this post was submitted on 16 Aug 2024
222 points (92.4% liked)
linuxmemes
21586 readers
1184 users here now
Hint: :q!
Sister communities:
Community rules (click to expand)
1. Follow the site-wide rules
- Instance-wide TOS: https://legal.lemmy.world/tos/
- Lemmy code of conduct: https://join-lemmy.org/docs/code_of_conduct.html
2. Be civil
- Understand the difference between a joke and an insult.
- Do not harrass or attack members of the community for any reason.
- Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
- Bigotry will not be tolerated.
- These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
3. Post Linux-related content
- Including Unix and BSD.
- Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of
sudo
in Windows. - No porn. Even if you watch it on a Linux machine.
4. No recent reposts
- Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.
Please report posts and comments that break these rules!
Important: never execute code or follow advice that you don't understand or can't verify, especially here. The word of the day is credibility. This is a meme community -- even the most helpful comments might just be shitposts that can damage your system. Be aware, be smart, don't fork-bomb your computer.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
i would not trust hardware from a vendor that puts hardwired backdoors into physical memory... you'ld undermine any security the OS could give you.
Unless you're using ancient hardware, you already have an internet connected back door in your CPU.
pulls out abacus
“Not today fedboys! Now, how do I listen to Taylor’s latest single on this?”
Use it as a harp?
If it doesn't work check for viruses, defragment your balls, and satanise your beads. Maybe you just need to download more orbs?
👨🍳 💋
Never under-satanise your balls, don't want a cherub infestation, those things are nasty, destructive, hard to kill, and they shit everywhere.
Pulls out thinkpad with coreboot Not today assholes
Corebooted Thinkpads are pretty ancient.
But 3mdeb, Novacustom, Starlabs, System76... well and Chromebooks exist.
Also no idea about the new ARM laptops.
2011 isnt that old... right?
I bought an Asus Eee PC from 2007 for $7 a couple weeks ago and put NetBSD and it is honestly surprisingly usable for non web tasks. Your 2011 ThinkPad is like insane future technology by comparison
Its quite useable for day to day tasks and can even do some light gaming
2012 isn't that bad, it even has usb3!
Yeah really. I have a T430, tried an i7 upgrade but it ate too much battery and was crazy hot (3632QM, the "normal" model!).
The dual core CPU still works kinda well. The keyboard is awesome but loud. The screen is terrible. I have some phone speakers I plan to use for swapping the laptop ones which are crap too.
My T495 had an even better keyboard but proprietary, outdated (kind of, got a Spectre patch).
The clevo honestly has crappy external hardware except the excellent screen. Camera sucks, touchpad sucks, keyboard tolerable. Very strong i7 cpu and good peripherls (well, no displayport, a nogo for FOSS computers I think)
The screen on the t430 is indeed horrible but I had a very modern laptop before this which was pretty high spec, and it had a even worse screen than this somehow (it was some horrendous IPS display, I don't even understand how you mess it up that bad). Compared to that pile of garbage this is much better. The only problem is that you can't replace the display on the t430 as easily as a modern (non-touchscreen) laptop because it uses the LVDS interface instead of the modern eDP interface.
You can run libreboot on newer devices but the Intel ME is needed to boot. Apparently the device shuts off after 15min without it.
With that being said it is possible to disable it after boot
Hmm, intel was sued by the literal NSA for the ME so they now need to include a setting for it.
You need to place a specific bit in the BIOS and then it is disabled. This should not cause any problems.
But for some reason, which may be a faulty USB flash install, Dasharo Coreboot on a Clevo NV41 loses the TPM when disabling the ME.
I have 2 nitrokeys so might just use that as secure element instead of my TPM.
*libreboot
I prefer coreboots flexibility
Not as free though. Also coreboot needs a distribution
does it? I got the source from coreboot.org and compiled it myself.
but you did notice that compilers can be manipulated to include backdoors into resulting binaries AND put the same manipulation into newly compiled compilers as well, right? then where did you get that compiler from? did you have a look at the binary output? then if so, did you look at it using the hexeditor of that same compiler? 😎 plz have a look .. 💥 bzzzt ... really you are lucky to be alive after a blast like that, especially you, have yourself checked out with ems before you leave!
I looked at it by inspecting my hdd with a microscope. is that good enough?
if it was at least a scanning tunneling one, then yes, good job 👍 🤪
Uhm.. My microscopes firmware was compiled with the same compiler I used for coreboot..
yeah! you beat me to it 👍
guess this instance is lost, lets restart the matrix!
https://youtu.be/rNdpvNH1yi8?si=GPLbzrNxnwKNCfHm
I believe that's Intel only, AMD's isn't internet connected
AMD has an equivalent technology they put in around the same time. Also AMD chips aren't nearly as compatible with libreboot.
A while back AMD did say they were looking to open up a lot of the boot stack but I haven't heard anything sense.
I think that was mostly for server CPUs/chipsets
You just need to know what to look for. Ancient hardware isn't the only option.
unless you're running your own gsm station and let your cpu's safely connect to it, and use that connection for additional snmp monitoring data?
I think that applies to pretty much all computer hardware