Hacker News new | ask | show | jobs
by chmln 2232 days ago
The very first thing I do after buying any laptop is completely wiping everything and installing Linux or re-installing Windows.

I think it's best to always start from clean slate because even 'good' manufacturers put a tonne of shit in there. So in that sense, it doesn't really matter what the manufacturer does, apart from the terrible decision making that they should learn from.
1 comments
fhelik 2232 days ago
They used to use firmware-based rootkit to reinstall their manufacturer spyware onto a freshly formatted OS install. So, not matter what you do, they will reinstall even if you format the hard drive.
link
UI_at_80x24 2232 days ago
While that's true for Windows (and I remember the reports so not arguing the point); it simply _CAN'T_ be true for every OS.

Consider using OpenBSD instead. The barrier to entry is higher, but worth it. Hell I'd be surprised if they could get that to run on linux without exploiting a 0day. Windows tries to be too helpful, and that's where the problems arises.

Your point is valid though; why trust them? If you follow that train of thought all the way down you'll be forced to live naked on a deserted island.

link
josteink 2232 days ago
But only if you use Windows.

The person you replied to also suggested running Linux instead, in which case you are not affected.

link
jlgaddis 2231 days ago
Many manufacturers, invluding Lenovo, are starting to support the "Linux Virtual Firmware Service" [0].

Honestly, I would not be surprised if one of them, at some point, tried something like this with Linux, too.

---

[0]: https://fwupd.org

link
josteink 2231 days ago
But that is a good thing, really.

The only thing this does, is enable you to update your UEFI BIOS and other machine-firmware from Linux, without having to have a separate dual-boot OS like Windows (or bootable USB sticks) to do that one task, and it frees you from having to download and obtain proprietary firmware-installers/checks per device you want updated etc.

I consider it apt-get for firmware and use it all the time. Everything in one place, easy to keep up to date etc. It's great!

And very importantly: It does in no way enable the UEFI-abuse with bloatware "drivers" as outlined earlier, which is still a Windows-only phenomena, because Linux does not check for nor use these drivers.

Edit: Oh hey there Jeremy. Long time no see! Where did my good ol' IRC buddy go these days? :D

link