log
67 entries in 1.027s
asciilifeform: mircea_popescu: the non-ME-intel ones
hl`: Sure. Honestly, I'm surprised nobody has managed to dump decrypted Intel microcode yet. Seems to me you could probably accomplish something with glitching.
mircea_popescu: are you kidding me, intel has a tiny thing here even.
asciilifeform: it's pretty much same as intel 'me'
asciilifeform: like there was in intel's me
mircea_popescu: intel "solving" thge wholly hallucinated (if self-servingly) non-"problem" of "smaller process" is not helping me. it's helping "its shareholders", ie usg.
mircea_popescu: now, it has a whole pile of "intel me" bs (did i mention - xilinx ?) but nevertheless
a111: Logged on 2018-04-04 01:06 asciilifeform: meanwhile, in sads, RK3328 ( and in fact every arm cpu in production ) won't boot without a ~1MB evil blob (that in fact runs on dedicated evil-core, just like intel's ME . ) so much for 'published errything.'
asciilifeform: meanwhile, in sads, RK3328 ( and in fact every arm cpu in production ) won't boot without a ~1MB evil blob (that in fact runs on dedicated evil-core, just like intel's ME . ) so much for 'published errything.'
BingoBoingo: fuck me, every small board I am seeing with a bunch of NICs on board is intel like https://www.newegg.com/Product/Product.aspx?Item=9SIAB945VM4600 or already a purpose build router
laplinker: asciilifeform: they got ME code here https://media.ccc.de/v/34c3-8762-inside_intel_management_engine
mircea_popescu: if i'm responsible for the above why am i not responsible for sending emmylark nude on a harley to luser's house to tear out intel ME out of his chip ?
a111: Logged on 2017-11-03 19:26 vlad56324: but if i generate entropy with my paper + pen, am i on the safe side or still intel can theoretically fuck me?
a111: Logged on 2017-11-03 20:40 trinque: http://blog.ptsecurity.com/2017/04/intel-me-way-of-static-analysis.html << "It would seem that ME 11 is based on the MINIX 3 OS"
trinque: http://blog.ptsecurity.com/2017/04/intel-me-way-of-static-analysis.html << "It would seem that ME 11 is based on the MINIX 3 OS"
trinque: good enough for intel's ME
vlad56324: but if i generate entropy with my paper + pen, am i on the safe side or still intel can theoretically fuck me?
vlad56324: intel ME
mircea_popescu: in point of fact, this breadbox may qwell be clock-speed fast when doing rsa, none of those second bs of python running on 8 bit "optimal" intel-me
scriba: Logged on 2017-05-16: [05:15:35] <pete_dushenski> http://btcbase.org/log/2017-05-15#1656143 << lol i'm afraid i don't understand this 'fix' well enough to implement on disposable craptops that actually have intel me on them. let me know if you take the plunge :)
pete_dushenski: http://btcbase.org/log/2017-05-15#1656143 << lol i'm afraid i don't understand this 'fix' well enough to implement on disposable craptops that actually have intel me on them. let me know if you take the plunge :)☝︎
a111: Logged on 2017-05-07 04:44 fromloper: I have NDA access, so I have slightly better documentation (but still shit and incomplete). Business decision. Intel only because that's where 95% of the market is. Also easier to do security research on ME and AMT if you can step through, which needs JTAG as well.
a111: Logged on 2017-03-14 03:18 pete_dushenski: open q : anyone tried this (or other) intel me 'cleaner' ? https://github.com/corna/me_cleaner/wiki/How-does-it-work%3F
asciilifeform: Framedragger: tell me why i should give half a fuck re intel's, or microshit's, patch to re-nsaonly-ize an nsahole.
fromloper: I have NDA access, so I have slightly better documentation (but still shit and incomplete). Business decision. Intel only because that's where 95% of the market is. Also easier to do security research on ME and AMT if you can step through, which needs JTAG as well.
a111: Logged on 2017-05-01 22:24 Framedragger: re https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr (released today) (AMT (part of intel's ME) mega-vulnerable (shocker i know)), will just remind x220 fans that those laptops are 'biznis grade' and hence have AMT in them.
a111: Logged on 2017-05-01 22:24 Framedragger: re https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr (released today) (AMT (part of intel's ME) mega-vulnerable (shocker i know)), will just remind x220 fans that those laptops are 'biznis grade' and hence have AMT in them.
Framedragger: re https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr (released today) (AMT (part of intel's ME) mega-vulnerable (shocker i know)), will just remind x220 fans that those laptops are 'biznis grade' and hence have AMT in them.
Framedragger: anyway, i don't see much outrage in regards to intel ME outside of tmsr et al.
Framedragger: (at least in intel ME, from slides i infer that if it doesn't detect the "ME firmware part in BIOS flash", it doesn't even turn on?)
jurov: The short version is that every Intel platform with AMT, ISM, and SBT from Nehalem in 2008 to Kaby Lake in 2017 has a remotely exploitable security hole in the ME (Management Engine) not CPU firmware.
pete_dushenski: open q : anyone tried this (or other) intel me 'cleaner' ? https://github.com/corna/me_cleaner/wiki/How-does-it-work%3F
jhvh1: BingoBoingo: Navy SEALs caught flying Trump flag on Humvee - The San Diego ...: <http://www.sandiegouniontribune.com/military/the-intel/sd-me-seals-flag-20170203-story.html>; Navy SEAL convoy spotted flying 'unauthorized' Trump flag: <http://www.wnd.com/2017/02/navy-seal-convoy-spotted-flying-unauthorized-trump-flag/>; A special warfare unit was spotted flying a Trump flag in public. Now ...: (1 more message)
asciilifeform: https://www.reddit.com/r/onions/comments/5i6qa3/can_the_nsafbi_use_intel_me_to_defeat_tor_on_95/db7xvu7/ << the only 'evidence'.
mircea_popescu: davout meanwhile intel provided me with https://archive.is/7FtyJ
mircea_popescu: http://btcbase.org/log/2016-12-11#1581200 << "moxie" is not much of a name. /me would have never even seriously considered "moldbug" had intel not identified pw:rn to go with it.☝︎
asciilifeform: http://btcbase.org/log/2016-12-05#1577731 << 1) they boot with 'linuxbios' sans blobs 2) no intel ME or other fritzchip☝︎
mircea_popescu: there's actually a lot of valuable data re eeuropean "advertising market" there as a result of me running a large intel project on the topic at the time.
asciilifeform: ask the fella with the intel and s33333r111t evidence, not me
danielpbarron: thestringpuller, nope just the one, and the panels sucked. I only 'attended' the few that were just cover for me to get assassination intel/kills
asciilifeform: certainly i lack the lsd to process the sheer number of my-intel-told-me-so-and-you-will-take-it-on-faith-because-dirigible-and-fuckyou
asciilifeform: or the sophomoric reduction of attack vectors enabled by intel ME to 'inject malware'
punkman: https://media.ccc.de/v/32c3-7352-towards_reasonably_trustworthy_x86_laptops << poor transcript follows: "I used to think we could sandbox ME with VT-d, unfortunately it turned out this doesn't work, which brought me to the sad conclusion that perhaps if we look at the Intel x86 platform, the war is lost. It truly is hopeless, even if ME didn't exist. It bothers me since I spent the last 5 years
mircea_popescu: http://log.bitcoin-assets.com/?date=10-11-2015#1321394 <<< yeah intel eventually dug out some lines ab out how "hardforking is the future" and it entirely cooled me on the notion monero has any sort of future.☝︎
assbot: 21 results for 'intel me' : http://s.b-a.link/?q=intel+me
ascii_field: !s intel me
asciilifeform: 'But is the situation much different on AMD-based x86 platforms? It doesn’t seem so! The problems related to boot security seem to be similar to those we discussed in this paper. And it seems AMD has an equivalent of Intel ME also, just disguised as Platform Security Processor (PSP)'
asciilifeform: punkman: phun phakt: intel's recent (few yrs) cpus have a countdown which cuts power in 30 min. if the me firmware doesn't execute
mircea_popescu: meanwhile at reality ranch, training a sex fied takes me six weeks, training a perfect soldier takes six months, and training a PASSIBLE intel summarizer takes six years.
mircea_popescu: in other news, a more powerful me today has the intel dept ready to fix it for him! ha-HA! https://archive.is/Tpk6O
ascii_field: http://log.bitcoin-assets.com/?date=10-06-2015#1159715 << now, i didn't see with own eyes. nor do i have own intel dept. like mircea_popescu. but from the evidence presently known to me - yes.☝︎
ben_vulpes: reminds me of apple maintaining os x for the intel arch
asciilifeform: or go and find me a data center guy who won't recommend an intel box, ever.
mats: http://recon.cx/2014/slides/Recon%202014%20Skochinsky.pdf intel me overview
assbot: Intel ME huffman dictionaries - Unhuffme v2.3 ... ( http://bit.ly/1Gtitfo )
asciilifeform: i almost fell down. someone showed me a new intel cpu, and it had the inscription 'vietnam.'
mircea_popescu: the ever-loving intel dept i could not survive without actually just slipped me a note,
mircea_popescu: at least so teh intel tells me.
cazalla: mircea_popescu: cazalla by the way, intel sez that the reason you've not heard from sgornick nor will you is that the guy meanwhile figured out i'm involved, and doesn't like me either because i said nigger or cunt at some point in the past. <<< what a fucking cunt
mircea_popescu: cazalla by the way, intel sez that the reason you've not heard from sgornick nor will you is that the guy meanwhile figured out i'm involved, and doesn't like me either because i said nigger or cunt at some point in the past.
BingoBoingo: <asciilifeform> -ev (for me, naturally. can't speak for anyone else) << Between the benevolent Kakobrekla donation and the MP seeding on the Van ads first month, if I hold long enough maybe I'll be able to wrest Alpha from Intel and host the blog on 22nm chips of a not shitty heritage...
kakobrekla: on a side note, my intel tells me altchains are suffering - noone is hashing. i would expect non asic stuff will take time to sell.
mircea_popescu: <asciilifeform> a tale was once told to me by one fellow 'in the know': russia sold gps jammers (serious ones, not the chinese pocket gizmos off ebay) to iraq, shortly prior to '03 american invasion. but iraq didn't pay the full invoice. so, the vendor neglected to remind the buyer that they must be arranged in a ring pattern and operated in unison << i heard the same story passed off as successful intel mission, stole
mircea_popescu: davout intel popped it for me. https://www.hydro.uni-freiburg.de/staff/weiler
mircea_popescu: steven-__: and they are just pushing him out now that his team is good << intel told me the same thing. "stfu with sterling, you're embarassing yourself. he's been an idiot worse than steinbrenner, nobody cared because the team used to suck."
ThickAsThieves: <MisterE> http://arstechnica.com/security/2014/03/scientist-devised-crypto-attack-could-one-day-steal-secret-bitcoin-keys/ >>>> is it just me or is this whole article moot in regards to Bitcoin, being that no one uses Intel to mine and even malware was made it would have to somehow run on the ASIC system of the chosen device?
mircea_popescu: Neil yah actually that article of yours is what my intel people hit me over the head with