You patched the Intel AMT vulnerability. Right? RIGHT?????

https://downloadcenter.intel.com/download/26755/INTEL-SA-00075-Detection-and-Mitigation-Tool?product=23549

If you have a Thinkpad, you're vulnerable.

not having problem with my ryzen 1700 :^)

>>60811213
>>60811290
I "patched" it from the patch given by Lenovo, but that's all that it's worth. It's like putting a bandaid on an open wound - just superficial.
I really should bite the bullet and go with coreboot and wipe ME, but three things so far are holding me back: the hardware required, the fact that there appears to be an existing issue with wiping ME that causes slow boot, and the fact Coreboot doesn't support the USB 3.0 chipset (I have an i7 X220).

>>60811299
AMD has the equivalent of Intel's ME, called AMD PSP. All modern x86 platforms contain hardware-level rootkits - enjoy!
>https://libreboot.org/faq.html#amd

File: Capture.png (25KB, 564x529px) Image search: [Google]

25KB, 564x529px

Nope fampai

>>60811213
>>60811290
No, don't want to flash a new bios and have no possibility of installing a nonshit wifi card

File: csm_thinkpad_t60p_gesamt3_d1adee944c.jpg (267KB, 1600x1200px) Image search: [Google]

267KB, 1600x1200px

The T60p does not have the vulnerability. Best laptop wins again.

File: file.png (55KB, 804x513px) Image search: [Google]

55KB, 804x513px

¯\_(ツ)_/¯

File: Untitled.png (64KB, 604x495px) Image search: [Google]

64KB, 604x495px

>>60811213
>using a botnet cpu

>>60811448
BOTNET

>>60811425
It's also piss-poor slow. I can barely decode high-bitrate 1080p on my X220 with medium mpv config. Don't even want to imagine this.

>>60811448
>>60811473
>>60811508
>windows

>>60811545
720p 10bit usually works. 1080p does not

"Normal" 720p/1080p files are no problem

File: Screenshot_2017-06-08_19-55-03.png (86KB, 681x336px) Image search: [Google]

86KB, 681x336px

>Using a cpu with NSA backdoors

>>60811290
>>60811562
Linux version

https://downloadcenter.intel.com/download/26799/INTEL-SA-00075-Linux-Detection-and-Mitigation-Tools?product=23549

File: w34567.jpg (183KB, 790x498px) Image search: [Google]

183KB, 790x498px

seems ok

File: file.png (55KB, 804x513px) Image search: [Google]

55KB, 804x513px

So what now?

>>60811213
>MEI
are you fucking retarded using this?

>>60811425
>T60p does not have the vulnerability
idiot..

no because I don't believe in vulnerabilities. nothing was vulnerable but the people who patched were fooled and downloaded a backdoor.

File: asdasd.png (59KB, 804x513px) Image search: [Google]

59KB, 804x513px

hahaha
u mad?

>>60811744
This.

>>60811213
>You patched the Intel AMT vulnerability. Right? RIGHT?????
Didn't need to. Server motherboard master race.

Risk Assessment
Based on the analysis performed by this tool, the tool was unable to detect ME or SMBIOS information to assess vulnerability.

Explanation:
The tool did not receive a valid response when requesting hardware inventory data from your computer. Please contact your system manufacturer for assistance in determining the vulnerability of this system.

>installing microcode from intel
enjoy
https://arstechnica.com/gadgets/2016/02/intel-to-shut-down-renegade-skylake-overclocking-with-microcode-update/

File: Screenshot_20170608_151523.png (13KB, 563x198px) Image search: [Google]

13KB, 563x198px

I never did, but apparently I'm safe.

>>60811865
delet

File: file.png (74KB, 804x513px) Image search: [Google]

74KB, 804x513px

>>60811712
The first Thinkpad with AMT was the T61

>>60811822
AMT firmware is separate from the BIOS

$ sudo ./INTEL-SA-00075-Discovery-Tool 

INTEL-SA-00075-Discovery-Tool -- Release 0.8
Copyright (C) 2003-2012, 2017 Intel Corporation.  All rights reserved

Error: No such file or directory (null)
Cannot establish a handle to the Intel(R) MEI driver. Refer to Tool User Guide for more information.

>>60811213
What is this and why should I be concerned?

>>60811562
Linux is also vulnerable

How do you install the updated firmware from Lenovo on Linux?

>>60812223
Why would Lenovo support a toy operating system?

>>60812244
Why would lenovo patch a backdoor on NSA/Windows? It's like taking a glass of water out of the ocean.

>>60812223
lenovo doesn't support linux
you literally have to bend over backwards to install BIOS updates because they assume everyone has windows and if you "happen" to not have windows, better hope you have an optical drive, because their updates are PC-DOS era bootloader monstrocities that simulate a disk drive image and require specialized extraction tools and a grub boot entry just to run on your machine.

>>60811508
what isn't a botnet these days?

Am I vulnerable? My intel mobo is from 2006.

>>60811576

Turion is the epitome of "ayyyymd house fire".

>>60811213
no, because i wasn't retarded enough to buy a botnet cpu to begin with

>>60812151
Correction:
Everything is vulnerable

It's almost as if having an indipendant cpu that works as a backdoor is a bad idea

>>60812378
exactly

>>60811213
No because I'm CyrixInstead

>>60811299
you have other problems like defecating in public areas

File: sup yall.png (26KB, 790x502px) Image search: [Google]

26KB, 790x502px

>>60811213

File: fs.png (26KB, 813x522px) Image search: [Google]

26KB, 813x522px

>>60811290
>If you have a Thinkpad, you're vulnerable.
haahahahah, lelnopevovo cucks on suicide watch
Elitebooks win once again

>>60812494
>>60812494
retarded/10

>>60812494
pedo/10

How do I patch this?

I have an x220t on Ubuntu 16.04. It says I'm vulnerable. Wat do

Is this a problem if I disabled ME in my bios years ago?

>>60812570
Lol dumb windows pleb

>Basically, if you're using a machine with vPro and AMT features enabled, you are at risk. Modern Apple Macs, although they use Intel chips, do not ship with the AMT software, and are thus in the clear.

https://www.theregister.co.uk/2017/05/01/intel_amt_me_vulnerability/

>>60812664
No. That doesn't fix this issue.

>>60812151
No, the hardware is vulnerable, it's OS-independent. But Windows is a vulnerability in and of itself.

>>60812712
JUST

>>60812223
I used Windows PE. Followed the Arch wiki, except made a writable image instead of an ISO. From there, you need to boot up PE, load hardware-appropriate HECI driver provided by Lenovo, and finally install the patch.

>>60812794
Thanks. You just reminded me I have a Win 10 partition that I haven't used in half a year. Guess I finally have a reason to boot into it

>>60812244
>Why would Lenovo support a toy operating system?
Sadly because Windows is still necessary for some people.

>>60811545

how much ram do u have on that x220

File: 1393598870259.png (446KB, 800x600px) Image search: [Google]

446KB, 800x600px

lenovo fags on suicide watch

>>60811290
Shit like this is why I use mac

>>60812914
Not him but I'm having performance issues on my x220t and am looking to upgrade some of the components that might be bottlenecking it. What are good RAM and SSD choices for this aging machine? Are there any decent replacement batteries? Anything else I could potentially upgrade to speed this thing up that I haven't thought of? Oh, and it needs a new keyboard. Where should I buy one of those?

>>60813034
there's already a patch out
if you don't have a small windows partition still you're an idiot who deserves it

>>60813106

only reason I asked him was because I upgraded my x220 from 4gb of ram to 16gb and it made all the difference in the world

no more hangups, no more typing lag, its just fast, doesn't even need an SSD

I would recommend getting at least 8gb.

I have my AMD trusted computing disabled, that's as far as I can go

>>60813163
or just know how to maintain your computer instead of just throwing more resources at the problem

>>60813146
>if you don't have a small windows partition still you're an idiot who deserves it
Why would I care about having an Intel backdoor on my computer when I have a massive microsoft backdoor on my computer?

>>60813034
If lenovo is shit, what brands are good?
I've been looking around and everything looks pretty bad. System76 would be good if their keyboards weren't complete ass and they supported libreboot.

