Follow Slashdot blog updates by subscribing to our blog RSS feed


Forgot your password?

Intel Bows to Pressure- Changes PIII ID 118

Justin Cave writes "Intel states that they will change the PIII's unique ID feature in response to public pressure. They will disable the feature by default and provide software to permanently disable it. "
This discussion has been archived. No new comments can be posted.

Intel Bows to Pressure- Changes PIII ID

Comments Filter:
  • by Anonymous Coward
    Although I cheer getting rid of this unique ID on users, don't DSL connections used fixed IP addresses. Though that won't identify the machine, it will effectively identify the household. Maybe we should push for annonymized DSL (the *new* ADSL), now that we've seen how powerful we are.
  • by Anonymous Coward
    it's both funny and sad to see the way some of the conspiracy nuts act..

    don't ruin my security (in knowing the chip i paid 700 bucks for is genuine) just because you have no technical/economical/political sense!

    1. support software is required to use the id for the evil ways some have suggested. the cpu has no influence over what information is returned in an http request, etc.

    2. ecommerce cannot require an intel pentium 3 cpuid and still be an economically viable product. there are too many non-p3 non-intel platforms. with the way amd is kicking ass, its likely intel will lose a fair amount of marketshare in the years to come anyways.

    3. highly unlikely amd, motorola, and company would implement a cpu id "just to keep up with intel".

    4. this cpu-id-for-ecommerce appears to me to be the sign that intel is grasping for a feature set to boast over its competitors. in fact, with the disease we in the us call a patent system, i wouldn't doubt intel acquired a patent on such technology. (my own bit of conspiracy theory :-)

    5. perhaps intel misjudged public perception, but with the strong opposition to end-user cpu tracking, i can't possibly see how any company is going to implement this feature in their software.

    6. WHAT ABOUT HARDDISC SERIAL NUMBERS! and other hardware sources of serial numbers (ethernet cards, or even a hardware configuration fingerprint)?? heck, i've changed cpus at least twice as much as i've changed hard discs. hard disc serials are the way to track people!

    7. intel definately knows (or at least definately wants) people to upgrade their cpus very often. intel software partners such as microsoft, who are said to bloat their software purposely to earn brownie points with intel, know this fact as well.

      software houses would love for people to repurchase licenses with each hardware upgrade but they KNOW that people will not stand for it. the only company that could possibly get away with it would be microsoft, but they stand on such shakey legs now as it is i doubt they'd be stupid enough to ever do such a thing.

    anyways, i can think of so many more reasons why this cpu id would never be used to track customers, and never be required by anybody for anything. except of course intel, who would use it to assure customers that the $700 piece of silicon they just bought is the real deal, and to assist in tracking down the source of counterfeit chips.

    and on the later, i can see how intel might want to track batches, of say 100 cpus (or however many fit in a 'case'), keeping tabs of which distributors the chips pass through. now if a customer buys a counterfeit chip, it can be tracked somewhat through the distribution channels, and hopefully to the culprit. end-users should not and probably couldn't be tracked--too much burdon on the distribution channel.

