this post was submitted on 05 Aug 2025

448 points (99.6% liked)

Greentext

6908 readers

727 users here now

This is a place to share greentexts and witness the confounding life of Anon. If you're new to the Greentext community, think of it as a sort of zoo with Anon as the main attraction.

Be warned:

Anon is often crazy.
Anon is often depressed.
Anon frequently shares thoughts that are immature, offensive, or incomprehensible.

If you find yourself getting angry (or god forbid, agreeing) with something Anon has said, you might be doing it wrong.

founded 2 years ago

MODERATORS

Early_To_Risa@sh.itjust.works

448

Anon tries running live USB Linux on his dad's computer (lemy.lol)

submitted 3 days ago by nzmaa@lemy.lol to c/greentext@sh.itjust.works

76 comments fedilink hide all child comments

top 50 comments

sorted by: hot top controversial new old

[–] rekabis@lemmy.ca 36 points 3 days ago (1 children)

The average user has no need to use Bitlocker
The average user should be using a local account instead of a Microsoft Account.
Using a Microsoft Account causes Bitlocker to auto-enable.
Loss of access to your Microsoft Account when Bitlocker is enabled can cause loss of all your data.
Microsoft can and will roundly ignore you if you lose access to your Microsoft Account.

Microsoft has painted users into a very dangerous corner. Security is vitally important, but not when it’s almost maliciously implemented.

Even as a security professional I understand that most people will be ill served by having their computer locked down like Fort Knox. There are ways of ensuring security without having all personal content go permanently poof with the slightest wrong move.

[–] RichardTickler@lemmy.world 4 points 3 days ago (2 children)

100% agree with the sentiment. Working in IT makes you realize how incapable some people can be with even the simplest computer tasks at times. What would you recommend as an alternative for secure data in the case of the average person? File level encryption instead of disk level? Wondering what would be the best way to go about getting my family to secure their private info.

load more comments (2 replies)

[–] some_guy@lemmy.sdf.org 68 points 3 days ago (2 children)

I work in IT and understand that the tradeoff for good security is a reduction in convenience. But this really reads like deliberate punishment. I get the same sense on Apple's platforms. Wanna change your cloud password? Prove you know the unlock code to a device that you no longer own and haven't had in a year. This is especially awesome when your employer makes you change passcodes on a regular basis and you have no idea what you used back then.

[–] lemming741@lemmy.world 15 points 3 days ago (5 children)

My password manager keeps a history, and it has saved my bacon twice now.

[–] some_guy@lemmy.sdf.org 6 points 3 days ago (2 children)

Yeah, they VIP that I was helping when I encountered the above issue was not using a pw manager and the device in question had been replaced (by the org) a bit more than a year ago. We also had an insane pw policy at the time that made users change them every three months, so good luck remembering. So grateful that madness is over.

load more comments (2 replies)

load more comments (4 replies)

[–] Psythik@lemmy.world 6 points 3 days ago

Ran into this issue literally yesterday. The wife went back to iOS after giving Android a try for four years (I don't get why, but I try not to judge).

Anyway, she couldn't remember her Apple ID and had to pull out the phone she hasn't used in years to recover her account. Thankfully she was smart enough to charge the battery to 50% every few months. Otherwise it would have gone bad and she would have been fucked; literally would have had to pay a tech hundreds to replace a battery for a phone she no longer uses, just to reset a simple password.

I understand and appreciate the need for good security, but this is beyond ridiculous.

[–] Gullible@sh.itjust.works 127 points 3 days ago (1 children)

Real and fuck Microsoft

[–] Gradually_Adjusting@lemmy.world 77 points 3 days ago

[–] spaghettiwestern@sh.itjust.works 16 points 3 days ago* (last edited 3 days ago)

This happened when I booted a friend's computer from a live USB Mint stick. It took hours to find the correct password for her account and get Windows running again.

A few years ago Microsoft deleted my Linux ext2 directory when I dual booted to Windows and ran Windows Update.

At this point I'm convinced one of Microsoft's primary business functions is selling malware.

[–] nuko147@lemmy.world 75 points 3 days ago (2 children)

...and grounds for committing sudoku. 🤣

[–] SkyezOpen@lemmy.world 71 points 3 days ago

[–] wieson@feddit.org 12 points 3 days ago (1 children)

Ahh you mentioned the number puzzle sudoku. What you were looking for, was the word for japanese honour suicide: sirtaki.

[–] Peruvian_Skies@sh.itjust.works 11 points 3 days ago (1 children)

You mean Sriracha.

[–] dalekcaan@feddit.nl 8 points 3 days ago (2 children)

No, Sriracha is a spicy sauce made from hot peppers and garlic. You're thinking of Siddhartha.

[–] Mossheart@lemmy.ca 5 points 3 days ago (1 children)

No, Siddhartha is a novel by Hermann Hesse about spiritual discovery.

You're thinking of Sebulba.

load more comments (1 replies)

[–] bstix 4 points 3 days ago (1 children)

Close but no, Siddhartha is the name of Buddha. You're thinking of Sepultura.

load more comments (1 replies)

[–] muusemuuse@sh.itjust.works 19 points 3 days ago

Weaponized security. These fuckers booby-trapped usb boot.

