Talk:System Management Mode

This is the talk page for discussing improvements to the System Management Mode article. This is not a forum for general discussion of the article's subject.

Put new text under old text. Click here to start a new topic. New to Wikipedia? Welcome! Learn to edit; get help. Assume good faith Be polite and avoid personal attacks Be welcoming to newcomers Seek dispute resolution if needed Article policies Neutral point of view No original research Verifiability

Find sources: Google (books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL

This article is rated Start-class on Wikipedia's content assessment scale. It is of interest to the following WikiProjects:

Computing: Software Low‑importance This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks. Low This article has been rated as Low-importance on the project's importance scale. This article is supported by WikiProject Software (assessed as Low-importance). This article is supported by Computer hardware task force (assessed as Mid-importance). Computer Security: Computing High‑importance This article is within the scope of WikiProject Computer Security, a collaborative effort to improve the coverage of computer security on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks. High This article has been rated as High-importance on the project's importance scale. This article is supported by WikiProject Computing. Things you can help WikiProject Computer Security with: Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Answer question about Same-origin_policy Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here.

Is System Management Mode a rootkit?

Latest comment: 12 years ago2 comments2 people in discussion

Should the article be added to Category:Rootkits? I think that SMM technically is a rootkit because it executes at a higher privilege level than both hypervisors and operating systems are able to attain, and the user has no choice on whether or not this is installed in his or her computer.

Unfortunately, SMM is now used by motherboards to handle power and thermal management when such management should be handled by an OS or a hypervisor driver. Jesse Viviano (talk) 06:30, 30 November 2010 (UTC)Reply

Technically this is a special mode of motherboard firmware (SMI defined by BIOS Firmware, user selects motherboard with BIOS firmware included and he can't uninstall BIOS from board without breaking it). SMM was created at time when 80486 was fastest CPU and no OS (e.g. DOS) or hypervisor (there were none) was able to do motherboard management. It can be used to hide rootkits, but any BOOT ROM can has rootkit stored inside it (both BIOS rootkits and PCI Boot Rom rootkits). BIOS itself and PCI boot roms are not a rootkits, it is just a place, where attacker can store a rootkit. So, no category of Rootkit is here will. `a5b (talk) 13:36, 4 August 2011 (UTC)Reply

Intel protection from cache poisoning a SMI handlers

Latest comment: 12 years ago1 comment1 person in discussion

United States Patent 7698507 "Protecting system management mode (SMM) spaces against cache attacks" http://www.google.com/patents?id=8ULOAAAAEBAJ& `a5b (talk) 13:36, 4 August 2011 (UTC)Reply

Neutrality

Latest comment: 8 years ago2 comments2 people in discussion

In the second paragraph under the main heading, i noticed the phrasing "AMD copied Intel's SMM with the Enhanced Am486 processors in 1994.".

I'm not sure wether the use of the word "copied" is actually justified. It strikes me as not being particularly neutral. It sounds to me like a word chosen by a fanboy, or someone who otherwise does not like AMD.

In similar articles, the word "implemented" is often used instead.

109.246.13.74 (talk) 01:16, 30 January 2016 (UTC)Reply

  Done, thanks. In the future, feel free to edit the page yourself. -- intgr [talk] 22:09, 2 February 2016 (UTC)Reply

SMM and Rootkits

Latest comment: 6 years ago1 comment1 person in discussion

Read a post online just now about SMM being used as a vulnerability for rootkits. Post also said some rootkits taking advantage of SMM vulnerabilities have been found "in the wild". Came here to find out if this is true. Was looking for a special section here dedicated to the idea that SMM is a security vulnerability (or not) and that rootkits have been found to take advantage of this weakness (if it exists). It would be nice of the article had a section discussing this.2605:6000:6947:AB00:D4DE:D7CD:2EEE:6220 (talk) 04:42, 13 March 2018 (UTC)Reply