If I have an encrypted Linux partition and a Windows partition that I use as a bootloader into Riot’s games, what are the drawbacks of installing their kernel level anticheat?

  • driveway@lemmy.zipOP
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    I know about ring 0, I just assumed UEFI would be off the disk and inaccessible to any software.

    • BearOfaTime@lemm.ee
      link
      fedilink
      arrow-up
      6
      arrow-down
      1
      ·
      1 year ago

      UEFI is off disk, but it is writeable to some degree.

      Recently there was a story about a hack exploiting the ability to write boot images (as in vendor screens that display during boot).

      There’s also the ability to store executable code that runs even if the system doesn’t have an OS - this is ostensibly used for theft prevention solutions. Just imagine how that can be abused.

      UEFI is a ******* problem. I’ve never liked it. I get why it exists, but it’s design was intentionally borked to push DRM-like control, under the guise of offering increased security. Yet we have that boot code that can be executed silently.

      It would be nice to see the 80’s BIOS wars again, with an open-source UEFI organization this time.