Re: Plug-and-wipe and Secure Boot semantics

[Florian Weimer <fweimer () redhat com>]

On 12/18/2012 01:46 PM, Florian Weimer wrote:
> Some UEFI machines seem to boot from USB by default, without any
> prompting, probably assuming that a signed boot loader cannot cause any
> damage.

I got a different BIOS for the Lenovo M72e 0896A9G, which does not 
contain Secure Boot support, bot still boots from plugged-in USB sticks 
with an UEFI boot loader on them by default.  So this is just a choice 
made by Lenovo in general, totally independent of Secure Boot support.

--
Florian Weimer / Red Hat Product Security Team