Slashdot Mirror

← Back to Stories (view on slashdot.org)

Intel Updates vPro Platform and Features

Posted by kdawson on from the chain-of-trust dept.

MojoKid writes "Intel's has certified the Core 2 Duo E6550, E6750, and E6850 processors for vPro, and is releasing the new low-power Q35 Express chipset with a companion ICH9-DO Southbridge, and 82566DM Gigabit Network controller. With these new chispets and technologies, the vPro platform offers next-generation Intel Active Management Technology, enhanced Intel Virtualization Technology, and Intel Trusted Execution Technology (aka Intel TXT). vPro also supports next-generation management standards like WS-MAN and DASH (draft 1.0 spec) and v1.2 of the Trusted Platform Module. Intel has plans to provide continual updates to the vPro platform and will likely enhance vPro further after the launch of their 'Montevina' platform in the first half on 2008."

77 comments

  1. v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 2, Insightful

    Do not want!

    1. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      Nothing like seeing the free market in action... oh wait!

    2. Re:v1.2 of the Trusted Platform Module by Solra+Bizna · · Score: 0, Troll

      Do you even know what TPM is?! The specification explicitly forbids the kind of vendor lock-in you people seem to equate it with.

      I'd give my left eye for a few PCI TPMs.

      -:sigma.SB

      --
      WARN
      THERE IS ANOTHER SYSTEM
    3. Re:v1.2 of the Trusted Platform Module by Andreaskem · · Score: 5, Informative

      Just to clarify: Read this Ars Technica article about how the new trusted computing technology introduces the kind of DRM geeks have been rebelling against for years.

    4. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      Ummm... where does it forbid that?

      And even if it did... like the guidelines for the Trusted Computing Group -- they change on a regular basis. Stooge.

    5. Re:v1.2 of the Trusted Platform Module by Technician · · Score: 5, Insightful

      Do not want!

      As a home user you maybe right. This is not aimed at the home user. Have you seen the demo? This platform has an IT departments dream, a firmware OS wrapped around the end user's OS. In the demo, they demonstrated live the corruption of Windows which crashed it to BSOD. Remotely they patched Windows and rebooted it all while Windows was crashed.

      A powered off machine needing a scheduled backup or critical software rollout is no problem. The machine can be remotely turned on, patched, rebooted, configured, and tested without disturbing users while they are home.

      Demos are here.
      http://video.google.com/videosearch?q=Intel+V-Pro+ demo

      As an end user, it means installing Party Poker or Tor on the corporate machine may result in immediate application removal. The same goes for SONY rootkits and keystroke loggers. So yes for the end user, they have less ability to hose the configuration.

      This is bad and the RIAA and MPAA is on the other end. This is good if your company supplied PC refuses malware. For its corporate target, this provides strong immunity to a BSA, RIAA, MPAA, etc, audit. Unauthorised stuff can't be stuck on the machine.

      --
      The truth shall set you free!
    6. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      I've got a better solution, comprised from best practice security and PXE.

      The motives for Trusted Computing are crystal clear, they can rebrand it and reposition it in the market as much as they like. The potential for evil is there, it's documented, it's probable and TCG members need to be held liable.

    7. Re:v1.2 of the Trusted Platform Module by Technician · · Score: 1

      I've got a better solution, comprised from best practice security and PXE [wikipedia.org].


      As far as I can tell, PXE has a new revision. It has the trademark VPro. I looked at the PXE link you provided. It credits Intel. Vpro is from the same company. VPro has a black mark on Slashdot simply because someone called it Trusted Computing.

      Trusted computing on the other hand is defined by a chip that stores a security hash. Trusted Computing is more of a secure DRM platform than it is remote management. This requires a DRM software application to use the hardware. It has nothing to do with remote management other than if the crypto key doesn't match, then your copied media file won't play.

      --
      The truth shall set you free!
    8. Re:v1.2 of the Trusted Platform Module by smilindog2000 · · Score: 2, Interesting

      So, TXT in short is hardware DRM, right? Will it do more? I'd love to know that my Linux kernel has been compiled signed by the vendor, and not hacked by any virus. Will TXT significantly mitigate viruses, worms, spy-ware, and the like? Will it allow vendor signed Linux kernels to be trusted to play DVDs out-of-the-box in the US? Will it help commercial companies port their products to Linux without fear of hacking? Will it allow FlexLM to finally be semi-secure? Will it get the damned bot-hackers off the gaming networks? If it will in fact do all that, I'm not sure I'm opposed, but of course, the proof is in the making.