>>60813356
4GB isn't enough for a browser with a ton of tabs, IDE, web server, modern DE, etc., and when you couple it with a 5400rpm HD its even worse

>>60813417
>browser with a ton of tabs
I've never had a problem with 20 tabs. I don't see why I'd ever have more than that
>IDE
vim does not take up much ram. If you need anything else, you should not be programming
>modern DE
KDE takes around 400MiB or RAM

>>60811213
>------------------Vulnerability Status--------------------
>System is not Vulnerable, no further action needed.

I'm good.

>using AMT
Lol

File: 1471959381295.jpg (125KB, 600x600px) Image search: [Google]

125KB, 600x600px

>>60812445
I'm not American.

>>60813356

you're an idiot you know that?

kys

>>60813417
That's a crock. Even with all of that I never get close to full ram usage.
You don't know how to remove bloat, get over it.

>>60813539
>proving him right
PAJEET

What the fuck. I downloaded the thing from >>60811290 and when I go to run it, nothing visible happens. There's an exe running that I can end, but that's about it. On the second attempt, I noticed it says it's from an unknown publisher. Have I been duped? How do I get to the screen like OP's?

>switch to windows and install firmware
>neither detection tool changes its output
>both just assume based on the version since they can't seem to check well enough
fucking intel

>>60813601
I'm not running anything I'm not using

File: Untitled2.png (2KB, 677x22px) Image search: [Google]

2KB, 677x22px

>>60813619
pic related. installed fine. gui just isn't visible

>>60813410
it's only a vulnerability when you boot into it. compatibility and so on outweighs the risk if you barely use it.

>>60811213
I couldn't care less

>>60811213
If you're not using a ryzen-powered system, you're doing it wrong.

>>60813694
If you boot to it, how do you know it's not writing a backdoor into your bootloader?

>>60813704
>AMD
https://libreboot.org/faq.html#amd

Downside is some systems simply won't ever get patched to this vulnerability, like my Latitude E6420 with a Core i7-2640m since the tool points out that it's vulnerable.

Oh well, shit happens, life moves on.

>>60813733
Open psp code is open sourced, all your worries will vanish

File: Capture.png (26KB, 913x505px) Image search: [Google]

26KB, 913x505px

>>60811290
get fucked lmao

>>60811377
Wrong, it's just not open source

>>60813791
>Open psp code
iwouldliketoknowmore.face is this recognized by fsf?

File: is_it_safe.png (26KB, 790x502px) Image search: [Google]

26KB, 790x502px

>>60813619 and >>60813669 here. It eventually came up. Took a while and didn't appear to be doing anything in that time. I'd honestly forgotten I ran it without ending the task.

>>60811916
Apparently the only way to install the patch is as a BIOS update.

File: screenshot.9.jpg (142KB, 396x377px) Image search: [Google]

142KB, 396x377px

>>60811213
Um, I have a ryzen sweetie

File: 1445709169648.jpg (64KB, 445x454px) Image search: [Google]

64KB, 445x454px

>>60816263

>not a threadripper

File: 1496682955088.png (3MB, 1824x1026px) Image search: [Google]

3MB, 1824x1026px

>>60816300
It's too big for me

File: IMG-20170609-WA0000.jpg (75KB, 794x500px) Image search: [Google]

75KB, 794x500px

Bless

I installed the MSI. Didn't do anything else though. Was that all I needed to do?

>>60811213
Plebs. I use a libreboot thinkpad x60 with a core 2 duo that has neither the AMT or the ME.

not having this problem with my fx8350

>disable AMT in BIOS
>physical access now required to fuck my shit up
Wow so hard

>>60816358
>Big areola
>Hairy asshole
>busy armpit
>smelly
MUH DICC

>>60818098
no it isnt, its still an independent computer. anyone with the keys can access it (intel and nsa)

File: Capture.png (26KB, 790x500px) Image search: [Google]

26KB, 790x500px

Guess I'm good

>>60813949
What does this mean?

Aren't only buisness PC/Laptops affected by this? If you built your own you shouldn't have anything to worry about except the Intel ME botnet.