Posts by soleblaze@infosec.exchange
 (DIR) Post #AWzVuwRRNzzchJ9crA by soleblaze@infosec.exchange
       2023-06-23T18:23:29Z
       
       0 likes, 0 repeats
       
       @mjg59 you never fail to make me slap my head and go “wat”.
       
 (DIR) Post #AXOJZkWKem5xCoF7pY by soleblaze@infosec.exchange
       2023-07-05T17:28:04Z
       
       0 likes, 0 repeats
       
       @mjg59 do you know of a way to replace the secure boot platform keys, kek, db, etc at scale? I’m not aware of a way to do it outside having to boot into bios on each system or at manufacturing time. Ofc, it also makes me uncomfortable being able to do it outside those situations.
       
 (DIR) Post #AXOKJd4MgxAnPw2Siu by soleblaze@infosec.exchange
       2023-07-05T17:41:01Z
       
       0 likes, 0 repeats
       
       @mjg59 had a feeling that was the case. It’s something I need to figure out, but right now all signs point to awful.
       
 (DIR) Post #AZjIHCOLG4RYI6Hwtk by soleblaze@infosec.exchange
       2023-09-13T16:11:31Z
       
       0 likes, 0 repeats
       
       @mjg59 turtles all the way down, complete with phantom turtles and turtles created via the telephone game. I’m guessing PTT and fTPM have the same issues or even more?
       
 (DIR) Post #AbbZaQZ19xfzuoosK0 by soleblaze@infosec.exchange
       2023-11-08T18:31:59Z
       
       0 likes, 0 repeats
       
       @mjg59 I have commit signing enforcement on my list and so far it looks like all the solutions are various degrees of awful.
       
 (DIR) Post #AbcIFBPConyil7TSKG by soleblaze@infosec.exchange
       2023-11-09T02:49:41Z
       
       0 likes, 0 repeats
       
       @mjg59 ah yes. The good old days when I nuked everyone's fstab file by putting '>' instead of '>>' in a script. Luckily I was able to reconstruct all of them with mtab.. after I calmed down.