On Wed, 19 Apr 2023 07:53:33 +0200 Andreas Fournier <andreas.fournier@xxxxxxxxxx> wrote: > I just read this article about weaknesses in Linux disk encryption > https://mjg59.dreamwidth.org/66429.html > and wonder how it applies to Fedora? > Can the instructions in the article be applied to a Fedora > installation? > Fedora has version 2.06 of grub2 which has support for argon2id patched in, though it is slated to be native in the 2.11 release of grub2. https://www.phoronix.com/news/GRUB-2.11-Next-Year However it is much later than a year, and 2.11 is not out. There were extensive discussions of including a patch to allow it in 2.06 https://lists.gnu.org/archive/html/grub-devel/2020-02/msg00040.html And it seems that support was added. Fedora has the argon2 package. https://packages.fedoraproject.org/pkgs/argon2/argon2/index.html I see this reference to a patch to add argon2 support to grub2 for Arch: https://mdleom.com/blog/2022/11/27/grub-luks2-argon2/ I haven't done it, but after doing this research, I think the answer to your question is yes, you can follow those instructions in Fedora. What isn't clear to me is if it is possible to do it directly without following those instructions. That is, is there native argon2id support now backported to grub2 2.06? Maybe someone with direct experience can give better tuned advice. _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
