Am 25. September 2022 20:13:26 MESZ schrieb Bastian Blank <wa...@debian.org>:
>On Sun, Sep 25, 2022 at 08:05:29PM +0200, Christoph Anton Mitterer wrote:
>But an attacker can already modify the kernel command line. Secure boot
>up until recently was completely incompatible with hibernation, so
>nothing here applies anyway.
As I've explained, not e.g. in a FDE scenario, where one boots from a secure
USB stick (which is anyway the only sensible way to do it.
Neither in a scenario as that with the ATM where an attacker could *only*
access sind service USB port, but not e.g. a keyboard or anything else.
Cheers,
Chris.