    okay, i feel a little better.
  • Not necessarily. When you purchase commercial, propriety software, you buy a *license* to use the software. Thus, if I buy MS Office, then my CD gets destroyed, my friend can legally lend me his CD so I can make a copy for my use. Of course, most companies will deny this, just like Nintendo denies the right to a backup.
  • temptation for various e-commerce and other companies to *rely* on Processor ID. They know that IP addresses can change, MAC addresses may be nonexistent, and every piece of hardware that has ID, is changed so often, and may be not present in user's box, or move between boxes, so its ID is meaningless for user identification. Not so with CPU. One thing is, to say "Install Ethernet card, and our software will identify you by MAC address", another is "Since you already use Pentium III (or otherwise you couldn't make to this web site anyway), we will use your Processor ID to identify you, so please let our software to read it, or at least enter it by hand if you for some reason want to use a web browser". If there will be guaranteed that large number of people will choose not to have such ID, the idea will be useless because large number of people will be unable to provide ID even if in that particular case they had agreed if they had one, but otherwise company will be tempted to use it just like a lot of places [ab]use SSN.
  • This isn't about privacy at all, and never has been. I'm shocked people aren't cluing to this quicker, but maybe a lot of you are too accustomed to Windows and Intel to realize what you are saying.
    This is about setting up tollgates. It doesn't matter a damn whether the PIII ID is on or off by default- or what the ID even is! They could all be the same for all the difference it would make. This ID says _one_ message above all else- 'I am a Pentium III chip!' 'Okay, you may pass'.
    Who here has seen the 'Comic Explorer' effort on the Dilbert website? That's what we're talking about, not privacy issues. If I'm not mistaken Comic Explorer (and a silly idea it is, too- they seem to be confused about why anybody'd even want to play with such a toy) can be used by non Pentium II computers. However, Intel have paid off many people to suggest or demand that Pentium IIs, specifically, be used on their sites.
    Expect payoffs for people to not only demand, but _require_ the PIII ID on their sites. Yes, this cuts down the demographics- but it is not the site's idea, it is _Intel's_ idea and they are getting desperate for a way to _force_ people to get PIIIs and not keep buying those damned celerons. I picture them trying to cut a _big_ deal with some major player like or somewhere else that is a key web location- Microsoft might well be a target, but again this doesn't benefit the web site at all, only Intel, which is why Intel will pay off people to do it, and why it probably cannot get Microsoft to require this. MS has its own fish to fry and will refuse to play along, but Intel will surely find _somebody_ who is willing to get paid to cut off access to non-PIIIs, and then goodbye AMD, goodbye Celerons, PPC? What's that? It'll be Intel- it's not just a good idea, it's the law.
    And the boycotts will not stop this, and the notion that sites 'would never' do this is wrong because the site has to make a decision to intentionally hose their whole readership, or cordon off an area and deny it to their whole readership (like the Dilbert Comic Explorer?) for the purpose of requiring PIIIs alone, and getting paid off by Intel.
    Be ready to keep an eye out for these, because they _will_ be turning up here and there, despite how unpractical the idea is. How much would you personally have to be paid to make an area of your site PIII-only? I think I'd only require a hundred thousand bucks. How about making the whole site PIII-only and hosing everybody? That would be more like a million. Intel won't be paying _me_, but they will be able to get to some webmasters.
  • Pretty useful for Intel to track stolen chip too!

  • That's all fine and good for trying to save face in the wake of a massive boycott but it doesn't change the problem! When I'm FORCED to toggle it BACK ON just to dial into my ISP to "make sure no one is stealing my account" then I will blame INTEL. When I'm forced to turn it BACK ON just to download the latest Windows '98 patches (you can damn well bet that Microsoft LOVES this idea!), I will blame INTEL. The only solution to this problem is the removal of the ID all together. End of story.
  • I have a hunch that many people won't be pleased until the feature is completely removed. Nevertheless, opt-in is a lot better than opt-out. At this point, the only thing that I can see that would make a lot of people turn the ID on would be requirements from vendors for it.

    I still don't understand how a CPU ID is supposed to help commerce, though. It's just a number, with little to corroborate if someone spoofs it. Add that to the fun involved with multi-user systems (or even a household PC with a single-user OS), and insecure host identification makes very little sense. A much better solution is for the vendors that need it to use public-key cryptography for verification of identity.

    --Phil (Not that this affects me directly--it'll be a while before I can afford a PIII-class processor.)

  • God, this is further proof that a paranoid, reactionary bunch runs things around here. There are so many OTHER unique identifiers in a persons computer it's just silly. There are so many ways to bypass this also silly.

    Next thing you know, we'll be arguing that digital certificates, ethernet MAC addresses, IP addresses, credit card numbers, and phone numbers violate our privacy! I can't wait until they figure out that IPv6 will mean your IP address will effectively describe exactly how to route packets TO YOUR HOME!!! My God!! Imagine!
  • No. I can have the same IPv4 address here or in New York, without a problem. In IPv6 your IP address pretty much defines the routing rules on how to get to your system.
  • Not every prog Redhat distributes is open-source (xv, for example).

