From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 141FF138CCA for ; Mon, 30 Mar 2015 08:10:18 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 6DCFBE08EB; Mon, 30 Mar 2015 08:10:12 +0000 (UTC) Received: from mail-wg0-f51.google.com (mail-wg0-f51.google.com [74.125.82.51]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 3A8EAE08E1 for ; Mon, 30 Mar 2015 08:10:11 +0000 (UTC) Received: by wgdm6 with SMTP id m6so164120897wgd.2 for ; Mon, 30 Mar 2015 01:10:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:reply-to:to:subject:date:user-agent:references:in-reply-to :mime-version:content-type:content-transfer-encoding:message-id; bh=3iHwOp7KoFLrp6eLYSeoi5t68JjHTpqfDCG7vmpTtuE=; b=BIphpP9PcKljQ/gW3ZL4BzHoLCQJ1QLZrjg7jYoyMcSxmO4hj0T7kYPgXNoG4NLOvx JJOV/SSVNW0LBB5owtvkjuQ4ScfJ9rd3kqPxVJxaxdZkohWBboUm0ElXYqKu4nf1KJ6v F3eVI39oYUevDtYGPfoqNK6COI8GQLK+gt3zM7WklIApPh5zx3PC2aAAKjayyG3qhfam IEkv+0q3/Y2baplpKMBuDlg99tHE55RGKbHhb1yqwoudnb+Nrzxa1FkGalwhRoY7uOso ZV73qRIxOhwdEhzEJ6+3gEv8olr0fecBTNZ0pYPMvhmbbX/1e45YezPPMBEZEug4pvM9 yB6A== X-Received: by 10.194.5.37 with SMTP id p5mr61859282wjp.20.1427703010006; Mon, 30 Mar 2015 01:10:10 -0700 (PDT) Received: from dell_xps.localnet (230.3.169.217.in-addr.arpa. [217.169.3.230]) by mx.google.com with ESMTPSA id ga8sm14564422wib.11.2015.03.30.01.10.08 for (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Mon, 30 Mar 2015 01:10:09 -0700 (PDT) From: Mick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] How to poweroff the system from user? Date: Mon, 30 Mar 2015 09:09:43 +0100 User-Agent: KMail/1.13.7 (Linux/3.18.9-gentoo; KDE/4.14.3; x86_64; ; ) References: <20150321152656.a82a84b3e8a32c8b68554548@gmail.com> <20150330003221.GA12204@waltdnes.org> In-Reply-To: Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/signed; boundary="nextPart1850671.1RQ4tqgSJX"; protocol="application/pgp-signature"; micalg=pgp-sha256 Content-Transfer-Encoding: 7bit Message-Id: <201503300910.05657.michaelkintzios@gmail.com> X-Archives-Salt: 5ce82194-3eec-4c35-a81b-a83296060a9e X-Archives-Hash: 7736a6110abfdd85bfea0a2f0f80e37a --nextPart1850671.1RQ4tqgSJX Content-Type: Text/Plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable On Monday 30 Mar 2015 01:52:14 Rich Freeman wrote: > On Sun, Mar 29, 2015 at 8:32 PM, Walter Dnes wrot= e: > > Be careful what you wish for. I have my doubts that TPM chips would > >=20 > > boot linux with Microsoft offering "volume discounts" to OEMS. Call me > > cynical. >=20 > TPM chips don't control what boots. They just accept the hash of the > bootloader reported by the firmware and store it (and that is it as > far as the OEM's contribution to the process).=20 Rich, the problem with TPM as I understand it is that the private key in th= e=20 TPM chip is not yours, generated on your trusted platform, but the TPM=20 manufacturer's and is burned into the TPM chip at the time of production. = If=20 the TPM OEMs are in US or within the sphere of influence of the US, then I= =20 would consider this key as good as compromised. =2D-=20 Regards, Mick --nextPart1850671.1RQ4tqgSJX Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part. -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAABCAAGBQJVGQTdAAoJELAdA+zwE4YeGJYIAIvBhAP/u0xK0xZv1Rde9xDK 1gXBdBBFDxZoqnxtkME14jYCirMW1eWDMI4+NiAjoxYax5D3ryXoApCHINSs0s03 3oWtSIs6pvb48rReW69cuymgDsp1SED4Ym+043UtUOLAM17c1+O9ks8HYIAlw4a2 +9xc+bPenIsLwPCrVYYiHDZMajb9zB4G+8gwWiF/+PMEwkgQU0ws9Kz2j4+dsLsb sVM92ZkP9GMVsLyo0CIZtZwsotIDpF96fWvUcL+1EukdZ61WztFomjDKhYT4iioJ f110XD0ISt4ia996vYPOm7W6bR/g57spj8c7r1JYC0fh2QdpZyeQmYjuj/nYNj4= =dXxh -----END PGP SIGNATURE----- --nextPart1850671.1RQ4tqgSJX--