1 |
On 01/01/2017 04:12 PM, M. J. Everitt wrote: |
2 |
> On 01/01/17 21:01, james wrote: |
3 |
>> Is there a group of gentoo devs interested in the security aspects of |
4 |
>> internal, and often non-disclosed, hardware, as I cannot seem to find |
5 |
>> such a group, if it exists? |
6 |
>> |
7 |
>> |
8 |
>> Is there any interest in such a gentoo-dev project? |
9 |
>> |
10 |
>> |
11 |
>> Here is a teaser page [1]. Many others exist. On gentoo-user, |
12 |
>> there have been threads about coreboot and other related topics, |
13 |
>> even recently. At the least a wiki page itemizing known issues |
14 |
>> and possible workarounds, or is that appropriate for the gentoo-wiki? |
15 |
>> |
16 |
>> |
17 |
>> curiously, |
18 |
>> James |
19 |
>> |
20 |
>> |
21 |
>> [1] http://hackaday.com/blog/page/49/ |
22 |
>> |
23 |
> Lego rope-braiding? How does this relate to Gentoo, again?! |
24 |
> |
25 |
|
26 |
Sorry, I thought that link was directly to the article. |
27 |
|
28 |
Further down the page is an article "Neutralizing Intel’s Management |
29 |
Engine". |
30 |
|
31 |
Still, it is an interesting category of security issues that are |
32 |
embedded in hardware issues, similar to the 6502 code under the |
33 |
gstreamer problems. |
34 |
|
35 |
|
36 |
http://scarybeastsecurity.blogspot.com/2016/11/0day-exploit-compromising-linux-desktop.html |
37 |
|
38 |
|
39 |
I mostly curious is there is interest for a project. It could easily |
40 |
be a sub-project of gentoo-embedded too.... |
41 |
|
42 |
|
43 |
James |