Securing the BIOS

From LQWiki
Jump to: navigation, search

The following steps will make a system's BIOS more secure from unauthorized modification.

  • Disable wake on LAN.
  • Disable booting from external peripherals.
  • Disable booting from CD/DVD.
  • Disable booting from floppy.
  • Use BIOS password.
  • Research availability/existence of BIOS master password as a potential vulnerability.
  • If possible, lock the machine's case, as most BIOSes will allow someone to reset them using a jumper combination or by removing the battery for a period of time.

See also: physical security