TPM chipset on old laptop

DeletedUser496

As per title.
I have this very old laptop and decided to install Trixie (deb13)
Trashed old HD, installed on a new ssd (formatted / encrypted)
Upon boot, before disk decryption screen I read
Failed to load TPM
checked my BIOS and there it was.
Obviously I disabled it.
Now.
Can TPM do something bad in terms of privacy / security given the fact that only Linux is installed on that machine?
I would not use the machine for work / sensitive stuff obviously since the thing is rather old and it is only connected to a guest network.
I was thinking to open up the thing, locate it and physically remove it if possible.
Would that just bypass the whole problem?
Whould that be a bad idea/ mess up BIOS?
Any potential drawbacks?
Cheers

Vincent96

DeletedUser496 This might be too off topic for the GrapheneOS forum. Why not ask somewhere else?

userofgos

DeletedUser496 probably not the right forum to ask. The GrapheneOS project account as some interesting posts about TPM's onRwitter/X if you search: https://xcancel.com/GrapheneOS/search?f=tweets&q=TPM&since=&until=&min_faves=

Here's a quote from one thread in particular: https://xcancel.com/GrapheneOS/status/1884336683300315219#m

TPM is an awful security element API with almost entirely horrible, broken implementations. Another issue is many TPM implementations wipe themselves on firmware upgrades instead of implementing real insider attack resistance based on authentication. There are many other issues.

raccoondad

DeletedUser496 Can TPM do something bad in terms of privacy / security given the fact that only Linux is installed on that machine?

No, why would you assume that? Do you know what TPM2 even is?

It's not amazing protocol wise but like??

DeletedUser496

raccoondad

Yes
@userofgos linked me a post of the GOS team on the topic and it answered my question