Investigate harmful BIOS features
Originally created by @anonym on #6808 (Redmine)
With “harmful” we mean BIOS features that phone home, enable remote administration and similar. Examples:
- Remote administration tools enabled at BIOS time, like Intel AMT, which can be configured to connect to the network at BIOS time, and then run a web-server, again at BIOS time (!), etc.
- Anti-theft technologies, like Intel Anti-theft. For an overview and exploits, see e.g.: Deactivate the Rootkit: Attacks on BIOS anti-theft technologies
“Features” like these may either cause general security issues, or have adverse effects on particular Tails features (e.g. BIOS-time network activity from Intel AMT exposes the real MAC address before Tails has a chance to spoof it).
Related issues
- Related to #9116 (closed)