Hi, I finally was getting around to installing Fedora on my wife's new Dell Latitude 7450 but am unclear about the security settings in the BIOS Setup and was wondering what advice anyone could offer. This machine will only run Fedora and Windoze will be wiped out (the sooner the better). So, the BIOS Setting has the following: Secure Boot: should this be disabled? I guess so, because it is su[[[osed to ensure that the system only uses validated software (which I guess would be to Windoze). TPM 2.0 Security On/Off -- I presume this should be switched off? THere is also an Intel Total Memory Encryption to prtect memory from physical attachs. By default set to be Off. There is also a Absolute, formerly Absolute Computrace, designed to help track devices. I am not sure it is worth much, but the default is Enable. Should this be disabled? UEFI Boot Path Security that controls whether the system will prompt the user to enter the admin path when booting to a UEFI boot path from F12. While the default is Always Except Internal HDD, should I just change this to Never? There is a Firmware Device Tamper Detection that is Disabled/Enabled/Silent, and Silent by default. My goal is to make minimal changes subject to flawless interference with Fedora operations. Thank you very much for your help! Best wishes, Ranjan -- _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue