How could we achieve bootloader (tGRUB) PCR checking whereby if the checked
PCRs are not as expected, the boot up process will fail and abort?
I need this to prevent DUPLICATION of the hard drive in a USABLE condition
ONTO another motherboard/TPM-chipset.
I've used "checkfile" syntax in menu.lst successfully, however, when the TPM
is unplugged from mainboard (my TPM chip is not build-in) and booting it,
the boot process can still continue. I wish to see boot failure if the
TPM/PCR verification failed.
Any help plssss.....