• CIPWTTKT&GC V43 - WHERE IS MY THINKPAD?
    5,002 replies, posted
[QUOTE=TrafficMan;52195517]For anyone wondering, I wasn't specific enough The computer has to be plugged in and have a wired network connection + unpatched AMT. That's it. It doesn't even need to be [i]on[/i] for an attacker to have full access Every Intel server and workstation PC (Thinkpads, etc) since 2008 either can't use AMT (and I'm sure plenty of very smart people are trying to figure out how to enable it remotely now, who wouldn't want a golden key to millions of systems) or needs a BIOS patch from the motherboard manufacturer (as wingless said, good luck with that) Also if you have a consumer Intel CPU, all of these "features" and code are still there just (currently) inaccessible [editline]6th May 2017[/editline] ~Security through obscurity~[/QUOTE] Does it require that port 16992 is exposed then?
[QUOTE=Xanadu;52195557]Yes. YOSPOS can be fun to browse if you plan to. I'm not as active there as I used to be five years ago.[/QUOTE] I'm more a Facepunch user than a g00n.
[QUOTE=NeonpieDFTBA;52195654]Does it require that port 16992 is exposed then?[/QUOTE] It does. If you firewall the port you're safe for outside attacks. But not from local network. But here's one of my favourite parts is that all you need to do is break into one public machine to get access to whatever its local network is.
[QUOTE=NeonpieDFTBA;52195654]Does it require that port 16992 is exposed then?[/QUOTE] Oh, yeah. Unpatched + publicly facing As soon as the computer gets 3.3v power the PC on a chip embedded within the CPU starts up, loads its software from the BIOS, activates the NIC, and (we now know) begins waiting for any kind of http authentication attempt whatsoever
Intel AMT also needs to be enabled in the first place. If it's not enabled, an attacker first needs to get local execution, escalate and then enable AMT. After that they have unrestricted ring -1 access over the network, as far as I've understood.
[QUOTE=nikomo;52195717]Intel AMT also needs to be enabled in the first place. If it's not enabled, an attacker first needs to get local execution, escalate and then enable AMT. After that they have unrestricted ring -1 access over the network, as far as I've understood.[/QUOTE] This is correct. This exploit is not a threat if AMT isn't provisioned, and only applies to computers with support vPro Chipset + CPU [editline]6th May 2017[/editline] But for anyone else self hosting servers, this is why it's a good idea to put your servers behind some sort of hardware firewall. Only you can access services not intended to the public, by connecting through a VPN to your server's network.
The real reason this is terrifying is not only just the current active attack we see now, it's the fact that it screams that Intel has never done a proper third-party security audit. Something as simple as password input length checking would be caught instantly on any real security audit by any real qualified company. It's naive to think this is the only attack. This means that quite possibly all of this shit is complete swiss cheese. What this exploit has done is roll out the red carpet for people to start really hunting. Tenable found it almost instantly after hunting for it despite having next to no information as to what the vulnerability actually is. What else are we going to find now that we have auditors actually hunting?
[QUOTE=wingless;52195750]What else are we going to find now that we have auditors actually hunting?[/QUOTE] Do you really want to go down that rabbit hole? God knows how many bodies are buried down there.
My server experienced its first drive failure. A 2010 WD 2TB Green with maybe 4-5years of nonstop spintime. My system was almost finished repairing by the time I noticed it. The automatic repair system kicked in nicely.
[QUOTE=Scratch.;52193809]I wonder how exactly mastodon got so viral in Japan, even Pixiv have invested developers onto it. Pawoo is considered the best mobile client for it, not to mention they even threw their oauth or whatever into it. Out of the top 5 user count mastodon instances, three are primarily Japanese users. This counts to around 300 thousand users from japan, compared to the 90 thousand users from the other two instances that are anywhere else. [B]Not like it matters which server you pick since they become federated anyway[/B][/QUOTE] There's plenty of room for customisation of an instance, and there's plenty of instance blocks (for example, a lot of Western instances refuse to federate with Pawoo because lolicon)
[QUOTE=DrTaxi;52196670]There's plenty of room for customisation of an instance, and there's plenty of instance blocks (for example, a lot of Western instances refuse to federate with Pawoo because lolicon)[/QUOTE] :sex101: [sp]/s do not fuck the lolicon[/sp] You can still follow users, but they are not in the timeline Not like I can actually read weebspeak anyway
[QUOTE=Scratch.;52196732]:sex101: [sp]/s do not fuck the lolicon[/sp] You can still follow users, but they are not in the timeline Not like I can actually read weebspeak anyway[/QUOTE] This is news to me. Reply button is next to box apparently.
[QUOTE=helifreak;52196769]This is news to me. Reply button is next to box apparently.[/QUOTE] You can search for their names, that's how you find people. Otherwise you find people from the federated timeline, which uses a local api when serving to clients. You can't get a live stream from other instances local timeline because you need to have an account for the permission to do so (but remote timeline might become a thing) [t]https://my.mixtape.moe/gygola[/t]
[QUOTE=Scratch.;52196732]:sex101: [sp]/s do not fuck the lolicon[/sp] You can still follow users, but they are not in the timeline Not like I can actually read weebspeak anyway[/QUOTE] That is one mode of "blocking", but I've also seen instances that outright refuse all communication with Pawoo (and/or others).
So new PSU is doing great. In Prey my total system power usage is like >700watts, so my GPU and CPU are being worked hard. GPU must be pulling over 325Watts is my guess. It's overclocked and can handle I think 450Watts in the fan. And I've been playing for like 30-40minutes no issues. I did check the old PSU, fan won't spin. It must have been overheating in Prey due to the massive load and not being able to cool itself.
I completely forgot that getting a current CPU would require an upgrade to Win 10. After going through all that, I now have a HDD clicking every thirty seconds and it's driving me mad.
[media]https://www.youtube.com/watch?v=__p3uF77Kg8[/media] [media]https://www.youtube.com/watch?v=KxZXrAIvsdg[/media] Sysprep in the Creators update got a facelift, it's cute.
Goddamnit, ESXi doesn't support he onboard Realtek of my old MB.
The NIC? Intel dual port gig nics with hardware acceleration are dirt fucking cheap second hand.
I can rep, got a gigabit one on eBay for my server for $20.
[QUOTE=Levelog;52198486]The NIC? Intel dual port gig nics with hardware acceleration are dirt fucking cheap second hand.[/QUOTE] I have some Intel NICs flying around, it's still annoying. [editline]7th May 2017[/editline] Argh, they're all inside a machine not at my place ATM.
TIL flush mount USB 3.1 Type A male to Type C female adapters exist [t]https://cdnlindy.s3.amazonaws.com/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/4/1/41898_1.jpg[/t] TIL they also cost 28 dollarydoos each and chinese clones do not exist so my dream of converting literally everything in the household to run on type-c is ruined
[QUOTE=fishyfish777;52198631]TIL flush mount USB 3.1 Type A male to Type C female adapters exist [t]https://cdnlindy.s3.amazonaws.com/catalog/product/cache/1/image/9df78eab33525d08d6e5fb8d27136e95/4/1/41898_1.jpg[/t] TIL they also cost 28 dollarydoos each and chinese clones do not exist so my dream of converting literally everything in the household to run on type-c is ruined[/QUOTE] I'm curious why chinese clones do not exist. Someone have a hard-on for patent royalties?
[QUOTE=pentium;52198643]I'm curious why chinese clones do not exist. Someone have a hard-on for patent royalties?[/QUOTE] I think it's more because type C is still quite uncommon and there's no real reason for 99% of people to use this adapter yet. Even for people like me with Type C phones the cable it comes with is C on one end and A on the other, and MacBook Pro users are still using dongles for all their type A USB stuff.
We SHOULD transition to it eventually since it's a better port than micro and A, so I'm glad Apple did it since they're pretty much the only company that could get away with it :v:
Wonder if they'll be courageous enough to put C on the iPhone
I still think Type C is half the size it should be. It's a phone connector trying to say it is a general purpose replacement.
[QUOTE=pentium;52198774]I still think Type C is half the size it should be. It's a phone connector trying to say it is a general purpose replacement.[/QUOTE] No please I'm done with big ass ports. Honestly C feels even more robust and sturdy than A usually did, but maybe that's just because all the C stuff I've used so far is well made.
[QUOTE=pentium;52198774]I still think Type C is half the size it should be. It's a phone connector trying to say it is a general purpose replacement.[/QUOTE] There's no good reason for it being larger than C already is. It feels more robust than A to me, and it's certainly a massive step up from micro as well. It'd also be nice to consolidate all of our USB connections into a single port since there's no reason for the fucking mess of ports we currently have.
Fucking hell, the frontpanel USB3 ports error out any connected devices, DTS Connect apparently doesn't work at all on Windows 10 and Intel RST makes harddrives click. WTF is this shit why did I upgrade.
Sorry, you need to Log In to post a reply to this thread.