does HTTP (or in fact any networking at all) and I still have no idea why. <a href="https://mastodon.au/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> <a href="https://mastodon.au/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

securityaffairsCritical <a href="https://infosec.exchange/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> bug impacts every <a href="https://infosec.exchange/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> boot loader signed in the past decade <a href="https://securityaffairs.com/158792/hacking/critical-shim-bug-linux.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://securityaffairs.com/158792/hacking/critical-shim-bug-linux.html</a> <a href="https://infosec.exchange/tags/securityaffairs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#securityaffairs</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a>

Denis Laskov 🇮🇱Hi, my name is Shim Shady! (NVD CVSS 9.8 - Critical)Critical vulnerability CVE-2023-40547 was identified in the <a href="https://mastodon.social/tags/Shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Shim</a> software (used by most Linux distributions during the boot process). Particularly - to support Secure Boot.<a href="https://eclypsium.com/blog/the-real-shim-shady-how-cve-2023-40547-impacts-most-linux-systems/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://eclypsium.com/blog/the-real-shim-shady-how-cve-2023-40547-impacts-most-linux-systems/</a>

IT NewsCritical vulnerability affecting most Linux distros allows for bootkits - Enlarge Linux developers are in the process of patching a hig... - <a href="https://arstechnica.com/?p=2001542" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://arstechnica.com/?p=2001542</a> <a href="https://schleuss.online/tags/vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerabilities</a> <a href="https://schleuss.online/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://schleuss.online/tags/bootkits" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bootkits</a> <a href="https://schleuss.online/tags/biz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#biz</a>⁢ <a href="https://schleuss.online/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://schleuss.online/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> <a href="https://schleuss.online/tags/uefi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#uefi</a>

Pete Prodoehl 🍕It's been nearly 8 years since I 3D printed a shim...➡️ <a href="https://rasterweb.net/raster/2015/12/28/3d-printed-shim/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://rasterweb.net/raster/2015/12/28/3d-printed-shim/</a><a href="https://mastodon.social/tags/3DPrinting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#3DPrinting</a> <a href="https://techhub.social/@3dprinting" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@3dprinting</a> <a href="https://mastodon.social/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> <a href="https://mastodon.social/tags/hack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hack</a>

Reshmi AravindRed Hat is <a href="https://mstdn.social/tags/hiring" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hiring</a>! The Bootloader Engineering Team(Core Platforms Engineering) in Red Hat is looking for the sheer talented and open to all with the suitable skills passion and dedication.<a href="https://mstdn.social/tags/Hiring" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Hiring</a> <a href="https://mstdn.social/tags/RedHat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RedHat</a> <a href="https://mstdn.social/tags/Fedora" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Fedora</a> <a href="https://mstdn.social/tags/bootloader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bootloader</a> <a href="https://mstdn.social/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> <a href="https://mstdn.social/tags/Grub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Grub</a> <a href="https://mstdn.social/tags/firmware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#firmware</a> <a href="https://mstdn.social/tags/uefi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#uefi</a> <a href="https://mstdn.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSource</a> 🌎 Remote , Mexico ⏰ Full-time 🏢 Red HatLink to apply for this position on this diverse team: <a href="https://global-redhat.icims.com/jobs/100038/principal-software-engineer/job" rel="nofollow noopener noreferrer" target="_blank">https://global-redhat.icims.com/jobs/100038/principal-software-engineer/job</a>

Boiling SteamCarmack The Wise (Predicting that something like Proton would be the best fit for Linux Gaming, back in 2013): <a href="https://boilingsteam.com/carmack-the-wise/" rel="nofollow noopener noreferrer" target="_blank">https://boilingsteam.com/carmack-the-wise/</a> <a href="https://mastodon.cloud/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://mastodon.cloud/tags/linuxgaming" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linuxgaming</a> <a href="https://mastodon.cloud/tags/proton" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#proton</a> <a href="https://mastodon.cloud/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> <a href="https://mastodon.cloud/tags/carmack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#carmack</a> <a href="https://mastodon.cloud/tags/prediction" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#prediction</a>

Simon CharbonneauNew video tonight... Enjoy!!<a href="https://youtu.be/diNrZ3ZYEq4" rel="nofollow noopener noreferrer" target="_blank">https://youtu.be/diNrZ3ZYEq4</a><a href="https://universeodon.com/tags/Aputik" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Aputik</a> <a href="https://universeodon.com/tags/stone" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#stone</a> <a href="https://universeodon.com/tags/splitting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#splitting</a> <a href="https://universeodon.com/tags/learninghowto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#learninghowto</a> <a href="https://universeodon.com/tags/rock" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rock</a> <a href="https://universeodon.com/tags/breaking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#breaking</a> <a href="https://universeodon.com/tags/feathersandwedges" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#feathersandwedges</a> <a href="https://universeodon.com/tags/plugsandfeathers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#plugsandfeathers</a> <a href="https://universeodon.com/tags/wedgesandshims" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wedgesandshims</a> <a href="https://universeodon.com/tags/wedge" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wedge</a> <a href="https://universeodon.com/tags/shim" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#shim</a> <a href="https://universeodon.com/tags/weboughtland" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#weboughtland</a> <a href="https://universeodon.com/tags/learningtobreakstones" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#learningtobreakstones</a> <a href="https://universeodon.com/tags/howtobreakstones" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#howtobreakstones</a>

Recent searches

Search options

Administered by:

Server stats:

#shim