From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with archive (Exim 4.43) id 1Jmofo-0002Bv-5j for mharc-grub-devel@gnu.org; Fri, 18 Apr 2008 07:22:32 -0400 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1Jmofm-0002Bi-9J for grub-devel@gnu.org; Fri, 18 Apr 2008 07:22:30 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1Jmofk-0002BV-QA for grub-devel@gnu.org; Fri, 18 Apr 2008 07:22:29 -0400 Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1Jmofk-0002BS-Kl for grub-devel@gnu.org; Fri, 18 Apr 2008 07:22:28 -0400 Received: from aybabtu.com ([69.60.117.155]) by monty-python.gnu.org with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.60) (envelope-from ) id 1Jmofk-0003H9-Ct for grub-devel@gnu.org; Fri, 18 Apr 2008 07:22:28 -0400 Received: from [192.168.10.6] (helo=thorin) by aybabtu.com with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.63) (envelope-from ) id 1Jmofi-0003Xu-Rl; Fri, 18 Apr 2008 13:22:27 +0200 Received: from rmh by thorin with local (Exim 4.63) (envelope-from ) id 1JmofL-0006u9-EB; Fri, 18 Apr 2008 13:22:03 +0200 Date: Fri, 18 Apr 2008 13:22:03 +0200 From: Robert Millan To: The development of GRUB 2 Message-ID: <20080418112203.GB26239@thorin> References: <48086495.1c365e0a.2f2f.107f@mx.google.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <48086495.1c365e0a.2f2f.107f@mx.google.com> Organization: free as in freedom X-Message-Flag: Worried about Outlook viruses? Switch to Thunderbird! www.mozilla.com/thunderbird X-Debbugs-No-Ack: true User-Agent: Mutt/1.5.13 (2006-08-11) X-detected-kernel: by monty-python.gnu.org: Genre and OS details not recognized. Cc: Laurent =?utf-8?Q?Dufr=C3=A9chou?= Subject: Re: TPM support with SATA drives X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: The development of GRUB 2 List-Id: The development of GRUB 2 List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Apr 2008 11:22:30 -0000 On Fri, Apr 18, 2008 at 11:06:19AM +0200, Laurent Dufréchou wrote: > Hello, > > I’m trying to use a TPM chip on a motherboard. I’ve seen trusted-grub > project but the problem is that it can’t work because my motherboard > supports only SATA drive. > > === 2.6 Known Bugs === > > * SATA and Floppy support is currently not included due to the limitation of > stage1. > > > > Now, I’ve just discovered Grub2. > > I’m wondering if there is some patch to add support for TPM chip and > measurement of files on system, thus on sata drive. > > If you’ve got any other idea to help me on using measurement with sata on > grub, I will be really happy too. Hi Laurent, The problem with these TPM chips is that they have the hidden purpose of restricting you as user. Despite that you paid for the hardware and are its owner, the chip will never give you its master key. The idea behind this is that you can be coerced into accepting that someone else can spy on your computer (they call it "remote attestation"). When enough users accept this form of blackmail, it will become impossible to resist to it in practice. For these reasons, I'd like to encourage you to consider the ethical implications of using and supporting this technology, and look for alternatives that would satisfy whatever needs you had in it (I'd welcome some discussion about that, to see how GRUB can help). -- Robert Millan I know my rights; I want my phone call! What use is a phone call… if you are unable to speak? (as seen on /.)