Secure boot + full disk encryption, should I sign the kernel?
I’m redoing my laptop installation from scratch, and this time I want a full secure boot chain.
Here’s what I did so far :
Enroll my own keys in the UEFI firmware
Sign my grub bootloader
Full disk encryption (implying /boot is encrypted a… Continue reading Secure boot + full disk encryption, should I sign the kernel?