>> It abuses platforms that do not implement the BIOS Write Lock mechanism incorrectly
I agree that post-boot the BIOS should be read-only.
> The UEFI payload would work on Linux systems, yes. But the delivery system described would not.
There was a case of rm -rf / erasing UEFI variables on linux system, rendering the system unbootable. Mapping the BIOS into the file-system doesn't strike me as too clever, but then again what do I know.
atswimtwobirds|7 years ago
I agree that post-boot the BIOS should be read-only.
> The UEFI payload would work on Linux systems, yes. But the delivery system described would not.
There was a case of rm -rf / erasing UEFI variables on linux system, rendering the system unbootable. Mapping the BIOS into the file-system doesn't strike me as too clever, but then again what do I know.