Linux

10014 readers

502 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago

MODERATORS

submitted 3 weeks ago by cm0002@lemmy.zip to c/linux@programming.dev

22 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] possiblylinux127@lemmy.zip 2 points 3 weeks ago (6 children)

TPMs protect against evil maid attacks

Android has a nice solution with the system vs user encryption

[–] sapousername@mastodon.uno 0 points 3 weeks ago (5 children)

@possiblylinux127 And allows to decrypt the disk if someone steals your laptop: it can just turn it on to read it...

[–] possiblylinux127@lemmy.zip 1 points 3 weeks ago (4 children)

That isn't how TPMs work

The TPM checks the signature of the software with the signature it has internally. If that signature changes it will refuse to release the keys.

[–] sapousername@mastodon.uno 0 points 3 weeks ago* (last edited 3 weeks ago) (1 children)

@possiblylinux127 Exactly. So if someone steals your laptop it can just press the power on button to read your disk. Security my ass.

[–] possiblylinux127@lemmy.zip 1 points 3 weeks ago (1 children)

...if they can log in

[–] sapousername@mastodon.uno -2 points 3 weeks ago (1 children)

Call this security... It's just a marketing lock-in strategy. A good old password is all you need for encrypting a disk.

[–] possiblylinux127@lemmy.zip 2 points 3 weeks ago

...Except none of that is true

load more comments (2 replies)