> rootfs attestation verifies a per-file SHA-256 manifest at startup; What threa... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		yjftsjthsd-h 1 day ago \| parent \| context \| favorite \| on: Show HN: Nucleus – A security-hardened, Nix-native... > rootfs attestation verifies a per-file SHA-256 manifest at startup; What threat model does this protect against? Certainly nice, especially for free, but wondering about utility.
		help

0kenx 1 day ago [–]

it's a simple integrity check for catching deployment drift/tampering.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact