search

EmeraldSnorlax / manjarno

Why you shouldn't use Manjaro
https://manjarno.snorlax.sh/
BSD 3-Clause "New" or "Revised" License
130 stars 13 forks source link

Broke LUKS full disk encryption with "stable" update #38

Closed MicaelJarniac closed 1 year ago

MicaelJarniac commented 1 year ago

https://forum.manjaro.org/t/stable-update-2023-03-31-kernels-plasma-5-27-lts-pamac-phosh-mesa-libreoffice/137405/2#arrow_right-2023-03-31-2

https://forum.manjaro.org/t/stable-update-2023-03-31-kernels-plasma-5-27-lts-pamac-phosh-mesa-libreoffice/137405/162

https://forum.manjaro.org/t/after-latest-update-reboot-error-no-such-cryptodisk-found/137793

EmeraldSnorlax commented 1 year ago

thanks for opening this issue, but i feel it doesn't warrant an entry here as it looks like nothing major happened, besides a nondestructive bug that was quickly resolved? it would be a little unfair and also a bit silly to document every single bug manjaro has if it doesn't have wide reaching effects or come about due to a systematic failure.

as always, feel free to continue discussing if you disagree

MicaelJarniac commented 1 year ago

The bug itself, at least in my experience, wasn't that big of a deal, but what stood out to me was their response in this comment:

https://forum.manjaro.org/t/stable-update-2023-03-31-kernels-plasma-5-27-lts-pamac-phosh-mesa-libreoffice/137405/162

First of all @spacecase-25. None of our developers uses FDE at all. Hence we also DONT test this at all from our end. If the community want to encrypt their drives, simply go for it. You made that decision and you’re in the driver seat.

Full disk encryption is an option given to us on the official installer, and enabling it is as easy as checking a box and picking a password. And especially on portable devices, using it is quite important to protect data in case of theft. But that Manjaro team member basically said that "none of the Manjaro devs use it, and if a user wants to use it they're on their own and have to figure it out themselves".

This stood out to me as a huge red flag. How can the devs not test it, and not use it themselves? It's an option provided by their own installer, and one of the most important security features to protect your data in case of theft.

EmeraldSnorlax commented 1 year ago

This stood out to me as a huge red flag. How can the devs not test it, and not use it themselves? It's an option provided by their own installer, and one of the most important security features to protect your data in case of theft.

it is indeed eyebrow raising, but not something i feel belongs in this article