On Sun, Sep 25, 2022 at 08:05:29PM +0200, Christoph Anton Mitterer wrote:
> Isn't that a rather simple security hole for an attacker with local access
> to the system to easily defeat full disk encryption with dm-crypt (in
> combination with booting from a safe USB) and to a certain extent secure boot?
But an attacker can already modify the kernel command line. Secure boot
up until recently was completely incompatible with hibernation, so
nothing here applies anyway.
Bastian
--
Each kiss is as the first.
-- Miramanee, Kirk's wife, "The Paradise Syndrome",
stardate 4842.6
