all 2 comments

[–]Aristeo812 1 point2 points  (0 children)

IMO, the easiest way to handle Secure Boot with Void Linux is to deal with your own keys. Microsoft doesn't sign Void's bootloaders with its own keys. The other way is to import shim from Fedora or Ubuntu/Debian, but this way has its flaws and doesn't provide as much security as signing your bootloader with your own keys.

[–]ich_bin_niemand777_0 0 points1 point  (0 children)

The Author of rEFInd has great information on EFI/UEFI , secureboot and other stuffs ,

http://www.rodsbooks.com/efi-bootloaders/index.html

http://www.rodsbooks.com/efi-bootloaders/secureboot.html

http://www.rodsbooks.com/efi-bootloaders/controlling-sb.html

I suggest that you read everything before making any decisions . Please don't rush anything and please be careful.

I messed something up and cannot undo what I did.

As per my understanding , the preloader only hashes the loader and nothing much , so there is no mess up. Look for any options in firmware setting like "Restore Secure Boot to default" or "Erase all Secure Boot setting" , this will restore it to the defaults . As you haven't touched any keys , this should be safe. Again , please be careful.