      --
      Beer is proof that God loves us, and wants us to be happy.
    9. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      Yes, that's exactly what was demonstrated apparently...

      FTA - "We saw some live demonstrations of some vPro enabled systems from Dell, Lenovo, and HP that showed the usefulness of the technology. In our meeting with Dell, an unbootable PC was logged into remotely and the OS was repaired by comparing it to a master disk image. This was possible because the network security credentials are stored in hardware, so even if the machine's operating system is severely damaged, a technician can still connect to and work on the PC. "

      Read people, read...

    10. Re:v1.2 of the Trusted Platform Module by KiloByte · · Score: 1

      The IT department??? Or perhaps anyone who actually owns the hardware (ie, the company for corporate machines or you in your home)? No goddamn way.

      I somehow cannot see our friends at Microsoft relinquishing such a juicy opportunity for control. And you mentioned this as something to give an immunity to BSA/RIAA/MPAA... The latter two are in good relations with MS, the first for all practical reasons is MS.

      Also, I would be surprised if a future version of Windows didn't require the TPM. It's signed by Intel, a member of the Trusted Computing Consortium, and you, the owner of the machine, have no way to get the key. Forget about running Windows in a virtual machine, unless that virtual machine contains a rootkit belonging to the Trusted Computing Consortium. Oh, and they will gladly provide you with something to interoperate with^W^Wcontrol Free Software OSes, so you won't even be able to claim anything about unfair business practices from a court's point of view.

      Without you, the owner, having access to the key, this whole idea is a DRM wet dream. And I'm freaking damn sure the consortium won't ever let your grubby hands onto it.

      --
      The creatures outside looked from Alt-Right to Antifa; but already it was impossible to say which was which.
    11. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      Wouldn't this mean that now the actual company will take the blame if this stuff is installed on the machine? I'm sure it won't be a big deal to have administrative scanning software to automatically remove applications that have been installed I suppose.

      Before, wouldn't an employee get blamed for installing some illegal software on the machine? But now the company has the power to detect and remove, so won't they be blamed if the software isn't removed?

    12. Re:v1.2 of the Trusted Platform Module by MobyDisk · · Score: 1

      You could do that without trusted computing. Many machines today have boot ROM's and/or special boot partitions on the hard drive. You would just need a small bit of code to let you remotely send a signal to boot from that partition/boot rom. None of this has anything to do with trusted computing - this "feature" they demonstrated is just a side effect that they choose to demonstrate to hide what Trusted Computing is really used for.

    13. Re:v1.2 of the Trusted Platform Module by bhima · · Score: 1

      Ain't that a great idea? OR even signed as compiled on that CPU/Motherboard/TCM and only signed executable run?

      I'll bet money neither will ever get into widespread use. Pity.

      As far as FlexLM goes, that is the single most annoying product that I come into contact with. Several of the software packages I use, use it and I hates it.

      --
      Nothing in the world is more dangerous than sincere ignorance and conscientious stupidity.
    14. Re:v1.2 of the Trusted Platform Module by DaveWick79 · · Score: 2, Informative

      Call it hardware DRM, call it Trusted Computing - but this is exactly what corporate and even small business is looking for, and vPro 1.2 delivers. You've got to be able to manage your risks before they turn into an expensive problem. And vPro makes remote management a snap to boot and has for quite some time now, if implemented.

      Even if you buy a vPro board and use it at home, which there's no reason you'd really ever do anyway, it's probably not going to come out of the box configured to block anything you want it to do.

    15. Re:v1.2 of the Trusted Platform Module by Mad+Merlin · · Score: 1

      Will TXT significantly mitigate viruses, worms, spy-ware, and the like?

      Doubtful.

      Will it allow vendor signed Linux kernels to be trusted to play DVDs out-of-the-box in the US?

      No.

      Will it help commercial companies port their products to Linux without fear of hacking?

      Probably not.

      Will it allow FlexLM to finally be semi-secure?

      Probably not, but I'm not familiar with FlexLM.

      Will it get the damned bot-hackers off the gaming networks?

      No.

      --
      Game! - Where the stick is mightier than the sword!
    16. Re:v1.2 of the Trusted Platform Module by rubycodez · · Score: 1

      You've got to be able to manage your risks before they turn into an expensive problem. that sentence sounds like a load of marketing BS - this will get cracked, probably by subverting microsoft's crapware so the hardware doesn't even think a new app is installing.

