Web lists-archives.com

Re: INTEL-SA-00075




	Hi.

On Sat, Sep 23, 2017 at 08:07:57AM +0200, tomas@xxxxxxxxxx wrote:
> On Sat, Sep 23, 2017 at 03:31:18AM -0000, mizett@xxxxxxxx wrote:
> > INTEL-SA-00075-Linux-Detection-And-Mitigation-Tools
> > 
> > https://downloadcenter.intel.com/download/26799/INTEL-SA-00075-Linux-Detection-and-Mitigation-Tools
> > 
> > Version: 1.0.3.215 (Latest) Date: 9/12/2017
> > https://github.com/intel/INTEL-SA-00075-Linux-Detection-And-Mitigation-Tools
> > 
> > DID SOMEONE YET TEST IT  ?
> 
> Perhaps you might try to make a point as to *why* someone might
> want to test it?

Looks like it's a toolset from Intel to check if your hardware is
affected by [1] - CVE-2017-5689.
And it's a free software, so after checking the source I ran it, and got
'Not Affected' result.

Frankly, if you *really* need to do something about Intel AMT, you don't
need [1].
What you really need is [2]. But then again, nuclear strike from the
orbit is the only way to be sure ☺.

Reco

[1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5689

[2] https://github.com/corna/me_cleaner