Re: Debian live boot corrupting secure boot

2023-09-28 Thread Max Nikulin
On 28/09/2023 16:45, Valerio Vanni wrote: On Thu, 28 Sep 2023 10:08:27 +0700 Max Nikulin wrote: After a vulnerability found in shim or grub (that allows to boot malicious code having no proper signature) old keys used by Linux distributions are revoked, new ones are generated. New images signe

Re: User cannot start X (device already taken)

2023-09-28 Thread Jeffrey Walton
On Thu, Sep 28, 2023 at 8:25 PM Andrew M.A. Cater wrote: > > On Thu, Sep 28, 2023 at 11:22:56AM -0400, Haines Brown wrote: > > Running Devuan Chimaera > > In general, most people on this list run Debian. Sadly, any advice we > can give on Devuan is likely to be best endeavours only as many of > us

Re: User cannot start X (device already taken)

2023-09-28 Thread Andrew M.A. Cater
On Thu, Sep 28, 2023 at 11:22:56AM -0400, Haines Brown wrote: > Running Devuan Chimaera > In general, most people on this list run Debian. Sadly, any advice we can give on Devuan is likely to be best endeavours only as many of us are not familiar with what Devuan may choose to do. [This is true f

Re: User cannot start X (device already taken)

2023-09-28 Thread Curt
On 2023-09-28, Haines Brown wrote: > > > This is extract from Xorfg.0.log after user fails to start X > > ... > [ 49400.912] (II) UnloadModule: "libinput" > [ 49400.912] (II) seatd_libseat try close /dev/input/event18 (36:36) > [ 49400.912] (EE) [libseat/backend/logind.c:184] Could not stat fd 36

User cannot start X (device already taken)

2023-09-28 Thread Haines Brown
Running Devuan Chimaera Without doing anything unusual, suddenly can no longer start X, while root can do it. This is what is returned to terminal: ... (II) [libseat/backend/seatd.c: 64] Could not connect to socket /run/seat.sock: no such file or directory (II) [libseat/libseat.c: 76] Backe

Re: Debian live boot corrupting secure boot

2023-09-28 Thread Stefan Monnier
> With outdated keys secure boot does not protect you. Just to clarify: in 99.99% of the cases, SecureBoot does not protect you (and is not designed to protect you either). Stefan

Re: Debian live boot corrupting secure boot

2023-09-28 Thread The Wanderer
On 2023-09-28 at 05:16, Valerio Vanni wrote: > On Wed, 27 Sep 2023 22:14:57 -0400 The Wanderer > wrote: >>> But this way I would have to disable secure boot to load old Clonezilla. >>> Disable secure boot, launch clonezilla, restore image, reenable secure >>> boot, start OS. >> >> Well, why d

Re: Debian live boot corrupting secure boot

2023-09-28 Thread Valerio Vanni
On Thu, 28 Sep 2023 10:08:27 +0700 Max Nikulin wrote: Thinking more, I have realized that updating secure boot keys in firmware may be the only way for grub to boot. You may try to search for docs and discussions to confirm such guess. After a vulnerability found in shim or grub (that allow

Re: Debian live boot corrupting secure boot

2023-09-28 Thread Valerio Vanni
On Wed, 27 Sep 2023 22:14:57 -0400 The Wanderer wrote: The failure at (3) sounds like what happened when old grub images were blacklisted in the UEFI Revocation List dbx. Also see . You should probably stop doing (4). But this way I would have to disable se