fmaury/Broken-by-Design
1
0
Fork 0
Code Pull requests Releases Activity Actions

remove double space in secure boot post
All checks were successful
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/pr Build is passing
Details

Browse source
This commit is contained in:
Florian Maury 2022-11-30 09:35:46 +01:00
parent c4a5bf28b0
commit 33dfef3746
No known key found for this signature in database
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
posts/secure_boot.md
View file

@ -217,7 +217,7 @@ of physical access or remote access through a BMC, what is? Is there a better
solution?
Well, to the best of the author knowledge, there is one: using a TPM. Using a
TPM will not necessarily  prevent an attacker from tainting the firmware. It
TPM will not necessarily prevent an attacker from tainting the firmware. It
will not necessarily prevent booting untrusted and unverified executables. What
a TPM can give us is the ability to unseal a LUKS passphrase and get access to
user data if and only if the cryptographically verified right version of UEFI