{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreih2gryyrh7gmf6deyzxl5rvki57abs7a2udebtwfck7d7cd72x25m",
    "uri": "at://did:plc:46ti67tc37qcmwp2vaynk6fq/app.bsky.feed.post/3mnkv3itx4to2"
  },
  "path": "/2026/06/05#secure_boot_ca_rollover_docs",
  "publishedAt": "2026-06-05T19:35:21.264Z",
  "site": "https://blog.einval.com",
  "tags": [
    "some\nadvice",
    "https://wiki.debian.org/SecureBoot/CAChanges"
  ],
  "textContent": "I previously wrote some\nadvice for developers and distributions about the upcoming Microsoft CA Rollover, and I hope that was useful for people.\n\nI've now also added some user-facing documentation about the CA rollover in the Debian wiki at https://wiki.debian.org/SecureBoot/CAChanges. I've added guidance on managing certificate updates on Debian systems: how to check if a system needs those updates and various ways to make them happen. If you're running Secure Boot systems, this may be important for you.\n\nWhile the same event is the primary cause for these docs, they're designed for different people. Again, I hope this new doc is helpful!",
  "title": "Steve McIntyre: Secure Boot and Microsoft CA Rollover - user-facing documentation",
  "updatedAt": "2026-06-05T17:20:00.000Z"
}