22 Aug
2013
22 Aug
'13
5:11 a.m.
On Wed, Aug 21, 2013 at 03:46:13AM -0000, Cory Smelosky wrote:
[...]
Are there any steps in the modern NT boot procedure
I?m forgetting that would
let you inject a ?boot loader? to ?jump? to either windows or Another OS that
would circumvent SecureBoot?
Exploits are just a special kind of bug, and bugs scale with the size of the
codebase. Secure Boot is large and complex and so would be expected to be even
buggier than BIOSes, and indeed they are coming up with some really quite
spectacular bugs, some bad enough to brick the hardware. So of course there
will be exploits, some of which will be patched quickly, and some which will
linger for years.
However, exploits are likely to be specific to certain BIOSes or Windows patch
levels, so you couldn't rely on them to be able to boot arbitrary code.
The easiest way to "circumvent" Secure Boot is to just disable the infernal
thing in the EFI settings and forget about it.