logoalt Hacker News

M95D07/31/20253 repliesview on HN

> [...] systems that only trust the new certificate and not the old one would refuse to boot older Linux, wouldn't support old graphics cards, and also wouldn't boot old versions of Windows. Nobody wants that [...]

EVERYBODY wants that! And I mean ABSOLUTELY EVERYBODY! Updates are now mandatory everywhere, in both Windows and Linux, and GPU manufactureres would LOVE to make the old cards obsolete, even if technically the new cards aren't much better.

So expect to see the old certificate invalidated quickly and automatically, in the name of security, of course!


Replies

michaelt07/31/2025

Even if this did happen, there's a trivial workaround available: Just go into your BIOS and switch 'Secure Boot' off.

Secure Boot is a fine thing if you're a huge corporation and want to harden laptops against untrustworthy employees, or you've got such a huge fleet of servers they go missing despite your physical security controls, or you're making a TiVo style product you want to harden against the device owners. But when the user is the device owner? Doesn't do much.

show 8 replies
tomhow08/01/2025

> EVERYBODY wants that! And I mean ABSOLUTELY EVERYBODY

Please don't use uppercase for emphasis. If you want to emphasize a word or phrase, put asterisks* around it and it will get italicized.*

https://news.ycombinator.com/newsguidelines.html

show 1 reply
jimmaswell07/31/2025

I certainly do not want old graphics cards to become ewaste for no good reason.