ctome
/
tldr
mirror of https://github.com/CrimsonTome/tldr.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

sbctl: add page (#13275)

pull/28/head
Lena 2024-07-17 23:56:56 +02:00 committed by GitHub
parent b826b6939a
commit a193e20f06
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 29 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

29
pages/linux/sbctl.md Normal file
View File

@ -0,0 +1,29 @@
# sbctl
> A user-friendly secure boot key manager.
> Note: not enrolling Microsoft's certificates can brick your system. See <https://github.com/Foxboron/sbctl/wiki/FAQ#option-rom>.
> More information: <https://github.com/Foxboron/sbctl#usage>.
- Show the current secure boot status:
`sbctl status`
- Create custom secure boot keys (everything is stored in `/usr/share/secureboot`):
`sbctl create-keys`
- Enroll the custom secure boot keys and Microsoft's UEFI vendor certificates:
`sbctl enroll-keys --microsoft`
- Sign an EFI binary with the created key and save the file to the database:
`sbctl sign {{-s|--save}} {{path/to/efi_binary}}`
- Re-sign all the saved files:
`sbctl sign-all`
- Verify that all EFI executables on the EFI system partition have been signed:
`sbctl verify`