| 1 |
>-----Original Message----- |
| 2 |
>From: Rich Freeman <rich0@g.o> |
| 3 |
>Sent: Monday, March 21, 2022 1:08 PM |
| 4 |
>To: gentoo-user@l.g.o |
| 5 |
>Subject: Re: [gentoo-user] KDE, sddm etc security. Plus LVM question. |
| 6 |
> |
| 7 |
>On Mon, Mar 21, 2022 at 2:30 PM Laurence Perkins <lperkins@×××××××.net> wrote: |
| 8 |
>> |
| 9 |
>> Having it remain unlocked and capable of rebooting unless the accelerometer showed movement I think was an option since the TPM kept monitoring even if the mains power was interrupted. |
| 10 |
>> |
| 11 |
> |
| 12 |
>Yeah, there might still be ways to accomplish it with features like this. |
| 13 |
> |
| 14 |
>> |
| 15 |
>> Could probably do something similar these days with one of those $3 bluepill boards and one of those new 3d printers capable of embedding metal though. |
| 16 |
> |
| 17 |
>Or you could just use the TPM that is probably already in your computer... :) |
| 18 |
> |
| 19 |
>-- |
| 20 |
>Rich |
| 21 |
> |
| 22 |
> |
| 23 |
The TPM in most computers doesn't dump the keys if someone tries to open the case to install hardware sniffers.
|
| 24 |
|
| 25 |
Not that it isn't sufficient for the average person's security needs, but it definitely still has a lot of attack vectors.
|
| 26 |
|
| 27 |
A case with active mesh and a customizable TPM module with extra sensors, hardware overrides, and that could take standard-sized desktop components might be useful for small business applications where they have sensitive data but can't afford a whole secured data center.
|
| 28 |
|
| 29 |
LMP |
Archives