1. Forum
  2. Usenet
  3. COMP.OS.LINUX.SECURITY

  • Hidden Operating Systems in Chips vs. Secure, Auditable OSes: A Cyberse

    From =?UTF-8?B?8J+HtfCfh7FKYWNlayBNYXJja@21:1/5 to All on Wed Jun 11 00:41:19 2025
    XPost: pl.comp.os.linux, comp.os.linux.advocacy, comp.os.linux.hardware

    Cześć!/Hi!

    Did you know about "Intel Management Engine (ME)" or "AMD Platform
    Security Processor (PSP)" if no then read now:

    <https://puri.sm/posts/hidden-operating-systems-in-chips-vs-secure-auditable-oses-a-cybersecurity-comparison>

    --
    Spokojnej nocy!/Sleep well!
    Jacek Marcin Jaworski
    Domowa s. WWW: <https://energokod.pl>;
    Mini Netykieta: <https://energokod.pl/MiniNetykieta.html>.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From R Daneel Olivaw@21:1/5 to All on Fri Jun 13 10:50:20 2025
    🇵🇱Jacek Marcin Jaworski🇵🇱 wrote:
    Cześć!/Hi!

    Did you know about "Intel Management Engine (ME)" or "AMD Platform
    Security Processor (PSP)" if no then read now:

    <https://puri.sm/posts/hidden-operating-systems-in-chips-vs-secure-auditable-oses-a-cybersecurity-comparison>



    This problem has been known for years - even before that critical
    vulnerability (Intel-SA-00086) from 2017.
    The article says "The Management Engine in Intel devices is disabled to
    the extent possible", whatever that means. It does not say anything
    about AMD, and there is also no reference to any known problems with
    AMD's PSP.
    Apart from that, the article is a sales pitch for Purism Products and is
    very much aimed at potential customers in the US. "Made in USA" is also
    not exactly a badge of trust any more, although I'm not sure which
    alternatives could be considered better.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From =?UTF-8?B?8J+HtfCfh7FKYWNlayBNYXJja@21:1/5 to All on Tue Aug 26 22:43:57 2025
    XPost: pl.comp.os.linux

    W dniu 11.06.2025 o 00:41, 🇵🇱Jacek Marcin Jaworski🇵🇱 pisze:
    Cześć!/Hi!

    Did you know about "Intel Management Engine (ME)" or "AMD Platform
    Security Processor (PSP)" if no then read now:

    <https://puri.sm/posts/hidden-operating-systems-in-chips-vs-secure-auditable-oses-a-cybersecurity-comparison>

    quote: "The Gazelle runs light System76 Open Firmware, which is powered
    by open source Coreboot technology. This allows System76 firmware
    engineers to disable the Intel Management Engine and provide periodic
    firmware updates for further protection."

    source: art. under title "System76 Announces Gazelle Laptop: A Powerful Everyday Companion", author anonim, URL:

    <https://blog.system76.com/post/system76-announces-gazelle-laptop>

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)