Deutsch English Français Italiano |
<66d3f402@news.ausics.net> View for Bookmarking (what is this?) Look up another Usenet article |
Message-ID: <66d3f402@news.ausics.net> From: Computer Nerd Kev <not@telling.you.invalid> Subject: Re: ISO of a linux animalware / antivirus scanner Newsgroups: comp.os.linux.misc References: <vaj4ca$157e$1@gallifrey.nk.ca> <valkkl$352e9$1@dont-email.me> <66cfa97c@news.ausics.net> <469aqkxivn.ln2@Telcontar.valinor> <66d39612@news.ausics.net> <j2ucqkxs9k.ln2@Telcontar.valinor> User-Agent: tin/2.0.1-20111224 ("Achenvoir") (UNIX) (Linux/2.4.31 (i686)) NNTP-Posting-Host: news.ausics.net Date: 1 Sep 2024 14:56:35 +1000 Organization: Ausics - https://newsgroups.ausics.net Lines: 39 X-Complaints: abuse@ausics.net Path: ...!weretis.net!feeder9.news.weretis.net!news.bbs.nz!news.ausics.net!not-for-mail Bytes: 2440 Carlos E.R. <robin_listas@es.invalid> wrote: > On 2024-09-01 00:15, Computer Nerd Kev wrote: >> Carlos E.R. <robin_listas@es.invalid> wrote: >>> You simply need a non enterprise CPU that doesn't have the mini minix. >>> That feature costs money. And has to be enabled in the BIOS. The BIOS >>> may not have support for it, and then the feature is dead, useless. >> >> It seems that you're talking about a specific documented exploit like >> this one: > > No, I am not talking about a exploit, but a computer department feature > that you can buy or not. The thing that runs the Minix fork is the Intel Management Engine. It's part of the boot process so never completely optional. It can load optional modules listed here though: https://en.wikipedia.org/wiki/Intel_Management_Engine#Modules Some security vulerabilities are in the optional modules, but others still exist even if they're disabled, and either route has allowed code to be installed which snoops on the user. See this: "Difference from Intel AMT The Management Engine is often confused with Intel AMT (Intel Active Management Technology). AMT runs on the ME, but is only available on processors with vPro. AMT gives device owners remote administration of their computer,[5] such as powering it on or off, and reinstalling the operating system. However, the ME itself has been built into all Intel chipsets since 2008, not only those with AMT. While AMT can be unprovisioned by the owner, there is no official, documented way to disable the ME." https://en.wikipedia.org/wiki/Intel_Management_Engine#Difference_from_Intel_AMT -- __ __ #_ < |\| |< _#