    17. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      The TPM cannot and will not ever be able to be used as an effective DRM technology. That is just what marketing uses to pull money from media companies. What a TPM does provide, however, is a trusted base that gives the user ultimate control over what they do, and do not run on their systems. With proper code validation techniques and a good PKI infrastructure (two impossible tasks, but reasonable goals), we can have perfect software security from the ground up.

    18. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      Free Market: Don't want it, don't buy it. Introduce an alternative, and if enough like-minded people find out about it you make a profit.

      IHBT, though.

    19. Re:v1.2 of the Trusted Platform Module by PitaBred · · Score: 1

      Will you be able to listen to any music you want, or will it all have to be signed? What about that local band that gave you a home-burned CD? How about movies? Will I now have to sit through ads for movies released years ago at the beginning of my movies on my computer as well as with my DVD player? Will it enforce content protection on Youtube? Homebrew games? Network access only for signed applications? (who is doing the authentication of the software/content being "good" anyway?)

      It has some good uses, but given the current techno-political climate, I'd lean to it being more like Vista: flashy ideas, but more harm than good to the consumer.

      --
      My blog. Good stuff (when I remember to update it). Read it.
    20. Re:v1.2 of the Trusted Platform Module by DaveWick79 · · Score: 1

      Yes, there's always the possibility of either a hardware or software based agent being cracked. But it's not marketing BS, it's business reality. Businesses can't afford to not keep track of what is being put on their workstations and monitor their security.

    21. Re:v1.2 of the Trusted Platform Module by clydemaxwell · · Score: 1

      You..you WANT your CPU to only run signed and trusted code? Mind you, 'trusted' doesn't mean anything about trusted by YOU. I pray you are confused and do not actually think discouraging hacking is a good thing.

      --
      Browsing with classic discussion, noscript, at -1 and nested
      no hidden comments and I only mod UP
    22. Re:v1.2 of the Trusted Platform Module by Solra+Bizna · · Score: 1

      So having a TPM in my box magically means my vendor wants to eat me, and I'm a stooge for wanting the virtually undefeatable security it would offer should I use it properly.

      Even if an attacker physically stole my TPM-enabled computer and applied NSA-level secret awesome techniques to it, they could not get the keys I stored with the TPM. Which is the entire POINT of the module according to the spec .

      No matter how many times I tell this to my friends who have the deep, unwavering belief that TPM = evil, their eyes glaze over and they change the subject. It REALLY irritates me, in case that wasn't bloody obvious.

      -:sigma.SB

      --
      WARN
      THERE IS ANOTHER SYSTEM
    23. Re:v1.2 of the Trusted Platform Module by bhima · · Score: 1

      Yes, I want some my CPUs to only run code signed and trusted by me. Mind you, 'Trusted' doesn't necessarily mean only trusted by Intel, Microsoft, or some other untrustworthy corporation. 'Trusted' can mean trusted by me and only me and only on this server. You sound like you are confused and have never read any technical documentation on Trusted Computing and don't have a firm idea about the capabilities of the platform.

      And I absolutely think discouraging hacking on my servers is a good thing. I've you want to hack feel free but stay the hell off my property while you do it.

      --
      Nothing in the world is more dangerous than sincere ignorance and conscientious stupidity.
    24. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      Don't be such a fear monger. Try reading the article and not just the comments and buzzwords.

    25. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      Even if an attacker physically stole my TPM-enabled computer and applied NSA-level secret awesome techniques to it, they could not get the keys I stored with the TPM.

      Neither can you... mongtard. Even though it is YOUR computer.

      Which is the entire POINT of the module according to the spec .

      Quite...

    26. Re:v1.2 of the Trusted Platform Module by Anonymous Coward · · Score: 0

      Oh, and BTW, in case it hadn't dawned on you yet... the problem of "keys" was solved years ago. You don't leave the fucking things with the object you want to protect. You don't leave your fucking house key on the hook outside the front door.

      TPMs were never designed to protect keys from intruders, they were designed to protect the security of the vendors FROM the person to whom they supplied content (be it video/music or software). Which is why your "oh my... they protect my keys" is so fucking ironic.

      Let's try this: why won't the Trusted Computing Group support the idea of an Owner Override system for the TPM. One in which the OWNER of the machine, the person who paid money for it, can get it to spill all of its contents, including the RSK?

      No... I didn't think you'd want to answer that one.

  2. Trust Not by Anonymous Coward · · Score: 3, Insightful

    "Intel Trusted Execution Technology". Way to sound ominous.

    1. Re:Trust Not by Anonymous Coward · · Score: 0

      indeed... treacherous computing aka hardware DRM.

      As has been said often, Intel is the DRM kingpin these days. Trust them not... they don't trust you.

  3. Naming by weicco · · Score: 1

    What's with this naming practice that seems to be going on in every god damn company? I can't even start a fricking sentence with name like vPro, iTunes, iFolder, omgXIITLOL since first letter should be in CAPS. Well, I'm not sure about english grammar but at least finnish grammar forces capitals.

    --
    You don't know what you don't know.
    1. Re:Naming by Kelz · · Score: 3, Informative

      Its the current wave of marketing. They're trying to establish brands that sound cool that people can remember when they shop for a computer.

      Unless you're talking about chipset/product line codenames (Kentsfield, etc etc) which are geographical locations, since they can't be trademarked.

    2. Re:Naming by TeknoHog · · Score: 0, Offtopic

      Well, I'm not sure about English grammar but at least Finnish grammar forces capitals.

      Corrected those capitals for you ;)

      Anyway, it's great that the Finnish grammar forces certain things. Otherwise we'd have crap like TeliaSonera, TietoEnator, Sampo Pankki... oh, wait..

      --
      Escher was the first MC and Giger invented the HR department.
    3. Re:Naming by weicco · · Score: 0, Offtopic

      Yes I understand it is k00l to toss away grammar and write 1337 :) but that should be left to IRC chats and such. And if I'm being pedantic vPro can't be written at all if you are following grammatic rules since proper names must start with capital letter.

      I strongly detest spoken language in books also even if it's in conversations. I tried to read Harry Potter in english and I couldn't figure out what the heck characters were talking about from time to time!

      Dang! My nick name starts with a non-capital letter :)

      --
      You don't know what you don't know.
    4. Re:Naming by weicco · · Score: 0, Offtopic

      Yes, you are absolutely right. They are crap :P

      --
      You don't know what you don't know.
    5. Re:Naming by daeg · · Score: 1

      Just refuse to follow their retarded naming conventions. Call it an Ipod. An Imac. An Iphone. Call it Vpro.

    6. Re:Naming by IBBoard · · Score: 1

      But then the vPro being a Vpro doesn't emphasise the fact that it's a "Pro" something (assumedly) with added 'v'. Similarly the iPod being an Ipod doesn't do such a good job as a name of emphasising that it is some form of pod with added 'i'.

    7. Re:Naming by IBBoard · · Score: 0, Offtopic

      Those Finnish books must be quite boring if they don't contain any spoken language - how do the characters communicate? ;)

      I think a lot of non-Brits have problems with Harry Potter as it uses a lot of Briticisms. My fiancee runs a website to help fanfiction authors improve their writing (and some of them need help - a lot of help!) and one of the main issues tends to be Americans getting confused by the Briticisms, or asking what the British way of doing/saying something would be.

      Also, if you've got a person of 11-16 (depending on the book and the character) talking and it's based in a time period 'around now' then it makes sense they talk in a similar way to a British teen. Okay, so you wouldn't want it spoken as badly as some children, but given that Hogwarts is approaching an Eton-esque public school in terms of students and teaching techniques then it makes sense that they're a bit better educated and spoken.

    8. Re:Naming by UltimateRobotLover · · Score: 0, Offtopic

      Those Finnish books must be quite boring if they don't contain any spoken language
      Someone's already had that thought!

      Alice in Wonderland, Chapter 1:

      "...what is the use of a book," thought Alice, "without pictures or conversations?"
  4. much... by cosmocain · · Score: 1

    ...more interesting than a link to a marketing blurb would be a link to the TPM-specifications. Actually, i do trust a platform - until it's "tpm-enabled".

    1. Re:much... by TofuMatt · · Score: 2, Informative

      Err, the Linux kernel, Mac OS X, and Windows all have support for TPM. Still using AmigaOS then?

      --
      -Matthew Riley "TofuMatt" MacPherson
      I have a website
    2. Re:much... by Anonymous Coward · · Score: 0
      Many of us would prefer linux didn't support it, it's a potential attack vector against freedom. We can at least disable it... for now.

      ~/ zgrep TPM /proc/config.gz
      # TPM devices
      # CONFIG_TCG_TMP is not set
      Which distos enable treachery by default and aren't newer Macs shipping without a TPM?
    3. Re:much... by julesh · · Score: 2, Informative

      You do know that TPM does _nothing_ unless you actually, you know, use it, don't you?

      So by disabling it in your kernel config, the only thing you achieve is making your system incompatible with any software that requires it.

    4. Re:much... by Anonymous Coward · · Score: 1, Insightful

      You also make your system "untrusted". Which means, that,among other things, large software companies will no longer talk to you because your system cannot be trusted by them -- and in a few years, neither will your ISP, since there is already moves to ensure that only TPM equipped PCs will be sold and used on the internet.

    5. Re:much... by Anonymous Coward · · Score: 0

      making your system incompatible with any software that requires it

      1. Which software requires a TPM?
      2. Why would I compile such software when I don't have TPM support in my kernel?
      3. Since I only build from source, why wouldn't I just rip any TPM code out?
      4. Since I've obviously no need for TPM why the hell would I bloat my kernel with support for it?
      5. Finally, if anybody is going to be cryptographically signing a binary on my hardware - it's me.

      I often find myself agreeing with your comments or at least respecting your opinion but I honestly have no idea about the point you were trying to make with that one.
  5. Is Intel a friend of Open Source? by jkrise · · Score: 0

    All new initiatives and 'innovations' from Intel have been closed source, secretive and the technology is available to a few limited US h/w mfrs. The reason Linux became so successful is because of Intel's low-cost, standards-compliant, open-source hardware; but with initiatives like virtualisation, vPro, multi-threaded compilers etc. the balance gets tilted further in favour of TCPA and DRM partners; and puts Linux at a disadvantage in the Enterprise.

    --
    If you keep throwing chairs, one day you'll break windows....
    1. Re:Is Intel a friend of Open Source? by Anonymous Coward · · Score: 2, Insightful

      I am not aware of a single hardware company that is as open with their specifications and hardware documentation as Intel. Their chipsets are open and documented, the audio, network and disk controllers are open and documented, their video hardware is open and documented (Who else can you say that about?). They have a great developer relations program, although you can download a lot of their documentation without even joining it.

      So what's all this secretive technology you think Intel have been producing?

    2. Re:Is Intel a friend of Open Source? by RAMMS+EIN · · Score: 4, Informative

      ``The reason Linux became so successful is because of Intel's low-cost, standards-compliant, open-source hardware; but with initiatives like virtualisation, vPro, multi-threaded compilers etc. the balance gets tilted further in favour of TCPA and DRM partners;''

      Err, I have no idea what you mean. Intel's hardware used to be standard-compliant and open-source? What standards? Which source? How does virtualization (and I do believe they published specs on how to use it) tilt the balance in favor of DRM? What do multi-threaded compilers have to do with anything?

      Now to look at some other aspects, Intel hosts and supports a number of open-source projects, among them open source drivers for certain Intel graphics and WLAN cards. These are recent efforts, as well.

      All in all, I don't think I can agree with your suggestion of Intel moving away from being supportive of open-source and towards being one of the forerunners of DRM.

      --
      Please correct me if I got my facts wrong.
    3. Re:Is Intel a friend of Open Source? by bealzabobs_youruncle · · Score: 5, Informative
      That is quite a load of mis-information you are hauling there. Intel is far more open with their hardware specs, are providing lots of open source driver support and porting many of their development apps to Linux (and either giving away or open sourcing many of them as well). You can actually go to Intel's site and find a list of which boards they actively support Linux on and find drivers for older RedHat 4 and SLES builds. Additionally, BIOS updates are now provided via ISO image so Linux users (or any platform really, but we are the targeted group) can update their BIOS without jumping through hoops. I won't even get into your whole "technology is available to a few limited US h/w mfrs" as it makes no sense when you consider that outside of BFG (maker of nVidia based video cards and a smathering of motherboards) there are no U.S.hardware makers any longer (and all BFG does is assemble over here, the parts are still off-shored).

      By way of comparison, AMD/ATi have yet to provide any really decent drivers, little in the way of documentation and have offered virtually zero F/OSS developer support. Via has been slightly better but hardly a font of knowledge. For desktop computing (and including Via was a stretch) Intel is probably the most supportive and easiest to deal with hardware make for a Linux workstation.

    4. Re:Is Intel a friend of Open Source? by Anonymous Coward · · Score: 1, Interesting

      Now to look at some other aspects, Intel hosts and supports a number of open-source projects, among them open source drivers for certain Intel graphics and WLAN cards. These are recent efforts, as well.

      Intel's efforts in video cards are meaningless because with vPro/LaGrande/Trusted Computing their control has moved from the source, to the binary.

      All in all, I don't think I can agree with your suggestion of Intel moving away from being supportive of open-source and towards being one of the forerunners of DRM.

      All in all, you strike me as someone who simply hasn't followed the news over the last few years. Intel isn't moving towards the front of DRM... it HAS ALWAYS BEEN THERE. Way back since 1998 when I head a talk from an Intel engineer bragging that their next challenge was to secure a PC from its owner in the name of controlling content (it wasn't DRM then) and "security".

      Since then, every move Intel has made has been driven by finally locking down the PC -- and their other DRM schemes across the media world (HDCP for example). The name LaGrande was dirtied by its association with DRM and uber-lockdown, and has now gone through the customary corporate name-change in an attempt to cleanse it. So we now have vPro... and hardware DRM... and the arrival of Intel's dream of a locked down "cable-box" PC that isn't really owned by the person who pays for it.

      Oh, and BTW, I'm sure Intel supports "open source"... since that's a watered down meaningless term.

    5. Re:Is Intel a friend of Open Source? by AHumbleOpinion · · Score: 1

      Intel is even friendlier than you suggest. They offer the same MB in TPM and non-TPM versions, and the non-TPM seems to have more features as well. To avoid a redundant thread see: http://slashdot.org/comments.pl?sid=281229&cid=203 85475

    6. Re:Is Intel a friend of Open Source? by RAMMS+EIN · · Score: 1

      ``Oh, and BTW, I'm sure Intel supports "open source"... since that's a watered down meaningless term.''

      Not as long as software controls the hardware. Which I believe is still the case; there may be a TPM chip in my computer, but it's not doing anything unless I actually use software that activates it. That doesn't mean I'm happy it's there, but it does mean it's Mostly Harmless.

      --
      Please correct me if I got my facts wrong.
  6. Intel Updates vPro Platform and Features.. by tthedford · · Score: 1

    Intel Updates vPro Platform and Features.. ..in their continuing efforts to help Microsoft mutate the personal computer into the final planned state of being essentially a tamper-proof remote contolled type-writer and entertainment vending machine for the masses.

  7. Removing a TPM and TXT by Anonymous Coward · · Score: 0

    How difficult would it be to mod a mobo, removing the TPM? Is TET (because Execution begins with the letter E) done in Microcode or is it all in silicon?

  8. Chispets by Life700MB · · Score: 3, Funny


    Aaah what I really want to know is about those "chispets", are they some kind of pokemon from intel or something?

    --
    Great hosting 200GB Storage, 2_TB_ bandwidth, php, mysql, ssh, $7.95

    1. Re:Chispets by ragefan · · Score: 1

      Aaah what I really want to know is about those "chispets", are they some kind of pokemon from intel or something? It's obviously a typo for Chiapets!

  9. google has teh answear by Anonymous Coward · · Score: 0

    Lookie here: http://www.google.com/search?hl=en&q=tcp+gcc+icc

  10. I thought it said... by Anonymous Coward · · Score: 0

    ... Intel Updates PPro Platform and Features.

    I sure hope they have been updating the Pentium Pro!

  11. And the very same thing RMS warned us about... by Max+Romantschuk · · Score: 1

    Interestingly, Richard Stallman warned us about "Treacherous computing" years ago. It's sad that these things are becoming reality.

    --
    .: Max Romantschuk :: http://max.romantschuk.fi/
    1. Re:And the very same thing RMS warned us about... by morgan_greywolf · · Score: 1

      Interestingly, Richard Stallman warned us about "Treacherous computing" years ago. It's sad that these things are becoming reality. Call him a zealot, call him an idealist, call him a communist if you want, but if there's one thing you positively can't call Richard M. Stallman, it's stupid.

      But if you think Stallman was smart in 2002, when Trusted Computing was a brand new buzzword, remember that he actually predicted DRM before there was such a word as DRM -- he used the term 'copyright monitor code'. The Right to Read was written in 1996, more than 10 years ago. I remember reading it in a copy of Communications of the ACM early in 1997 and thinking 'OMG, he's right!'
      --
      My blog
  12. Looks like Lights-Out Management + IPMI by Morgaine · · Score: 2, Informative

    Others have commented on the TPM and DRM aspects of vPro, but the part that interests me most is the remote access functionality. Is this coming to desktops now?

