zlacker

[return to "Supermicro server motherboards can be infected with unremovable malware"]
1. holler+eTa[view] [source] 2025-09-28 15:59:57
>>zdw+(OP)
People like to criticize secure boot around here, but it prevents these kinds of infections (provided of course there are no vulnerabilities in the implementation of secure boot).

Yes, in theory it is possible to prevent these kinds of infections without resorting to secure boot (e.g., by insisting that all the suppliers of components of the motherboard start designing components that cannot be pwned) but so far all the computers you have actually been able to buy that are immune to these kinds of infections achieve that immunity with secure-boot technology.

◧◩
2. toast0+Bgb[view] [source] 2025-09-28 18:42:59
>>holler+eTa
How does secure boot help? If you control the BMC, you can enroll whatever keys you want.

The BMC usually has full access to system memory as well, so if you can get the timing right, you could replace the secure boot verified image with your own after verification.

Also, re: BusinessWeek, hey look a hardware backdoor installed on servers. Pretty sure IPMI vulnerability fits the bill for most of what was described.

[go to top]