Intel MEI is something only in specific motherboards, so 2 options are either stop buying those devices, but if it is a work environment you may have it so you can do remote management if ever needed, or ya, disable it and just get any other NIC and off you go.
I just use Steam and Proton for windows games, and for me performance is still all there, I can do Apex Legends and max out at 144FPS as I could in windows. Most other games I play though, have linux versions, Steam games, Civilization. On one hand, it almost makes it easier for me to choose...
Sure there are specific cases where someone may need Windows due to specific software, but for most home users, especially those not specific to gaming (Steam and proton works great!) there are alternatives, but people dont want to try them. I switched to nix distro as my main OS years ago...
Pulling a Broadcom.. cut off all the smaller people, even though it costs them nothing on support, or make their entry into the products so dam high either people will bite, or a few will leave. sad.
I think they do not list it because it is not really an issue. Every NIC supports those features because they are often needed or used, and if they are getting exploited, then someone is likely already with in your network and you have bigger issues. Are there active PoC's for that of those...
This part I do not always understand. People are willing to spend stupid amounts of money on hardware, or on games, but nope! I am not paying for the core OS that lets everything even work and makes my computer usable..... If you hate MS that much move to linux?
Not suprising....(another reason why I am glad nix is my main OS!)
Windows 10 users: Get ready to be bugged about creating a Microsoft Account
Read more: https://www.tweaktown.com/news/97720/windows-10-users-get-ready-to-be-bugged-about-creating-microsoft-account/index.html
My 5950x is holding strong, but the amount of VM's and stuff and other crap I run these days, something new may be in my future, but I was then also considering a used threadripper or something...guess we shall see!
I did mention Dell in my post...But certainly some companies get more flack than others do for the same tactics.
Dell I love when you go to configure servers, and literally the exact same memory modules, pending what options you choose, can jump in price significantly. I have done some side by...
Ram is still faster than the fastest NVMe's. 8G if too little these days for most in day to day usage, browsers with tabs, office apps, messenger apps or anything...it costs Apple about $5 for that ram chip a recent article was talking about, but they charge you so much to go to 16GB. (Dell does...
This, the fact you could get new Apple computer with 8G of ram...I recall that was the biggest complaint of the m1's is people running out of memory, but to go to 16Gb was stupid expensive.
Exactly, and doing a default "block all" outbound and locking down DNS can stop many exploits dead in their tracks! Tie it in with geo based rules to help a little more (not as much as these days malicious actors have services all around the world) you set yourself up pretty good for some solid...
Rule order
1. Block all outbound
2. Allow DNS only to your DNS servers (whether AD or your perimeter device) - then set your perimeter device to use secured DNS out to cloudflare or another external DNS provider (screw you ISP!)
3. Allow lists for traffic require from sources you want to allow...
PFSense on an old i3/i5 SFF with built in video and use the PCIe slot to throw in a 4 port intel NIC or something, done, all the enterprise features you need, tie that in with a used Brocade ICX switch off ebay even and do your VLANs and rules on the switch instead.
PFSense can work with any speed?
The issue is what NIC you use, Intel 226 I think are good now on BSD, but most other 2.5Gb NICS, including previous intels sucked and had issues.
Exactly... people seem to think people sit there in their free time reviewing random open source code cause they have nothing better to do. With how many libraries and open source projects that are out there? Ya, right... took what, 10 years to discover the OpenSSL exploit...
^^ This, this was a long play planned out attack. Now you wonder how many other repo's could be comprimised by the same team that did this (not likely a single person at all, but a nation state group)
You do not need any of this registry cleaning crap any more, even back in the XP days it often just caused more issues than they fixed. If you are needing to clean your registry, first question is what do you do on your system that causes issues that you feel cleaning the registry will even fix...
NGINX (or similar) reverse proxy as the front end and do SSL offloading to that and leave all your server behind that as HTTP - centralised management and control. If said apps/sites support being run that way. Went through this years back and then ran a config like this and made life so easy...
"But open source is more secure because people spend all their waking hours reading over lines of code to make sure nothing malicious gets in"
Reality is, no they do not. Open source also allows the bad guys to find ways in, just as much as people can find holes and get it patched. But at least...
Def. I think there is too much trust people have on the internet, assuming because something is on a specific site (App Store / Android store et cetera( it must of been 100% vetted and is clean. Long gone are those days when, for the most part, you could download themes and add-on packs and...
KDE advises extreme caution after theme wipes Linux user's files
https://www.bleepingcomputer.com/news/linux/kde-advises-extreme-caution-after-theme-wipes-linux-users-files/
So basically, keep it stock.....
The typical, developers deploying apps and infra they do not understand the basics about when it comes to security. So they just deploy and "it works great I am done!" and on they go about their day.
it isnt though, it turns out it is how Apple implemented their DMP. Some Intel Core chips have it, but it is mitigated via other methods, so this is specific to Apple M silicon currently.
Sounds like you went a good route, also not being tied to any single product stack and giving flexibility, something many companies are adverse too because they think the over head would be too much. All companies should work towards being vendor agnostic as much as possible, whether cloud, on...
I can show you proof otherwise (follow britton white on linkedin), most every info-stealer can bypass Defender and any decent flyby infection can disable defender with a single line of powershell code. There is no such thing as "smart choices" these days when browsing the web, yes, we can be...
STH has also promoted several NUC style systems that were sold using buggy chips and hardware, and never back tracked on it, also Aliexpress reviews are as reliable as Amazon reviews. most people buying the gear simply plug it in and if it works, they give it 5 stars the same day, but you never...
But on the other side, Garuda has also released things that hose the entire OS or break several things because it is so cutting edge, one reason i stopped using it, something as simple as multiple displays and it not saving window position / wallpapers.