    XV *is* open source, the source is just not *that* far spread. (I once downloaded the xv-3.1a source when the PNG file format was new and there existed only a patch to xv...)

    Sure, xv is not free (like free beer), but it comes with quite a lax license: Only commercial use has to be paid, IIRC. So what is your problem? It is a rather similar license to netscapes, except you can get the source. :-)

  • Really, they make substandard products.

    Even if the chips are shipped with PSN "off", don't buy them. The marketing numbers on sales of these chips will prevent PSN requirments for authentication from becoming a standard. Something no sane netizen would want.
  • I'm not sure, but I think they can only be DISABLED by the software. To re-enable it, you must reboot, which would not be a "quiet" act on the part of the OS.

    I believe it's been stated above and in the article that there will be a method to permanently disable the feature, so if for whatever twisted reason Microsoft decided to be deceptive enough to trick you into rebooting just to get the ID re-enabled, you can have it forced off forever.
  • Both the mechanism involved and an objective method for determining whether or not it's disabled will certainly be used in the near future. If Intel were really trying to deceive us by secretly keeping the ID turned on, they would have some SERIOUS PR problems when it was discovered. It's not in their best interests to lie, and besides, what would they gain?
  • Why in the world would your ISP/favorite web site require you to use the exact same computer to connect to the Internet?

    Why in the world would your ISP/favorite web site require you to use a PIII just to connect to the Internet?

    Why would you blame Intel for your ISP's stupid policies (requiring you to use the same Intel PIII PC to connect to the Internet)?

    Come on, guys, stop freaking out over this and put some reasoning behind your frightened arguments.
  • I agree that rebooting the computer is not likely to raise any concern for the user. But consider that applications must talk to the *OS* to get these things done. If the OS were designed in such a way as to request verification from the user before performing such a risky thing, there's nothing to worry about.

    Why must there be a way to re-enable it in the software? You have no idea how the hardware implements this particular CPU instruction (though I'll admit neither do I). It's trivial to build the CPU so that a permanent-disable command can be sent that can't be undone by any other instruction.
  • That doesn't rule anything out. You'd think that the instruction to disable/enable the id would be a kernel mode instruction, but we don't know.

    Somehow I don't think it will be THAT hard to find out.

    Also, that doesn't prevent windows itself from doing it.

    So write Microsoft and make sure that they put in some sort of verification before allowing the CPU's ID state to be changed. This is an OS problem, not an Intel problem.

    Windoze/Office 2000, both have an online registration, during the install doze2000 re-enables the id. Office also has an online registration. Both register your cpu id number with microsoft.

    What if you've permanently disabled the CPU's ID mechanism since then? Does that mean you can't run the program anymore? There are so many things you're not considering.

    Now on te subject of the disable, i'm pretty sure intel could easily design the chip so the id can be *permanetly* disabled. But we'll never know...

    Why would we never know? I wonder how many people with PIII's will "permanently disable" their CPU ID and then proceed to use every conceivable trick and instruction in an effort to get it enabled again. I'd wager quite a few. At some point you've just got to concede that it can't be turned on again with software.

    I say stick with linux, how long do you think it will be before we have "Disable CPU ID" as an option in the kernel config.

    "stick with linux"? Since when did this become a Linux vs. _____ debate? I doubt we'll ever see a "Disable CPU ID" option in the kernel. It will probably end up being a user-land util requiring root privileges.

  • OK let's assume that 90% of the computer owners decide to scrap their equipment for a PIII (or equiv) or better in the next 10 years.

    So, now all these processors have these ID's built into them.

    What about those that have their ID's permanently disabled? Do you expect that Intel and the other vendors are going to go against the public's wishes and remove the permanent disable ability?

    What about that other 10%? Do you think that they're going to be all-but-ignored by ISP's and software developers?

    Consider one more thing: the hardware may make the ID available, but it's the SOFTWARE that actually uses it. If you don't want your ID going out over the Internet, configure your software so that it doesn't send it! Don't buy software from companies that mandate one of these ID's (which just seems silly considering the volume of customers they'd be losing).

