Celejar: > Jochen Schulz <[email protected]> wrote: >> Celejar: >>> >>> Why does putting /boot on a USB stick gain you anything? >> >> Because an unencrypted /boot may be altered by an attacker without you >> noticing it. Theoretically, the kernel may be replaced by another one >> that reports your passphrase to the attacker. > > Oh, basically the Evil Maid attack. Fair enough. But then you have to > make sure the attacker can't flash the BIOS ...
Exactly. I didn't remember there was a name for this attack.
J.
--
There is no justice in road accidents.
[Agree] [Disagree]
<http://www.slowlydownward.com/NODATA/data_enter2.html>
signature.asc
Description: Digital signature
