[syslinux] checksum on what was downloaded
Oscar Roozen
oscar.roozen at brightcomputing.com
Tue Aug 18 01:34:56 PDT 2015
> Assume you are in hostile environment,
> as in you can't trust the DHCP serversss nor the TFTP/HTTP server.
> So you would want a checksum on kernel and initrd.
>
> Which checksum algoritme is available in pxelinux.0?
> Which checksum algoritme could be integrate into pxelinux.0?
>
> In other words: Please advice what could be done
> to verify what pxelinux.0 did download.
Chicken and Egg squared. How do you trust the pxelinux.0 that came
from the same source?
EFI does provide a solution. Take a lot of coffee and google for Secure Boot.
More information about the Syslinux
mailing list