From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org)
	by finch.gentoo.org with esmtp (Exim 4.60)
	(envelope-from <gentoo-user+bounces-138841-garchives=archives.gentoo.org@lists.gentoo.org>)
	id 1Sb4nX-0005jV-Hm
	for garchives@archives.gentoo.org; Sun, 03 Jun 2012 07:00:23 +0000
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 6DE8AE0686;
	Sun,  3 Jun 2012 07:00:06 +0000 (UTC)
Received: from ironport2-out.teksavvy.com (ironport2-out.teksavvy.com [206.248.154.182])
	by pigeon.gentoo.org (Postfix) with ESMTP id 3B2EAE0733
	for <gentoo-user@lists.gentoo.org>; Sun,  3 Jun 2012 06:58:34 +0000 (UTC)
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgwKAG6Zu0+4rxBd/2dsb2JhbABEsnYDgRiBCIIVAQEEATocKAsLNAcLFCU3iAkFugmLCFqBRII8YgONPodchV+IOoFYgwU
X-IronPort-AV: E=Sophos;i="4.75,637,1330923600"; 
   d="scan'208";a="187489462"
Received: from 184-175-16-93.dsl.teksavvy.com (HELO waltdnes.org) ([184.175.16.93])
  by ironport2-out.teksavvy.com with SMTP; 03 Jun 2012 02:58:32 -0400
Received: by waltdnes.org (sSMTP sendmail emulation); Sun, 03 Jun 2012 02:57:22 -0400
From: "Walter Dnes" <waltdnes@waltdnes.org>
Date: Sun, 3 Jun 2012 02:57:22 -0400
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Lockdown: free/open OS maker pays Microsoft ransom
 for the right to boot on users' computers
Message-ID: <20120603065722.GA16751@waltdnes.org>
References: <1338603963.12172.1.camel@moriah>
 <4FC9C425.9010301@binarywings.net>
 <CA+czFiDWEU3sS+ufDQYTJq-5MZGXW+5008=Cu7RaD2dWjOBZpw@mail.gmail.com>
 <4FCA1159.40909@binarywings.net>
 <4FCA6EDB.4070908@coolmail.se>
 <CA+czFiD2aHPJu2d3P3zuZWKs2mZSxuR0Pfk3w2xZX=k=Uw1o9A@mail.gmail.com>
 <4FCA98D2.7020804@coolmail.se>
 <CA+czFiBvLvnVY3ASs6BnLywREGEnkUs7QU-Q6H5ouaLV=mzPKw@mail.gmail.com>
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <CA+czFiBvLvnVY3ASs6BnLywREGEnkUs7QU-Q6H5ouaLV=mzPKw@mail.gmail.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
X-Archives-Salt: ed4a222e-9fd2-4658-9962-33dd86af1527
X-Archives-Hash: 1a948f62b7e65c88f85d661e4343ae48

On Sat, Jun 02, 2012 at 07:36:51PM -0400, Michael Mol wrote

> The BIOS will only load a signed bootloader. The signed bootloader
> will only load a signed kernel.

  OK, so I sign LILO.  What code is in there that prevents LILO from
loading whatever kernel I've compiled?

> The signed kernel will...do whatever you tell it to do.

  Define "kernel"... no... seriously.
1) Could it actually be a hypervisor?

2) Or maybe another copy of LILO which proceeds to load the actual
kernel?

-- 
Walter Dnes <waltdnes@waltdnes.org>