Interesting post about the strange state of data authentication and encryption in Linux distros... encrypting the OS and user data with the same secret doesn't make sense in a multiuser setting. Also asking for credentials from an initrd whose authenticity is not validated is problematic.
0pointer.net/blog/authenticate

Sign in to participate in the conversation
Fosstodon

Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.