Spoiler

Spoiler

Spoiler

Spoiler

Yep..

 

It is true, but: https://www.dell.com/support/kbdoc/...intel-management-engine-state-control?lang=en

Even though it's not a complete solution.

 

Is this about IME/AMT? Yeah, it's about IME/AMT.

It's true, though this video is (as always is with these kind of clips) sensationalist, and it's been known for a long time: https://en.wikipedia.org/wiki/Intel_Management_Engine

Widespread use in corporate environments, where remote control is assumed and used a lot. It's not a universal backdoor though, but it can be exploited. Know your adversary and adjust your paranoia levels accordingly.

*edit* I meant to say that while it can be exploited, there are easier ways to pwn someone.

*edit2* Fun fact: ME runs Minix which was a teaching operating system for students to learn from, including one Mr. Torvalds who got frustrated with it and started writing his own, and got into a massive flamefest with Minix's creator, Andrew Tanenbaum. It's very entertaining evening read for us nerds

 

Last edited: Sep 30, 2025 at 12:26 AM

The insidious thing about IME for those non-corporate users wishing to protect their privacy from being hijacked remotely by some mischievous dickhead is that the engine for the thing works independent of the main processing architecture. In essence, what this means is that even a machine that is powered off (with the power cable still connected) can be turned on remotely and its contents ransacked by any shithead with a remote console.

Fortunately for us, IME works with specific network ports in order for "remote" control to occur. The port mapping is a industry defined standard and IME can be more effectively disabled by simply blocking access to those ports at the firewall closest to your internet demarcation point. This would be the firewall located on your internet router or just behind your internet router. That being so you simply block those ports once (both directions) so that everything located behind that firewall is protected.

 

Last edited: Sep 30, 2025 at 1:18 AM

i start every song with "I AM GONNA BOMB YOU ALL" in the hopes the NSA will contact me with some encouraging words about my tunes but so far nothing. :/

 

Question is "is it even legal?"