I think:
If you have secure boot enabled, you need to have a boot.img that is signed by a key stored in the bootloader
by default every Pi comes pre-loaded with a key managed by Raspberry Pi and they use that to sign the usbboot programs
you can revoke this key and put your own in the bootloader so that the Pi will refuse to run "official" software
If you have secure boot enabled, you need to have a boot.img that is signed by a key stored in the bootloader
by default every Pi comes pre-loaded with a key managed by Raspberry Pi and they use that to sign the usbboot programs
you can revoke this key and put your own in the bootloader so that the Pi will refuse to run "official" software
Statistics: Posted by wcl55 — Wed Jul 09, 2025 7:49 am