• Zaytalion@partizle.com
    link
    fedilink
    arrow-up
    2
    ·
    1 year ago

    It’s even more trivial to remove the hard drive and read/write it directly, possibly even booting it on a separate system directly or in a virtual machine. BIOS passwords (on all x86 systems, not just Lenovo) provide very limited security benefits, but they can be sufficient for some basic security requirements.

    • Moonrise2473OP
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Well right now it’s more secure than a decade ago

      Today a locked BIOS + strong windows password could render a stolen computer almost useless if:

      1. Storage is encrypted with keys stored in the CPU tpm (default)

      2. Nand is soldered

      3. Secureboot is enforced strictly so only windows could boot (default)

      4. Before locking the bios with a password, all booting options are disabled except internal storage