/srv/irclogs.ubuntu.com/2016/03/10/#ubuntu-installer.txt

=== tsimonq2alt is now known as tsimonq2-
=== tsimonq2- is now known as tsimonq2
streulmacyphermox ?20:13
cyphermoxhi20:13
streulma16.04 installer disabled my Secure Boot20:13
streulmain Shim20:13
streulmahow can I enable it again ?20:13
cyphermoxsudo mokutil --enable-validation20:13
cyphermoxbut it's *supposed* to disable it, if you have any dkms package installed, as otherwise soon those modules will not be loaded by the kernel20:14
cyphermoxby "soon", I mean possibly next week20:15
streulmais Secure Boot then also disabled on PC's where you CAN'T disable Secure Boot ?20:38
streulmacyphermox you are a life saver !20:41
cyphermoxyou can't "can't disable Secure Boot" when it comes to Linux20:42
cyphermoxie. the change is done in shim and thus does not affect Windows at all20:42
cyphermoxthe update that does this also should be asking you to confirm before applying the change20:43
streulmaso you can install Linux on all pc's from now? :-o20:43
cyphermoxwell, that depends20:43
cyphermoxsome weird BIOSes may not be able to do the right thing20:43
streulmaI have an asus notebook20:44
cyphermoxie. if you can't boot EFI, it's not going to install in EFI, and thus won't do anything to Secure Boot20:44
streulmano but on some you can't disable secure boot20:44
cyphermoxI don't know20:44
cyphermoxthe Ubuntu CDs are signed, so you should be able to boot them even with Secure Boot enabled, provided that the BIOS has a Microsoft key loaded to verify the signature -- most do20:45
streulmaI thought, ah :-) they disable secure boot in shim so they found a way to do it without affecting the bios20:45
cyphermoxwhat we're changing is some kind of flag that only affects things loaded via shim20:46
cyphermoxand *only* if there are dkms packages detected, otherwise it's unnecessary to disable Secure Boot20:46
streulmavirtualbox needs dkms20:46
cyphermoxyes, that's possible20:47
streulmaand for Fedora you need to self sign and probe with mokutil20:47
cyphermoxright20:47
streulmain Ubuntu it is signed with the Canonical key I think20:47
cyphermoxyou can still do that, we're just making it possible for users to skip the self-signing part because it's a little complicated, and instead disable shim validation20:47
streulmaah, :-)20:48
cyphermoxwe'll do some thing to make it easy for users to self-sign instead in the future20:48

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!