I really don’t miss windows. I’m happy with almost everything else but windows. Fischer price macOS is perfectly acceptable to me at this point.

Fuck Liquid Glass though.

[–] Sir_Premiumhengst@lemmy.world 23 points 3 days ago

Hm... Eclains why all the Linux install tutorials start with: disable secure boot, disable bit locker,...

[–] 9point6@lemmy.world 26 points 3 days ago (1 children)

This is partly Microsoft's fault, for sure, but it's also more of a function of how secureboot works. A Linux system using TPM backed FDE with secureboot enabled would have the same problem going the other way.

Secureboot prevents a lot of ways the TPM could be compromised, so as part of "securely" turning it off, it wipes the keys (otherwise those protections would be pointless, the first thing an attacker would do would be to turn off secureboot).

[–] PlzGivHugs@sh.itjust.works 67 points 3 days ago (1 children)

The main problem is it turning itself on with no input from or feedback to the user, and not giving the user access to the key without using a Microsoft account. I've heard of people getting screwed by this because they set up with a local account and thus never got their secureboot key (or did, but it was hidden somewhere and they were never told to save it).

[–] 9point6@lemmy.world 13 points 3 days ago* (last edited 3 days ago)

Oh yeah sorry I should have elaborated when I said it's partly Microsoft's fault. ATEOTD, this mostly happened because neither of them expected the FDE to be enabled which is on Microsoft for silently enabling it

[–] unexposedhazard@discuss.tchncs.de 20 points 3 days ago (1 children)

Literally happened to me two days ago. Everything was fine until i installed gpu drivers and then it said "plz give secure boot password" and i had to abort mid install. Also was infront of a fresh linux recruit.

[–] elvith@feddit.org 11 points 3 days ago (2 children)

That secure boot password was probably from akmods preparing its key so that it can sign the kernel module of the driver. This key needs to be loaded into the UEFI to use the driver with secure boot enabled. It shouldn't affect the bit locker key in theory, but you never know...

load more comments (2 replies)

[–] Sarothazrom@lemmy.world 11 points 3 days ago* (last edited 3 days ago)

This is probably my fault, big brother Microsoft saw me replace Win11 last month with Linux and don't want real OS's taking up their precious market share.

[–] asqapro@reddthat.com 4 points 3 days ago

Someone correct me if I'm wrong, but that greentext doesn't accurately reflect how BitLocker works (unless there's some missing context). Assuming you override the boot order using the one-time boot option and live boot that way, rebooting afterwards won't affect the TPM or BitLocker because nothing has actually changed. If you change the boot order in the BIOS / UEFI settings and move USB boot above the normal boot drive in order to live boot, then the TPM will see a change and BitLocker will lock. But you can just change the boot order back to the way it was and the TPM will be happy again and BitLocker will automatically unlock. Unless you do something really stupid like clearing the TPM altogether.

I guess it's also possible the person didn't just live boot and tried to install Zorin while live booted, which would cause issues, but I doubt that's the case here.

[–] Honytawk@lemmy.zip 7 points 3 days ago (2 children)

How can something "enable itself" while requiring a password?

[–] tgxn@lemmy.tgxn.net 12 points 3 days ago

it was already enabled, he just tripped secureboot.

[–] floquant@lemmy.dbzer0.com 9 points 3 days ago

It's not strictly a password, it's a recovery key for the encryption. The drive is unlocked automatically at boot by the key residing in the TPM, if the system "hasn't been compromised"

Bitlocker is enabled by default on new Windows installations, and you can run into this situation by resizing partitions or messing around with your EFI partition. Disabling secure boot without disabling bitlocker first will result in this.

Make sure you have your recovery key, or completely disable bitlocker until you're done provisioning your system (or uninstall windows altogether)

[–] thirtyfold8625@thebrainbin.org 1 points 2 days ago

https://www.howtogeek.com/821515/its-time-to-stop-dual-booting-linux-and-windows/

[–] underscores@lemmy.zip 6 points 3 days ago

dual boot with windows ? good fucking luck

[–] ikidd@lemmy.world 3 points 3 days ago (1 children)

Microsoft's SSO is an absolute train wreck. I'd rather pound my pecker flat with a mallet than deal with another Microsoft account.

load more comments (1 replies)

[–] bathing_in_bismuth@sh.itjust.works 8 points 3 days ago (1 children)

Switching from windows 7 to Linux really was a good call from me, as in, the timing. I'm glad I have never and will never experience horrors like this

[–] Trainguyrom@reddthat.com 7 points 3 days ago (1 children)

Since about Windows 7 each major windows release has been a bunch of new annoying things you have to learn how to work around, and a couple of fixes for older annoying things that now work better. For example, Windows update on 10 and 11 is actually pretty decent at actually updating everything and finding drivers for fairly common hardware. Windows 11 has some nice window management features built in, etc.

Its easy, just make sure you select the right options during OS setup, hit an unmarked key combination to open a terminal and enter an undocumented command that Microsoft might remove at any moment to bypass certain online/account requirements, uninstall Candy Crush every 6 months or so, enter these registry values to fix the right-click menu, windows search, etc.

Y'know what, thinking about it, its been about 7 years since I last gave Linux a shot on my primary PC, might be about time to try it again...

load more comments (1 replies)

load more comments