Hacker News new | ask | show | jobs
by craftkiller 441 days ago
> signed shim

How would they sign such a shim without my keys? I don't leave Microsoft keys enrolled on my laptop.
1 comments
wkat4242 440 days ago
You don't but 99.99% of people do :) Especially because most Linux distros use a key signed by Microsoft by default.
link
akdev1l 440 days ago
The “people” don’t really matter.

Anyone who needs a secure boot environment is having their own MOK and probably a private CA.

link