So glad my son and I run Linux on our systems! It's sad though that so many ignore this kind of thing.

We should mention that there's not only Linux... There's at least the various BSDs, and OpenBSD is favoured by some of the most security conscious.

GG, thanks for the link to that article. I'll use it to help friends who face going "cold turkey" but need to move away from their current OS.

It's sad that almost all assembled computers now come with this kind of crap installed as standard.

And sad that they are now called "features" rather than boat anchors...

Some backdoors even evade Linux. Since 2008, Intel’s chipsets have contained a separate always-on Management Engine computer that could not be disabled. The EFF described Intel ME as a “largely undocumented master controller for your CPU: it works with system firmware during boot and has direct access to system memory, the screen, keyboard and network.” Switch to an AMD processor? AMD has had the same capability in its PSP since 2013 as well. Who do you trust the most? Intel denies claims that the ME is spyware and AMD won't release the source code to PSP. Even if either did release the source code how could you confirm it is the entire source by compiling the source and comparing the binary with the released binary? You couldn't.

Besides being a backdoor for Intel, the NSA, CIA and who knows what other gov spook agencies, it is also a tool for hackers. They have been busy.


Despite many people with x86 computers trying, no one could disable ME. The closest successful attempt was likely the me-cleaner project.

IF your Intel based computer was made after 2008 or your AMD based computer was made after 2013 then you essentially have no security unless you have an ASRock Z370/Z390 Taichi Firmware with Intel Management Engine Disabled.

ME was added to some Intel CPUs between 2008 and 2013, but it can be disabled because, of all who wanted to keep their security, the NSA asked Intel to give it a way to disable ME. They did:
https://www.csoonline.com/article/32...o-the-nsa.html

Will I try it on my Acer Aspire V3-771G, which was made in 2012? Nope. I won't be upgrading or modifying the CPU or firmware on this puppy, either. This Orwellian world already has so many chains holding you back from your privacy and freedom that disabling the ME wouldn't help in the least. Besides, collectively, Apple, FB, M$, Twitter, Google and other major players have at least 2.5 million servers keeping track of your Internet activity using pixel bots, tracking cookies, and hexadecimal link codes like this one:
which is obviously an encrypted link which contains as much info about my computer, what site I came from, what my search request was and what page I would go to IF I clicked on that listing in the Google search results. And that is only the technologies we know about (besides ME and PSP).

Think of all the spying that is taking place through IoT devices, Echo DOT's, Siri, SmartTV's, surveillance cameras almost everywhere, the soon to be in place 5G networks, all linked together using Elon Musk's StarLink, or should I say "SkyNet"? And, it's ALL legal. You did sign or click through those EULA's didn't you? Those very same EULA and ToS in which you signed away all of your privacy rights, your rights of ownership, your Constitutional rights, and just about every other freedom you used to enjoy without Big Brother's allowance a/o supervision.

EDIT:
Researching methods methods for attempts to disable Intel's ME I found:
https://blog.ptsecurity.com/2017/08/...-intel-me.html
That paragraph triggered a memory I had about Gulf War I. It seems that the US gov had Texas Instruments put a back door into their printer firmware which was being marketed in the Middle East. Just as the invasion began a code was sent to all the TI printers in the Middle East to disable them. Instead of printing out orders commanders had to write them out manually, which delayed their response and introduced lots of confusion. Of course, articles appeared later "debunking" this scenario but considering what we've seen the last few years using disinformation to debunk the truth wasn't/isn't all that uncommon.

Now, my point. ALMOST ALL of the computers and peripheral equipment sold in America are made in China,which has the technical capability to add or embed kill codes in those computers and peripheral equipment. Say an extra ROM, about the size of a grain of rice, was setting on the logic board of, say, an internal HD, or wifi chip, or eth0, or the touchpad, or just about any component. It could even be embedded and hidden inside a PCB itself. IF a war between China and the US began how long would it take for China to disable all the IoT's stand-alone and embedded computers in the US and its allies? About 1 second. Just as long as it took the US military to kill a select group of Iraqi command and control printers.

GG, thanks for the links. Good info.
Agreed, Linux is not perfect, but I look at the alternatives...

Yep, good stuff. I just received a new HP laptop, which of course came with Windows 10. Even though HP tends to be a bit more Linux friendly than many other makers, I still finished the Windows installation and then removed the Optane/SSD M.2 drive - and am keeping it for warranty purposes, if something should happen to the laptop. What a pain in the a** and I hated that Windows came with and actually installed Bitlocker without my consultation. I then bought a new Samsung 970 M.2 drive and installed Kubuntu (after a couple of hiccups!).

Now that doesn't mean that HP doesn't know anything about my system, as it has the Intel management engine junk on the motherboard, which is nearly impossible to eliminate even with most of the open source BIOS products becoming available. If they don't like what I'm doing, I'm not worried.

Just a few minutes ago, while surfing YT, I came across this video. It makes my point succinctly. Especially notice the Internet tracking of browsing videos and sites like eBay, alibaba, aliexpress, otto, JD, Flipkart, Rakuten and other Amazon competitors, especially those overseas. All the guy did was buy 3 filters for his diesel and do some Internet browsing.

I wonder how many Gmail users realize that Google mines their INBOX for purchase receipts and such in order to add to their dossier on them? Here's some alternative webmail services. I've used protonmail since 2015.

@GG thanks for the link to that article. It saved a lot of research time.

My protonmail account was stolen, so make sure you use 2FA with that service.

How? Easy password? The site was hacked?

Pluto TV was hacked back in 2018 and my email account was among 3.2 mllion stolen. Pluto TV decided not to inform users of the breach. How nice of them.

People can check their email accounts at:
https://haveibeenpwned.com/

or a more comprehensive check at:
https://dehashed.com/search-guide

I don't know how. I use a password manager, so I can auto generate long passwords each time without having to worry about remembering them. One day my password just stopped working, I barely used the account so I didn't really pay much thought to it until some time later when I tried to access another site (epic game store) and had the same thing and it was a service I had used the protonmail account to sign up for. Only had a few free games on there and didn't log in much, so again I don't care but it's bit too much of a coincidence