Hell, they could even make it so that each unique motherboard has its own key (although they'd have to setup a more complex system for distributing UEFI updates).Īnd if they think people will buy into this bullshit, they absolutely will do that.
Lenovo or any other manufacturer could easily make it so that each motherboard version would have its own key. They're both as secure as each other.Īnd the worst thing is that this system can easily be turned into a motherboard version key. But even if there was no jumper, they could literally just throw in a new CPU instead of connecting the jumper. Will that break the security? No, because if someone has physical access to the system, yes with the above they could infect the UEFI with a virus, change the keys (as the signature would be broken obviously) and connect the jumper. having a physical jumper you can bridge to bypass it. This is hugely damaging for the second hand market, and even worse for e-waste. With the EPYC ones with Dell etc, the system doesn't warn you, it just does it instantly when you boot with it. Looks like I was right, but I'm shocked at how fast it has transitioned.Īt least they now give you a warning when you put a new CPU into the system. I was sure it would eventually end up being used in non-server systems.
Of course some people defended it back then saying "oh it's only for security" blah blah blah. Over a year ago I was the one to post the threads ( one and two) when this started happening with EPYC CPUs.
0 kommentar(er)
