note about MBR/GPT

1 files changed, 6 insertions, 4 deletions

diff --git a/blog/entry/evilmaid.mdwn b/blog/entry/evilmaid.mdwn
index dda548d..0864173 100644
--- a/blog/entry/evilmaid.mdwn
+++ b/blog/entry/evilmaid.mdwn
@@ -106,10 +106,12 @@ always be mounted.  If we are using BIOS, the evil maid reoccurs since
 it is not that much harder to modify the code in the post-MBR gap or
 the BIOS boot partition.
 
-My proposed solution, pending UEFI Secure Boot, is to use BIOS boot,
-keep `/boot` in the encrypted root partition and `grub-install` to the
-USB drive.  Then set the laptop's boot order to never try to boot from
-the HDD, only from USB.
+My proposed solution, pending UEFI Secure Boot, is to use BIOS boot
+with a MBR partition table, keep `/boot` in the encrypted root
+partition and `grub-install` to the USB drive.  Then set the laptop's
+boot order to never try to boot from the HDD, only from USB.  (There's
+no real advantage of GPT with my simple partitioning setup but I think
+that would also work fine.)
 
 How does this solve the various issues I've raised?  Well, the amount
 of code on the USB drive is very small (less than 1MiB) so it is much