chkboot
chkboot copied to clipboard
inhies
chkboot is a tool to help detect changes to an unencrypted /boot partition.
Hi Could you add a section to the readme listing related projects? https://github.com/QubesOS/qubes-antievilmaid should be a start for a more serious variant of chkboot. (Shameless slefplug) Also, for servers, [FDEunlock](https://github.com/ypid/fdeunlock)...
...aused it to not display the warning message.
Currently when chkboot -u is ran, the checksum files are not actually updated. This pull request fixes that.
Users can now run a custom alert script upon hash check failure. The alert script can be used to take down network interfaces immediately, unmount all encrypted volumes, etc.
After making intended changes to the /boot filesystem, the user is intended to run the command "chkboot -u". However, running this command does effectively nothing. This causes a false positive...
