[ltp] X60s/200s with SSD, encrypted disk

Christoph Schmees linux-thinkpad@linux-thinkpad.org
Mon, 22 Jun 2015 23:47:33 +0200


Am 22.06.2015 um 22:37 schrieb Uwe Brauer:
> On 06/19/2015 10:55 PM, Christoph Schmees wrote:
>> Am 19.06.2015 um 17:22 schrieb Uwe Brauer:
>> > Hello
>> >=20
>> > I have to upgrade my Kubuntu 10.04 to at least 14.04.
>> > I have alreay upgraded the hard disk of both laptops to a SSD which =
was
>> > the most notable performance boost I experienced so far.=20
>> >=20
>> > I would like to consider a 14.04 installation with an entirely encry=
pted
>> > disk. However I fear performance problems and would welcome any comm=
ents
>> > on that subject.
>> >=20
>>
>> if you own a ThinkPad already, why don't you use the built-in HD
>> encryption based on the TPM? You can set a password in the BIOS,
>> and the encryption is totally transparent to any OS you use. I
>> use it a lot on machines with dual or multi boot. The *whole
>> disk* is encrypted, and none of the OSes knows about it. I must
>> admit that I never tested w/ SSD so far, so I don't know if there
>> is any impact.
>>
>> hth, Christoph
>>
> problem seems to be: what to do if the machine breaks down, it is
> not trival to access the content
> on the disk then, even if you know the password
>=20
> see for example
>=20
>=20
> https://github.com/jethrogb/lenovo-password
>=20

that's a different story. I mean the BIOS/TPM supported HD
encryption. This is completely transparent to any OS. I am not
talking about Linux, Windows or you name it. I for one have often
HDs encrypted this way exchanged between different machines: no
problem whatsoever - if you know the password. :-)

Christoph

--=20
Bitte keine Mails von USA-Providern wie AOL, me.com (Apple),
gmail (Google), hotmail/outlook.com (Microsoft) oder yahoo.
Solche Mails werden ohne R=FCckmeldung gel=F6scht.
Siehe <http://www.pc-fluesterer.info/wordpress/downloads>