Doesnt help the OP is claiming to be an “unemployed artist from Brazil” who writes like an unemployed gas station clerk from Tennessee.
Sorry to see the downvotes buddy, people are cult-ish. You aren’t wrong.
The entire idea of Secure Boot is to verify the boot chain using signature checks to ensure that nothing “unauthorized” runs in the boot process before control is handed off to the kernel. It’s meant to stop lower bootloader stages from silently modifying or hooking later stages.
In theory, it’s supposed to stop rootkits from being able to exist above the OS, hiding themselves while stealing information or influencing programs. In practice, there’s a shit load of badly implemented EFI programs and bootloaders that are signed and later turned out to be vectors for arbitrary code execution (this is why you need the DBX list to be updated frequently).
Cynically, Microsoft probably came up with Secure Boot because that whole rootkit-and-fuck-with-the-kernel thing used to be one of the ways people cracked Windows 7.
As for TPM 2.0, the whole point of it being used for anticheat is because it stores an immutable log of the Secure Boot process and attests to the integrity of the system. If I installed my own Secure Boot certificates and rootkitted Windows for the sole purpose of cheating, the TPM would see that a self-signed executable was used during boot and refuse to say the system was unmodified.
kinther@lemmy.world 2 days ago
warm@kbin.earth 2 days ago
You are downvoted for your first part. Nobody is dog piling or being cultish, the person is just being a moron.
We know why they might be used, we just dont want video games demanding shit we dont actually need.
pivot_root@lemmy.world 2 days ago
Oh, the comment I directly replied to is absolutely justified in its downvotes. I actually meant to reply to a different comment of theirs.
There’s a lot of FUD and disinformation around Secure Boot and TPM 2.0 in general. When it comes to anticheat and requirements ewquie3m, people are dog piling. The comments being cynical or exaggerating the security risk of the TPM to the user are getting more upvotes, while the comments that disagree with those are getting pushback.