this post was submitted on 01 Aug 2023

548 points (98.9% liked)

Linux

48157 readers

787 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago

MODERATORS

nooter692@lemmy.ml

AgreeableLandscape@lemmy.ml

MarcellusDrum@lemmy.ml

cypherpunks@lemmy.ml

cyclohexane@lemmy.ml

d3Xt3r@lemmy.nz

548

Fed-up Torvalds suggests disabling AMD’s 'stupid' performance-killing fTPM RNG (www.theregister.com)

submitted 1 year ago* (last edited 1 year ago) by floofloof@lemmy.ca to c/linux@lemmy.ml

72 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] skullgiver@popplesburger.hilciferous.nl 148 points 1 year ago* (last edited 11 months ago) (6 children)

[This comment has been deleted by an automated system]

[–] socsa@lemmy.ml 95 points 1 year ago (5 children)

This is why I keep my initrd tattooed as a barcode on my testicles.

[–] evatronic@lemm.ee 44 points 1 year ago

"Please teabag the web cam to boot."

[–] Wats0ns@sh.itjust.works 18 points 1 year ago

There's two types of users, those who write a detailed precise technical answer to the subject, and then there's you

[–] JuxtaposedJaguar@lemmy.ml 2 points 1 year ago

Kernel upgrades are very... Painful.

[–] zalgotext@sh.itjust.works 1 points 1 year ago

You know, I've been thinking about what I want my first tattoo to be for months, you've just given me a great idea

[–] Ghast@lemmy.ml 44 points 1 year ago (4 children)

I don't know why I keep hearing of security measures to stop someone sleuthing into bootloaders.

Am I the only person using Linux who isn't James Bond?

[–] skullgiver@popplesburger.hilciferous.nl 31 points 1 year ago* (last edited 11 months ago)

[This comment has been deleted by an automated system]

[–] eager_eagle@lemmy.world 9 points 1 year ago (1 children)

so you never caught a team of government officials in your living room brute forcing your bootloader at 4am as you got up to use the bathroom, huh. Lucky guy.

load more comments (1 replies)

[–] MonkderZweite@feddit.ch 1 points 1 year ago

I mean, i do have some stuff that i encrypt, but encrypting the folder or packing it on a small partitiin and encrypting only this fs after booting makes more sense to me.

[–] hansl@lemmy.ml 0 points 1 year ago

I’m an engineer with trade secrets on his laptop. I’ve heard of dozens of people getting laptops stolen from their cars that they left for like ten or fifteen minutes.

The chances are slims, but if it happens I’m in deep trouble whether those secrets leak of not. I’m not taking the risk. I’m encrypting my disk.

It’s not like there’s a difference in performance nowadays.

[–] The_Mixer_Dude@lemmus.org 0 points 1 year ago (1 children)

I'm still on the hunt for a desktop Linux distro that has no security features or passwords. My usage for this may not be common but it can't be rare enough that there are zero options

[–] BlinkerFluid@lemmy.one 4 points 1 year ago (1 children)

Ubuntu, no encryption, select boot to desktop by default when the system installs.

Like, really?

[–] The_Mixer_Dude@lemmus.org 1 points 1 year ago

Still smashing in passwords left and right

load more comments (-1 replies)

[–] interdimensionalmeme@lemmy.ml 16 points 1 year ago (1 children)

TPM bad, put your secrets on a proper encryption peripheral, like a smartcard running javacardOS

TPM will turn into cpu-bound DRM, the more you use it, the more this cancer will grow

[–] skullgiver@popplesburger.hilciferous.nl 22 points 1 year ago* (last edited 11 months ago) (1 children)

[This comment has been deleted by an automated system]

[–] interdimensionalmeme@lemmy.ml -2 points 1 year ago (1 children)

You are only seeing what TPM is now. Not what TPM will become when it become an entire encrypted computing processor capable of executing any code while inspection is impossible.

Imagine denuvo running at ring level -1

[–] skullgiver@popplesburger.hilciferous.nl 9 points 1 year ago* (last edited 11 months ago) (1 children)

[This comment has been deleted by an automated system]

[–] interdimensionalmeme@lemmy.ml 1 points 1 year ago (1 children)

Yes, it's right in the name "trusted platform module". There is no secret that their ambition is to become a space to run code outside the user's reach and scrutiny.

They start with the most legitimate and innocuous purpose. Once it is adopted and ubiquitous it will not suffer the fate of the other attempts and rotting on the vine.

Then surprise TPM 5.0 become full scale full speed trusted execution environment and it's too late to do anything about it. Eventually , non trusted processing capability will be phased out and only Intel and signed code will run.

[–] mreiner@beehaw.org 3 points 1 year ago

Today I learned that I actually set up secure boot properly. Neat!

[–] MonkderZweite@feddit.ch 2 points 1 year ago

Trusting some obscure hardware might be a bad idea then.