On 1/31/26 10:26 AM, Randall Rose wrote:
Open-ended question: if you buy a used laptop from an untrusted source, and you would like to clean it as thoroughly as possible, what is the best way to make sure all the firmware is either factory-reset or updated to a trustworthy state?
Short answer: Just do a fresh OS install and any regular firmware updates, and don't worry.
Longer Answer, Option One: Probably no one with resources and motivation is after you, probably no one with resources and motivation was after the previous owner. So just do a fresh OS install and any regular firmware updates.
Longer Answer, Option Two: If some organization with resources and motivation *is* after you (they most most most likely are not after you), you are sunk. There are so many ways that hardware might have been compromised, the only way to be sure is to never use it. Buy a new machine, from an unpredictable source so your foes can't compromise it before you get it, then keep it physically safe at all times.
Longer Answer, Option Three: Make a study of the whole issue. Research what known compromises there are of that model, dissect that hardware and software looking for ways it could have been compromised, that maybe no one else has discovered. Make it a major project. But, if you also want a computer to use, you still need another because this one will be in pieces.
-kb _______________________________________________ Discuss mailing list [email protected] https://lists.blu.org/mailman/listinfo/discuss
