Intel Management Engine

>the Intel ME contains a backdoor
Any evidence of that? As for your question, you are aware that people have found a way to overwrite the ME firmware in such a way that the computer still works. Beyond that, SBCs are always advancing and the Asus Tinker Board is supposedly the best one that will work with all FOSS firmware currently. Considering how the firmware can be overwritten to stop the ME from working, I'd say UEFI is a bigger problem considering it's more open to being exploited than the ME given its ability to run UEFI applications, how your OS can directly interact with it, and how manufacturers like Lenovo have already used malicious UEFI firmware to install spyware on people's computers along with how UEFI runs in System Management Mode (another negative ring, just like how the ME and AMD's PSP run).

Asus C201 Chromebook, at least for the ARM, Libreboot, and Gentoo part.

Only if you go out of your way to install a ton of bloatware. I still use an old netbook with an old 1.6 GHz Atom N270 and 1 GB of RAM for when I want something small and portable, it runs better than the 2012 smartphone I used to use.

management engine is completely hidden from os and memory right? imagine the fuckin malware brehs

I referenced that method earlier, and it doesn't work on newer chips.

Also, UEFI is open. ME and PSP are not.

ITT: Retards who think ARM isn't running proprietary code.

Libreboot will fully disable the Intel ME. You could choose an AMD device from 2010ish without a PSP but they sucked back then. You could also use a Core2 Duo laptop. The ThinkPad T400 is a nice choice. I mean the display is shit but it has a 2GHz dual core CPU, 128MB of vRAM, up to 8GB of DDR3 laptop RAM, and you can install two 2.5 inch SATA SSDs, one in the main bay and one in the optical drive spot with a $10 adapter. That's what I did with mine and it's more than fast enough for day to day tasks. You could also go with a newer Core i series device supported in Coreboot and try ME Cleaner. Coreboot replaces the proprietary BIOS and ME Cleaner strips down the ME firmware so that it has no network access. It's not the best you can do but it's good enough.

I take it as you're talking about the ME cleaner. When did it stop working?

>it's open, so it's okay that it has a massive attack surface while presenting the same problems if compromised
No.

Except there are ARM SoCs that will work with FOSS bootloaders.

Few and far between. All the best SoCs from mainstream MFGs are locked down as shit.

Fuck viruses at a hardware level this won't end badly

>Few and far between
The same can be said about motherboards that support Libreboot, even when motherboards that support Libreboot were still being manufactured.

>This opens everyone's machines to remote access when vulnerabilities are found.
Are you a fucking retard who has their computer plugged directly into their modem?

I was bringing it up mainly due to its potential to have a backdoor from the NSA or other spying agencies.

Libreboot works on very few good laptops.

It doesn't need to be in some situations you fucking cuckboy.

Do you have any actual arguments?

You're fucking retarded. Did you even read the article?

Not the other user but I do have a machine I plug into the modem and that machine runs OpenBSD and is base install only running PF nothing else but still sucks if it still has huge back doors in it at the hardware level.

Asus C201 with Libreboot, dogbless ARM.

AMD FX series (excluding the APUs) aren't backdoored
You can get a beefy 8350e for a hundred bucks

Or go with one of those late Opterons that work with that 2P libreboot board

chromebooks suck though

are there any laptops with those chips?

If you want a laptop you're better off with a Thinkpad supported by libreboot

You're not gonna use ChromeOS on it anyway, and you don't expect a Librebooted machine to be a gaymen machine, so, where's the problem?

>gee I sure hate this proprietary undocumented shit in my x86 chip, I can't wait until it gets replaced with the even more ultra-proprietary, non-upgradable and less performing SoC that lets my facebook toy shitpost on Sup Forums without lagging too much!
t. average ARM shill
>but there's two gutless "open source" ARM chips that nobody has ever used in a system worth a shit, obviously that's what we're going to get when AMD and Intel are finished(TM)!
t. average ARM shill
>I don't trust the ME/PSP because it's undocumented but I trust it to turn off because trannyboot told it to!
t. average freetard

Stop shilling for (((them))).

Not same guys but ffs please go back to What that cunt posted was factual not shilling you mong.

>Implying ALL ARM chips are like that
>Implying there isn't at least one suitable chip
>forgetting about x86 (((microcode)))

>caring about "muh high performance" more than freedom.
Go get an Intel©®™ i9©®™

>not knowing that older ME implementations were supplementary and didn't lock the CPU down.

>Libreboot will fully disable the Intel ME
Wrong. It pretty much removes the majority of the functionality though. If ME was disabled all the way the computer wouldn't boot.

the psp handles also the on the fly encryption of the ram modules pretty sure amd wont go public with it

x220 libreboot is supposedly coming soon

I really wish ARM SoCs had better, wider SDRAM interfaces. The widest I've seen on any reasonably priced dev boards are 32-bits, single channel.

That's not funny, Intel shill.

>Intel shill.
I fucking run Ryzen and a Phenom II X4

>all good CPUs are backdoored
Totally untrue. Just stop running bloatware on your machines and use a relatively old processor.

>still use t60 as only computer

Ha! I may be unable to do shit on it, but at least I'm slightly less part of the botnet!

>nobody can reverse-engineer the code because it's literally encrypted
>has access to the entire system in a way transparent to the operating system
>has access to your network interfaces
>not just an enterprise feature, but comes packaged with all modern motherboards
I wonder who would benefit from this

POWER5 and possibly ARM

>2017
>modem

Yes I agree this was planned with a sinister purpose but you guys still haven't explained how hardware backdoors can affect a Linux airtight machine. Without OS support and internet access their direct access of memory and hdd is meaningless.

you mean airgapped?

why is there still no fully functioning replicant device?
I want freedom on my phone too damnit

Airtight is the proper word, there is no 'airgapped' in the dictionary.

>backdoored
just don't use the onboard NIC or black hole the default VLAN Jesus Christ what is so hard about this

>>I don't trust the ME/PSP because it's undocumented but I trust it to turn off because trannyboot told it to!
Hurr durr wut r hardware fuzez n shiet ??

That's incorrect. Go talk to them on the IRC right now and ask them to link you to docs and explain it like you're mentally retarded. Core2 and earlier devices don't have that problem. The Libreboot project is also close to fully disabling the ME in some Core i series mobile chips and they plan to add support for the ThinkPad X220 last I heard.