this post was submitted on 19 Dec 2023
11 points (86.7% liked)

Framework Laptop Community

2661 readers
1 users here now

Related links:

Related communities:

founded 3 years ago
MODERATORS
 

i know they cooperate with amd a lot so it's possible right?

top 12 comments
sorted by: hot top controversial new old
[–] bl_r@lemmy.dbzer0.com 13 points 11 months ago* (last edited 11 months ago) (3 children)

I believe the ME/PSP is at the hardware level of the processor, so you can’t simply remove it. You would need to get processors without it, and I don’t think framework has the leverage to do that.

[–] chronicledmonocle@lemmy.world 10 points 11 months ago (1 children)

The ME can be disabled. It cannot be removed.

Source: I work for a company that builds hardware and works with firmware on Intel platforms.

[–] jackpot@lemmy.ml 3 points 11 months ago (1 children)

does that still work? last i heard the system will force its reactivation

[–] chronicledmonocle@lemmy.world 4 points 11 months ago* (last edited 11 months ago) (1 children)

The vendor that makes the hardware/firmware has to configure it to be a toggle-able option.

[–] jackpot@lemmy.ml 0 points 11 months ago (1 children)
[–] chronicledmonocle@lemmy.world 5 points 11 months ago (1 children)

No. The UEFI/BIOS has to have the option to turn it off. Most hardware doesn't have this option.

[–] jackpot@lemmy.ml 0 points 11 months ago (1 children)

wait hold on bios can disable it? so coreboot can right? sorry explaib like im five from the top im nkt following

[–] chronicledmonocle@lemmy.world 1 points 11 months ago (1 children)

There are coreboot projects that turn off the Intel ME. The old Thinkpad coreboot flashes for the T4XX series had a payload to turn off ME by destroying the flashable part of ME without completely bricking the CPU IIRC. Basically replaced everything except the absolute minimum to get the CPU to still initialize, but without any ME bits.

The CPU has to support ME being disabled and the UEFI/BIOS has to know where the flag is set on the ME to tell it to turn off. Usually enterprise embedded platforms or server CPUs have that function, although I've heard some consumer chips do too. Everything I work on is embedded appliances that use Enterprise C3xxx and newer CPUs and they have this option exposed.

[–] jackpot@lemmy.ml 1 points 11 months ago

wait so if you flashed that and used nouveau and linux would you have a totally foss system?

[–] AI_toothbrush@lemmy.zip 2 points 11 months ago

Nobody has. Pretty sure its a usa sized problem.

[–] Jumuta@sh.itjust.works 2 points 11 months ago

i mean, you can disable ME on some old platforms with hacky firmware, but I'm not sure you can do that in recent intel chips.

[–] BobGnarley@lemm.ee 1 points 11 months ago* (last edited 11 months ago)

Are their any options on the market that are able to remove these?