motherboard advice

Discussion in 'hardware' started by ed1422, May 13, 2016.

  1. ed1422

    ed1422 Registered Member

    Joined:
    May 13, 2016
    Posts:
    2
    I'm purchasing a new motherboard, last one I purchased is still within warranty ( 3 years ),
    I'm just annoyed manufacturer (Asrock) stopped providing BIOS updates at quite a while ago,
    no security BIOS updates :|.
    I'm annoyed my motherboard with last BIOS fails https://github.com/chipsec/chipsec tests

    I'm choosing among C236 motherboards (or maybe 602)
    http://geizhals.eu/?cat=mbxeon&sort=p&xf=644_Sockel 1151~317_C236#xf_top
    ( Fujitsu are rebranded MSI motherboards ? )

    I tried downloading a few latest BIOS versions & previous model BIOS versions,
    most of the packages do not contain signed files/checksum files ? How does one verify BIOS versions are official ?

    Thank you for any advice :)
     
  2. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    2,271
    Location:
    Nebraska, USA
    I am not sure you understand that this is typical. BIOS updates should not be that common. Ideally, there should only be a BIOS update to add support for a new CPU that came out after the board left the factory. And since CPUs are dependent on the motherboard's socket and chipset, there typically are not many of those. If you are not replacing your CPU for a new CPU that came out after the board left the factory, you typically don't need to update the BIOS - which is always a risky process. The exception is with brand new board designs. They might have a BIOS update that fixes a bug discovered after the board left the factory. But that is not common on 3 year old boards.

    You should ONLY update a BIOS if the update addresses a problem you are experiencing, or you are adding new hardware that came out after the board left the factory, AND the new BIOS adds that support.

    And "security" BIOS updates are VERY rare. Security updates are typically addressed through motherboard device drivers, not BIOS updates.

    Sorry, but I don't know what you are trying to tell us with your GitHub link.
    By getting them ONLY from the computer or board maker's official site for that specific computer or motherboard. Never, as in NEVER EVER from a 3rd party source.

    What is the brand and model number of your current board or computer?

    What is the problem/reason you are trying to flash/update the BIOS? If none, don't try to fix it!

    Some may be. I would not assume all are.

    One last comment. It is likely your Windows license is an OEM license. It is important to note that in terms of software licensing, a new motherboard is considered a new computer (unless replaced with an identical board as part of a repair action). And new computers require the purchase of a new license to be legal.

    So I recommend you describe the problems you are experiencing, provide specifics of your hardware, and then tell us what you are trying to do.
     
  3. ed1422

    ed1422 Registered Member

    Joined:
    May 13, 2016
    Posts:
    2
    Many manufacturers released BIOS updates within some time after the following
    http://blog.trendmicro.com/trendlab...ootkit-to-keep-rcs-9-agent-in-target-systems/

    Asrock didn't.

    Governments' sites have been hacked in the past,
    Microsoft, Google, Oracle ....... digitally sign their software, minor publishers at least provide checksums.

    may 2013 - Official MSI Taiwan website hacked,50,000 accounts data leaked ...
    https://technologynewsforday.wordpress.com/.../official-msi-taiwan-w...

    dec. 2009 Intel Website Hacked With SQL Injection - Dark Reading
    www.darkreading.com/attacks.../intel-website-hacked.../1132667?...

    aug. 2012 - Anonymous Hacks Siemens and Fujitsu Websites in Operation Coltan
    news.softpedia.com › News › Security › Hacking News

    [4 years ago] Asus website hacked
    http://www.eteknix.com/asus-website-hacked/

    etc etc
     
  4. Bill_Bright

    Bill_Bright Registered Member

    Joined:
    Jun 29, 2007
    Posts:
    2,271
    Location:
    Nebraska, USA
    Sorry, but it sounds like you are just griping. None of those links have anything to do with ASRock. None have anything to do with BIOS updates either. Websites being hacked is totally different from motherboard BIOS updates so there really is no point to your last post.

    And ASRock has released many BIOS updates for many of their boards. If none for yours, then it does not need any!!! Not all motherboards use UEFI and not all UEFI boards had that UEFI vulnerability. And since you STILL have not bothered to tell us which motherboard you are talking about, we cannot provide any help anyway.

    In any case, my answer still stands - get your BIOS updates ONLY from the computer or board maker's official site for that specific computer or motherboard. Never, as in NEVER EVER from a 3rd party source.
     
  5. Carver

    Carver Registered Member

    Joined:
    Feb 5, 2006
    Posts:
    1,827
    Location:
    USA
    0.
    I agree with Bill, unless there is something drastically wrong the BIOS doesn't need updating, maybe you just want a new style GUI or color GUI.
     
  6. pandlouk

    pandlouk Registered Member

    Joined:
    Jul 15, 2007
    Posts:
    2,565
    No need to panic or throw away a mobo in good working condition. The link you provided has a very important info on how to block most uefi/bios attacks.
    Just password protect your UEFI and test again with chipsec.

    Panagiotis
     
Loading...