пт, 27 сент. 2019 г. в 16:50, Lennart Poettering <mzerqung@xxxxxxxxxxx>:
1. full disk encryption with the user typing in the password on the
kbd. But isn't the answer to this to link the root OS to the tpm
instead, and use user-keyed crypto only for $HOME? The OS itself
doesn't need to be protected after all, everbody should have the
same files there anyway, it's $HOME that needs protection.
It is still hard (due to the old, now expired, self-embargo) to buy any PC with a TPM in Russia.
Alexander E. Patrakov
_______________________________________________ systemd-devel mailing list systemd-devel@xxxxxxxxxxxxxxxxxxxxx https://lists.freedesktop.org/mailman/listinfo/systemd-devel
