On Thu, Mar 19, 2020 at 05:04:36PM +0100, Marius Schwarz wrote: > Am 19.03.20 um 15:52 schrieb Momčilo Medić: > > > > I'm not familiar with TPM chips, but from what I read here it sounds > > like there would be no password prompt and anyone would be able to boot > > the device, no? > > > > > > correct and thats the main issue, as long you have grub where you can > edit the kernel line to start in runlevel 1. > This makes the encryption null and void. > You can protect the Grub editting with a password.
-- Petr
signature.asc
Description: PGP signature
_______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
