Goodbios

From Technologia Incognita
Jump to: navigation, search
Projects
Participants DrWhax
Skills Soldering, Software, hardware
Status Active
Niche Other
Purpose Fun

Idea: http://media.ccc.de/browse/congress/2013/30C3_-_5529_-_en_-_saal_2_-_201312271830_-_hardening_hardware_and_choosing_a_goodbios_-_peter_stuge.html

A commodity laptop is analyzed to identify exposed attack surfaces and is then secured on both the hardware and the firmware level against permanent modifications by malicious software as well as quick drive-by hardware attacks by evil maids, ensuring that the machine always powers up to a known good state and significantly raising the bar for an attacker who wants to use the machine against its owner.

I bought an Thinkpad x60s in order to harden it against people trying to backdoor the machine when i'm shorter than 20 minutes away from my laptop. This page will document what I have done and how you can do the same thing and not brick your system!

WARNING - THERE IS A POSSIBILITY YOU MIGHT BRICK YOUR MACHINE!

Needed:

Salvaged:

  • Modem card.
  • WIFI card
  • Motherboard Speaker

TODO:

Components

Documentation


Hardening Libreboot

While Libreboot is a fantastic project, I really wish it would be shipped with some options disabled in Coreboot and Grub2. I hope to contribute some patches in the near future to make this possible.

Coming to an git repo near you someday.