[digi_owl]

> I think we need to focus far more on hardware - it's never looked darker - Secure Boot and the ME make me worried for the future of x86, even.

Thing is that ever since the first PC, "personal" computing has really been about business computing. Heck, visicalc basically sold Apple IIs. This because it allowed accountants to not argue with sysadmins about mainframe time.

Secure boot and ME is Intel and MS responding to business needs.

Thing is tough that flexibility/usability will always be the enemy of security. A building is more usable when the door are left unlocked, but at the same time you can't use said building to store valuables.

PCs could ignore security for the most part back in the day, because they were airgapped.

Frankly the most secure thing a home user can do is to pull the plug on the router when they are not using the net. But then what is not using the net these days?

[Kliment]

ME is a huge net negative for security though

[digi_owl]

From who's vantage point? The end user, or the corporate sysadmin managing a fleet of desktops and laptops?

[Kliment]

Either - it's a massive added convenience, but in a corporate security setting an attacker invisibly having remote access to screen, input devices, and data is a security nightmare, and a single compromise can grant access to the entire fleet.