ylai@lemmy.ml to Technology@lemmy.worldEnglish · 10 months agoMicrosoft waited 6 months to patch actively exploited admin-to-kernel vulnerabilitywww.theregister.comexternal-linkmessage-square17fedilinkarrow-up1354arrow-down17
arrow-up1347arrow-down1external-linkMicrosoft waited 6 months to patch actively exploited admin-to-kernel vulnerabilitywww.theregister.comylai@lemmy.ml to Technology@lemmy.worldEnglish · 10 months agomessage-square17fedilink
minus-squareKevin@programming.devlinkfedilinkEnglisharrow-up2·9 months agoThe firmware has to allow it, so if you’ve got physical access to the machine that’s possible. Remote access root, on the other hand, can’t tell the firmware to register new keys as long as it’s configured correctly
So why can’t root add new keys?
The firmware has to allow it, so if you’ve got physical access to the machine that’s possible. Remote access root, on the other hand, can’t tell the firmware to register new keys as long as it’s configured correctly