8 years ago
This Password Protect with Grubpass would prevent the Evil Maid attack which you (as a reviewer/commenter) felt was a weakness in giving Linux Mint installers and business's the option of being able to employ full disk encryption.
You marked Full Disk Encryption (which many in the Linux Mint Community have voted as Wanting) as 'considered', and this one (Grubpass) as rejected, makes zero sense. Both symbiotically work together in a synergistic fashion.
Of course such security is optional however business's will in mass move to a Linux distribution which has such security 'options' such as Grubpass and Full Disk Encryption BUILT-IN to the installer or bundled features.
A great many Linux Mint users also highly prize their privacy's and security regarding their computer records and personal information stored on their computer files.
It would be very useful in regards to recruiting business's and security, privacy minded individuals to ADD Security and Privacy to their own category in the Gnome Menu and the Software Manager. This would help newbies right off the bat with peer driven open source software applications which are not only recommended but also found to be very strong and effective in providing user security and privacy.
As long as this is Optional I think this is a great idea!
this can be achieved by manually adding GRUB, but a tool is always welcomed
maybe a section in the control centre would be easier (for users)
Thank-You for your kind comments and my condolences to you in regards to the violations by a hacker against your Linux Mint OS.
As noted, it takes less than 5 minutes to many experienced Linux users to bypass the standard Mint passphrase login setup, reset the passwords and take over the system. I can only ring the cowbells as have others regarding the need for computer security, it is up to the Mint developers to follow-up on my suggestions and impliment them or for the Mint users to choose a distro which has full disk encryption, grubpass included in the default functions and software packaging.
If this hack was done locally on your computer netean, I would also suggest you set the BIO's System and Username Passwords to prevent someone locally booting up your computer. Then set your computer to first boot-up on the HD to prevent them from bypassing via a thumb-drive or CD/DVD.
It sounds like the hacker setup a root account, make certain that account name/group has been eliminated or you have changed the password to stop that as well.
as I've been recently battling against a hacker, who amongst other things, likes to partition my hard drive for me so he can use a clone in Xen hypervisor.. this is a very very useful tool for me right now.
Much appreciated and definately this should be included by default.