    Most modern servers have remote management capability these days, through some kind of Lights-Out Management (LOM) system that works even when the operating system is dead or when the host CPU is powered off. It's not just the high profile Sun/HP/IBM brands that have such capability --- even Dell servers have BMC hardware (a small embedded microcontroller) running a LOM and providing access through IPMI, and have had it for many years. I've found all these LOM systems extremely useful, even without the more recent remote KVM features.

    I'd love this kind of functionality independent of the running O/S to appear on desktop motherboards too, but motherboard manufacturers have traditionally kept server and desktop markets separate. Is there any sign that the new vPro chipsets could start moving such functionality towards the desktop too?

    From the videos, it doesn't seem so, as they're targetted at corporates. But the worries that people have expressed about the TPM/DRM side of vPro suggest that the desktop isn't far away ... which on the positive side could mean that we get BMC/LOM capabilities soon on normal home machines as well.

    As always, a powerful tool can be used both for good and for bad, and a BMC could do unwanted things as well as providing a very useful LOM. However, if it can be controlled by the end user, this sounds like useful technology.

    --
    "The question of whether machines can think is no more interesting than [] whether submarines can swim" - Dijkstra
    1. Re:Looks like Lights-Out Management + IPMI by Anonymous Coward · · Score: 0

      It provides remote access for all internet connected machines. A certain byte-sequence brings up your eth controller in the firmware environment and then the operators of the lawful intercept^w^w illegal wiretap can boot a hypervisor under your running OS and take full control of your machine.

      Me, I'm imagining where the TPM architects did a history course that only looked at the positive aspects of fascism.

    2. Re:Looks like Lights-Out Management + IPMI by DaveWick79 · · Score: 1

      Yes it is coming and it has been around for quite some time now, at least a year or so. It's basically using a hardware agent instead of having a separate software agent loaded into memory.

    3. Re:Looks like Lights-Out Management + IPMI by onescomplement · · Score: 1

      You're correct. It is basically IPMI and OOB, but apparently without requiring a separate LAN port for OOB (out of band, sorry) communications.

      I install this on all servers I install and it's wild greatness. When I figure out how to deploy Mindstorms (tm) robot to do parts swap, I need never leave the house except to market myself. :->

      The concern I have about vPro is that it seems tied into Intel's LANdesk product, which is proprietary and IMHO expensive for what you get.

      As a person who works small IT shops, it's out of my range and of course Intel's always exacted a pound of flesh to operate with their platform.

      Intel should be giving LANdesk away. Period. Their current marketing position is an impedement to sales, not an enhancement, as the value equation (what am I paying for here?) has never been clearly articulated to me, even by senior LANdesk management./

      Given how reliable PCs are these days and Windows (not one single non-hardware BSOD in _years_ of properly managed PCs) it's not worth it for me, ut for big biz, yes.

      Where Intel's got its marketing head up its arse is that this should be sold to the PC makers as a standard. It can't cost very much for this technology at the end of the day, no matter what Intel puffs itself up to represent.

      The raw fact of the matter is that jumping to the consumer side is probably about 1000 miles, bureucratically, away from the "biz" side and thus Intel, as usual with bigCOs is its own worst enemy.

      If Dell, HP, Lenovo, et. al. would put this into EVERYTHING it would be a potentially huge market for remote support.

      I get along fine with VNC and LogMeIn (cool, IMHO, evalling others - perhaps a good /. topic?)

    4. Re:Looks like Lights-Out Management + IPMI by Anonymous Coward · · Score: 0

      Intel no longer own LANdesk. Sold it years ago.

      Many other people are making vpro capable consoles - MS, Alteris, Syam, to name a couple. In fact, LANdesk is pretty much out of favor with Intel (Intel branded server boards are moving from a landesk app to MS one for server management).

      If you buy an Intel Branded desktop board that is vpro capable (look for the DQ965 or DQ35 identifier) they give you a version of management sw by syAm (http://syamsoftware.com/main/index.php). I've not used to know how cut down or time limited it is.

  13. AMD IOMMU? by kote-men-do · · Score: 0

    Are there any working implementations of AMD's IOMMU (not GART)? Can I buy one right now?

  14. Adblock by pseudorand · · Score: 1

    I think my Adblock is broken because there's this Intel advertisement at the top of slashdot where I usually expect to see the first article.

    Seriously though, adblock should just automatically block anything with the text "next-generation".

  15. Naming things as the exact opposite... Lame! by Anonymous Coward · · Score: 0

    "Trusted Execution", "Digital Rights Management", "Patriot Act", "Plays 4 Sure",
    "SecuROM", "Windows Genuine Advantage", "Operation Iraqi Freedom", etc...
    I really dislike it when the creators of evil things add one final slap in the face
    by giving the evil a name that is the exact opposite of what it is. This is beyond
    euphemism. I'm amazed, kinda impressed, but mostly disgusted that there are people
    who can tolerate such evil ideas in their heads let alone commit to such projects
    -- but the names really add that evil flair.

    What's next? "Net Fairness" to describe traffic shaping or a tiered Internet?
    "Your Software" to describe a software leasing model?

    I wish the words "Trust", "Patriot", "Secure", "Protection", "Sure", "Safe",
    "Fair", etc, didn't reflexively make me think of the exact opposite ideas,
    but that's what happens when marketing people, or lawmakers, use such terms
    to describe their untrustworthy, insecure, unsafe, unfair schemes.
    Maybe this marketing tactic has been used for decades or centuries. Maybe
    the Roman Empire had their own extreme euphemisms for decimations, crucifixions,
    and tax collecting. But I do feel like there are a relatively high number of
    evil projects in this millennium with names that are totally, insanely,
    conspicuously opposed to what is actually being described. I think we're
    in the middle of a wave of this kind of thing. Something about the way
    various governments used 9/11 as an excuse to ramp up police state activity
    has set a pattern of rhetoric and behavior that industry, with their own desire
    for consumer control, has embraced for their own projects.

  16. No modding needed, Intel offers non-TPM MBs by AHumbleOpinion · · Score: 1

    How difficult would it be to mod a mobo, removing the TPM? Is TET (because Execution begins with the letter E) done in Microcode or is it all in silicon?

    Why mod when you can buy a motherboard without it? When I went shopping for Intel motherboards a few weeks ago I noticed TPM and non-TPM versions of the same motherboard.

    Before someone out there decides to write "But what about buying from Dell, HP, etc?" note we are discussing modding. Someone who is going to mod a motherboard should be able to operate a screwdriver and install a motherboard.

  17. Here's your source by Wesley+Felter · · Score: 1

    Open Source Intel AMT Drivers and Tools. (the part that runs on the PC), Intel Active Management Technology Reference Design Kit (the part that runs on a server and remotely takes over the PC).

  18. Intel offers same MBs with / without TPM by AHumbleOpinion · · Score: 1

    Do not want!

    No problem, Intel has motherboards for you too. I was specing out a quad core and noticed Intel has TPM and non-TPM versions of the same motherboard, for example the D975XBX2.

    http://www.intel.com/design/motherbd/bx2/bx2_avail able.htm

    The non-TPM version seems to have more features too, digital audio out, 8 SATA instead of 4, IEE1394/Firewire, 3 year warranty rather than 1 year.

  19. WS-MAN by xswl0931 · · Score: 1

    WS-Management (look it up on dmtf.org) is the protocol being used for remote hardware (BMC) management.

  20. Why no uproar? by Joseph_Daniel_Zukige · · Score: 1

    Because it's already cracked.

    They think it allows them to observe unobtrusively.

    What really happens is it allows us to observe them thinking they are observing us unobtrusively. Stupid bunch of scriptkiddies.

    Heh. Honeypot, anyone?

    Number one, managing access on a per-page basis couldn't be done on iNTEL until now?

    We knew that Microsoft has made their place by selling unsafe software for all these years. Now we see that iNTEL has done the same. And we see that, just like Microsoft, when the power of CPUs actually makes it possible for them to sell amost competitive products that are built correctly, they still have built them correctly to the wrong standards. And we will see that they aren't really competive, after all. Maybe watching video will mostly work without too many glitches, but thid inversion of trust they call TPM is going to make it impossible to use more than half of the cycles that should be available from your CPU, and that only if you have just one virtualized machine.

    And Symantec's stupid anti-virus hypervisor? It's broken already. Now there's one more speedbump between you and my keyloggers.

    All you iNTEL fanbois, look what your fanaticism just bought you.