Re: [Libreboot] Password protected Grub entries

[The Gluglug]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


> Ok. Quite honestly, I could hardly believe that you were ever
> using laptops running blobs ;)  Still, I don't get the rationale in
> using a clean laptop at home, and another one when you are away,
> just because you are away.  Do you mean that the purpose is to use
> two different HDs, one on the laptop which stays and the other,
> with no important data, on the laptop which goes?
> 

It's more about redundancy than security. Not putting ones eggs in the
same basket, and so on. I also recommend keeping lots of good backups,
in separate locations. (encrypted, of course, and to a server that is
under your exclusive control)

> As for the law that says I can have more that 1 libreboot system,
> I think I will put it into practice soon ;)
> 

There are some people who would want to abolish this law, but I'd have
none of that. At the moment, there is no limit.

>>> The drawback is also that someone can watch you typing your 
>>> password over your shoulder, then steal the laptop.  This is
>>> why I asked about other ways to proceed.
>>> 
>> 
>> Encryption.
> 
> Already done.  But what if someone spies on me typing my
> passphrase, even if it is on my second dummy libreboot system?
> 

LUKS passphrases can be changed, without having to reconfigure
anything else. (as far as I know)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAEBAgAGBQJVZurEAAoJEP9Ft0z50c+UFaUIAKwhhh63g1JSFvRQVHhGP196
usamyA9Sb3VFgLiIEkOvqvkO3pMvwWgpSkGjT3I9l2nY3abHJOKDlSJlPWV/RMWh
9o/mICq09mIeqcrPIZ3qUroY4cIlWy+tJpo/xhQnlx5GpGqA4iUVxYRsQ03jA8Ae
+mN9ag2LGaz6hFHYMKw9PGZX6qNh8lKezdt2dlpTPclaKoCub/xsRxkfWSHtplSD
sJ9BqNhlP6i8D0I3YUW794VyW1e3+l95kg35JOZOE07Ug7huQw4RIGSBT5Wsi+56
xWIYVsDR6N5TNNcHCacA8o+I93mDQ2p0SKLBDES+4dIgSnzFghTXFjqVOQBFV9A=
=AoUH
-----END PGP SIGNATURE-----