This could be a messy subject, I'm not sure yet.
Now I know not all computers support secure boot. I have a couple of old BIOS systems that do not.
I also know that not all distro's support secure boot either. But it seems most of the mainstream ones do.
On my computers that support secure boot, I leave it turned on. Yes, sometimes it adds a few seconds to the boot up.
But it's supposedly safer.
I guess the idea is, the applications that get run at boot up are signed by something similar to an ssh key.
That vendor guarantees, that no malicious software/malware will get loaded by the boot up applications.
However, it doesn't protect you once the OS is loaded.
Anyway, back to the question. For those of you that have computers that support secure boot, do you leave it enabled?
If not, why not?
I've heard it cause Linux not to boot, but from my experience, it's only the distro's that don't support it.
Now I know not all computers support secure boot. I have a couple of old BIOS systems that do not.
I also know that not all distro's support secure boot either. But it seems most of the mainstream ones do.
On my computers that support secure boot, I leave it turned on. Yes, sometimes it adds a few seconds to the boot up.
But it's supposedly safer.
I guess the idea is, the applications that get run at boot up are signed by something similar to an ssh key.
That vendor guarantees, that no malicious software/malware will get loaded by the boot up applications.
However, it doesn't protect you once the OS is loaded.
Anyway, back to the question. For those of you that have computers that support secure boot, do you leave it enabled?
If not, why not?
I've heard it cause Linux not to boot, but from my experience, it's only the distro's that don't support it.