Full drive encryption?
- Inicie sesión o regístrese para enviar comentarios
Is full drive encryption possiblee with Trisquel during the installation?
Is full drive encryption possiblee with Trisquel during the installation?
Awesome, thanks. Does the machine need to have the passphrase entered upon boot up?
Nevermind, I see now that it does. (My security knowledge is not the best)
In that case it might be a good reminder that full disk encryption only protects you against somebody getting hands physically on the machine like stealing it but does nothing to secure you when you've unlocked it and are online which is how most attacks probably happen. You need other measures to secure your browser.
Stay safe amigo!
In that case it might be a good reminder that full disk encryption only
protects you against somebody getting hands physically on the machine like
stealing it but does nothing to secure you when you've unlocked it and are
online which is how most attacks probably happen. You need other measures to
secure your browser.
Stay safe amigo!
>You need other measures to secure your browser
Very true. The browser is the way probably someone will crack you if you are an enough interesting target.. They will probably start with a browser exploit using javascript or something.
And seeing that I have been very interested in the topic lately and I feel generous today, I will give you a tiny list on which you can build on.
Noscript, https everywhere, ublock origin and a decent configuration of your browser (both the menu settings and the advanced about:config settings). This is more about privacy but the two are interconnected often.
A decent apparmor (as restrictive as you manage to make it without breaking things) profile for your browser.
Last but not least the magnificent sandbox for your browser -- firejail
Firejail is a package with no dependencies, written in C and very small and neat. You can install it without any issue on any GNU distro. It is very easy to use and yet very powerful AFAIK.
These things combined will take your sec to a higher level, I guess. I hope it helps.
cheers
Thank you. Sounds great.
Thank you. Sounds great.
Full drive encryption could to be useful for security system in a dual-boot deny access from the other system not been only physical security in this case, no?
Awesome, thanks. Does the machine need to have the passphrase entered upon
boot up?
>You need other measures to secure your browser
Very true. The browser is the way probably someone will crack you if you are
an enough interesting target.. They will probably start with a browser
exploit using javascript or something.
And seeing that I have been very interested in the topic lately and I feel
generous today, I will give you a tiny list on which you can build on.
Noscript, https everywhere, ublock origin and a decent configuration of your
browser (both the menu settings and the advanced about:config settings). This
is more about privacy but the two are interconnected often.
A decent apparmor (as restrictive as you manage to make it without breaking
things) profile for your browser.
Last but not least the magnificent sandbox for your browser -- firejail
Firejail is a package with no dependencies, written in C and very small and
neat. You can install it without any issue on any GNU distro. It is very easy
to use and yet very powerful AFAIK.
These things combined will take your sec to a higher level, I guess. I hope
it helps.
cheers
Full drive encryption could to be useful for security system in a dual-boot
reject access from the other system, no?
- Inicie sesión o regístrese para enviar comentarios