[CentOS] signing modules

Mon Mar 16 16:46:15 UTC 2020
Stephen John Smoogen <smooge at gmail.com>

On Mon, 16 Mar 2020 at 12:43, Jerry Geis <jerry.geis at gmail.com> wrote:

> >You need to turn off secure booting - you can still boot using UEFI,
> >but if secure booting is turned on the kernel doesn't allow unsigned
> >modules.
>
> Thanks - so is that command line to run ? Config file to edit ?
>
>
secure boot is in your hardware UEFI/BIOS setup. Basically ring -1 or -2 on
the hardware. Nothing in the OS can turn this on or off as that is the
purpose of this control to make sure a virus can not fool the hardware into
using bad kernel level code.


> I ran mokutil --disable-verification and rebooted
> I dont desire that MOK management screen to show - how do you get rid of
> that ?
>
> After rebooting my module still does not load.
>
> Jerry
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> https://lists.centos.org/mailman/listinfo/centos
>


-- 
Stephen J Smoogen.