vPro and secure Debian systems

To: debian-project@lists.debian.org
Subject: vPro and secure Debian systems
From: Daniel Pocock <daniel@pocock.pro>
Date: Wed, 2 Aug 2017 09:24:41 +0100
Message-id: <[🔎] 794d9562-7274-6447-db50-4f8cc780925a@pocock.pro>

Hi all,

There is a page[1] about AMT / vPro on the wiki, it doesn't mention any
of the security concerns[2] about this technology.

Is there anything that Debian can do as an OS (e.g. default settings,
check during installation) to protect users from risks associated with vPro?

For people who have a computer or laptop with vPro capabilities, can it
be made secure or are they better off getting rid of that system?

A lot of new Intel-based laptops, e.g. Thinkpads, offer a choice to buy
with or without vPro.  Does deselecting vPro during the customization
process actually make any difference from a security perspective, or is
the same stuff still present in the system anyway?

Regards,

Daniel


1. https://wiki.debian.org/AMT
2.
https://security.stackexchange.com/questions/128619/what-are-the-privacy-and-security-risks-associated-with-intels-management-engin

Reply to:

Follow-Ups:
- Re: vPro and secure Debian systems
  - From: Holger Levsen <holger@layer-acht.org>
- Re: vPro and secure Debian systems
  - From: Zlatan Todoric <zlatan@riseup.net>

Prev by Date: Re: Request for official help
Next by Date: Need Info : MIPS 64 ( big Endian) debian libraries
Previous by thread: Re: Request for official help [and 1 more messages]
Next by thread: Re: vPro and secure Debian systems
Index(es):
- Date
- Thread