u0m3 Posted August 29, 2017 Report Share Posted August 29, 2017 Un articol interesant ce descrie relativ detaliat modul de functionare al sistemelor auxiliare dintr-un PC modern, cu accent pe modul de functionare al Intel Management Engine si cum poate fi dezactivat acesta. Conform articolului, este primul capitol dintr-o serie. Articol: http://blog.ptsecurity.com/2017/08/disabling-intel-me.html 3 Quote Link to comment Share on other sites More sharing options...
Nytro Posted August 29, 2017 Report Share Posted August 29, 2017 "Sistem auxiliar"? Da, o mizerie nenorocita cu rol de monitorizare si acces de la distanta. Quote Link to comment Share on other sites More sharing options...
gaddafi Posted August 29, 2017 Report Share Posted August 29, 2017 "As a temporary mitigation while waiting for patches, disable AMT where you can. Start from the most critical servers: Active Directory, certificate authorities, critical databases, code signing servers, firewalls, security servers, HSMs (if they have it enabled). For data centers, if you can, block ports 16992, 16993, 16994, 16995, 623, 664 in internal firewalls now." Sursa: https://www.ssh.com/vulnerability/intel-amt/ 1 Quote Link to comment Share on other sites More sharing options...
u0m3 Posted August 29, 2017 Author Report Share Posted August 29, 2017 4 hours ago, Nytro said: "Sistem auxiliar"? Da, o mizerie nenorocita cu rol de monitorizare si acces de la distanta. Incercam sa fiu delicat. 1 hour ago, gaddafi said: "As a temporary mitigation while waiting for patches, disable AMT where you can. Start from the most critical servers: Active Directory, certificate authorities, critical databases, code signing servers, firewalls, security servers, HSMs (if they have it enabled). For data centers, if you can, block ports 16992, 16993, 16994, 16995, 623, 664 in internal firewalls now." De curiozitate, ce recomanda ca masura de siguranta cand firewall-ul ruleaza pe un procesor Intel? 1 Quote Link to comment Share on other sites More sharing options...
gaddafi Posted August 30, 2017 Report Share Posted August 30, 2017 Update-uri de firmware, daca ai noroc sa gasesti. https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00075&languageid=en-fr https://downloadcenter.intel.com/download/26755 Quote Link to comment Share on other sites More sharing options...