.
2) Instead of hard-coding GUIDs, add a kernel module parameter to
specify the GUIDs. Maybe have a default list in the kernel module.
3) Add a mount option to specify the protected GUIDs.
Feedback is welcome.
--
Benjamin Drung
System Developer
Debian & Ubuntu Developer
ProfitBricks
Am Mittwoch, den 14.02.2018, 13:09 + schrieb Ard Biesheuvel:
> On 14 February 2018 at 12:52, Benjamin Drung
> wrote:
> > Hi,
> >
> > I am exploring the possibility to store SSH and other keys in UEFI
> > variables for systems that do not have persistent stora
Am Mittwoch, den 14.02.2018, 19:18 +0100 schrieb Môshe van der Sterre:
> On 02/14/2018 02:21 PM, Benjamin Drung wrote:
> > If the UEFI is as secure as storing an unencrypted file on a hard
> > drive, I am satisfied. Or do you have a better idea where to store
> > the
> &