intel management engine (IME)
if you are not paranoid about lowlevel spookware in modern processors, then you do not know enough about modern processors.
the intel management engine (IME) has since 2008 been baked into practically all intel CPUs.
it is an independent processor that runs its own firmware and operating system, and has essentially unlimited privileges including memory, networking, storage, …
it operates on a lower level than even the BIOS/UEFI firmware.
it is (obviously) entirely closed source, and so cannot be audited nor controlled. shady nonsense is a serious concern here.
AMD has a similar technology.
libreboot
coreboot and the related libreboot projects aim to replace proprietary firmware. libreboot is merely a distribution of coreboot.
libreboot is only really available on older hardware: you can find a compatibility list on their site.
libreboot disables the IME microcode from running, thus preventing monitoring.
attempting to disable the IME on newer-gen hardware normally results in a bricked device, so hardware options are limited.
a classic solution to the IME menace is installing libreboot on an retro thinkpad, but depending on the model this usually requires hardware flashing (ie using an external programmer).
furthermore, as retro thinkpads have something of a cult following, prices are high relative to the performance you will get.
if only there were a cheap, widely available computer that could easily be librebooted…
enter: the dell latitude e6400.
E6400
the dell e6400, pictured here as a crusty low quality png, is a laptop from 2008 with a blazingly fast Intel Core 2 Duo P8400 processor and a whopping 2GB DDR2 (800Mhz) memory. granted, the memory is expandable (my model came with 4GB).
the important details:
- this laptop is available for very cheap.
- libreboot can be installed purely in software: no need for any physical work at all. the process is trivially easy.
- it is very commonly sold.
the question then becomes, how usable is such a laptop in current year?
well, the answer is contingent on what software you use.
windows is a no-go and would be hellish to attempt to use. you must use a very lightweight software setup.
installed on my e6400 is arch linux with dwm as my window manager. using a window manager instead of a full desktop environment is highly recommended.
for web browsing, try qutebrowser: i find many webpages are much more responsive compared with firefox.
for watching youtube, use ytx, yt-dlp and/or mpv.
use vim instead of some graphical IDE for programming.
in general, where possible do things in the terminal instead of graphically. this will make your experience much more bearable.
where you must use graphical software, look for lightweight options. for instance, mupdf instead of firefox for PDF viewing.
replacing the HDD with an SSD is extremely easy, so i recommend doing this. ahhh, the days when laptops were modifiable..
in general, if you use lightweight software, then the laptop is very much usable. it is actually much more responsive than i was initially expecting.
for myself, i went through a year of university with this as my only computer.
several warnings:
- the batteries on many e6400s are bunk, and any replacement batteries i could find look veeery shady. so you will most likely be using the laptop from AC. tho, given the size and weight of it, i would say portability was never really a selling point.
- the touchpad kinda sucks. you should use a mouse.
- video out is VGA and DisplayPort.
finishing note: the IO is very expansive, the keyboard is acceptable, and the screen is… also acceptable.
>> Home