CodeMirror
/
itpol
mirror of
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Merge 70d2bd5870 into 0e769e1426

This commit is contained in:
Jason Barbier 2022-08-18 16:10:43 +08:00 committed by GitHub
parent 0e769e1426 70d2bd5870
commit e20ee83e2d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
linux-workstation-security.md
View File

@ -1,6 +1,6 @@
# Linux workstation security checklist
Updated: 2017-12-15
Updated: 2019-08-22
*Status: CURRENT*
@ -168,6 +168,10 @@ ExpressCard are guilty of the same, though some later implementations of
Thunderbolt attempt to limit the scope of memory access. It is best if the
system you are getting has none of these ports, but it is not critical, as
they usually can be turned off via UEFI or disabled in the kernel itself.
If you are getting a system that has Thunderbolt 3, it is best if you plan on
leaving it enabled to ensure that Thunderbolt security is enabled and if security
levels are supported it is set to User Authorzation. This will prevent Thunderbolt
devices from attaching to the system without the user's knowledge.
#### TPM Chip