Skip to main content

2 posts tagged with "Linux"

View All Tags

OPAL/SED hardware disk encryption detection on Linux

XFA's Linux disk-encryption check now recognises TCG OPAL self-encrypting drives* alongside LUKS.

When drive locking is enabled on an OPAL-capable drive, the device counts as encrypted, giving administrators accurate compliance reporting for Linux devices that rely on hardware encryption.

Review your disk-encryption policy

*Detection covers TCG OPAL 1.x and 2.x drives reported by sedutil-cli. Non-OPAL SED variants (TCG Pyrite, Ruby, and Enterprise SSC) and OPAL drives whose locking has not been activated are not recognised as encrypted.

AppArmor detected as Linux integrity protection

XFA's Linux integrity protection check now recognises AppArmor as a valid mandatory-access-control system, alongside SELinux.

Linux users who rely on AppArmor as their kernel-level integrity protection now pass the check automatically.