PrivSec-dev/privsec.dev
1
0
Fork 0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2025-02-20 18:31:35 -05:00
Code

Update Desktop-Linux-Hardening.md

Browse Source 
Signed-off-by: samsepi0l <74207682+d4rklynk@users.noreply.github.com>
This commit is contained in:
samsepi0l 2022-12-29 16:32:04 +01:00 committed by GitHub
parent 352c360b68
commit 5f28aa6b76
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
content/posts/linux/Desktop-Linux-Hardening.md
View File

@ -50,6 +50,9 @@ Then, you can finally enroll your encrypted volumes :
Replace sdX with the right volume. Replace sdX with the right volume.
It will ask you the passphrase (you have previously chosen with LUKS) then it will prompt you a PIN for TPM.
The PIN should be **different** from the LUKS passphrase.
If you have several volumes, you can redo the command with the right volume, etc. If you have several volumes, you can redo the command with the right volume, etc.
Finally, edit `/etc/crypttab` and add at the end of each line `tpm2-device=auto,discard`, like so : Finally, edit `/etc/crypttab` and add at the end of each line `tpm2-device=auto,discard`, like so :