[Freedombox-discuss] Without software collusion
timschmidt at gmail.com
Thu Jun 28 20:04:55 UTC 2012
On Thu, Jun 28, 2012 at 3:58 PM, Ben Mendis <dragonwisard at gmail.com> wrote:
> Indeed, vPro can only work if the adversary is on the same network
> segment and send packets that the NIC can hear. We're all professionals
> here, we know that security works in layers. If you stick a $25 router
> in front of your box then there's no way for those vPro control packets
> to reach your NIC, so there's no way for vPro to get activated.
Going further, every technology like vPro that I've taken the time to
study has _explicitly_ made use of a non-routable protocol for
communications as a security measure. Meaning they don't work over
the internet _by design_, and only work on local networks.
More information about the Freedombox-discuss