Bypassing disk encryption on systems with automatic TPM2 unlock

(oddlama.org)

189 points arjvik | 2 comments | 17 Jan 25 03:00 UTC | HN request time: 0.001s | source

Show context

acheong08 ◴[17 Jan 25 04:12 UTC] No.42733994[source]▶

I don't understand why anyone would use passwordless disk encryption. It just seems inherently vulnerable, especially with the threat model of physical compromise.

Entering a password on boot isn't even that much work

replies(19): >>42734012 #>>42734073 #>>42734132 #>>42734171 #>>42734304 #>>42734370 #>>42734375 #>>42734397 #>>42734516 #>>42734734 #>>42734841 #>>42734892 #>>42734925 #>>42735445 #>>42736160 #>>42739068 #>>42740673 #>>42741392 #>>42742256 #

toast0 ◴[17 Jan 25 18:09 UTC] No.42741392[source]▶

>>42733994 #

I would consider it for my hosted server.

Entering a password on boot is a lot of work, because I need to vpn in, and run a java webstart kvm application (serial over ipmi would work better, but it doesn't work well on the hardware I have).

Encrypted disks is a requirement because I don't trust the facility to wipe disks properly. But I assume I would be able to clear the TPM (if present) when I return the machine. And I could store a recovery key somewhere I think is safe in case of hardware issues (although, last time I had hardware issues, I simply restored from backup to new to me disks)

replies(2): >>42741819 #>>42742791 #

1. gizmo ◴[17 Jan 25 20:15 UTC] No.42742791[source]▶

>>42741392 #

Dropbear is the solution for this.

replies(1): >>42743656 #

2. toast0 ◴[17 Jan 25 21:53 UTC] No.42743656[source]▶

>>42742791 (TP) #

Well, if the FreeBSD installer would set that up for me, I probably would have done it that way, but lazy, and I don't reboot that often.

↑