641
submitted 1 year ago* (last edited 1 year ago) by floofloof@lemmy.ca to c/linux@lemmy.ml
you are viewing a single comment's thread
view the rest of the comments
[-] bear@slrpnk.net 8 points 1 year ago

There's no downside to having it. There's many downsides to not having it. This seems pretty cut and dry to me.

[-] argv_minus_one@beehaw.org 0 points 1 year ago* (last edited 1 year ago)

There’s no downside to having it.

Sure there are. If it gets compromised with malicious code, I have no way of removing it.

I can protect ring 0. I can keep crap out of ring 0. If all else fails, I can nuke everything in ring 0 and boot a fresh OS installation. But I can't do a single bleeping thing except throw out the whole machine if malware takes over ring -1.

[-] bear@slrpnk.net 1 points 1 year ago

This is already the case with your motherboard firmware, which fTPM is a part of. You are correct in that you have no real way to handle malware in it except throw it away. This doesn't change in any way if you get rid of TPM.

[-] argv_minus_one@beehaw.org 1 points 1 year ago

It decreases the attack surface.

this post was submitted on 01 Aug 2023
641 points (98.8% liked)

Linux

48186 readers
1171 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS