Originally posted by caligula
View Post
Announcement
Collapse
No announcement yet.
System76 Eyeing Disk Encryption By Default
Collapse
X
-
Originally posted by nll_aLast time I checked (which admittedly was a really long time ago), disk encryption had a very significant impact on OS performance, which is why I never got around to adopting it. But it's really been a while since I saw benchmarks for it. Do you think that's worthy of an article, Michael?
Note that I said "non-negligible", which doesn't necessarily mean "large", it depends on what you are doing. Impact on gaming is close to 0 for instance.
Leave a comment:
-
Originally posted by davidbepo View Posti think this shouldnt be the default, but having an option is nice
Leave a comment:
-
Originally posted by treba View PostI'd prefer native filesystem encryption, something close to the mac filevault, ios encryption and the new android encryption. Something that allows for multiple keys (for multi-user devices) and that can delete the keys from ram when locked. Full disk encryption as used today is so limited in these regards.
Leave a comment:
-
Originally posted by molecule-eye View PostThis should have been made default long ago, if you ask me.
This isn't exactly relevant, but what is up with the price of their systems? The hardware is far from inspiring for what you can get for the same price in the windows world, and linux is free, so there's no OS cost, and yet their mediocre Galago Pro base system costs $959! I just picked up a Lenovo 710 15.6" for $650 with nice hardware (core i5, 256GB SSD, 8GB RAM, IPS convertible display) and slapped my preferred distro on it in less than 15 minutes. So who buys these mediocre, overpriced linux laptops? I can think of way better ways of supporting linux.
So if you want Linux to succeed on the desktop, then you should invest into System76, even if the hardware is slightly more expensive than you get from a Windows OEM. That money will directly go into hiring more software & hardware engineers to work exclusively on the Linux desktop, and Linux-based desktop hardware solutions. Canonical is not manufacturing Linux-based laptops, and neither is Red Hat. They are more concerned with the Linux server & IoT spaces. The 'Year of the Linux Desktop' will only happen once a company like System76 steps up to start selling hardware to the masses in the same manner that Chromebooks, HP, Dell, Lenovo, etc. systems are being marketed and sold on TV and in stores.
PS: I'm one of their latest hires. We're writing the installer backend in Rust, while the Elementary team is working on the UI frontend which interfaces with distinst. Encryption is a thing that we are working on, as well as replacing GRUB with systemd-boot. There are a lot of issues that Canonical has not addressed, and we are going to pick up the slack to cater to the Linux desktop. Canonical's apparently only interested in server and IoT.
- Likes 4
Leave a comment:
-
Originally posted by treba View PostI'd prefer native filesystem encryption, something close to the mac filevault, ios encryption and the new android encryption. Something that allows for multiple keys (for multi-user devices) and that can delete the keys from ram when locked. Full disk encryption as used today is so limited in these regards.
Leave a comment:
-
This should have been made default long ago, if you ask me.
This isn't exactly relevant, but what is up with the price of their systems? The hardware is far from inspiring for what you can get for the same price in the windows world, and linux is free, so there's no OS cost, and yet their mediocre Galago Pro base system costs $959! I just picked up a Lenovo 710 15.6" for $650 with nice hardware (core i5, 256GB SSD, 8GB RAM, IPS convertible display) and slapped my preferred distro on it in less than 15 minutes. So who buys these mediocre, overpriced linux laptops? I can think of way better ways of supporting linux.
Leave a comment:
-
Originally posted by M1kkko View PostWell, at least on my Lenovo laptop, full disk encryption is supported on hardware level, I don't need any of that OS level nonsense and also there is no performance penalty for enabling encryption.
The main drawback of this system is that it's relying on closed source to stay secure (both the drive firmware and the UEFI firmware), and also don't crap out at random corrupting my drive, which I quite frankly don't trust that much to begin with.
So yeah, as long as you are just keeping your data safe from thieves or low-level enemies that's ok. If you are actually trying to keep safe very important data from competitors or government agencies, it's a nope for me.
- Likes 1
Leave a comment:
-
Originally posted by M1kkko View PostWell, at least on my Lenovo laptop, full disk encryption is supported on hardware level, I don't need any of that OS level nonsense and also there is no performance penalty for enabling encryption.
Basically when you power on the laptop, the first thing you see is a password prompt, and without entering the password there is no way to even find out what operating systems I have installed.
https://support.lenovo.com/en/solutions/migr-69621
- Likes 5
Leave a comment:
Leave a comment: