[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] hardware recommendations

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] hardware recommendations
From: aka <akademiker1@xxxxxxxxxxxxxx>
Date: Tue, 1 Sep 2015 14:28:21 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 01 Sep 2015 08:29:54 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=from:subject:to:references:message-id:date:user-agent:mime-version :in-reply-to:content-type:content-transfer-encoding; bh=eCdTxOex5iwDQKs6GFfH0iQrRu3fvAjhHga7baEbm9g=; b=lU+jOM68WIgz9Flj1tSAE2T5JEvtx6KXfKkQN4uM+WSQ2KV3CE+XEwIswPR2i69ALE o8/lV34Mg7zPoqMy+oX/K2SuLIgdok8B3yF1/Syf+rLmaCLEsvAn+nvL3uO6Y2wkHKYU DM39UtvXQNSnJKUS5Pe6zKyOwXEhU/OryU5/buNPJ+raSEDmGVIirtWlhIqwS3Yl8SF9 wxhm7LFZD7MLfagdXen1j20gfyymJzlgrQrCcYj4FcuR1RR218uJKMKJtoBU3GmtiW4d 5P9EkbBON3bnoBq3YQHpwHKRilOgI6Xf78/bUnd25JyCaPEF1vzAiKEaqcJhWX3Zfr4y WB9A==
In-reply-to: <CAFggDF0pMYEWjEgLxAA10wumDLOLsx-Hhc9G0eV4Nfr8Veg0Kw@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <55E17366.1050205@xxxxxxxxxxxxxxx> <CAFggDF0pMYEWjEgLxAA10wumDLOLsx-Hhc9G0eV4Nfr8Veg0Kw@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.2.0

Some mainboards also contain drivers in their firmware. One MSI board I
had injected 32 and 64bit drivers into a running windows, they were
intel chipset drivers. Many mainboards and notebooks do that. Some of
them use documentated UEFI features where windows searches for those
blocks in memory, verifies signature and loads them. Other patch the
windows kernel on the fly via interrupt vector hooks like a bootkit.
ARM CPUs are more fragmented, everyone can rent their blueprints and
print their own CPUs, backdoors are less likely than from a single
manufacturer.

Use a x86/64 mainboard without EFI or an ARM embedded board. Also don't
forget to epoxy your PCI slots, it's possible to execute unverified code
at boot and at runtime by sticking something in your PCI.

Another advice: Add some notification to your setup for hardware changes
of any kind. In /etc/udev/rules.d/ you can define what to do if certain
hardware is inserted or detached, it even works for kernel modules and
ethernet. You can define a rule for all changes and make it email you a
PGP encrypted kernel log. If someone inserts a new USB device you get
notified. If someone replugs the ethernet cable at the server you get
notified. If malware somehow loads a kernel module you get notified.
Spies hate that!

Jacob Appelbaum wrote:
> On 8/29/15, blaatenator <blaatenator@xxxxxxxxxxxxxxx> wrote:
>> Hi all,
>>
>> The talk of Jacob at DebConf (especially the Citizen Four Q&A) got me
>> thinking about hardware. I know that hardware rng's are suspect, and
>> probably AES cpu extensions as well. And if Lenovo openly puts stuff in
>> the BIOS, who knows what else might be in there. Also someone there
>> mentioned ARM cpu's might be a better bet regarding backdoors (but what
>> is that opinion based on?).
> 
> Intel has AMT and opaque microcode updates, other CPU vendors have
> similar fun hardware features.
> 
> Further reading regarding AMT from the FSF:
> 
>   https://www.fsf.org/blogs/community/active-management-technology
> 
>>
>> There was a mention of a 'sort of' open source smart card product and a
>> certain type of laptop brand (but I didn't catch the names unfortunately).
>> Are there more recommendations regarding this sort of stuff? Like a
>> 'best buy' guide for secure hardware, or ways to work around insecure
>> hardware.
>>
> 
> This is the hardware and software that I mentioned regarding GnuPG:
> 
>   http://www.seeedstudio.com/wiki/FST-01
>   http://www.fsij.org/category/gnuk.html
> 
> This the base of a reasonable Debian ARM system that requires no
> non-free software:
> 
>   http://www.kosagi.com/w/index.php?title=Novena_Main_Page
> 
> All the best,
> Jacob
> 
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] hardware recommendations
  - From: demos

Prev by Author: Re: [tor-talk] Fwd: Fwd: Mailman privacy alert
Next by Author: Re: [tor-talk] Multiple IP's
Previous by thread: Re: [tor-talk] hardware recommendations
Next by thread: Re: [tor-talk] hardware recommendations
Index(es):
- Author
- Thread