All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

UEFI HTTP(S) Boot with QEMU/OVMF: A Modern Alternative to PXE

By

jtlebigot

16h ago· 15 min readen
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

Sesame, salt, and substance. A flagship bake.

Score100Typehow-toSentimentneutral

Summary

This article discusses UEFI HTTP(S) boot as a modern alternative to the traditional PXE network booting protocol. It explains how PXE relies on DHCP and TFTP, which are difficult to configure, hard to make highly available, and lack security due to clear-text unsigned protocols. The article highlights that HTTPS with TLS certificates provides server authentication, integrity, and confidentiality, making it a superior solution for network booting, especially over the Internet where man-in-the-middle attacks are a concern.

Key quotes

· 4 pulled
The historic go-to solution for network booting is PXE.
It is tricky to correctly configure, even trickier to make it highly available and good luck with the security with this clear-text unsigned protocol.
The modern web has long standardized on HTTPS with TLS certificates for server authentication, integrity and confidentiality.
Even better, the encryption layer makes it practical to boot over the Internet without immediately facing the threat of a man-in-the-middle attack.
Snippet from the RSS feed
The historic go-to solution for network booting is PXE. PXE is based on DHCP and TFTP. It is tricky to correctly configure, even trickier to make it highly available and good luck with the security with this clear-text unsigned protocol.

You might also wanna read

Wayland Protocols 1.49 Released With Enhanced Multi-GPU DMA-BUF Support

Wayland Protocols 1.49 has been released by Simon Ser, bringing improved multi-GPU support through the linux-dmabuf-v1 protocol. The update,

phoronix.com·5d ago

Google Cloud and Canonical release certified Ubuntu images for TPU VMs

Google Cloud and Canonical have announced the release of certified Ubuntu images for Tensor Processing Unit (TPU) VMs, covering TPU generati

theregister.com·13d ago

ReactOS open-source Windows NT clone reaches ARM64 boot milestone on Raspberry Pi 5

ReactOS, the open-source project aiming to recreate Windows NT, has achieved a new milestone by booting on ARM64 architecture. The experimen

theregister.com·13d ago

Xplorer: A Local-First API Client for Secure Development

Xplorer is a secure, local-first API client that runs existing Postman collections without requiring migration. It operates entirely locally

Product Hunt·6mo ago

ReactOS Achieves Experimental ARM64 Support, Boots on Apple Silicon via QEMU

ReactOS, the open-source project aiming for binary compatibility with Microsoft Windows, has achieved experimental support for running on 64

phoronix.com·17d ago