    These CPU ID's DO have some very valid and useful uses that don't have anything to do with your privacy. You need to be worrying about the software that uses these ID's, not the hardware.
  • True - and I shouldn't jump to conclusions. But this remains somewhat suspicisous. I always disable everything I cannot fully control.

    This is probably a good policy.

    You can try e-mailing Netscape too and ask them about the suspicious traffic. I'm sure they'd be happy to explain it to you.
  • I agree 100% that evil companies can put privacy-invading functions in their software that mines our PC's for confidential information.

    Since you don't seem to be subscribed to BugTraq (where software and network issues like this are discussed frequently), let me just say that people are CONSTANTLY trying to break things with operating systems and software. If some experienced network administrators see some traffic that looks odd, they will investigate it and report their findings. Any attempt by a software company to do what you're describing WILL BE DISCOVERED eventually. In light of Microsoft's history and the publicized nature of this and other privacy-related issues, do you really think they're going to risk it?

    I'm not saying we shouldn't be careful of the things we install. I just think that we need to contact the software/OS vendors and hear how they're planning on implementing the CPU ID stuff before we freak out.
  • And what's more, yay for public pressure.


  • I must say this is a huge relief. The mere fact that any of us were this worried is a testament to Intel's near-monopoly on chips, though. That's the sort of non-feature for the end-user that really only gets tacked on when the manufacturer has no real competitors.
  • Since a number of posters said it doesn't matter
    that Intel is doing this or that the patch will
    fix the problem, I decided to see the arguments
    against this type of technology. Seems to me
    that they make more sense.
  • While I like the speed how fast things come and
    go nowadays :) some concerns remain:
    What happens if a country like ... (sorry no
    names here ) releases a law, that its citizens
    who want to connect to the Internet _have_
    to enable the ID feature "for security reasons"?

    Poor INTEL, as it looks you was caught pants down
    because you didn't realize the consequences of
    editing global licence plates. Time to rethink
    privacy? These global licence plates will arrive
    sooner or later. But if I can choose I will
    prefer the second choice.

  • Is it just me, or does it look like you could pronounce it Intel Pill?!?

    My mind wanders at work sometimes, I guess.
  • What's that supposed to mean? Blow a fuse through software?
  • Hey - I *want* static IPs from my DSL provider. DHCP makes it so I have to use dynamic DNS services to do anything fun. Sigh.
  • I have a simple solution for this. A program that patches the OS to send a random CPU ID when ever the CPU ID is requested from a web site or software.

    Instead of random numbers this patch could let you assign any number you want to send or we could even have the patch send the same numbers all the time. Imagine the effect on this if everyone sent the same number.

    There, problem solved. When ever Microsoft request your CPU Id when you download a patch you can give it what ever random number you computer feels like passing it or with, a check box, you can give it the number of fleas on your dog.

  • Even with it on by default, how many sites would be in a position to require it "within months"?

    Now, I don't have any numbers, but I know for a fact that there are still significant numbers of computers out there NOT running P2s after a year of having them shoveled down our throats. (or implanted directly into our brains ala Homer Simpson) Not to mention those pretty 'lil iMacs.

    Considering how many NON-P3s are out on the market right now, IMHO, it would be the height of lunacy to put "This site designed only for the P3 processor" on your ECommerce site.

    Personally, I think that if sites started requiring the CPU ID, it would be a major blow to the ECommerce industry as a whole. I don't know many ppl who will be willing to shell out $2-3K just so they can purchase a $20 item on the 'Net. And the majority of 'Net users aren't 3D-game-a-holics who 'need' the speed increase of a P3! I say this while typing away on my K6-200 (running Linux), which is still plenty fast for 90% of what I push through it. (Of course, that's not saying that I won't be upgrading to a K7 this fall...we've all got to have goals.)

  • I think the main-purpose of the CPU-ID feature is to allow for efficient copy-protection. I fear it wouldn't take too long until we see the first commercial software custom built to run only one particular CPU with the CPU-ID hardwired to critical code sections, which could easily be distributed over the Internet.

