1 |
>-----Original Message----- |
2 |
>From: Rich Freeman <rich0@g.o> |
3 |
>Sent: Monday, March 21, 2022 1:08 PM |
4 |
>To: gentoo-user@l.g.o |
5 |
>Subject: Re: [gentoo-user] KDE, sddm etc security. Plus LVM question. |
6 |
> |
7 |
>On Mon, Mar 21, 2022 at 2:30 PM Laurence Perkins <lperkins@×××××××.net> wrote: |
8 |
>> |
9 |
>> Having it remain unlocked and capable of rebooting unless the accelerometer showed movement I think was an option since the TPM kept monitoring even if the mains power was interrupted. |
10 |
>> |
11 |
> |
12 |
>Yeah, there might still be ways to accomplish it with features like this. |
13 |
> |
14 |
>> |
15 |
>> Could probably do something similar these days with one of those $3 bluepill boards and one of those new 3d printers capable of embedding metal though. |
16 |
> |
17 |
>Or you could just use the TPM that is probably already in your computer... :) |
18 |
> |
19 |
>-- |
20 |
>Rich |
21 |
> |
22 |
> |
23 |
The TPM in most computers doesn't dump the keys if someone tries to open the case to install hardware sniffers.
|
24 |
|
25 |
Not that it isn't sufficient for the average person's security needs, but it definitely still has a lot of attack vectors.
|
26 |
|
27 |
A case with active mesh and a customizable TPM module with extra sensors, hardware overrides, and that could take standard-sized desktop components might be useful for small business applications where they have sensitive data but can't afford a whole secured data center.
|
28 |
|
29 |
LMP |