What are the biggest security concerns on PXE? (election machine network boot) - The Great Awakening - Where We Go Qne, We Go All!

GreatAwakening

Communities Topics

Hot

All Posts

DEFAULT COMMUNITIES • All General AskWin Funny Technology Animals Sports Gaming DIY Health Positive Privacy

What are the biggest security concerns on PXE? (election machine network boot) 🤔💭 Theory 😲💡

posted 3 years ago by ostof 3 years ago by ostof +295 / -0

Nerdpedes,

have a look at

https://security.stackexchange.com/questions/64915/what-are-the-biggest-security-concerns-on-pxe

Best of:

I can capture a full machine image. Do your systems automatically connect to the domain controller after setting up the machine? If so, this image probably has domain controller credentials on it, that I can capture and use elsewhere.

Computer makes a DHCP request --> DHCP server responds with address and PXE parameters --> Computer downloads boot image using TFTP over UDP

If the good guys got the traffic on that low level, unencrypted. Then they would have it all.

47 comments

47 comments share save hide report block hide replies

You're viewing a single comment thread. View all comments, or full comment thread.

Comments (47)

sorted by:

▲ 3 ▼

– cc321 3 points 3 years ago +3 / -0

TY - That's similar to what I was about to say.

My question in this realm is are SSD or other flash media drives forensically retraceable once a new OS is reinstalled?

permalink parent save report block reply

▲ 4 ▼

– RiverWolf 4 points 3 years ago +4 / -0

It depends. Data written to a flash or SSD drive, before either deleting the file and/or reformattng can often be recovered -- easily so, if that region of the drive has not yet been rewritten over with other data. If it has, there are forensic IT tools which can still sometimes recover the old data using statistical analysis and other techniques.

However, an OS which is loaded via PXE, and running in RAM only would leave very little evidence behind, assuming all operations it performed were also in RAM only, once the machine were rebooted (clearing anything in RAM). Analyzing what was previously only in RAM is also possible, but requires more expertise, and favorable conditions.

Also worth mentioning, is that some newer computers and devices often have a built-in 'side computer' which can be running and even accessed remotely, even when the main computer is turned off. The marketing reason for this is to enable remote administration/IT assistance, even when a machine has crashed or is not booted nor powered on.

permalink parent save report block reply

▲ 2 ▼

– cc321 2 points 3 years ago +2 / -0

Thank you for the great info. to your last statement, I know some HP enterprise servers have a separate NIC and rom for remote built in.

permalink parent save report block reply

▲ 3 ▼

– tstr 3 points 3 years ago +3 / -0

HP, Dell, IBM. They all have that. DRAC or ILO, each their own version of the same thing. Access to power cycle, BIOS, and to the OS if it is running.

permalink parent save report block reply

▲ 3 ▼

– deleteme1234 3 points 3 years ago +3 / -0

Buried deep inside your computer's Intel chip is the MINIX operating system and a software stack, which includes networking and a web server. It's slow, hard to get at, and insecure as insecure can be.

permalink parent save report block reply

... continue reading thread?

Welcome

To The Great Awakening

We are researchers who deal in open-source information, reasoned argument, and dank memes. We do battle in the sphere of ideas and ideas only. We neither need nor condone the use of force in our work here. WE ARE THE PUBLIC FACE OF Q. OUR MISSION IS TO RED-PILL NORMIES.

This is a pro-Q community. Please read and respect our rules below before contributing.

WHY Q?

"Those who cannot understand that we cannot simply start arresting w/o first: ensuring the safety & well-being of the population shifting the narrative removing those in DC through resignation to ensure success defeating ISIS/MS13 to prevent fail-safes freezing assets to remove network-to-network abilities kill off COC to prevent top-down comms/org, etc. etc. should not be participating in discussions." Q

Welcome to the Digital Battlefield - Together We Win

Rules

Q Supporters:
This is The Great Awakening. Our community is international, focused on helping ourselves and others walk away from the programming, and return our governments to "by the people, for the people!"

Follow the Law:
No posts or comments that violate laws in your jurisdiction or the United States. The Feds are always watching!

No Bad Behavior!
No doxing, including revealing personal information of non-public figures, as well as addresses, phone numbers, etc. of public figures. All GAW users must adhere to the highest standards of conduct, whichever .WIN they are on. If we are notified by other moderators of incivil behavior on other .WINs, you WILL be banned here!

Civil Discussion ONLY:
They want you divided.
They want you labeled by race, religion, class, sex, etc.
Divided you are weak [no collective power].
Divided you attack each other and miss the true target [them].

No PAYtriots/No Self Promotion:
Linking or promoting merchandise, fundraising, or spamming personal websites, blogs, or channels is not permitted. Do not attempt to profit from Q or advertise for those who do. Peace is the prize. We do it for free.

Questions and Concerns: All moderation questions and concerns should be submitted via modmail. DO NOT GRIEF the mods.

Expand your thinking:
Remember, this .WIN is the public face of the Great Awakening, and, as a member here, you agree to represent the Great Awakening movement against Globalism, Communism and Progressive Insanity in the best, most positive way possible. NOTE: Your comments and posts may become news. Keep it classy!

This is not a 'fringe conspiracy' site: Visit https://conspiracies.win if that's your thing!

No doomers, shills, or tards: THIS IS AN ELITE RESEARCH BOARD. If you can't use common sense you'll get banned without hesitation. If you're a shill, you fall under this rule. If you're a doomer, you fall under this rule as you just add garbage to the site like the other two. This includes forum sliding. Q said "We are saving Israel for last," and so are we. And if you're a tard, oh, man.

General Rules:

-Mods used to issue warnings, followed by temporary bans and/or permanent bans. We don't, anymore. DO NOT GRIEF THE MODS.

-Keep posts related to topics Q has raised or that are current. We try to keep an open mind, but... c'mon.

-Keep post duplication (especially from other .WINs) to a minimum. No crap, off-topic memes

-HIGH EFFORT, HIGH-INFO participation only! Please respect other readers' time. Please use descriptive titles. No URLs in titles, pls. No clickbait. Keep your comments high effort. No BS.

-No fame-fagging; no, "your" post did not get removed! Were you the original author?? Eyes on the prize, frogs!

-Memes encouraged, but no low-quality, low-info trash, pls. Excessive, low-effort posting may earn users vacations!

-Keep it honest and accurate.

-Patriots.win / Q Supporters ONLY. (Sorry, this train still has no brakes.)

-Handshake noobs will be scrutinized by their command of Q, sincerity, and respect to others.

Remember, your conduct here represents the Q movement! OUR ENEMIES ARE WATCHING! (Hi, Mike! You LOSER!)

Resources

WELCOME TO THE DIGITAL BATTLEFIELD

"River of Search" script:

GAW post formatting tips

Q Research (Q only posts at 8kun)

Q post archives (qagg.news) others 1 2 3 4

Browse Drops from the beginning

QProofs.com

Learn to read the Q map

Book of Q Proofs v1.3 (pdf)

Law of War & Majic Eyes Qnly Resources

Trumps twitter archive

POTUS: The Calm Before The Storm

Pedosta and DNC dumps

GIFs & QPosts

Poll Post Format

SPY ON US! See: mod Logs

The Greatest Show on Earth!

New to Q? "The Earth Chronicles Ep 12: Q & The White-Hat Op: What's Real, What's Not?" DO NOT MISS THIS PODCAST!

Disclaimer

Posts and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the GreatAwakening.win or Patriots.win administration.

Moderators

Message the Moderators

Terms of Service | Privacy Policy

2024.12.01 - mcht9 (status)