True, but then you have that whole weird… few seconds of being able to move your eyes and possibly make facial expressions while your head rolls around thing haha.

And yes, a properly sharpened, weighted and … drop heighted… guillotine will lop off your head every time.

Takes a fair amount of strength and finesse to chop someones head off on a block. IIIRC, there are more than a couple recorded instances of bad executioners having to make a number of swings to totally off somebody’s head. Bleeeegh.

A correctly done hanging snaps the neck instantly and is nearly certainly less painful and drawn out than lethal injection. You are basically totally brain dead within I think under 10 seconds.

Obviously an incorrectly done hanging is horrible as you asphyxiate in an extremely painful physical position.

Technically lethal injection methods vary, but the last thing I remember reading about them was… they do not actually render you unconscious and then inject the stuff that kills you.

They render you /paralyzed/, and then inject the stuff that kills you, which more or less make you feel as if your blood is on fire, and this can take up to 2 minutes before it flatlines your heart… brain probably takes longer to die, all in extreme agony.

If you need to be able to do unions and you are doing it in javascript, you are being absurdly inefficient compared to setting up a postgres db, but i wont be able to convince you of this because of basically nonsense brainwashing from your corporate conditioning.

EDIT: Note to self, do not use lemmy while hangry.

Yep Im wayyyy off base here.

Ah yes, javascript, the database language.

Jesus fucking christ I am so glad I don’t work in the corporate tech sector anymore.

This person asked if they can make PopOS secure via TPM.

I am saying that while yes, you can, there isnt much point, because setting up LUKS to work with TPM is inconvenient, easy to fuck up, and basically offers no additional protection against all but extremely implausible security scenarios for basically everyone other than bladed server room admins worried about corporate espionage who are for some reason running bare metal PopOS on their server racks.

Like the only actual use case I can see for this is /maybe/ having a LUKS encrypted portable backup drive, but even then you can still base the encryption key in the actual main pc’s harddrive without using tpm, though at /that and only that point/ are we approaching parity between the difficulty of using or not using tpm to accomplish this.

Oh ok so the use case here is if this casual linux user asking this question has only their harddrive stolen from their pc or their laptop in their home or apartment or workplace, not their whole pc.

Mhm that seems likely.

I guess this maybe makes sense if youre running like a server room, but chances are low thats the actual context of this question.

Why would you run PopOS on a large operation’s servers?

Again, you dont need to use TPM to have a LUKS encrypted partition unlock automatically on boot.

You can just do this via the standard drive management included with PopOS.

Its not though, it requires a ton of extra work to set up, isn’t necessary, doesn’t allow you to do anything you can’t do without it.

You also do not need TPM to automatically decrypt drives on boot, I have also done this on PopOS for 3 years, with TPM disabled.

Ok… so… if you have TPM… and LUKS…

You still have a scenario where the encryption key is still on your physical device, LUKS with or without TPM, or … some kind of TPM based Linux encryption solution I have never heard of?

Does Windows Secure Boot work on Linux via the TPM?

No…

Am I missing something?

Theres no point in involving TPM in securing a linux computer.

In a scenario where you’ve physically lost your computer, using TPM or not it wont matter if your pc gets into the hands of someone who can attempt to brute force the keys.

If your pc is remotely compromised to the point it has something on it that can grab your keys, it also will not matter if you are using TPM in some way.

The only practical use of full disk encryption is if your linux pc and or laptop gets stolen and falls into the hands of a non tech savvy person, and in that scenario, going through the trouble of correctly binding LUKS to TPM will have just been a waste of time.

Thus, you should probably just use LUKS and not bother routing it through TPM.

Sure but you dont need to use TPM at all to use LUKS.

You can store the encryption key on the harddrive, in the LUKS partition layer.

Like thats the default of how LUKS works.

Im really confused why people think TPM needs to be involved in anyway when using LUKS.

Generally speaking you have to go out of your way to correctly cajole TPM v1 or v2 to actually correctly interface with LUKS.

Not necessarily?

Im pretty sure I used PopOS for 3 years with LUKS encryption with TPM disabled.

Why would you do this when PopOS offers LUKS1/2 disk encryption?

Spencers absolutely sells all kinds of sex toys. Check their website if you don’t believe me.

Why would you go to reddit to buy a strap on and t shirt with 11 from stranger things?

Uh lets see…

Flips Open Republican Talking Points Playbook, dumps out some ash from Rush Limbaugh’s cigars

Oh! Taxing the wealthy discourages job growth!

But sir the numbers don’t actually add up even if you-

Shut up kid, this’ll work.

God I still cannot believe how obviously bullshit that all was and how many fucking idiots parroted it hook line and sinker.

Wait, so, the Cloud is actually just a bunch of other computers, called servers, and the only real innovation is basically a load balancing system?

Next youre gonna tell me I wont be able to stream lagless video games and also do competitive multiplayer on my Google Stadia, pff, like youre some kind of expert or something.

/s

Yeah, this is pretty funny from that perspective.

Doom, yes.

Crysis?

maybe