IMPORTANT SECURITY UPDATES!

Discussion in 'Sager and Clevo' started by Prema, Nov 30, 2017.

  1. Gob

    Gob Newbie

    Reputations:
    0
    Messages:
    8
    Likes Received:
    2
    Trophy Points:
    6
    I cleared the TPM in the BIOS (for real this time), but after powering down, the Intel tool is still telling me I'm vulnerable. Am I screwed?
     
  2. Prema

    Prema Your Freedom, Your Choice

    Reputations:
    7,357
    Messages:
    5,709
    Likes Received:
    13,422
    Trophy Points:
    681
    Yeah that's why the SOP tells us to clear them before:

    "After the TPM firmware update, the TPM Chip will generate new secure keys. Nevertheless, even after the firmware update, old “weak” keys are still stored within the TPM chip and will continue to be used by related software products. The only exception is if the TPM. was cleared before the firmware update..."


    Either way, clear them again but this time in Windows and BIOS. Should only take some more convincing to get rid of them for good afterwards...
     
  3. Gob

    Gob Newbie

    Reputations:
    0
    Messages:
    8
    Likes Received:
    2
    Trophy Points:
    6
    OK, sorry Prema. Total newb here. Just to be clear, I'll clear TPM (OS + BIOS) again, but no need to run the update part, correct?

    Edit: Hmm, after clearing the TPM a couple times via OS and BIOS, Intel tool still says "vulnerable."
     
    Last edited: May 16, 2018
  4. Prema

    Prema Your Freedom, Your Choice

    Reputations:
    7,357
    Messages:
    5,709
    Likes Received:
    13,422
    Trophy Points:
    681
    Disable the TPM in BIOS, save and exit, make a full shutdown from Windows, clear TPM in BIOS, save and exit, make a full shutdown from Windows, re-a
    enable TPM in BIOS.
     
  5. Gob

    Gob Newbie

    Reputations:
    0
    Messages:
    8
    Likes Received:
    2
    Trophy Points:
    6
    At the risk of sounding even dumber, is it possible to clear the TPM in BIOS while it's disabled? I can disable the TPM just fine in BIOS, but then the option to clear the TPM is no longer available unless I re-enable the TPM.

    The exact steps I performed were:

    - disable TPM in BIOS, save and exit to OS
    - full shutdown from OS
    - re-enable TPM in BIOS (the only way to get clear TPM button to appear)
    - immediately choose "clear TPM" option in BIOS
    - full shutdown from OS

    Unfortunately, Intel tool is still saying the same thing as before (vulnerable).
     
  6. Prema

    Prema Your Freedom, Your Choice

    Reputations:
    7,357
    Messages:
    5,709
    Likes Received:
    13,422
    Trophy Points:
    681
    Stupid question, but you are using tpm.msc command to check vulnerability and not the Tool for the ME Firmware!?

    Please upload a picture of what message you are seeing.
     
  7. Gob

    Gob Newbie

    Reputations:
    0
    Messages:
    8
    Likes Received:
    2
    Trophy Points:
    6
    Oops, I was actually running the Intel tool. Here's a photo of the Intel tool and my TMP.msc readout. Am I okay? Apologies in advance if this was a non-issue the whole time. TMP pic.jpg
     
  8. Prema

    Prema Your Freedom, Your Choice

    Reputations:
    7,357
    Messages:
    5,709
    Likes Received:
    13,422
    Trophy Points:
    681
    Ha ha ha, no problem. Run the update from the ME11 section on premamod.team to patch that vulnerability as well.
     
    Papusan and Gob like this.
  9. Gob

    Gob Newbie

    Reputations:
    0
    Messages:
    8
    Likes Received:
    2
    Trophy Points:
    6
    Oh boy, my bad Prema. Thanks so much for all your help, and again with the apologies!

    Edit: Success!
     

    Attached Files:

    Last edited: May 16, 2018
    Papusan and Prema like this.
  10. Angel_P

    Angel_P Newbie

    Reputations:
    0
    Messages:
    6
    Likes Received:
    3
    Trophy Points:
    6
    hi!, i thank you, i can to update TPM successfully on clevo W130SV. Nevertheless, I did not have the same success with Intel ME, Install the driver correctly but something happens, what am I doing wrong?
    I appreciate your help in advance[​IMG] [​IMG]
     
Loading...

Share This Page