Am 27.09.19 um 13:49 schrieb Lennart Poettering: > 1. full disk encryption with the user typing in the password on the > kbd. But isn't the answer to this to link the root OS to the tpm > instead, and use user-keyed crypto only for $HOME? The OS itself > doesn't need to be protected after all, everbody should have the > same files there anyway, it's $HOME that needs protection.
outside a desktop machine wrong /var/lib /etc besides that there are runtime data and configs with sensible informations it's also about prevent manipulation and not only about to read something _______________________________________________ systemd-devel mailing list systemd-devel@lists.freedesktop.org https://lists.freedesktop.org/mailman/listinfo/systemd-devel
