Re: [OT] Re: the ghost of UEFI and Micr0$0ft

To: Debian User <debian-user@lists.debian.org>
Subject: Re: [OT] Re: the ghost of UEFI and Micr0$0ft
From: Tom H <tomh0665@gmail.com>
Date: Thu, 7 Jun 2012 06:14:17 -0400
Message-id: <[🔎] CAOdo=Sww2+H=rve5w7FOhLAeh9x6C73Mv30Fst3KHrvHb1H+pQ@mail.gmail.com>
In-reply-to: <[🔎] 20120607094311.GV3677@sid.nuvreauspam>
References: <[🔎] jqlddc$60h$15@dough.gmane.org> <[🔎] 20120605190354.5fe2442a@ares.home.chubig.net> <[🔎] jqlf8n$60h$16@dough.gmane.org> <[🔎] 20120605192655.7e8f078c@ares.home.chubig.net> <[🔎] jqlgj6$60h$18@dough.gmane.org> <[🔎] CAOdo=Sya8Em4PqRLOyG8vwRgUgc2JjUY36n99j_4DUdkdz8H0w@mail.gmail.com> <[🔎] jqnn88$u68$7@dough.gmane.org> <[🔎] CAOdo=Sw92DVFZtKtXypSAHdg6ZgAE_2VtzzmGDWE2dZUaHsRYQ@mail.gmail.com> <[🔎] 20120606174704.GO6442@n0nb.us> <[🔎] CAFoWM=9ZJUkkzxLNVkQ7tGu-huzF-FEhLwfFNt9spgKUrGdjuA@mail.gmail.com> <[🔎] 20120607094311.GV3677@sid.nuvreauspam>

On Thu, Jun 7, 2012 at 5:43 AM, Andrei POPESCU <andreimpopescu@gmail.com> wrote:
> On Mi, 06 iun 12, 13:04:50, Kelly Clowers wrote:
>>
>> I sincerely doubt it. Although I guess it depends on what you mean by
>> "via the network". Worms that infect like SQL Slammer are relatively
>> rare, AFAIK most malware get in via drive-by downloads, or intentional
>> installation of programs that are infected. Those are user issues and
>> browser issues (though local OS exploits may be used after the
>> browser security is bypassed). Though these get delivered by the
>> network, it isn't the same as vulnerabilities in, say, the TCP/IP
>> stack, or a vulnerable OS daemon/service.
>
> But still, those attacks wouldn't be prevented by Secure Boot, so Nate's
> argument (Secure Boot won't improve Windows security) still stands.

Did everyone miss this link [1] that was posted by MG in his blog post?!

Simply because viruses/malware/etc have been introduced historically
through the network doesn't mean that the firmware isn't a target now
or won't be in the future.

That Microsoft's leveraging a (potential) solution to this problem to
make our lives difficult isn't surprising...

1. http://blog.webroot.com/2011/09/13/mebromi-the-first-bios-rootkit-in-the-wild/

Reply to:

Follow-Ups:
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Slavko <linux@slavino.sk>

References:
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Camaleón <noelamac@gmail.com>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Claudius Hubig <debian_1206@chubig.net>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Camaleón <noelamac@gmail.com>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Claudius Hubig <debian_1206@chubig.net>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Camaleón <noelamac@gmail.com>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Tom H <tomh0665@gmail.com>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Camaleón <noelamac@gmail.com>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Tom H <tomh0665@gmail.com>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Nate Bargmann <n0nb@n0nb.us>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Kelly Clowers <kelly.clowers@gmail.com>
- Re: [OT] Re: the ghost of UEFI and Micr0$0ft
  - From: Andrei POPESCU <andreimpopescu@gmail.com>

Prev by Date: Re: wifi cards
Next by Date: Re: wifi cards
Previous by thread: Re: [OT] Re: the ghost of UEFI and Micr0$0ft
Next by thread: Re: [OT] Re: the ghost of UEFI and Micr0$0ft
Index(es):
- Date
- Thread