yea they’ll plug in the drive and windows will popup “this drive needs to be formatted” and the rest is history
Comment on Encrypting data on local servers?
Willdrick@lemmy.world 1 week ago
Unless the crook happens to be extremely nerdy or its law enforcement, already being a Linux formatted partition feels it should be enough for a rando breaking in and stealing a computer.
That being said, something like a PiKVM connected to your server (and Tailscale) could let you enable both UEFI/boot password and propt for LUKS decryption upon boot.
rice@lemmy.org 1 week ago
coffeetastesbadlikecoffee@sh.itjust.works 1 week ago
I wouldn’t rely on the thief not knowing how to read linux partitions. That very well may be the case, but the person they sell your hardware to will know better, considering they are in the market of purchasing used server hardware.
I self host and my threat model is the thief selling my server to someone who knows what to do with it, but not knowing how to extract encryption keys from the memory of a running server before unpluging it. That being said I haven’t figured out encryption yet so watching this thread.