(oddlama.org)

189 points arjvik | 1 comments | 17 Jan 25 03:00 UTC | HN request time: 0s | source

Show context

acheong08 ◴[17 Jan 25 04:12 UTC] No.42733994[source]▶

I don't understand why anyone would use passwordless disk encryption. It just seems inherently vulnerable, especially with the threat model of physical compromise.

Entering a password on boot isn't even that much work

replies(19): >>42734012 #>>42734073 #>>42734132 #>>42734171 #>>42734304 #>>42734370 #>>42734375 #>>42734397 #>>42734516 #>>42734734 #>>42734841 #>>42734892 #>>42734925 #>>42735445 #>>42736160 #>>42739068 #>>42740673 #>>42741392 #>>42742256 #

dangero ◴[17 Jan 25 04:43 UTC] No.42734171[source]▶

>>42733994 #

Depends on the use case. If boot requires a password, the computer can never lose power or be rebooted without human presence. That’s not always practical.

replies(3): >>42735690 #>>42735707 #>>42737170 #

1. tucnak ◴[17 Jan 25 09:32 UTC] No.42735707[source]▶

>>42734171 #

Google: IPMI, BMC

↑

Bypassing disk encryption on systems with automatic TPM2 unlock