[Cryptography] Intel Management Engine pwnd
Nico Williams
nico at cryptonector.com
Tue Nov 28 21:58:34 EST 2017
On Wed, Nov 29, 2017 at 11:57:00AM +1000, James A. Donald wrote:
> When used in accordance with official use, it listens on a certain port,
> like any other service.
>
> But since normal code manages listening on ports, how does the management
> engine do this. How does the management engine hook your tcp-ip stack?
It uses a built-in, on-chip NIC. The ME literally intercepts IP packets
that are protocol TCP with destination ports matching the ones that the
ME listens on. If you don't connect that NIC to any networks, you'll be
fine.
Nico
--
More information about the cryptography
mailing list