The problem with this is that the bootloader downloads and runs the code without... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		joosters on Jan 18, 2016 \| parent \| context \| favorite \| on: Netboot The problem with this is that the bootloader downloads and runs the code without giving any chance to inspect it. If you download the code manually, how are you to know that the server sent you the exact same code? They could be checking HTTP headers for a bootloader device, or might only be infecting 1 in 100 downloads. You'd never spot it.

mavdi on Jan 18, 2016 [–]

You can always examine the code right? https://github.com/antonym/netboot.xyz/blob/master/src/coreo... Uses official images as far as I can see

joosters on Jan 18, 2016 | [–]

Sure, you could compile it yourself, then host it yourself. Relying on the remote server is the problematic part.

mavdi on Jan 18, 2016 | | [–]

I see. Correct.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact