I guess lesson learned here is: Always self-sign the secure boot keys, do not us... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		DethNinja on May 6, 2023 \| parent \| context \| favorite \| on: Intel OEM Private Key Leak: A Blow to UEFI Secure ... I guess lesson learned here is: Always self-sign the secure boot keys, do not use any third-party keys. Unfortunately, this complicates the kernel & boot loader upgrade process as one shouldn’t keep private keys in the same machine.

Arnavion on May 7, 2023 [–]

The leaked key in question has nothing to do with Secure Boot keys. The leaked key in question affects you even if you have your own Secure Boot keys.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact