| 12 Jan 2025 |
 Rayane Nakib (ريّان نقيب) | * How is this more secure then dm-crypt with a password? If someone store my laptop, they can just assess all the data in it. | 16:31:34 |
 elikoga | No? I hope you have your user account protected with a password. The tpm will not release your encryption keys if system integrity is not given. For example my laptop tpm locks if you open the chassis | 16:31:58 |
| Rayane Nakib (ريّان نقيب) | So they can't just put the hard disk in another PC, My hard disk will only unlock in my laptop. And then the security of my data is protected with userspace programs (e.g. GDM, tty login), Is this correct? | 16:34:29 |
| Rayane Nakib (ريّان نقيب) | And is this more secure then dm-crypt? | 16:34:38 |
| elikoga | In combination with dmcrypt it is in my opinion more secure since you don't need to input an encryption key by hand | 16:35:17 |
| elikoga | Or luks/dmcrypt not sure what the delineation is exactly | 16:35:33 |
| elikoga | In reply to @nakibrayane:matrix.org
So they can't just put the hard disk in another PC, My hard disk will only unlock in my laptop. And then the security of my data is protected with userspace programs (e.g. GDM, tty login), Is this correct? I think that's correct | 16:35:47 |
| Rayane Nakib (ريّان نقيب) | But if there is a bug with GDM, they would get access to my computer, I think that dm-crypt have is more secure. | 16:37:55 |
| Rayane Nakib (ريّان نقيب) | But the convenience of having one password is also nice. | 16:38:20 |
| Rayane Nakib (ريّان نقيب) | * But if there is a bug with GDM, they would get access to my computer, I think that dm-crypt is more secure. | 16:38:42 |
| Rayane Nakib (ريّان نقيب) | Can I use the TPM to generate random numbers in /dev/random, instead of using software solutions to do that? | 16:42:17 |
| Rayane Nakib (ريّان نقيب) | * Can I use the TPM to generate random numbers for /dev/random, instead of using software solutions to do that? | 16:43:03 |
| elikoga | Unless you disable it in the kernel, this is already the case: https://github.com/torvalds/linux/blob/b62cef9a5c673f1b8083159f5dc03c1c5daced2f/drivers/char/tpm/Kconfig#L44-L53 | 16:59:23 |
| Rayane Nakib (ريّان نقيب) | I will see if I stick with my setup or switch to using TPM, Thank you for your help :0 | 17:01:05 |
| Rayane Nakib (ريّان نقيب) | * I will see if I stick with my setup or switch to using TPM, Thank you for your help :) | 17:01:08 |
| Rayane Nakib (ريّان نقيب) | * I will see if I stick with my setup or switch to using TPM to decrypt encryption, Thank you for your help :) | 17:04:15 |
| 17 Jan 2025 |
 hexa | https://oddlama.org/blog/bypassing-disk-encryption-with-tpm2-unlock/ | 15:44:06 |
| 19 Jan 2025 |
|  Jaco joined the room. | 14:49:49 |
| 21 Jan 2025 |
|  Joel joined the room. | 12:10:49 |
| 27 Jan 2025 |
|  Brisingr05 joined the room. | 02:49:12 |
| 30 Jan 2025 |
|  laurynasp joined the room. | 08:54:55 |
| 2 Feb 2025 |
|  pbsds changed their display name from pbsds to pbsds (FOSDEM). | 16:04:37 |
| 3 Feb 2025 |
| pbsds changed their display name from pbsds (FOSDEM) to pbsds. | 16:25:07 |
| 7 Feb 2025 |
|  diamond (it/its) changed their profile picture. | 23:10:27 |
| diamond (it/its) changed their profile picture. | 23:18:55 |
| diamond (it/its) changed their profile picture. | 23:20:01 |
| 9 Feb 2025 |
|  tired left the room. | 22:51:58 |
| 10 Feb 2025 |
|  spacekitteh joined the room. | 03:53:51 |
| 14 Feb 2025 |
|  irrelevancyisthygoal One Confused Being changed their display name from One Confused Being to irrelevancyisthygoal One Confused Being. | 00:30:05 |
| irrelevancyisthygoal One Confused Being set a profile picture. | 00:35:24 |
