Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.social/users/pid_eins/statuses/114635702859610652">Lennart Poettering (pid_eins@mastodon.social)'s status on Thursday, 12-Jun-2025 04:07:47 JST</a><a href="https://mastodon.social/@pid_eins" title="pid_eins@mastodon.social"><img src="https://gnusocial.jp/avatar/92094-48-20230126121211.webp" width="48" height="48" alt="Lennart Poettering" style="position: absolute; left: 0; top: 0;">Lennart Poettering</a><div><a href="https://mastodon.social/@pid_eins/114635682533049289" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/252638" title="siosm@floss.social">Timothée Ravier</a></li></ul></div></section><article><p><a href="https://chaos.social/@agowa338">@agowa338</a> <a href="https://floss.social/@siosm">@siosm</a> </p><p>also, it's actually mostly fine to boot from a compromised disk as long as every resource involved is properly authenticated. Of course, the less you boot the better, but again when resetting the disks like this we do this from the initrd, i.e. from the signed, vendor-supplied UKI in a short-lived environment, not from the rootfs that might be user (and thus attacker) controlled. </p><p>But I think ultimately we can just agree to disagree on the security model, no?</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5185703#notice-10172319">In conversation</a><time datetime="2025-06-12T04:07:47+09:00" title="Thursday, 12-Jun-2025 04:07:47 JST">about 13 days ago</time> <span>from <span><a href="https://gnusocial.jp/notice/10172319" rel="external" title="Sent from gnusocial.jp via ActivityPub">gnusocial.jp</a></span></span><a href="https://gnusocial.jp/notice/10172319">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Lennart Poettering (pid_eins@mastodon.social)'s status on Thursday, 12-Jun-2025 04:07:47 JSTLennart Poettering
in reply to
- Klaus Frank
- Timothée Ravier
@agowa338 @siosm
also, it's actually mostly fine to boot from a compromised disk as long as every resource involved is properly authenticated. Of course, the less you boot the better, but again when resetting the disks like this we do this from the initrd, i.e. from the signed, vendor-supplied UKI in a short-lived environment, not from the rootfs that might be user (and thus attacker) controlled.
But I think ultimately we can just agree to disagree on the security model, no?
In conversationabout 13 days ago from gnusocial.jppermalink

Public

Embed Notice

HTML Code

Corresponding Notice