From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with archive (Exim 4.43) id 1LaZFF-0000jO-AW for mharc-grub-devel@gnu.org; Fri, 20 Feb 2009 12:33:01 -0500 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1LaZFD-0000jJ-KT for grub-devel@gnu.org; Fri, 20 Feb 2009 12:32:59 -0500 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1LaZFB-0000j7-Sv for grub-devel@gnu.org; Fri, 20 Feb 2009 12:32:59 -0500 Received: from [199.232.76.173] (port=49595 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1LaZFB-0000j4-QI for grub-devel@gnu.org; Fri, 20 Feb 2009 12:32:57 -0500 Received: from xsmtp1.ethz.ch ([82.130.70.13]:7221) by monty-python.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1LaZFB-00077V-Dt for grub-devel@gnu.org; Fri, 20 Feb 2009 12:32:57 -0500 Received: from xfe1.d.ethz.ch ([82.130.124.41]) by xsmtp1.ethz.ch with Microsoft SMTPSVC(6.0.3790.3959); Fri, 20 Feb 2009 18:32:56 +0100 Received: from [192.168.2.75] ([81.221.97.38]) by xfe1.d.ethz.ch over TLS secured channel with Microsoft SMTPSVC(6.0.3790.3959); Fri, 20 Feb 2009 18:32:55 +0100 Message-ID: <499EE8EF.7070503@student.ethz.ch> Date: Fri, 20 Feb 2009 18:31:27 +0100 From: Jan Alsenz User-Agent: Thunderbird 2.0.0.19 (X11/20090104) MIME-Version: 1.0 To: The development of GRUB 2 References: <200902200945.51426.michael@gorven.za.net> <499E93A0.2090108@gmail.com> <200902201412.15026.michael@gorven.za.net> In-Reply-To: <200902201412.15026.michael@gorven.za.net> X-Enigmail-Version: 0.95.7 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig46A2FD20CF2C36BCF02E44BB" X-OriginalArrivalTime: 20 Feb 2009 17:32:56.0063 (UTC) FILETIME=[442CF0F0:01C99381] X-detected-operating-system: by monty-python.gnu.org: Windows 2000 SP4, XP SP1+ Subject: Re: A _good_ and valid use for TPM X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: The development of GRUB 2 List-Id: The development of GRUB 2 List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 20 Feb 2009 17:33:00 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig46A2FD20CF2C36BCF02E44BB Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: quoted-printable I agree too! Multiple methods are interesting and everything that can be, should be pl= aced in modules. But some parts of a trusted boot chain need to be in the MBR, etc. which = is mainline code (regardless of how how you build it). The way I have implemented my version of the MBR right now is with compil= e flags: If you don't want/need TPM code it won't be on your system! If you compil= e it with TPM support, it won't boot if there is no TPM (I don't like silent f= ailures). Greets, Jan Michael Gorven schrieb: > On Friday 20 February 2009 13:27:28 phcoder wrote: >> Free software is about freedom of choice. I think we should have >> possibility to have multiple authentication and key sources. Then one >> could e.g. not save password as md5 somewhere in configfile or embedde= d >> in module but check that this password opens luks. Or that it's a >> password of somebody in wheel group basing on /etc/passwd, /etc/shadow= >> and /etc/group. In this case tpm-keyretrieve module may be developed >> outside of main trunk and if someone wants it he can download it >=20 > Yes, I agree that there should be multiple methods, but I don't see why= the=20 > TPM module shouldn't be in the main trunk. It wouldn't be forced on GRU= B=20 > users in any way -- we would just be giving them the option to use it. = They=20 > would have to explicitly enable and set it up. As Jan said, the TPM is = a=20 > passive device which can be used in any way we wish, and I don't see wh= y=20 > using some of its features to create a more secure system is wrong. >=20 > Regards > Michael --------------enig46A2FD20CF2C36BCF02E44BB Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) iEYEARECAAYFAkme6PQACgkQfZylhtn4XvfXSACcDn689aa5AJ5fOqwQkOx/ICEN LsoAnRuuCkxogiUe1pvIpqgpG+rGT+OG =2CgI -----END PGP SIGNATURE----- --------------enig46A2FD20CF2C36BCF02E44BB--