System76 to disable Intel Management Engine on its notebooks

System76 Galago Pro Linux notebook — System76 Galago Pro

While Intel is working with the big brands to patch the major security holes recently discovered in its Management Engine firmware, System76 plans to take it all to the next level by disabling IME entirely via a firmware update.

Codrut Nistor, Published 11/30/2017

Intel has recently confirmed the earlier findings of third parties who revealed that its Management Engine firmware has some serious security issues. Since we talked about this recently, we should now move to System76's approach in handling this situation.

In case you missed them in the past, you should know that System76 is a rather small company that makes custom notebooks and desktops with Linux. In a blog post that was published earlier today, they revealed that "System76 will automatically deliver updated firmware with a disabled ME on Intel 6th, 7th, and 8th Gen laptops. The ME provides no functionality for System76 laptop customers and is safe to disable." Obviously, this will not happen without sending a notification to the users of those laptops first.

System76 desktops that use Intel processors will not get the same update, so the Intel Management Engine will not be disabled on those machines. As it happens with the devices from brands like Lenovo or Asus, the System76 desktops should also receive updated firmware that patches the ME vulnerabilities.

One last thing that System76 chose to highlight in the blog post mentioned earlier is that Intel could change how the device functions in the future and the whole story might repeat itself over and over after that. They also wrote the following: "We implore Intel to retain the ability for device manufactures and consumers to disable the ME." Now, we can only hope that Intel chooses to play it safe and does the right thing.

Source(s)

System76 Blog

System76 releases two new Comet-Lake-powered laptops with Linux Coreboot firmware 10/11/2019

System76 announces Adder WS Linux workstation with 4K OLED display 08/05/2019

The upgraded System76 Oryx Pro laptop comes in 16.1-inch and 17.3-inch sizes. (Source: System76)

System76 upgrades its Oryx Pro laptop with Nvidia RTX 20-series GPUs and 8th Gen Intel Core CPU 03/01/2019

The updated Oryx Pro features a 15.6-inch matte FHD IPS screen in the base configuration. (Source: System76)

System76 offers Ubuntu-based Oryx Pro laptop for pre-order 05/09/2018

Pocket Mint: The Mintbox Mini 2 is a fanless Apollo Lake mini PC running Linux Mint 03/23/2018

Apple devices are already protected against Meltdown without any hit to performance 01/05/2018

It is rumored that an embargo on the details of the flaw are due to be lifted later this month, after patches have been issued. (Source: Intel)

Intel hardware flaw will cause a drop in performance for kernel heavy processes once fixed 01/04/2018

Higher PC prices may arise should Intel cut back on its

Get ready for higher PC prices should Intel recede on its "Intel Inside" marketing program 12/14/2017

A new set of Intel Management Engine vulnerabilities confirmed 11/21/2017

Deep digging into the Intel ME firmware has finally enabled security researchers to disable its functioning. (Source: Positive Technologies)

Eureka! The Intel Management Engine can finally be disabled, thanks to the NSA 08/30/2017

The Bonobo WS is the highest-tier notebook available from System76 and features the latest from Intel and NVIDIA. (Source: System76)

Linux on Kaby Lake: System76 now offers 7th generation Intel CPUs and NVIDIA GTX 10-series GPUs 02/17/2017

System76 Lemur laptop with 14-inch display and Intel Broadwell

System76 unveils Broadwell-powered Lemur laptop 04/03/2015

System76 launches the Galago UltraPro laptop 06/14/2013

Read all 3 comments / answer

Loading Comments

Comment on this article

LG Gram lightweight notebook gets 8...

Google Play removes most apps with ...

Codrut Nistor - Senior Tech Writer - 6321 articles published on Notebookcheck since 2013

In my early school days, I hated writing and having to make up stories. A decade later, I started to enjoy it. Since then, I published a few offline articles and then I moved to the online space, where I contributed to major websites that are still present online as of 2021 such as Softpedia, Brothersoft, Download3000, but I also wrote for multiple blogs that have disappeared over the years. I've been riding with the Notebookcheck crew since 2013 and I am not planning to leave it anytime soon. In love with good mechanical keyboards, vinyl and tape sound, but also smartphones, streaming services, and digital art.

contact me via: @online_digi, online.digital.craft, LinkedIn

Please share our article, every link counts!

> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2017 11 > System76 to disable Intel Management Engine on its notebooks

Codrut Nistor, 2017-11-30 (Update: 2017-11-30)

System76 to disable Intel Management Engine on its notebooks

Source(s)

Related Articles