Posted 23 October 2011 - 10:23 PM
The central issue is, you can be 'compliant' with Microsoft's 'standard', while NOT allowing anything but windoze to boot.
So, let thousands of OEMs making motherboards, notebooks, desktops, etc. DECIDE whether to provide an 'off' switch for that in their BIOS settings?
Because unless 'TURN THE #@&*ING THING OFF' is part of the ABSOLUTE STANDARD, there WILL ABSOLUTELY, 100% CERTAINLY be computers that do not allow you to turn off this 'feature'.
And of course, there's still the absolutely bogus implication that an OS that doesn't have Microsoft's latest over-engineered kludge against poor OS security is 'insecure'.
Probably a fun virus payload attack will be to simply invalidate the 'secure boot' signature. Oopsie! Your computer CAN NOT BOOT until you find your windoze DVD, which is probably not conveniently available, and any windoze DVD that you can scrounge up will be a different 'edition' that can't re-activate your windoze, etc. You know, the typical 'Windoze Borked' problems with activation, etc., with a new layer to go wrong.