Computer Help and Spyware Removal Computer Help and Spyware Removal Computer Help and Spyware Removal Computer Help Forums Windows Startup Programs Database Spyware and Malware Removal Guides Computer Tutorials Uninstall Database File Database Computer Glossary Computer Resources
 

Welcome Guest ( Log In | Click here to Register a free account now! )



Register a free account to unlock additional features at BleepingComputer.com
Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

 
Reply to this topicStart new topic
> Multiple Questions
hagabooq
post Jan 12 2008, 02:36 PM
Post #1


New Member
*

Group: Members
Posts: 4
Joined: 12-January 08
Member No.: 182,980
hi,
i have several questions and i really cant classify them to post them in the right sub forum so some of my question may be repeated in several forums i hope this doesn't bother anybodu... here they are


1) does setting a password on the BIOS access prevent malware form writing themselves to the BIOS memory

2) my mobo doesnt have a physical jumper to prevent flashing to the BIOS, but there is an option in Adcanced BIOS settings title "No excute memory protection".. its description is " when disabled, it forces NX feature flag to always return 0

if i disable it , will this prevent ANY writing/altering to the BIOS by MALWARES or even flashing the bios for upgrade


3)is it possible to restrict the launch of a certain program on the computer to a hardware device.. i think its called a dongle..... how to do so ? how secure is it , ie can the dongle encryption method be cracked?



thanks
Go to the top of the page
 
+Quote Post
garmanma
post Jan 12 2008, 07:56 PM
Post #2


Computer Masochist
******

Group: Moderator
Posts: 10,660
Joined: 27-January 07
From: Cleveland, Ohio
Member No.: 108,618
Have a look at this site:
BIOS survival guide
Mark


--------------------
Mark

why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Avatar by Handplane
Go to the top of the page
 
+Quote Post
Platypus
post Jan 12 2008, 09:59 PM
Post #3


Distinguished Member
*****

Group: BC Advisor
Posts: 738
Joined: 28-January 06
From: Australia
Member No.: 52,817
In addition to the information provided in garmanma's link:

1) does setting a password on the BIOS access prevent malware form writing themselves to the BIOS memory

No, this password only restricts user access to the system's own BIOS setup program. Software can still access the BIOS, for example a BIOS update flash can still be done. So the (fortunately) rare BIOS infecting malware isn't affected by the presence of a password.

2) my mobo doesnt have a physical jumper to prevent flashing to the BIOS, but there is an option in Adcanced BIOS settings title "No excute memory protection".. its description is " when disabled, it forces NX feature flag to always return 0
if i disable it , will this prevent ANY writing/altering to the BIOS by MALWARES or even flashing the bios for upgrade

NX (No Execute), also known as DEP (Data Execution Prevention) protects system memory from being misused by the trick of executing malicious code from memory allocated for data. Disabling it will remove this memory protection, but either way will not directly affect the BIOS area.

3)is it possible to restrict the launch of a certain program on the computer to a hardware device.. i think its called a dongle..... how to do so ? how secure is it , ie can the dongle encryption method be cracked?

A dongle is keyed to a piece of software when it is written - the dongle manufacturer will provide a software manufacturer with a small API (Application Programming Interface) to provide a hook for the dongle. You can't say anything cannot be cracked, but the encryption levels used are high, and the dongle is a hardware device, so overall it is a very secure system. I don't think it would be feasible to retrospectively add dongle control for pre-existing software, but I could be wrong.


--------------------
Microsoft MVP - Windows Desktop Experience

If you're not part of the solution, you're part of the precipitate.
Go to the top of the page
 
+Quote Post
« Next Oldest · Internal Hardware · Next Newest »
 

Reply to this topicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Lo-Fi Version Time is now: 9th January 2009 - 04:27 AM


Advertise   |   About Us   |   Terms of Use   |   Privacy Policy   |   Contact Us   |   Site Map   |   Chat   |   Tutorials   |   Uninstall List
Discussion Forums   |   The Computer Glossary   |   Resources   |   RSS Feeds   |   Startups   |   The File Database   |   Malware Removal Guides

© 2003-2008 All Rights Reserved Bleeping Computer LLC.

Powered By IP.Board © 2009  IPS, Inc.