Modern x86 systems often block #coreboot support due to the silicon Root of Trust (#RoT) mechanisms like Intel #BootGuard or AMD PSB. While Intel platforms have long had public tooling for status checks, AMD users were left without a reliable method.
Michał Kopeć's presentation introduces psb_status, a lightweight script that fills this gap by verifying AMD PSB configuration directly on target hardware.
#BootGuard
ServeTheHome: Intel Boot Guard OEM Private Key Allegedly Leaked
https://www.servethehome.com/intel-boot-guard-oem-private-key-allegedly-leaked/
#Intel #BootGuard Keys From #MSI Hack Posted, Many PCs Vulnerable
Files stolen during the last month's MSI hack have started to spread around the dark web.
One of the more worrying things spotted among the digital loot is an Intel OEM private key. MSI would have used this to sign its firmware/BIOS updates to pass Intel Boot Guard verification checks. Now hackers can use the key to sign malicious BIOS, firmware & apps, which will look entirely like official MSI releases.
https://www.tomshardware.com/news/msi-bootguard-keys-leaked-to-internet
@Green @frameworkcomputer I also don't get why they choose this way.
Why are the frameworks fused and signed by using #bootguard?
They could just follow the good known and working example of the chromebooks without bootguard. Simple, secure, easy to understand, open, repairable, hackable. Aren't those attributes they like to use with #frameworks?
It says it wants #coreboot #firmware, doesn't have #BootGuard enabled. :)
This is so far the tiniest #laptop #mainboard I've seen, from a T-bao Tbook (https://m.gearbest.com/laptops/pp_650502.html). The battery died, it boots no longer, so I am trying to investigate it. The #UEFI #firmware image has lots of #VBT entries, interestingly, and is not locked by #BootGuard.
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst