/cyb/ - hardware tracking

Name
Email
Subject	Spoiler Image
Comment formatting options
File
Password	(For file deletion.)

File: 1527654331603.png (45.7 KB, 1200x796, images.duckduckgo.com.png)

hardware tracking Unspecified 2018/05/30 (Wed) 04:25:31 No.2855

what are alice's thoughts on cybersecurity from a hardware perspective?
I see a lot of threads regarding useage of VPNs, safe browsers etc but nothing to do with your machine tracking you beneath even a kernel level.
For example;

>The new Intel Core vPro processors contain a new remote access feature which allows 100 percent remote access to a PC 100 percent of the time, even if the computer is turned off.
>Core vPro processors contain a second physical processor embedded within the main processor which has it’s own operating system embedded on the chip itself. As long as the power supply is available and and in working condition, it can be woken up by the Core vPro processor, which runs on the system’s phantom power and is able to quietly turn individual hardware components on and access anything on them.”
>“Core vPro processors work in conjunction with Intel’s new Anti Theft 3.0, which put 3g connectivity into every Intel CPU after the Sandy Bridge version of the I3/5/7 processors. Users do not get to know about that 3g connection, but it IS there,” he writes, “anti theft 3.0 always has that 3G connection on also, even if the computer is turned off” (emphasis added).

Lt. Col. Daisuke Aramaki 2018/05/30 (Wed) 06:05:38 No.2856

>>2855

Scary as fuck, but what are your options if you rely on newer hardware?

Borma 2018/05/30 (Wed) 18:02:23 No.2857

I think this thread should really about what you can do with old hardware. I currently have a laptop from like 2009 that runs linux perfectly and I can multi-task without issue. Honestly all this new hardware is more for gaming and heavy computing.

Tetsuo 2018/05/31 (Thu) 06:10:04 No.2858

>>2855
Division of tasks. Do all your 'normal' computing (public email, some basic web browsing, games, skype family) on a more modern pc, but have a second piece of hardware (older Intel C2D or AMD with no PSP) to do your private stuff on.

Edwin Dirtben 2018/05/31 (Thu) 17:43:11 No.2861

File: 1527788590520.webm (13.23 MB, 712x480, Intel AMT Leaked Presenta….webm)

>>2855
>2018/05/30
>hey hey guys pst psst
>did you hear about this very new cool technology for spying you
>totally fresh news of current year, my fellow hackers
>it's called Intel AMT
uh-huh
Also, you missed the board. This is a board for anarchist highschoolers who like science fiction, not a hardware security discussion board.

>As long as the power supply is available and and in working condition, it can be woken up
As long as power cord is plugged in, your PC is not actually off, it's a common knowledge since ACPI states been introduced.
>Core vPro processors work in conjunction with Intel’s new Anti Theft 3.0, which put 3g connectivity into every Intel CPU after the Sandy Bridge version of the I3/5/7 processors
Wrong. The anti-theft works only with dedicated 3G modem, a SIM card and service subscription. Another similar technology on older laptops called Computrace was basically half-assed boot malware that didn't work on anything beyond windows XP. In order to have a good 3G connection, a dedicated modem with antenna is needed plus agreement with literally every carrier in the world to accept their embedded SIM, even Amazon doesn't have that.
>he writes
Writes who? Cite your sources, I'm not going to waste my time duckducking that.

The main thing is, you don't even tell us or know about year-old AMT vulnerabilities. Friggin bizarre innit, this thing hosts a web server right in your ring -3 and lets anyone login when using blank password after fucking with GET requests. https://www.intel.com/content/www/us/en/architecture-and-technology/intel-amt-vulnerability-announcement.html
The antenna might be there, an in fact soon will be there, look at latest mobile processor datasheets. But, you can always: put a Faraday hat on it, plug off the power cord, use ARM/MIPS router no PFSence for you, BSD sweeties with freedom firmware and range ban Intel IPs, forbid all external connects, and not plug malicious devices on same local network.

Nezumi 2018/05/31 (Thu) 21:26:02 No.2862

File: 1527801962581.jpg (2.46 MB, 5965x3517, jason-blackeye-199547-unsp….jpg)

>>2855
what is the source of this quote?

Deckard 2018/06/01 (Fri) 01:25:01 No.2863

>>2862
If you were using google, you could easily find it. I'm not sure how well the google-replacements cool kids use work

Nezumi 2018/06/04 (Mon) 22:14:03 No.2879

>>2863
searx.me is decent
>bing is the porn king
>feel dirty even searching anything on bing

jack 2018/06/05 (Tue) 03:54:35 No.2880

>>2855
>>2856
I don't know much about those linux distros but Parabola isn't it more secured ?

Saito 2018/06/07 (Thu) 01:20:11 No.2881

>>2863
>hey guys, read my incredible blog, but check for yourself if any of this actually has a source because i'm 2 k3w7 2 add it

Unnamed 2018/06/09 (Sat) 02:22:07 No.2886

File: 1528510926996-0.jpg (115.77 KB, 1000x750, 1527682115840.jpg)

>>2880
Yeah, parabola is entirely FOSS, and with libreboot you can disable the management engine and fully encrypt your HDD.

Maj. Motoko Kusanagi 2018/06/09 (Sat) 09:35:09 No.2893

>>2861
>Also, you missed the board. This is a board for anarchist highschoolers who like science fiction, not a hardware security discussion board.

Except this is a cyberpunk AND cybersecurity board which isn't limited to just software, obviously.

Yonera Tohko 2018/06/09 (Sat) 13:34:13 No.2896

>>2886
>that sticker

Incognito 2018/12/21 (Fri) 01:49:04 No.3624

File: 1545356944762.png (453.98 KB, 1280x1024, image_id_1051140.png)

>>2857
This - old xeon X3xx X5xx still run stuff fine if you get the faster chips… slam in a good GRFX card and your golden - runs BF1 very nicly and eats Adobe… can also firefox with 100+ tabs ok Ram is cheep so can get 32GB+ Also for this you only want win 7 NOT 10.

So why do we need new CPUs and win 10? what am i missing?
(no one needs win 10 obviously)

(win cuz im an Adobe gaming slut)

I guess laptops might be much better with regards to power efficiency in newer CPUs but old desktops are plenty fun for now.

Tachikoma 2018/12/24 (Mon) 07:12:10 No.3627

Me and my friends usually say that the only viable option in the future are soft processors running on FPGA-s. This way you can distribute a copyable, open, free (as in freedom) hardware with verifiable security. This option is a lot slower and more expensive than normal "hard processors", but something for something am i right? I'm not gonna list the security risks with mainstream PC and Smartphone processors, because i would sit here in front of this thread until tomorrow morning.

Crash Override 2018/12/24 (Mon) 07:14:32 No.3628

>>3624

Also, you can run WIndows totally sandboxed from your main OS in a qemu virtual machine, while having full PCI, memory and CPU passthrough allowign ~95% performance of native.

Zero Cool 2018/12/25 (Tue) 06:18:55 No.3629

>>3627
Do FPGAs come from Stallman's foot crust or something? No, they are developed by same companies who make conventional microchips, hence all the backdoors still can be there.
>>3628
You will be surprised, but no, you can't have all those nice features without compromising security. Read on Qubes compartmentalization design and how they do everything in software mode only.