From: Michael Holstein (michael.holsteincsuohio.edu)
Date: Tue May 16 2006 - 08:34:41 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Why can't you just download a new BIOS image from the manufacturer (one
without LoJack .. since they make seperate images with and without that
code, for "consumers" .. and re-flash it.

Not having a "lojack" laptop at my disposal, I can't test directly, but
having hacked the BIOS in many other cases to enable things like RAID on
a non-raid motherboard, I suspect that the LoJack code is in one of the
"vendor" areas on the bios, and is easily removed and the image
re-checksummed.

Thoughts?

Michael Holstein CISSP GCIA
Cleveland State University

Jay Nevins wrote:
> FYI-
>
> I know this may be a little after-the-fact but I just came upon your
> article posted on 12-24-05 about how to disable LoJack for Laptops. I
> currently use this product and have tested it in depth for a while. The
> Notebook I use has Computrace built in to the BIOS. I have tried to
> disable rpcnet, ctmweb, rpcnetp, and other files associated with Lojack
> as well as blocking these files with my firewall and even blocking
> Computrace's IP. Needless to say my notebook still manages to call
> out. If you are still interested in this program you may want to look
> at machines with Computrace enabled BIOS first.
>
> -Jay
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]