    As long as this feature is there, no matter whether enabled by default or not, software companies will sooner or latter force their custumers to switch it on. Update "wizards" and digital signatures using the CPU ID will be other obvious applications and could be easily marketed as "security features" to the privacy-unaware public.

    You don't have to be especially paranoid to imagine what happens if hardware vendors, software companies and certain three letter agencies begin to trade this information ...
  • No. Most DSL connections (especially those in the non unix world) are dynamic IPs which are leased upon reboot. You may have the same IP for a long time but its not really yours. If you go with business class DSL lines you can request and get static IP. Static IP is a good thing... thats one of the reasons we need to switch to IPV6 so we have enough addresses to go around. If you need to access a service there are many other ways to do it other than having a dynamic IP (and all of them are better in the long run).

    And for the record "we" aren't powerful. It was the larger privacy groups which got Intel to change.

  • Intel is too fucking cheap

    Um, Intel is notoriously expensive.

    Or are you suggesting that these people should destroy the thick end of a billion dollars worth of perfectly-working chips, and reveal for public inspection several billion dollars worth of intellectual property (because I doubt you'd trust Intel's word that the feature was disabled), just so that reinforced paranoids can be certain that, whilst they're being tracked by their IP address and statistically sampled by their browsing habits, they're not also being tracked by which computer they use?

    Remember, if you're trying to work out markets, you don't need perfect data and you don't need user names. With the present HTTP protocol, you can't avoid leaving an audit trail of the pages you've visited; if a webmaster knows that 37% of your users visit page A, 29% proceed to page B, ... she knows enough to optimise advert placement, work out where to put announcements ...

  • I think the magic word is 'internet', at least as much as 'boycott'.

    Boycotts are no use unless you advertise loudly, widely and frequently what you're boycotting and why.
  • When I'm FORCED to toggle it BACK ON just to dial into my ISP to "make sure no one is stealing my account" then I will blame INTEL.

    No, when you're forced to turn it back on to dial into your ISP, you'll change ISP.

    When I'm forced to turn it BACK ON just to download the latest Windows '98 patches (you can damn well bet that Microsoft LOVES this idea!), I will blame INTEL.

    No, when you're forced to turn it back on to load Win98 patches, you'll complain in the same way and to the same channels as you did this time, and Microsoft will give way in the same way that Intel did.
  • This makes far more sense to me and in this particular case (though that's not to say this will be the only case), is no more intrusive than a cookie.

    But, unfortunately, it's no more secure than a (properly-crypted, stored in a non-exportable database) cookie, either. Both are 'something you have'; fiddling the kernel to send someone else's CPUID is not technically harder than copying someone else's cookie.
  • Read the licence agrement on some of the software you have...A lot of mine(at least)says that it can only be run on ONE cpu ever.
    Read the EULA on preinstalled copies of Windows, it says that it is licenced to the one machine EVER and may NEVER be used on any other machine!
    This is stupid but Microsoft and others ARE doing it.
    Personally, I like the ONE cpu AT-A-TIME licence.
    If it is never being used by more than one person at a time, I see no problem with having it on multiple computers.
  • To those who claim this is a privacy issue: I suppose you run with cookies turned off to avoid the possibility of people being able to identify your computer, that you fill in fake data in the registration forms so people can't work out who you are. GROW UP!
    As a matter of fact, I do just that. I fill out crap in forms, unless I actually trust the people I'm giving the info to (e.g my /. subscription does have accurate data on it). Now tell me, just why on earth would we *want* to cooperate with attempts to get private information from us, from companies who only "need" it so they can better spam us? Do you think they're doing it to help you, or what?

    As for software piracy, I'd be very happy if MS's software wasn't piratable at all, but not if the same measure made the average user even more traceable with everything they do on the internet. In fact, I'd have welcomed and these processor ID's, if it wasn't for the idea that software should send them over the internet in any case. just use them locally to check your licenses on proprietary software, I have no problem with that.

