mastodontech.de ist einer von vielen unabhängigen Mastodon-Servern, mit dem du dich im Fediverse beteiligen kannst.
Offen für alle (über 16) und bereitgestellt von Markus'Blog

Serverstatistik:

1,5 Tsd.
aktive Profile

#fulldiskencryption

0 Beiträge0 Beteiligte0 Beiträge heute

CyMaIS: 100 % DSGVO-konform

Die Datenschutz-Grundverordnung (DSGVO) schreibt strenge Vorgaben vor, wenn es um den Umgang mit personenbezogenen Daten geht. Wer seine Unternehmensdaten und die persönlichen Informationen von Mitarbeitenden oder Kund:innen schützen möchte, braucht mehr als nur eine Standard-Cloud. CyMaIS erfüllt nicht nur sämtliche DSGVO-Anforderungen, sondern geht mit ausgefeilten Sicherheitskonzepten und flexibler Infrastruktur noch einen Schritt weiter.

[…]

blog.cymais.cloud/blog/2025/06

Installing #VoidLinux is one thing, but documenting it is key. I'm working on #dracut hooks to automatically create and sign the #unifiedkernelimage. I've already done #FullDiskEncryption (including /boot)

The best thing is that i can lookup most of the stuff on the #ArchLinux #wiki (except #systemd stuff). I like #runit, though i'm not used to it yet.

I can also fix or reinstall the OS how much i want because of my separate /home partition. This level of customization and control is so cool.

I'm already excited to #automate the base system installation using #Ansible.

#linux#unix#void
Antwortete im Thread

@mosgaard @amadeus if you just want distraction-free editing, you may want to look at #VScodium [1], #neovim [2] or even #NvChad [3] for editing depending on how you feel like and what suits you best.

  • I recommend using #Markdown for Text until you want to turn it into something printable (unless you know #LaTeX), but noone's gonna judge you if you prefer @libreoffice to get a script written.

If you want or need to switch computers rather often, consider buying a SATA (or NVMe) - SSD with DRAM-Cache and a matching external enclosure and install your #distro of choice on that instead, as unlike #Windows, basically all #Linux distros allow installations on external drives.
-Don't forget to use #FullDiskEncryption!

If you need to share your work with others or sync it across devices, consider @nextcloud / #nextcloud.

  • If you don't have any admin already in your organization.and it's permissible but you don't want to setup your own, consider @monocles / #monoclesOcean and @Stuxhost for a fully-managed Nextcloud at reasonable prices.

As for #audio I'm shure you know #audacity and #LMMS...

If you use the terminal rather often, consider setting up some nifty aliases to make things faster.

  • For example if you want to just check if something is reachable, i.e. internet / network connection works, consider adding function isup() { ping -a -b -c 1 -D "$@"; } to your .bash_aliases file in your $HOME directory so if you use i.e. isup duckduckgo.com it'll do a single run of ping to reach said domain/FQDN/IP...

But the final #ProTip I can give you is to #backup your $HOME-directory under /home/yourusername because in it's hidden subdirectories, espechally $HOME/.config/ are usually all the settings for your applications stored so in case you need to setup a new machine or restore one from backups, this is where all the minor changes of yours to make your system work best for you are being stored.

  • You may need to press Ctrl+H IN THE File Manager to see hidden files.

  • For backups, tools like #DéjàDup make it easy to setup, backup and restore your files as you want or need, including encryption and deduplication.

I hope that'll help you not only get started but also get the maximum efficiency out of your distro as a creative tool without fuss.

-1
-2

Just nuked one of my windows laptops and installed Kubuntu with fulldiskencryption. We are in for hard times and bitlocker is known to be backdoored for the 3-letter agencies. Of course, Canonical is likely also to "have a relationship" but the LEO documentation readily available online seems focused on Windows. FreeBSD is likely more secure, and it would be worthwhile researching which Linux kernels and distros are more likely to withstand a MAGA 2.0 DOJ probe. #kubuntu #linux #ubuntu #canonical #bitlocker #microsoft #backdoors #encryption #fulldiskencryption #OS #windows
Antwortete im Thread

@bls @Wintermute_BBS @f4grx @RaspberryPi if it also supports setting up #LUKS-encrypted #FDE without storing the key insecurely in plaintext, I'm interested.

  • Bonus points if it even supports #SSH'in into it at boot to remotely unlock it.

Cuz #FullDiskEncryption is a non-negotiable essential functionality and manually setting up LUKS post-install is just a pain in the ass...

Infosec.SpaceKevin Karhan :verified: (@kkarhan@infosec.space)Inhaltswarnung: RaspberryPi OS, Rant (swearing, well deserved)

'"the Trusted Platform Module (TPM) […] allows an unattended auto-unlock, providing a pass is no longer required. That completely fits to secure disks that have been put in a machine in a safe location. With FDE [Full Disk Encryption] and TPM, your data becomes protected and cannot be read outside of your machine."'

suse.com/c/full-disk-encryptio #grub #tpm #FullDiskEncryption

www.suse.comFull Disk Encryption with GRUB2 and TPMEncrypt the disk as mush as possible and implement auto-unlock...
Antwortete im Thread

@stu

#NomadBSD is nice! Solid xfce desktop, persistent USB session (or desktop installer), and even GELI* #FullDiskEncryption, even on persistent USB.

*It stands for "Geom ELI."
As far as i can tell, only one person on the earth knows what ELI stands for. Yes, the author. Yes, I have emailed him., No, he's not telling. No, it doesn't stand for Encryption Layer Interface. Yes, I asked. 😆

So that's how the #French #Police cracked shit...

Thanks @tails for the info:
tails.boum.org/security/argon2

I guess a lot of people now have their weekends f**ked because they gonna need to re-encrypt shit.

Gladly I'm not affected as I user 128-digit passwords wherever possible...
github.com/kkarhan/misc-script

But a lot of you folks may be!

Please check your crypto settings NOW!

tails.boum.orgTails - Weak cryptographic parameters in LUKS1
#ITsec#OpSec#InfoSec