[Freedombox-discuss] Wireshark sniffing out of band
freebirds at hushmail.com
freebirds at hushmail.com
Thu Jun 28 20:56:28 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
To comment on Rick C. Hodgin's concern that AMD may have an
equivalent of vPRO, it does. It is AMD DASH without the anti-theft.
Most of the frightening aspects of vPRO is Intel's AMT which is in
vPRO and acts independent of vPRO. I think Intel installs AMT in
computers without vPRO. AMT and DASH have similar capabilities.
AMT has been hacked. Even without hacking AMT, a hacker can hack
the local LAN to access AMT and DASH to gain complete remote
control of the computer.
Ben, you mentioned wireshark can sniff the out of band traffic.
Wireshark or snort on the computer being remotely accessed would
not detect the traffic. Wireshark and snort would have to be
running on another computer who's AMT or DASH was not being
remotely controlled.
Rick Hodgin, thanks for recommending VIA processor. I have been
researching the Samsung NC20 netbook which has a VIA Nano
processor. However, VIA does not answer questions. Hence, I posted
on their forum. Samsung NC20 was discontinued and I cannot find
used ones online.
Tim Schmidt wrote: "You're misinformed, or lying. Please stop."
regarding my post: "Dell automatically updates the BIOS of older
Dell notebooks that didn't have Computrace preinstalled to now have
Computrace."
A geek who own's an old Dell laptop complained about this. Dell and
Lenova perform automatic updates of drivers including BIOS.
"Both Dell and Lenovo supply an auto-update program to update
drivers and, in Lenovo's case, the various helpful utility programs
that come with the system. ... My laptop is always up-to-date, and
the update program has never failed, performing bios flashes,
software upgrades, and even installing some new features.
http://chrisnf.blogspot.com/2008/03/dell-vs-lenovo-automatic-
update.html
Thread by a Dell owner who's Computrace was activated before he
purchased it and it was sending data.
http://www.tomshardware.com/forum/241587-49-computrace-absolute-
software
Computrace has been hacked.
Dell also preinstalls vPRO. I will ask my geek whether the
automatic BIOS update contained Computrace and vPRO.
-----BEGIN PGP SIGNATURE-----
Charset: UTF8
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 3.0
wsBcBAEBAgAGBQJP7MT8AAoJEMry4TZLOfxm8iUH/0TGE18jRLdHBJ3xBK9M6SmtCKNp
ubbV6XLYLZphH78Kl1KAWrDvgGJrZeeeTPMy3+vzWFYDauzAUOb1Z70xl4/Y/vEu5ovS
l1Ca0qyp6z7dEkYEe+4QCS/7dlzaNo7u3Ad4jSTCOq2ChTch2+RVeAQKPSjaB0DPWRfU
b9e3JY634+XmD6oIuzSz66uelSqjiyO3MBdGWdMsrnxAbeKZnN4zzc409Zh6+pKBvdv6
hHSm8upifKovqjA9PoHNh/ZqIIZWArDUr8R7rCXBwIOxiue+jOZ8TiQolUf04Ae7xJjD
X4t6at9WEdGweoxPrqUjiMBZcvjpTzELgC1c/9hnG30=
=QCZm
-----END PGP SIGNATURE-----
More information about the Freedombox-discuss
mailing list