Conversation

Notices

1. DarkMahesvara (darkmahesvara@varishangout.net)'s status on Sunday, 05-Mar-2023 08:08:59 JST DarkMahesvara
   ""An attacker who has access to a TPM-command interface can send maliciously-crafted commands to the module and trigger these vulnerabilities," warned CERT.
   
   "This allows either read-only access to sensitive data or overwriting of normally protected data that is only available to the TPM (e.g., cryptographic keys).""
   
   https://www.bleepingcomputer.com/news/security/new-tpm-20-flaws-could-let-hackers-steal-cryptographic-keys/
   
   another blackbox firmware failure :sui_disgust:
   • 🌲Number 1 Pleroma Criminal on XBL 🇵🇱|🇺🇸 (phenomx6@fedi.pawlicker.com)'s status on Sunday, 05-Mar-2023 08:08:57 JST 🌲Number 1 Pleroma Criminal on XBL 🇵🇱|🇺🇸

     in reply to

     • SantaSnekFriend
     Oh that we know all right. Not long ago there was an update for Infineon TPM computers after the TPMs made insecure keys.
     https://www.infineon.com/cms/en/product/promopages/tpm-update/
     https://www.cvedetails.com/cve/CVE-2017-15361/
     https://www.bleepingcomputer.com/news/security/tpm-chipsets-generate-insecure-rsa-keys-multiple-vendors-affected/
   • SantaSnekFriend (supersnekfriend@varishangout.net)'s status on Sunday, 05-Mar-2023 08:08:58 JST SantaSnekFriend

     in reply to
     @DarkMahesvara This is just the critical flaws WE KNOW. :zt_laugh:
     Imagine being an Intel-goy and Wincuck in the year of our Lord two thousand twenty-three. :smug:
   • 🌲Number 1 Pleroma Criminal on XBL 🇵🇱|🇺🇸 (phenomx6@fedi.pawlicker.com)'s status on Sunday, 05-Mar-2023 12:42:47 JST 🌲Number 1 Pleroma Criminal on XBL 🇵🇱|🇺🇸

     in reply to

     • SantaSnekFriend
     • Maple
     @YoshikoJanai @DarkMahesvara @SuperSnekFriend tpms are only stopping you from ripping out the HDD or maybe booting another os to access the contents, not if you pwn the os itself. Bitlocker doesn't even need a boot password.
   • Maple (yoshikojanai@varishangout.net)'s status on Sunday, 05-Mar-2023 12:42:52 JST Maple

     in reply to

     • SantaSnekFriend

     @DarkMahesvara @SuperSnekFriend I hate the direction that computers are headed. I do not want a TPM of any kind of my personal devices. Leave them for enterprise. If an employer wants a TPM on the laptop they give me for work, whatever not my problem, but I don’t want to have to deal with one on my own devices.

     Fuck your secure boot, TPMs, T2 chips. I’d rather risk Sergei, Nguyen, and Pajit getting into my shit and practice basic “Don’t be a retard” than have all of this janny nonsense.

   • DarkMahesvara (darkmahesvara@varishangout.net)'s status on Sunday, 05-Mar-2023 12:42:53 JST DarkMahesvara

     in reply to

     • SantaSnekFriend
     @SuperSnekFriend well they do all put it in newer cpus but i would think its more because the industry (read windows) wants it
   • DarkMahesvara (darkmahesvara@varishangout.net)'s status on Sunday, 05-Mar-2023 12:42:54 JST DarkMahesvara

     in reply to

     • SantaSnekFriend
     @SuperSnekFriend TPM is not a intel thing. right on the winblows tho
   • SantaSnekFriend (supersnekfriend@varishangout.net)'s status on Sunday, 05-Mar-2023 12:42:54 JST SantaSnekFriend

     in reply to
     @DarkMahesvara I thought Intel pushed hard for TPM, or is my memory fried? :jahy_pain2: