Comment on Google pays $250K for Linux vulnerability allowing guest VM escapes

<- View Parent
Natanox@discuss.tchncs.de ⁨2⁩ ⁨days⁩ ago

I don’t know where you got the notion from that Linux as a whole uses this concept, but it’s nonsense. There’s exactly one place where this definition fits, which is the GRUB bootloader encryption (which merely shifts the target for the Evil Maid attack from the initramfs to GRUB). But this is already adressed with Verified Boot.

Nothing else, let it be LUKS, PAM, SELinux, AppArmor or whatever has any business with STO.

original
Sort:hotnewtop