diff options
Diffstat (limited to 'site')
-rw-r--r-- | site/faq/index.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/site/faq/index.php b/site/faq/index.php index 2691b91..443d14c 100644 --- a/site/faq/index.php +++ b/site/faq/index.php @@ -119,7 +119,7 @@ </p> <h3 id="intelme">Intel Management Engine (ME) <span class="ref">(<a href="#intelme">#intelme</a>)</span></h3> <p> - The ME is a separate processor that exists in all Intel chipsets past the year ~2006, running its own embedded (and proprietary) operating system, referred to as the ME <i>firmware</i> in this article. It provides remote access capabilities, + The ME is a separate processor that exists in all Intel systems past the year ~2006, running its own embedded (and proprietary) operating system, referred to as the ME <i>firmware</i> in this article. It provides remote access capabilities, independently from the running operating system on the main CPU, with full access to RAM, and full networking support. <i>With a functioning ME, your system is left wide open for attack. It can also phone home to Intel.</i> It also handles the TPM, AMT (<a href="https://www.fsf.org/blogs/community/active-management-technology">Active Management Technology</a>), <a href="https://mjg59.dreamwidth.org/33981.html">Boot Guard</a> and various <a href="https://defectivebydesign.org/what_is_drm_digital_restrictions_management">DRM</a> mechanisms. @@ -127,10 +127,10 @@ </p> <p> The ME firmware is <i>cryptographically signed</i>, which means that you cannot run a modified version of it. You also can't boot without it. - On some older chipsets (ICH8 and ICH9), it's possible to remove the ME <i>firmware</i> and still have a functioning system, where + On some older systems (based on ICH8 and ICH9), it's possible to remove the ME <i>firmware</i> and still have a functioning system, where the ME itself is permanently deactivated. For instance, libreboot supports several ICH9 based laptops (e.g. <a href="../docs/install/x200_external.html">Libreboot X200</a> and <a href="../docs/install/t400_external.html">Libreboot T400</a>); see <a href="../docs/hcl/gm45_remove_me.html">../docs/hcl/gm45_remove_me.html</a>. - On later chipsets (basically anything produced since 2010), this is not possible. + On later systems (basically anything produced since 2010), this is not possible. </p> <p> All modern Intel systems built after around the year 2008/2009 (after ICH9) require this proprietary firmware, and |