Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

If AMT is enabled it would be listening on ports 16992 and 16933 (TLS). I ran lspci | grep MEI on my machine (an i3-2100, not vPRO as far as I know, running Linux Ubuntu 16.04) and got:

00:16.0 Communication controller: Intel Corporation 6 Series/C200 Series Chipset Family MEI Controller #1 (rev 04)

Then ran nmap -p- and the ports didn't show up, and can't access them, so AMT is disabled. You can read more on how enable or disable AMT and how to access it here:

http://manpages.ubuntu.com/manpages/zesty/man7/amt-howto.7.h...



From what i've seen elsewhere - make sure to run nmap on a different machine, because running nmap locally isn't going to go via the NIC.


I ran nmap and tried to access the ports from my laptop.


2009: "The underlying technology that performs a remote power on command [for AMT] uses the http transport, either port 80 or 443" | https://communities.intel.com/thread/2888

- Ylian Saint-Hilaire, Principal Engineer at Intel

Download the Intel AMT SDK and dig a bit for more: https://software.intel.com/en-us/download/intel-active-manag... (If anyone has a non-sketch non-EULA'd download let me know and I'll update the link.)

Or you can review the JavaScript implementation: https://github.com/gomesjj/MeshCommander


If you want to run nmap yourself, the correct ports should be 16992 and 16993.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: