u0m3 Posted August 29, 2017 Report Posted August 29, 2017 Un articol interesant ce descrie relativ detaliat modul de functionare al sistemelor auxiliare dintr-un PC modern, cu accent pe modul de functionare al Intel Management Engine si cum poate fi dezactivat acesta. Conform articolului, este primul capitol dintr-o serie. Articol: http://blog.ptsecurity.com/2017/08/disabling-intel-me.html 3 Quote
Nytro Posted August 29, 2017 Report Posted August 29, 2017 "Sistem auxiliar"? Da, o mizerie nenorocita cu rol de monitorizare si acces de la distanta. Quote
gaddafi Posted August 29, 2017 Report Posted August 29, 2017 "As a temporary mitigation while waiting for patches, disable AMT where you can. Start from the most critical servers: Active Directory, certificate authorities, critical databases, code signing servers, firewalls, security servers, HSMs (if they have it enabled). For data centers, if you can, block ports 16992, 16993, 16994, 16995, 623, 664 in internal firewalls now." Sursa: https://www.ssh.com/vulnerability/intel-amt/ 1 Quote
u0m3 Posted August 29, 2017 Author Report Posted August 29, 2017 4 hours ago, Nytro said: "Sistem auxiliar"? Da, o mizerie nenorocita cu rol de monitorizare si acces de la distanta. Incercam sa fiu delicat. 1 hour ago, gaddafi said: "As a temporary mitigation while waiting for patches, disable AMT where you can. Start from the most critical servers: Active Directory, certificate authorities, critical databases, code signing servers, firewalls, security servers, HSMs (if they have it enabled). For data centers, if you can, block ports 16992, 16993, 16994, 16995, 623, 664 in internal firewalls now." De curiozitate, ce recomanda ca masura de siguranta cand firewall-ul ruleaza pe un procesor Intel? 1 Quote
gaddafi Posted August 30, 2017 Report Posted August 30, 2017 Update-uri de firmware, daca ai noroc sa gasesti. https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr https://downloadcenter.intel.com/download/26755 Quote
