From: Mick <michaelkintzios@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] How to poweroff the system from user?
Date: Mon, 30 Mar 2015 09:00:21 +0100 [thread overview]
Message-ID: <201503300900.30713.michaelkintzios@gmail.com> (raw)
In-Reply-To: <20150330003221.GA12204@waltdnes.org>
[-- Attachment #1: Type: Text/Plain, Size: 1059 bytes --]
On Monday 30 Mar 2015 01:32:21 Walter Dnes wrote:
> On Sun, Mar 29, 2015 at 03:30:07PM -0400, Rich Freeman wrote
>
> > With TPM, full-disk encryption, and a verified boot path, you could
> > actually protect against that scenario (they'd have to tear apart the
> > TPM chip and try to access the non-volatile storage directly, and the
> > chips are specifically designed to defeat this). Secure boot would
> > not hurt either (with your own keys). Of course, they could still try
> > to hack in via USB/PCI/etc, or plant keyloggers and such. I'm not
> > suggesting physical security isn't important. It just isn't a good
> > reason to completely neglect console security.
>
> Be careful what you wish for. I have my doubts that TPM chips would
> boot linux with Microsoft offering "volume discounts" to OEMS. Call me
> cynical.
Well, yes, post Snowden revelations we can reasonably suspect that the TPM
OEMs have degraded the randomness of the chip sufficiently for spooks to be
able to crack your keys.
--
Regards,
Mick
[-- Attachment #2: This is a digitally signed message part. --]
[-- Type: application/pgp-signature, Size: 473 bytes --]
next prev parent reply other threads:[~2015-03-30 8:00 UTC|newest]
Thread overview: 93+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-03-21 19:26 [gentoo-user] How to poweroff the system from user? German
2015-03-21 19:34 ` Alexander Kapshuk
2015-03-21 19:35 ` Alexander Kapshuk
2015-03-21 22:38 ` Fernando Rodriguez
2015-03-21 22:52 ` Emanuele Rusconi
2015-03-21 23:03 ` Fernando Rodriguez
2015-03-21 19:39 ` German
2015-03-21 19:47 ` Rich Freeman
2015-03-21 19:58 ` Canek Peláez Valdés
2015-03-26 0:46 ` microcai
2015-03-29 11:55 ` Volker Armin Hemmann
2015-03-29 12:33 ` Jorge Almeida
2015-03-29 12:44 ` Rich Freeman
2015-03-21 20:01 ` German
2015-03-21 20:17 ` Jc García
2015-03-21 20:09 ` Fernando Rodriguez
2015-03-21 20:32 ` Philip Webb
2015-03-21 20:50 ` Rich Freeman
2015-03-21 20:58 ` German
2015-03-21 22:20 ` Jc García
2015-03-22 10:30 ` Peter Humphrey
2015-03-22 11:04 ` [gentoo-user] " Nikos Chantziaras
2015-03-22 11:27 ` Peter Humphrey
2015-03-22 15:58 ` Philip Webb
2015-03-22 19:13 ` Nikos Chantziaras
2015-03-22 20:12 ` Philip Webb
2015-03-22 23:18 ` Nikos Chantziaras
2015-03-22 21:13 ` Matti Nykyri
2015-03-29 10:23 ` lee
2015-03-31 5:57 ` Fernando Rodriguez
2015-03-31 6:38 ` Fernando Rodriguez
2015-03-31 9:36 ` Tom H
2015-03-31 9:42 ` Emanuele Rusconi
2015-03-31 17:13 ` Tom H
2015-04-04 12:41 ` lee
2015-04-04 15:16 ` Rich Freeman
2015-04-07 20:10 ` lee
2015-04-07 20:24 ` lee
2015-04-04 22:36 ` Fernando Rodriguez
2015-04-07 19:21 ` lee
2015-04-07 20:43 ` Fernando Rodriguez
2015-04-07 21:27 ` Neil Bothwick
2015-04-08 21:47 ` lee
2015-04-14 21:07 ` Emanuele Rusconi
2015-04-14 22:06 ` lee
2015-04-14 23:02 ` Neil Bothwick
2015-05-09 15:13 ` lee
2015-04-04 22:37 ` Neil Bothwick
2015-04-05 7:27 ` Dale
2015-04-05 11:24 ` Rich Freeman
2015-04-05 15:13 ` Dale
2015-03-22 20:36 ` [gentoo-user] " Jc García
2015-03-23 9:46 ` Peter Humphrey
2015-03-23 10:12 ` 回复:Re: " Nicol TAO
2015-03-23 11:28 ` Rich Freeman
2015-03-23 12:13 ` [gentoo-user] " Nikos Chantziaras
2015-03-23 12:16 ` Matti Nykyri
2015-03-23 13:32 ` Nikos Chantziaras
2015-03-23 12:16 ` [gentoo-user] " Emanuele Rusconi
2015-03-29 10:43 ` lee
2015-03-29 23:20 ` Walter Dnes
2015-03-29 19:30 ` Rich Freeman
2015-03-30 0:32 ` Walter Dnes
2015-03-30 0:52 ` Rich Freeman
2015-03-30 8:09 ` Mick
2015-03-30 9:41 ` Rich Freeman
2015-03-30 8:00 ` Mick [this message]
2015-04-04 12:47 ` lee
2015-03-21 22:51 ` Fernando Rodriguez
2015-03-22 6:32 ` German
2015-03-22 6:49 ` Matti Nykyri
2015-03-22 7:06 ` German
2015-03-22 7:11 ` Alexander Kapshuk
2015-03-22 7:22 ` Matti Nykyri
2015-03-22 7:19 ` Fernando Rodriguez
2015-03-22 7:30 ` German
2015-03-22 7:34 ` Matti Nykyri
2015-03-22 7:35 ` Fernando Rodriguez
2015-03-22 7:55 ` German
2015-03-22 7:47 ` Fernando Rodriguez
2015-03-22 7:57 ` German
2015-03-23 1:39 ` Walter Dnes
2015-03-22 7:31 ` Fernando Rodriguez
2015-03-22 7:35 ` Matti Nykyri
2015-03-22 7:55 ` Fernando Rodriguez
2015-03-22 7:56 ` German
2015-03-26 0:53 ` microcai
2015-03-26 15:36 ` Tom H
2015-03-22 7:41 ` [gentoo-user] " Nikos Chantziaras
2015-03-26 1:46 ` [gentoo-user] " wabenbau
2015-03-26 16:13 ` [gentoo-user] " Hans
2015-03-26 16:28 ` Francisco Ares
2015-03-26 19:02 ` Emanuele Rusconi
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=201503300900.30713.michaelkintzios@gmail.com \
--to=michaelkintzios@gmail.com \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox