• addie@feddit.uk
    link
    fedilink
    English
    arrow-up
    4
    ·
    5 hours ago

    Problem being, of course, that you can add more certificates, but you can’t revoke the original M$ one. And since it’s vulnerable and you can’t get rid, then these exploits still work and there’s nothing you can do to stop it.

    • Default Username@lemmy.dbzer0.com
      link
      fedilink
      English
      arrow-up
      4
      ·
      edit-2
      4 hours ago

      Computers shouldn’t come with Microsoft keys preinstalled to begin with (or an operating system for that matter). Microsoft being able to have Windows preinstalled on the vast majority of non-Apple PCs is how they gained their monopoly in the first place.

    • orclev@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      5 hours ago

      You should be able to remove any or all the certs as well, although I could see an argument for requiring you to enter the BIOS to do that.