Alienware (Dell) M17x-R3 BIOS Password problem

Excuse my English.
I bought about a month "Alienware m17x-r3", and has a gap in security.
The Dell support would change my motherboard, but when the technician came, I
refused, I wanted him to see the problem. The problem is not hardware but
the programming that the bios.

The Hardwar would be a failure, only if after setting the password, do not ask,
even to enter the bios, but instead asks. If I enter the bios with that of "superuser" I
allows you to change all the options, but if I put the "user" I can
change only a few.

Ivece to show off a lot of choreography with the initial boot image, which occupies
much memory, they could create a more configurable bios, adding
password to boot the system by including the block below password
the hard disk, turning off the boot, internal or external devices, for
as DVD, USB stick, short iserendo more configurable options,
in order to make the BIOS more versatile. They could also insert a test
fast memory.

To violate the security of this system is very easy, just boot from a cd
LINUX-LIVE, any distribution, the harddisk install the windows and wallow in it.

Hopefully they update the BIOS in the future, to close this gap in security.

I tried it on a Dell desktop PC, and I entered the harddisk with windows
ease.
Hello.

 

1) Because the computer allienware "M17x-R3" has a serious security hole,
other computers do not have, I ask you to add a routine in the BIOS,
so do ask for your password before you boot the system. In this way the boot
from USB or cdrom is not allowed without the password.
2) Come on you can disable "computtrace", although it has been activated by accident,
as happened to me.
3) Give the option to disable the BIOS to boot from cdrom, harddrive and stick.
Opure write another Bios With the suggested changes, and if not enough memory,
delete also the image of 'alien to boot, so that a user can choose
the most suitable for him.

After these changes are essential in the BIOS, the computer is truly exceptional.
Without these changes I will recommend it to anyone.

Describe the problem below:

Excuse my English.
I bought about a month "Alienware m17x-r3", and has a gap in security.
The Dell support would change my motherboard, but when the technician came, I
refused, I wanted him to see the problem. The problem is not hardware but
the programming that the bios.

The Hardwar would be a failure, only if after setting the password, do not ask,
even to enter the bios, but instead asks. If I enter the bios with that of "superuser" I
allows you to change all the options, but if I put the "user" I can
change only a few.

Ivece to show off a lot of choreography with the initial boot image, which occupies
much memory, they could create a more configurable bios, adding
password to boot the system by including the block below password
the hard disk, turning off the boot, internal or external devices, for
as DVD, USB stick, short iserendo more configurable options,
in order to make the BIOS more versatile. They could also insert a test
fast memory.

To violate the security of this system is very easy, just boot from a cd
LINUX-LIVE, any distribution, the harddisk install the windows and wallow in it.

Hopefully they update the BIOS in the future, to close this gap in security.

I tried it on a Dell desktop PC, and I entered the harddisk with windows
ease.
Hello.

 

Why do I have a feeling this thread keeps showing up over and over...

I tried using google translate into something coherent and it failed...

BTW, the bios password just renderes the BIOS inaccessible and disables the laptop from booting without the password. It doesnt' secure the windows installation. If you want to secure windows, encrypt it.

 

i could have sworn this was like triple posted lol

yup, you have to secure the laptop via encryption if you're so paranoid that someone is gonna see the contents of your laptop by hacking into it via linux

 

Yes it was and it's not the forum software's fault

Loris, please use this thread.

 

It's in the Dell subforum as well