  • my take is that, by having it disabled by default, the chip number is as dead as if it had never existed. most lusers wouldn't know how to turn it on, or want to bother to learn, which means that not many sites that care about their bottom line will actually require it. which means that no-one will bother to turn it on either.
  • there could be schemes to corroborate it... imagine Intel publishes a public RSA key, and every chip ID is a number signed with that key. you can replay them, but you can't make up your own. and I don't think would even attempt to crack the key, because it woulnd't be neutral enough. to make the signatures non-replayable, they'd need to include the current time in them (which the processor doesn't know) and generate the signatures on the fly (which I doubt anyone feels like implementing in microcode), so my guess is that at the very least they willl be replayable.
  • huh? if you get a virus on your computer, you are at the whim of the virus coder. I'd rather worry about the virus trashing my data than about it turning off ID's.
  • well, if numbers are crypto signed, I'd expect sites to pop up with huge lists of valid signed numbers collected by various means... then you build a 10k list into the linux kernel or into mozilla (depending on how this works exactly -- i'd guess mozilla), and pick one at random. for extra cookie points, add a menu entry (or a /proc file if it's in the kernel) to turn this on and off.
  • Personally, I see a few places where this could come in handy.
    #1, it would allow single processor tracking from production to end user. You can check with Intel and see if the Pentium II-450 you just bought started life as a P2-400... A big problem with a number of small computer manufacturers. I've no problem with overclocking, but when a company tries to sell me a re-marked processor....

    #2, as a method of tracking stolen processors. Buy your computer, check the ID with Intel, and if it's listed as stolen, go back to the store to get a refund...

    I think something along the lines of a BIOS utility that allows you to write your ID out to floppy, would be a better way to go. Then you could have the choice of "installing" the ID or not.

    My thoughts.
  • The problem is that when a chip is remarked, they have fake serial numbers on them. Unless you have an internal unique identifier, it's impossible to know that it's an original chip. (except for the badly done remarks)
  • Well it's easy to slip some piece of software that will check the processor ID number on the chip. Only God (and Intel) know(s) how many undocumented features the Pentium II chip has already. Anybody smell any rats referring to Intel's recent investment in RedHat? Great - we'll probably have the feature in Linux if we're not careful. Not every prog Redhat distributes is open-source (xv, for example). Any how many of you use Netscape?

    I know of an immediate and rather frightening problem:

    1. Check processor ID
    2. send it in an encrypted packet to Intel (somehow)
    3. Intel checks this against a database.
    4. Intel sends info back regarding max clockchip speed
    5. Program receives this data. Then spurious OS crashes occur if the computer is discovered to run at a faster clockrate than that permitted by the Intel database
    6. Luser goes out and buys a real chip at proper speed
    Far off? Maybe now, but by the time the Pentium V comes out, ID's will be compulsory for most Internet access unless we have a good privacy lobby (or live in the EU;)
  • Fastolfe wrote:
    • Microsoft [possibly] sneaked in some sort of secret evil function in IE that does the things you describe
    I wouldn't necessarily assume that Microsoft is always evil and will always sell your soul out and Netscape is always good. Probably the opposite, as MS isn't about to go under (read: trying desparately to survive), and Netscape isn't being investigated by the DOJ, and as a perceived underdog it is less likely to catch so much bad press when/if they're caught.
    • It's pretty trivial to sniff network connections (especially HTTP, which is typically 100% human-readable).
    I have in fact that done that with my own computer and I have found that my Netscape Communicator 4.5 has made some attempts to contact when I hadn't been there in a while and was probably slashdotting. Forgotten what it was that NS was trying to leak, but luckily it failed because of a draconian firewall that we have (didn't use the configured proxy: how thick is that?)

    ps: Any website that has sponsors is probably evil, ie they might be monitoring and selling your traffic as this may or may not be a condition of getting paid advertising money. I find that principles will fly out through the window remarkably quickly if your survival is at stake.

  • Fastolfe wrote:
    • I'm not. Quite the opposite. I was being sarcastic to counter the previous poster's silly arguments
    Whoops - I thought I understood sarcasm - ought to read the whole thread before replying in future. There are a lot of people who seem to think that all evil is confined to one particularly rich and influential software company. They should get out a bit more...
    • There are a million reasons why your browser might be doing this that have nothing to do with Netscape violating your privacy or gathering privileged information...
    True - and I shouldn't jump to conclusions. But this remains somewhat suspicisous. I always disable everything I cannot fully control. The proxy wasn't used and this suggests that this feature is embedded deep in the code somewhere, and not part of the regular picture retrieval service. Who knows, maybe I am just seeing red and confusing buggy programming with something more sinister...

    If you have NS, you might want to try the same trick yourself. I'd be interested if you found anything. I would myself but only kernel 2.2 seems to have broken my packet sniffer :-(

    I'm not paranoid - it's just that everyone's out to get me

  • Correct me if I am wrong, but I'm using the same report ( []) as you are and this is how I interpreted it:

    GDP for Euroland is $6.8trillion, but the Euroland only includes those nations who have adopted the single currency. The UK, Finland and Greece are outside Euroland but still fall within any other definition of the word "Europe" including "EU". These countries more than make up the $1.3 trillion gap, so they probably give Europe a bigger economy than the US. Or am I mistaken?

  • Aw c'mon folks.. It's a little early for kudos and high-fives for the power of public opinion. If 'big brother' says he's no longer watching, that means that this is what 'big brother' says. Nothing more.

    Besides, how 'permanently' disabled will it be though software?? I'll believe it when I smell smoke, not before.

    What they ought (moral issue) to do is 1) destroy the poisoned chips already made and 2) submit a RANDOM sampling of chips to independent review, just to make sure that 'feature' didn't make it back in. Brother Intel has openned a Pandora's box, and I think all free-source free-thinkers out there should seriously consider their alternatives.

    But then again, MS (as almost all other big software firms) has been putting serial numbers on individual copies of software. What's to stop them from sending data back to Redmond, each time we go on-line?? It's not as though we can look at the original code, right? With all those animated Easter eggs, who'd complain about a small auditing routine that runs each time you visit

    This, if nothing else, is good reason for open source software. The world is a truly scary place when you need open source hardware as well.
  • That doesn't rule anything out. You'd think that the instruction to disable/enable the id would be a kernel mode instruction, but we don't know. Also, that doesn't prevent windows itself from doing it. And don't think microsoft wouldn't do something like this. Imagine, Windoze/Office 2000, both have an online registration, during the install doze2000 re-enables the id. Office also has an online registration. Both register your cpu id number with microsoft. You lend your cds to a friend, microsoft's servers detect a pirated copy of the software and reports you to the FBI. Spookey, ain't it?

    Now on the subject of the disable, i'm pretty sure intel could easily design the chip so the id can be *permanetly* disabled. But we'll never know...I say stick with linux, how long do you think it will be before we have "Disable CPU ID" as an option in the kernel config.
  • I like the idea of a jumper, i'm very fond of jumpers. Unfortunately jumpers seem to be disappearing in favor of plug and pray. Also having a jumper for the PSN would require a new mother board.
  • It's about time an electronic based company listens to the public. If you think about it, the whole industry is getting scary. I'm glad Intel sees it our way.
  • Hey, wake up guys. We are talking about a CPU not a computer system. The serial number doesn't get sent anywhere on its own. Its just readable and usable by the system and applications software. If that software chooses to use or abuse the number it can.

    It has absolutely no value whatsoever for e-commerce. It is another red herring, like encryption control laws. A dishonest person is not going to use the standard products. They will use software which doesn't use the serial number in the CPU, and which uses the very best encryption.

    This isn't really a big brother issue. Its one of those "if you can't do something useful, do something easy" things. These are usually promoted with statements like "its not perfect, but at least we are doing something about the problem". In fact, as in the serial number case, they are doing something irrelevant to the e-commerce problem.
  • Um, how exactly does a microprocessor "transmit its serial number across the internet"? Does it come with Netscape and a cellular modem embedded in hardware?

    Attention, people: software can broadcast your identity with our without a chip ID number. And if your software doesn't send the ID number, then web servers can't see it. I haven't seen any Intel announcements about shipping magic fingers with which they can poke around inside someone your computer over a phone line.

    A more realistic worry is that software companies will start using the serial number to restrict licenses to a single machine, but that doesn't have a whole lot to do with privacy issues.

  • Um, how exactly does a microprocessor "transmit its serial number across the internet"? Does it come with Netscape and a cellular modem embedded in hardware?

    Attention, people: software can broadcast your identity with our without a chip ID number. And if your software doesn't send the ID number (or sends a fake), then web servers can't see it. I haven't seen any Intel announcements about shipping magic fingers with which someone can poke around inside your computer over a phone line.

    There could be problems with software companies that use the serial number to restrict licenses to a single machine, but that doesn't have a whole lot to do with privacy issues.

  • Anyone know where I can get a peek at the picture of the "Big Brother Inside" chip that they are talking about in the Yahoo News article?
  • You'd figure that if the code is going to be sent out "over the Internet", it's going to use IP, probably UDP. Would it be broadcasted? No, you can't broadcast to the whole net for obvious reasons. You can broadcast to your local net (, which routers are supposed to drop. You can broadcast to specific networks as well. Chances are, it will not be broadcasted but sent to a specific host (or perhaps a specific network) on a well-known port. If that's the case, filters in the router or firewall can keep it from being sent. Even if on Linux you had an app which tried to send to that port (I doubt this would ever get implemented into the kernel, though /proc/cpuinfo could be made to spit it out; the hypothetical /proc/cpuid should be root-readable only), you could use the kernel firewall rules to drop the packet.

    OTOH, in a web browser, it could be embedded within the HTTP request. In that case, use a proxy server (squid) that can filter out the header. HTTPS is another story, over, however. Netscape allows a Security proxy. Presumably that uses HTTP to the proxy, which then does the encryption side. In that case, you could still filter the header (pre-encryption). So you run your own proxy on

    I don't think there is much chance of success (whatever "success" can be considered to be in this case), mainly because the Pentium III, as I understand it, is not a low-end consumer product. Perhaps in another year or so: The Pentium II is already nearly a low-end product. Net commerce that requires this chip-ID stuff is going to cut it's own throat, since they are excluding most of the computers out there.

    Still, I would not buy a Pentium III because of this "feature", even if it is off by default. I'm not particularly a fan of the Intel architecture to begin with. As others have pointed out, this can be a boon for the Free Software/Open Source movement, since the "feature" is probably primarily a dongle for copy protection. "What, I have to buy my software all over again because I bought a new computer?!" If Intel wants to sink with Microsoft, that's their business...
  • In that other part of the world, where people use closed source software, this could be a problem.
  • by the wording of the article, it seems that its off when it ships to your house but will require software to keep it off.

    Its a bad idea to begin with.
    And if they want to keep software to a machine
    but using Hardware, why not use the ethernet card?
    that usually doesnt change or perhaps the HD sn#.

    Frankly I dont give a flying .. about software using it for dealing with Piracy, i worry about it for abuse by gov agencies and what not. what
    a great way to keep track of people surfing habits and their life online.

    Dont you think if M$ is in bed with intel and internet exploder is a major M$ product that it will freely hand out your machine CPU ID to any web site that wants it, or uses a M$ server product.


    long pointless rant i know.
  • I really believe that it was the not the pressure of "little" public interest groups (the good guys) but the fact that the IDs would create a real problem with the EU that could hamper trade - i.e. "big" money flow:

    The Fed "must assure Europeans that the United States has adequate privacy protections or risk a prohibition against businesses in those 15 countries [of the European Union] from disclosing personal information about citizens there to U.S. companies."
    Follow the money...

  • Why does Intel wants to add a SID to there CPU? They say it's for E-Commerce.. and maybe in some ways it is.. but from my point of view, I think one of the biggest things this SID will be used for is to License software.. Sun/HP/IBM/SGI/DEC all the unix companys have them and use them to aid in the licensing of software. I dunno.. call me crazy.. but I'd be willing to bet this would be the place you'll see it first.. no more dongles.. or stupid license disks.. just s License key, coded to you SID and only your SID.. it's still not perfect.. but much better and cheaper then some other solutions. *shrug* just a thought..

    Lord Rion
    Hired Net Grunt

Outside of a dog, a book is man's best friend. Inside of a dog, it is too dark to read.