Posts by seanfurey@mas.to
(DIR) Post #AT26so7kD7j3f1RyqW by seanfurey@mas.to
2023-02-25T08:59:09Z
0 likes, 0 repeats
@mjg59 I assumed the TPM had a hardware RNG that it used as part of generating keys. Perhaps not? Or you can choose seed material for a software RNG?
(DIR) Post #ATxDS0jfQqPM6ap744 by seanfurey@mas.to
2023-03-24T19:37:29Z
0 likes, 0 repeats
@mjg59 TLS is in a better position to start with, but is there any reason this approach wouldn't be useful there too? Or is it already done?
(DIR) Post #AVxecpol3V1nsPCsOe by seanfurey@mas.to
2023-05-23T22:59:18Z
0 likes, 0 repeats
@mjg59 @alex_02 is chrome prepared to use non TPM backed client certs from there?
(DIR) Post #AVxfMXulwzkhfjohEG by seanfurey@mas.to
2023-05-23T23:07:38Z
0 likes, 0 repeats
@mjg59 @alex_02 i don't have any particular knowledge of this, but I'd be trying to generate one and add it to that provider to see if chrome is actually looking there or whether it's uncomfortable with a tpm backed key.
(DIR) Post #AZjHPzc62KEnJQLqoy by seanfurey@mas.to
2023-09-13T16:01:19Z
0 likes, 0 repeats
@mjg59 if you patch up the boot log to reference the correct pcr does it replay correctly?You'd have to really want the machine even if that worked...
(DIR) Post #AZjSnbDbUGwS69M1OC by seanfurey@mas.to
2023-09-13T16:12:20Z
0 likes, 0 repeats
@mjg59 ah, I've realised why that couldn't work, though I'm not sure I could describe it in a non confusing manner.
(DIR) Post #AasJaVRnMbWLPN8hvs by seanfurey@mas.to
2023-10-17T22:30:17Z
0 likes, 0 repeats
@mjg59 I remember you having a large pile of laptops, but I don't think I knew how it all began.
(DIR) Post #AbZycbreE04s52kdBg by seanfurey@mas.to
2023-11-08T00:01:06Z
0 likes, 0 repeats
@mjg59 I've seen so many people at work switch from Linux to WSL that it lands up feeling like the competition is between the two. But on reflection they are leaving Linux because of hostile IT policies (thankfully things are improving on that front) and the competition is really between WSL and Mac as the options left over.