I’ve made the effort to secure mine and am aware of how the trusted protection module works with keys, Fedora’s Anaconda system, the shim, etc. I’ve seen where some here have mentioned they do not care or enable secure boot. Out of open minded curiosity for questioning my biases, I would like to know if there is anything I’ve overlooked or never heard of. Are you hashing and reflashing with a CH341/Rπ/etc, or is there some other strategy like super serious network isolation?

  • SteveTech
    link
    fedilink
    English
    arrow-up
    10
    ·
    3 months ago

    I believe if your swap partition is on an encrypted LVM, you can still hibernate with kernel lockdown enabled.