Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.social/users/pid_eins/statuses/113032916445886366">Lennart Poettering (pid_eins@mastodon.social)'s status on Tuesday, 27-Aug-2024 23:07:58 JST</a><a href="https://mastodon.social/@pid_eins" title="pid_eins@mastodon.social"><img src="https://gnusocial.jp/avatar/92094-48-20230126121211.webp" width="48" height="48" alt="Lennart Poettering" style="position: absolute; left: 0; top: 0;">Lennart Poettering</a><div><a href="https://mastodon.social/@pid_eins/113032903145102476" rel="in-reply-to">in reply to</a></div></section><article><p>Much more interesting is Measured Boot when tying disk encryption to it. Various OSes, including Windows have been supporting this since about forever. And it's so much better: it basically makes no restrictions on what you can run on your PC. All it enforces is: my encrypted disk can only be decrypted if the OS of my choice is booted in the version of my choice. And that's a *way* more powerful concept, because it is *focussed* on your installation, because…</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3576545#notice-7016901">In conversation</a><time datetime="2024-08-27T23:07:58+09:00" title="Tuesday, 27-Aug-2024 23:07:58 JST">about 2 months ago</time> <span>from <span><a href="https://mastodon.social/@pid_eins/113032916445886366" rel="external" title="Sent from mastodon.social via ActivityPub">mastodon.social</a></span></span><a href="https://mastodon.social/@pid_eins/113032916445886366">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Lennart Poettering (pid_eins@mastodon.social)'s status on Tuesday, 27-Aug-2024 23:07:58 JST Lennart Poettering
in reply to
Much more interesting is Measured Boot when tying disk encryption to it. Various OSes, including Windows have been supporting this since about forever. And it's so much better: it basically makes no restrictions on what you can run on your PC. All it enforces is: my encrypted disk can only be decrypted if the OS of my choice is booted in the version of my choice. And that's a *way* more powerful concept, because it is *focussed* on your installation, because…
In conversationabout 2 months ago from mastodon.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice