In a slap to Intel, custom Linux computer seller System76 has said it will be disabling the Intel Management Engine in its laptops.
Last month, Chipzilla admitted the existence of firmware-level bugs in many of its processors that would allow hackers to spy on and meddle with computers.
One of the most important vulnerabilities is in the black box coprocessor – the Management Engine – which has its own CPU and operating system that has complete machine control. It’s meant for letting network admins remotely log into servers and workstations to fix any problems (such as not being able to boot).
The bugs – as security researchers discovered – allow for installing rootkits and spyware on machines that could steal or tamper with information. So, perhaps unsurprisingly, several vendors – including Lenovo – have been quick to patch the bugs.
…这5人从中央部门空降-省委副书记 中央一号文件 空降 山东钢铁 …
Denver, Colorado-based System76, meanwhile, has just banned the Management Engine outright.
In a blog post Thursday, the firm wrote: “System76 will automatically deliver updated firmware with a disabled ME on Intel 6th, 7th, and 8th Gen laptops. The ME provides no functionality for System76 laptop customers and is safe to disable.”
It will apply to customers running Ubuntu 16.04 LTS, Ubuntu 17.04, Ubuntu 17.10, Pop!_OS17.10, or an Ubuntu derivative with the System76 driver installed.

Desktops are not affected by the ban – they’ll just receive ME patches “as they are available”.
The firm said the rollout would happen over time and customers will be notified by email prior to delivery.
“Disabling the ME will reduce future vulnerabilities and using our new firmware delivery infrastructure means future updates can rollout extremely fast and with a higher percentage of adoption (over listing affected models with links to firmware that most people don’t install).”
互联网信息活动亟须法律规范,但网络世界形成的各类社会关系也是当前现实世界的各类社会关系,涉及多方面的法律规范,不可能通过一部法律进行调整。
System76 did, however, note that Intel has the power to change device function and not allow manufacturers and consumers to disable ME, so this may not last forever.
Intel has not responded to a request for comment. ®
安全厂商和企业组织也可以考虑采用互联网公司的网站安全数据库,进而搭建和提供更强大的组织上网行为管理体系,确保员工的上网安全和提升生产力。

猜您喜欢

无节操黑客为不良搜索公司蝇头小利而入侵其竞争对手并窃取商业机密
一个信息安全动画小故事,随意丢弃损毁的U盘,被保洁员拾走,泄了密……
网络安全法宣传推广视频 004《网络安全法》的突出亮点
食物就有半吨重 世界上最大的蛇长啥样(图集)
WAKAYAMAKEN SENIORSERVICESASSOC
安全意识教育的商业价值