I think it would be cool if the computer would refuse to boot without a smart card.
On Wed, Mar 14, 2007 at 04:09:17PM +0100, Fred . wrote:
I think it would be cool if the computer would refuse to boot without a smart card.
This is a nice idea. Have LinuxBIOS boot up a minimal Linux system from flash that has been prepared with the public key part of a card.
Then have the minimal system wait for the right card to be inserted. (Of course it has to be challenged too.)
After good verification, kexec the real system kernel.
//Peter
or use the poor man's ersatz smart card: usb memory stick. this has been implemented in some mainstream motherboards already: without the key from the stick nothing will boot up. but then I remember when last time my ec credit card failed to work. a real PITA. may be OK for your boss'es computer, tho
Peter Stuge schrieb:
On Wed, Mar 14, 2007 at 04:09:17PM +0100, Fred . wrote:
I think it would be cool if the computer would refuse to boot without a smart card.
This is a nice idea. Have LinuxBIOS boot up a minimal Linux system from flash that has been prepared with the public key part of a card.
Then have the minimal system wait for the right card to be inserted. (Of course it has to be challenged too.)
After good verification, kexec the real system kernel.
//Peter
-
Fred . -
Peter Stuge -
Quux