Heinz Diehl <htd@xxxxxxxxxxxxxxxxx> wrote:
> On 04.11.2010, Arno Wagner wrote:
>> Having a not completely encrypted initrd and kernel does
> How would you boot such a system when initramfs / initrd is encrypted?
Enable your boot-loader to decrypt it. Meanwhile, grub can do this.
This somewhat reduces but, of course, not eliminates the trust-problem:
instead of having to trust your hardware, BIOS, boot-loader, kernel, and
initramfs, you now have to trust your hardware, BIOS, and boot-loader
only.
regards
Mario
--
Wine is fine, but wiskey is quicker. Suicide is slow with liquor.
-- Ozzy Osbourne
_______________________________________________
dm-crypt mailing list
dm-crypt@xxxxxxxx
http://www.saout.de/mailman/listinfo/dm-crypt
