On Fri, Dec 07, 2018 at 12:25:30PM -0600, mcatanzaro@xxxxxxxxx wrote: > But most of / is not sensitive data on Workstation. We are only > concerned with encrypting possibly-sensitive data. That's /home, > /tmp (tmpfs, no worries there), portions of /var, maybe bits of > /etc, and swap. We don't necessarily need to encrypt the whole thing > with a passphrase like our current LUKS setup. Giving up on /etc is > probably reasonable as we don't need to have perfect security, just > good enough security. But stuff like system journal in /var could be > problematic. One possible problem with this is "whole disk encryption" as a checkbox in corporate BYOD security policies. -- Matthew Miller <mattdm@xxxxxxxxxxxxxxxxx> Fedora Project Leader _______________________________________________ desktop mailing list -- desktop@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to desktop-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/desktop@xxxxxxxxxxxxxxxxxxxxxxx
