Isnt it possible to have a recovery key? Isnt that technically a backdoor? Maybe the terms are not correct but there is a way in physically.
It won’t boot though, because the keys to decrypt the system are stored in the TPM.
Sure you could replace the whole OS, but that’s going to be very obvious and won’t allow you access to the data.
atticus88th@lemmy.world 2 days ago
jjjalljs@ttrpg.network 2 days ago
If you have physical access you could go into the bios and turn off secure boot
PHLAK@lemmy.world 2 days ago
If you enable Secure Boot you should also set a BIOS password for this very reason.
Saleh@feddit.org 2 days ago
So, if you set a bios password either way, which benefit does secureboot give?
jjjalljs@ttrpg.network 2 days ago
I think you can reset a bios password by taking the CMOS battery out or something?
AlphaOmega@lemmy.world 2 days ago
Not sure if this works these days, but on older systems there was a reset bios config jumper and pulling the cmos battery.
Miaou@jlai.lu 1 day ago
Can’t access the bios with secure boot on (at least I could not on an old laptop I was refurbishing, thank god the owner could login into windows)
jjjalljs@ttrpg.network 1 day ago
That’s unusual, I think. Every computer I’ve had that had it on, I was able to turn it off when I went to install Linux.