[naikrovek]

yep all the hacks which have broken it sure have me proven wrong. gosh.

the thing isn't even capable of the devastating things you all fear. it's a minimal CPU (a slow 486 on Intel chips) with a miniscule web server which is off unless configured to be on and it can't read your disk or read RAM. all it can do is talk to hardware. it's how you configure the bios without rebooting at the console.

[matheusmoreira]

https://www.csoonline.com/article/3662772/cybercriminals-loo...

https://www.wired.com/story/intel-management-engine-vulnerab...

https://www.tomshardware.com/news/intel-me-security-vulnerab...

You were saying...?

[naikrovek]

yeah I was saying that these are not always enabled on consumer devices and are protected by firewalls in most consumer and corporate situations by default.

you are smart enough to have firewalls in place, right? or are you so knowledgeable about security that you turn those off?

I see you linking to attempts and maybe some real vulns but even if they were exploited in the wild without local USB access, which I don't see in those links, firewalls would have prevented them.

physical access appears to be a requirement for those now-patched vulnerabilities, so while I was mistaken about a bit of this, my overall point stands. wow I guess you sure proved your side!

if you don't like this kind of thing in your CPUs, please feel free to start a CPU company and make your own stuff.

[imwillofficial]

Bingo. One of the core competencies of a SysAdmin is thinking critically about security vs convenience.

[naikrovek]

oh we were playing bingo? no one told me

[imwillofficial]

Be better at your job, and more knowledgeable in your opinions.

You literally got destroyed and that’s your comeback?