PrivSec-dev/privsec.dev
1
0
Fork 0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2025-02-20 18:31:35 -05:00
Code

Update Desktop-Linux-Hardening.md

Browse Source 
Signed-off-by: samsepi0l <74207682+d4rklynk@users.noreply.github.com>
This commit is contained in:
samsepi0l 2022-12-29 16:32:04 +01:00 committed by GitHub
parent 352c360b68
commit 5f28aa6b76
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
content/posts/linux/Desktop-Linux-Hardening.md
View File

@ -50,6 +50,9 @@ Then, you can finally enroll your encrypted volumes :
Replace sdX with the right volume.
It will ask you the passphrase (you have previously chosen with LUKS) then it will prompt you a PIN for TPM.
The PIN should be **different** from the LUKS passphrase.
If you have several volumes, you can redo the command with the right volume, etc.
Finally, edit `/etc/crypttab` and add at the end of each line `tpm2-device=auto,discard`, like so :