- cross-posted to:
- 4chan@lemmy.world
- cross-posted to:
- 4chan@lemmy.world
You must log in or register to comment.
This happened when I booted a friend’s computer from a live USB Mint stick. It took hours to find the correct password for her account and get Windows running again.
A few years ago Microsoft deleted my Linux ext2 directory when I dual booted to Windows and ran Windows Update.
At this point I’m convinced one of Microsoft’s primary business functions is selling malware.
Switching from windows 7 to Linux really was a good call from me, as in, the timing. I’m glad I have never and will never experience horrors like this
Since about Windows 7 each major windows release has been a bunch of new annoying things you have to learn how to work around, and a couple of fixes for older annoying things that now work better. For example, Windows update on 10 and 11 is actually pretty decent at actually updating everything and finding drivers for fairly common hardware. Windows 11 has some nice window management features built in, etc.
Its easy, just make sure you select the right options during OS setup, hit an unmarked key combination to open a terminal and enter an undocumented command that Microsoft might remove at any moment to bypass certain online/account requirements, uninstall Candy Crush every 6 months or so, enter these registry values to fix the right-click menu, windows search, etc.
Y’know what, thinking about it, its been about 7 years since I last gave Linux a shot on my primary PC, might be about time to try it again…
Zorin is a really nice and easy transition so far. I just started my exodus and have Zorin on a couple laptops and I like it. The phone companion app is nice too.
Literally happened to me two days ago. Everything was fine until i installed gpu drivers and then it said “plz give secure boot password” and i had to abort mid install. Also was infront of a fresh linux recruit.
Bitlocker works as intended and is actually a good tool
It installs and activates itself stealthily, slows down the computer, and eventually makes it unusable.
If it looks like a duck and walks like a duck…
Bitlocker works as intended
Oh, definitely. If it was intended to be malware.
Explain how breaking their ability to boot into the OS because they booted from a USB is a good thing.
Ah yes, after the attacker has gotten everything they need upon next boot up the owner is locked out. Perfect!
You can’t actually get the files… it’s encrypted…
I had a similar problem when I made my win11 mini PC into an Ubuntu server. It took forever for win11 to remove the bitlocker encryption, and that was before spending ages trying to find 0ut how to remove it.
dual boot with windows ? good fucking luck
Weaponized security. These fuckers booby-trapped usb boot.
I really don’t miss windows. I’m happy with almost everything else but windows. Fischer price macOS is perfectly acceptable to me at this point.
Fuck Liquid Glass though.
Real and fuck Microsoft
Fuck, I’m gonna have to enable secure boot (and use windows) to play the BF6 open beta, am I gonna get the same buillshit ?
If it doesn’t affect my Linux drives I don’t care much tbh, I’ll probably just nuke windows and reinstall it
I was going to try the BF6 open beta. It uses javelin anti cheat which is kernel level and requires secureboot on and active.
Complain about that in the steam forums though and ignorant troglodytes come out of the muck and filth to screech “cheater! Stupid boomer can’t figure it out!” and other drivel.
steam is so insufferable
If you use Rufus to burn the ISO into the USB, there is an option to patch the ISO to not require secure boot.
It’s not a windows issue, BF6 has a some requirements for their anti cheat including secure boot and TPM
What the actual bloody fuck, I didn’t know. Well, back to my Factorio I guess.
I basically never boot into windows except to play these anti cheat games with friends anyway, so I’ll just bite the bullet and deal with rebooting twice just to change OS to play the beta, but yeah it’s a weird ass requirement especially since it is apparently quite easy to exploit some vulnerable signed drivers to inject shit into memory anyway.
Even if you enable Secure Boot, you can disable BitLocker, and that will prevent this from happening.
The only thing BitLocker really does is make it so that if somebody steals your computer and doesn’t have your password, all of your files will be encrypted, so they don’t get your files too.
Depending on your risk preference, it is okay to disable it.
Of course, if your computer does not have a password, or if the password is something really easy, then there’s no point in bitlocker in the first place.
- The average user has no need to use Bitlocker
- The average user should be using a local account instead of a Microsoft Account.
- Using a Microsoft Account causes Bitlocker to auto-enable.
- Loss of access to your Microsoft Account when Bitlocker is enabled can cause loss of all your data.
- Microsoft can and will roundly ignore you if you lose access to your Microsoft Account.
Microsoft has painted users into a very dangerous corner. Security is vitally important, but not when it’s almost maliciously implemented.
Even as a security professional I understand that most people will be ill served by having their computer locked down like Fort Knox. There are ways of ensuring security without having all personal content go permanently poof with the slightest wrong move.
100% agree with the sentiment. Working in IT makes you realize how incapable some people can be with even the simplest computer tasks at times. What would you recommend as an alternative for secure data in the case of the average person? File level encryption instead of disk level? Wondering what would be the best way to go about getting my family to secure their private info.
