On 2015/05/18 11:54, Mark Kettenis wrote: > > Date: Mon, 18 May 2015 10:47:01 +0200 > > From: Stefan Sperling <s...@openbsd.org> > > > > OTOH, many laptops nowadays ship with Intel AMT and suffer the same issue > > or worse. Yet we still run on them. Current AMT versions have an attack > > surface that dwarfs ASF's. Perhaps this is a lost cause and we'll simply > > have to accept that a lot of hardware is insecure by design. > > This is getting a bit off-topic, but so far the laptops I've seen had > Intel AMT disabled by default. Not sure of that means that the > firmware isn't running or that it just doesn't respond to network > packets. >
Somewhat relevant: on a machine with a management-capable nic, you can do this: # nc -l -u -vvv 623 then on another machine: $ nc -u <ip_addr> 623 and start typing. If it doesn't show up on the first machine, the firmware is stealing packets.