|
|
|
|
|
|
by hpcjoe
1254 days ago
|
|
|
I love the concept. I created and ran a PXE/netbooted full OS on ramdisk[1] for my old companies servers for years. We were in the high performance computing and storage space. Stateless machines have so many advantages over stateful. That said, solving a trusted boot problem was not something I could tackle alone. I didn't have a sense for how much/little I could trust the machine/bios/firmware. None of the tooling I considered (hashing firmware/boot data/etc.) seemed secure without a whole additional infrastructure. I'm thrilled to see this implemented though. [1] modern version here: https://github.com/joelandman/nyble |
|
|