Quoting Steve Litt ([email protected]): > After Rick's posted Minix on Intel article, I'm going to stick with AMD > even if it's more expensive, slower and hotter (and I'm not saying any > of those things are true).
I'm honestly not sure that AMD CPUs are a substantial improvement in this particular area, given that they sport a competitor to Intel ME & AMT called Platform Security Processor (PSP), which is an ARM core with TrustZone technology, built onto the main CPU die. See: https://libreboot.org/faq.html#amd AMD have been looking into ways to permit users/admins to disable the PSP in ways analogous to how Intel ME version 11 can be disabled at the end of boot-up. https://www.reddit.com/r/Amd/comments/5x4hxu/we_are_amd_creators_of_athlon_radeon_and_other/def5h1b/ Pick your own poison, but one might argue that you're better off with Intel where most CPUs have the ME firmware in the Memory Controller Hub or Platform Controller Hub circuitry but not the AMT code (in 'vPro'-branded CPUs only) without which the ME firmware is inert, and where even when Intel's AMT code is there it's usually not enabled. _And_ disabling ME version 11 is now possible using me_cleaner. (For more, I recommend a close reading of Matthew Garrett's pice about ME/AMT.) _______________________________________________ Dng mailing list [email protected] https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