For safety, backups are much better than encryption.
The only thing encryption does is prevent others from reading your data if the machine gets physically lost or stolen. And ironically, that might prevent a stolen machine from ever making it back into your hands.
For desktops, encryption of a machine that doesn’t have critically private/sensitive content is even dumber. I mean, if you have terabytes of CP or are a terrorist, then sure, lock that down to make the police earn their wages. Or do it even if you don’t, but you just want to give authorities the middle finger.
But not much on the average computer needs encryption so long as you keep good physical and network security. And the problem with that is much of it is behavioural - they will need to learn how to not do dangerous things online and off.
In order to protect data is a good backup system - something that just works, is dummy proof, can be administered remotely, and which can restore content easily and reliably.
On a Mac, nothing beats iCloud. It’s encrypted before it even gets uploaded, and Apple has repeatedly shown it cannot retrieve the content… it needs to be forcibly cracked.
On the PC (both Windows and Linux) I prefer Duplicati backing up to BackBlaze B2.
I absolutely agree with you, disk encryption is mostly against someone physically taking your device. Phones and laptops? Absolutely, yeah. Desktops? I have some faith in my door lock, and if the cops show up, have fun with my steam library. Most of the data that is interesting for law enforcement is on people’s phones nowadays, like regular contacts, media, or message histories. If you encrypt your desktop, sure, by all means do it, but it should be opt-in, not opt-out (or don’t-opt-at-all, microsoft).
I’m using hardware encryption, i.e. my data is too heavy to be stolen. The manual actually recommends two people lift it.
Oh hey, another T7500 owner! You have the second-CPU caddy installed in that thing?
Actually, it’s a Precision 690! Same case, though I’m pretty sure. And yes, I do have the second CPU installed. Dual Xeon 5355’s! And 32GB of DDR2. And a GTX 980TI.
What do you use yours for?
One is light hosting using VMs. It boots normally.
The other is for experimenting on various OS’ in VMs. It does not boot normally. Even before the 2nd CPU caddy, it always POSTed 10 times - no more, no less - with a memory error code before booting into the hypervisor. And yet, no issues with memory, no issues with RAM slots themselves. Or, at least, it’s affecting all 4 of the on-mobo slots equally.
That’s wild. Mine posts just fine, though it was very particular about the ram. I had to re-seat most of the 8 sticks several times. And one time it posted with memory errors when I had a dirty cpu pad on cpu 0. But now, it boots perfect every time.
Do you leave yourself running for extended periods? This thing seems like a power hog. Ive got dual Xeon 5355’s, 120W each. The GTX 980TI is 250W, and I’ve heard those sticks of ram are 10W each. I have been turning it off when im not actively doing something on it.
How can something “enable itself” while requiring a password?
it was already enabled, he just tripped secureboot.
It’s not strictly a password, it’s a recovery key for the encryption. The drive is unlocked automatically at boot by the key residing in the TPM, if the system “hasn’t been compromised”
Bitlocker is enabled by default on new Windows installations, and you can run into this situation by resizing partitions or messing around with your EFI partition. Disabling secure boot without disabling bitlocker first will result in this.
Make sure you have your recovery key, or completely disable bitlocker until you’re done provisioning your system (or uninstall windows altogether)
As nice as most distros are, I wouldn’t recommend installing it on Gpa’s/Parent’s PC, simply because if a problem arrives most people won’t be able to give them a fix easily, unless they also know how to use Linux.
i installed mint for my extremely non-technical parent and the only time they have issues is when trying to use windows stuff. so a non-issue.
Installed mint for an elderly relative that only uses it for YouTube and email, the only calls I get are when mozzila stops working because the version is too old
i just set up weekly auto-updates.
I’d rather the app stays as it is and doesn’t show new windows or randomly move about stuff because new updates. Modern crunch with constantly changing the UI and hiding everything isn’t helpful for elder relatives
Well, mine was one of the curious ones - once they disconnected from the WiFi and no neighbor could fix it, they had to wait a few days till I came over to help.
Hopefully Linux market share will improve and you can get lucky, but issues will inevitably happen - if you’re committed and close by, maybe you could try, but it sucks when you’re away
My grandpa fixes all of his Windows problems himself
absolute gigachad
Seems like Linux skills for IT people can become a gold mine.
I’m trying to get secure boot working on cachyOS using sbctl but my Razer Blade laptop’s bios seems locked and won’t let get it in setup mode. Anyone know if it’s possible to clear vendor keys on razer’s American mega trends UEFI?
You might get an answer on !linux@lemmy.world. I had a similar issue and eventually returned a minipc because of it.
I don’t know how to solve the locked UEFI, but there is Shim, a efi-stub which is signed and can be configured to validate your own keys. Here is the first documentation I found: https://wiki.gentoo.org/wiki/Shim.
Why the fuck is this the place where you ask that?
…and grounds for committing sudoku. 🤣
