Debian 10.5 point release

News and discussion about development of the Debian OS itself

Debian 10.5 point release

Postby Head_on_a_Stick » 2020-08-02 14:58

Just when you thought Debian buster couldn't get better:

https://www.debian.org/News/2020/20200801

Lots of important security fixes are included so
Code: Select all
# apt update
# apt upgrade

ASAP

And hope your bootloader doesn't get b0rked :mrgreen:

Disclaimer: the GRUB problems have been fixed. Allegedly.
Black Lives Matter

Debian buster-backports ISO image: for new hardware support
User avatar
Head_on_a_Stick
 
Posts: 12495
Joined: 2014-06-01 17:46
Location: /dev/chair

Re: Debian 10.5 point release

Postby LE_746F6D617A7A69 » 2020-08-02 16:54

Upgraded & rebooted -> no issues :D

Side note:
I wonder when (if ever) we'll see an update for broken UEFI specs - what a moron have released a standard which breaks booting from RAID arrays? Even 30 years old 16-bit BIOS allows to do this... ...but now we have a SecureBoot - wow!

The only problem is that SecureBoot itself is a problem, and it does not add a single bit of security against modern attacks...
Bill Gates: "(...) In my case, I went to the garbage cans at the Computer Science Center and I fished out listings of their operating system."
The_full_story and Nothing_have_changed
LE_746F6D617A7A69
 
Posts: 345
Joined: 2020-05-03 14:16

Re: Debian 10.5 point release

Postby Bloom » 2020-08-02 17:03

The main reason for SecureBoot was not to increase security (at least not what we understand as "security"): the intention was to ensure that computers would not boot Linux anymore. And indeed: as soon as it was introduced and Microsoft bribed computer manufacturers who wanted to include Windows to make the "optional" SecureBoot locked on enabled without allowing the user to switch it off, Linux could not be booted anymore. Since most Linux distributions didn't have SecureBoot authentication keys at that time, it proved detrimental to Linux on such machines.
Now, the point is moot since most Linux distributions can boot with SecureBoot. But, like almost anything programmed by Microsoft, it is riddled with bugs that plague UEFI users from time to time. And you can have lots of fun with hardware that is not compliant with the UEFI standard.
User avatar
Bloom
 
Posts: 291
Joined: 2017-11-11 12:23

Re: Debian 10.5 point release

Postby Head_on_a_Stick » 2020-08-02 17:24

Bloom wrote:The main reason for SecureBoot was not to increase security (at least not what we understand as "security"): the intention was to ensure that computers would not boot Linux anymore.

Then why are Microsoft happy to provide their signing keys to Linux distributions? There is a fee but it's set to $99 so they're not really making any money from it.

Secure Boot was introduced in an attempt to compensate for the massive added attack surface provided by the UEFI standard.

Any discussion about Secure Boot is off-topic for this thread so please open a new one to discuss the issues further. Thanks.
Black Lives Matter

Debian buster-backports ISO image: for new hardware support
User avatar
Head_on_a_Stick
 
Posts: 12495
Joined: 2014-06-01 17:46
Location: /dev/chair

Re: Debian 10.5 point release

Postby p.H » 2020-08-02 17:32

LE_746F6D617A7A69 wrote:I wonder when (if ever) we'll see an update for broken UEFI specs - what a moron have released a standard which breaks booting from RAID arrays?

I guess you mean software Linux RAID ? AFAICS GRUB is the culprit, not UEFI.
p.H
 
Posts: 1438
Joined: 2017-09-17 07:12

Re: Debian 10.5 point release

Postby LE_746F6D617A7A69 » 2020-08-02 18:49

Bill Gates: "(...) In my case, I went to the garbage cans at the Computer Science Center and I fished out listings of their operating system."
The_full_story and Nothing_have_changed
LE_746F6D617A7A69
 
Posts: 345
Joined: 2020-05-03 14:16


Return to Debian Development

Who is online

Users browsing this forum: No registered users and 2 guests

fashionable