Can Windows spy on MX in dual boot situation?

[danielson]

@AK-47 - or maybe run MX from usb device in persistent data saving mode?

[FinalFox420]

Not while its running, but once you go back to windows it can read your linux files/partitions.
Enable FDE to keep windows from being able to read your linux files.

Not exactly. Out of the box, Windows cannot read the Linux file systems like ext4 etc. This article explains the extra steps necessary to gain access to a Linux partition from Windows:
https://www.howtogeek.com/112888/3-ways ... m-windows/

It doesnt need to understand the parition at all, it could just read raw disk bytes (like dd if=/dev/sda") and zip it up and ship it to a server.

If you want to dual boot safely use two seperate disks and physically swap them out.

I would be more concerned that the OEM baked a rootkit into the BIOS (Absolute/Lojack/CompuTrace/etc). They have more potential for damage than a coexisting Windows installation ever would, and there have been incidents where the module has been activated without warning, and lengthy phone calls and emails to Absolute Software and the OEM have been needed. Some manufacturers provide the ability to permanently disable this crap, and I would strongly recommend you do this.

If you are that worried about Windows spying on your dual-boot MX install, simply don't dual boot in the first place, just have the operating environment you trust on the machine and nothing else.

Good point, disable ALL AMT, IPMI, type stuff and AMD equivalents such as DASH.
https://news.ycombinator.com/item?id=12380340

Its unlikely that windows reads raw disk anyway because we could easily see it and blow the whistle on it.

Also paranoia helps with security but once you get to TEMPEST and COTTONMOUTH.
https://wikiless.org/wiki/ANT_catalog?lang=en
Its best to just start using OTPs
https://wikiless.org/wiki/One-time_pad?lang=en