In https://github.com/rootkovska/x86_harmful/blob/master/x86_harmful.md Joanna Rutkowska remarked that:
> Tails has long been (falsely) advertised as being capable of > providing security even on a previously compromised laptop^[E.g. a > laptop which used to run e.g. Windows OS that got subsequently > compromised.], as long as the adversary has not been allowed to > tamper with the hardware ... Tails still has a remark like this in the Warning page: https://tails.boum.org/doc/about/warning/index.en.html#index1h1 > If the computer has been compromised by someone having physical > access to it and who installed untrusted pieces of hardware (like a > keylogger), then it might be unsafe to use Tails. I am not sure how best to phrase this, but would suggest the following patch: --- a/wiki/src/doc/about/warning.mdwn +++ b/wiki/src/doc/about/warning.mdwn @@ -13,9 +13,10 @@ make a good use of it. Tails does not protect against compromised hardware =================================================== -If the computer has been compromised by someone having physical access -to it and who installed untrusted pieces of hardware (like a -keylogger), then it might be unsafe to use Tails. +If the computer has been compromised by someone who installed +untrusted pieces of hardware (like a keylogger), or was able to +compromise low-level firmware or the BIOS, then it might be unsafe +to use Tails. <a id="untrusted_system"></a> Cheers! _______________________________________________ Tails-dev mailing list [email protected] https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to [email protected].
