[shmerl]

Looking forward to AMD laptops with Coreboot support as well.

[clmgs]

AMD has a similar backdoor:

https://en.wikipedia.org/wiki/AMD_Platform_Security_Processo...

[_kbh_]

I would argue that the out of band management provided by DMTF DASH is closer to what people consider then Intel backdoor then the AMD PSP. The PSP cannot be accessed remotely and is only available locally which removes most of the attack surface.

https://www.amd.com/system/files/documents/out-of-band-clien...

[fsflover]

Probaly won`t happen since AMD have their own secret code which no one could neutralize yet.

[boring_twenties]

Recent (1-2 years?) AMD BIOS supports disabling the Platform Security Processor (their ME equivalent).

I haven't been able to figure out what exactly this means, but it does seem to be disabled after system initialization. Kind of like Intel's HAP bit, except user-settable.

[floatboth]

Either like the HAP bit, or less — only disabling its visibility to the OS on the PCIe bus.

[boring_twenties]

Yeah, I'm a little confused as to why they'd bother implementing and deploying this feature without even a cursory explanation of what it does...

[numpad0]

Maybe it’s literally classified

[LargoLasskhyfv]

I found [1] https://www.igorslab.de/en/inside-amd-bios-what-is-really-hi... to be a good explanation. Essentially it's the crank which brings up the rest of the SOC. The other functions are optional, but no booting possible without it.

[boring_twenties]

Thanks for that! This is quite relevant to me right now as I'm thinking about my next upgrade. Obviously, I'd prefer to buy AMD, especially if this disable switch is legit. But grotesquely, I'm still considering going with Intel, because at least I know I can use me_cleaner there, and more or less understand exactly what it does. Hopefully this document will clear some of that up.

[shmerl]

Supposedly it's already in the works: https://twitter.com/jeremy_soller/status/1286457590289858560

[nullc]

Welp. Their response to Raptor in that thread just forever cost System76 my business.

System76 takes the position that compatibility with x86 binaries is worth having to take closed, remote-access-enabled, binary firmware. That's a position someone can take.

Responding "So what?" and "I was expecting this" is just nasty and unprofessional.

[Godel_unicode]

That's not System76 account. It's a personal account of one person who has a history of being harassed by Raptor. Raptors tweets were from their official account, and your reaction was the exact goal of their antagonism.

[shmerl]

Yeah, that was strange. Sounds like there is some argument history behind it.

[kbenson]

It does read like that, but even so, the initial question from Raptor Computing Sys was very well worded and not disrespectful at all. The inability to at a minimum leave it as "We've covered this before, and disagree on some items. We'll have to agree to disagree and leave it at that." or even "I'm doing what I can, we'll see where it ends up in the end" or "See the official account for official statements" is the troubling part. Then a gain, that doesn't appear to be uncommon on Twitter, where everyone seems to have trouble disambiguating their professional and personal lives, and those of the people they are responding to (which is related).

[wizzwizz4]

To be fair, I can see why

> Even if you do port coreboot

was read as abrasive; that tweet can be read as a snarky attack that belittles the efforts of the porter, to which the "so what?" response is apt – in fact, a de-escalation.

And yet, in reality, it wasn't one. (This is why you assume good faith, people!)