[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: TPM chip and Grub bootloader
From: |
Marco Gerards |
Subject: |
Re: TPM chip and Grub bootloader |
Date: |
Thu, 31 May 2007 18:40:31 +0200 |
User-agent: |
Gnus/5.110006 (No Gnus v0.6) Emacs/21.4 (gnu/linux) |
Stefan Reinauer <address@hidden> writes:
> * Robert Millan <address@hidden> [070530 15:18]:
>> IOW, no matter who the keys belong to, the problem is there's a component in
>> the hardware I paid for that is hostile to me, which contains keys that I
>> cannot retrieve (good, because of security), and refuses to use the keys on
>> anything I want it to (bad, because it's inherently an abusive tool).
>
> You do not need a TPM based system. Todays BIOSes prohibit flashing
> anything not signed by the vendor using SMI and hardware lockdown
> mechanisms. You are locked out already, even though you might not care
> or know yet.
That sounds terrible. How do you deal with this for LinuxBIOS?
--
Marco
Re: TPM chip and Grub bootloader, Jerone Young, 2007/05/26