EFI Modifications Leaves iMac Unbootable?

jerbare writes "In attempting to run Linux and Windows on the new iMac Core Duo, people experimenting with configuring the EFI Console/Boot loader have found they can no longer boot the machine at all. Dave Schroeder of appleintelfaq.com comments, 'We have already irreversibly lost a couple of iMacs trying to load various EFI modules'. Instructions for breaking the iMac's are presently located at the bottom of the comments."

Ugh...been there

[TripMaster Monkey (862126)]

Reminds me of a situation I faced back in the day when I was a tech at a small mom-and-pop computer repair establishment. We received a shipment of motherboards, and found out that the BIOS on every single one of them was corrupt. Since the boards wouldn't even post, the traditional remedy of flashing the BIOS via a bootable floppy was not available. Normally, we would have just boxed up the boards again and returned them for replacements, but we desperately needed those boards to fill orders.

Well, desperate times call for desperate measures...

I got to thinking, "you know...once you've started booting to an OS, that BIOS chip isn't even being used anymore....hmmm". With this in mind, I pulled a working BIOS from another board, swapped it out with the bad BIOS, and powered the system on, booting from the BIOS flash floppy. Once the board had booted to the flash program, I carefully pulled the good chip back out, and put in the bad chip. I then ran the flash program to overwrite the bad BIOS.

Long story short, it worked like a charm. I managed to revive every board in the bad shipment without incident using this unorthodox technique.

Anyway, it should be possible to rig up a similar arrangement here, although as I am unfamilliar with EFI, I'll leave the details up to someone else.

Unofficial Moderation

[Crash Culligan (227354)]

+1, damn clever hardware hackery.

Re:Unofficial Moderation

[John Napkintosh (140126)]

One time I swapped sim cards with a friend's mobile phone. Are you saying I'm not a h4x0r?

Re:Unofficial Moderation

[rjstanford (69735)]

h4x0r yes.

hacker no.

And that makes all the difference.

Re:Unofficial Moderation

[Pollardito (781263)]

Once I accidentally put an EEPROM back in the wrong way around (unforgivable with my electronics background) and the little plastic sticker which normally would cover the window (which was not actually there on this chip) blistered from the heat almost instantly. I switched it off real quick, the chip was unbearably hot to touch, but once it cooled down and I placed it the correct way around, it worked fine to my complete astonishment!

anyone with an electronics background should know that a chip will work just fine after an overheat as long as the magic smoke hasn't been allowed to escape from it. once the magic smoke comes out of a chip, it's never quite the same

Re:Ugh...been there

[GmAz (916505)]

I did the same thing on my ASUS A7N8X-Deluxe motherboard. They shipped a bunch with their 3.3v batters running about 2.9v. Apparently this would corrupt your bios chip. Well, it did do that to mine and instead of ripping my machine apart and RMAing it, I took the bios chip from my brother-in-laws machine (I built his too and we pretty much had identical machiens) and did the swap trick. Here's a little trick for any of you wanting to try this. Before you boot up your good machine, take the bios chip out and put a piece of dental floss under it and put the chip back in. That way, when the machine is booted and you need to take it out to do the swap, just tug gently on the floss. I didn't wanna stick a metal screwdriver in there to pop it out when it was running. It worked great for me and spent $2 for two 3.3v batteries for the computers.

BIOS Hot Swapping

[Otto (17870)]

It's a fairly well known trick, although you're correct that it's a little bit dangerous. But when you fiddle around with BIOS mods, it comes in handy to have a removable BIOS chip for just that reason.

http://www.google.com/search?q=bios+hot+swapping [google.com]

Re:Ugh...been there

[iCEBaLM (34905)]

I did the same thing with my 486. A BIOS flash went bad and my high end 486 (yeah I know how rediculous it sounds now, but it was high end back then!) machine was a boat anchor. My server machine had a different mobo, but the BIOS EEPROM slots were the same. I booted it into DOS, popped its EEPROM out and put the toasted one in, ran the BIOS flasher for the server machine but used the image for my 486 mobo to flash it and powered it off.

Put the right chips in the right sockets and everything was golden!

Uhh,,,

[Eightyford (893696)]

Instructions for breaking the iMac's are presently located at the bottom of the comments.

Uhh, thanks.

Re:Uhh,,,

[Anonymous Coward]

Could be worse. If they had succeeded, they'd have an iMac running Windows.

In case of Slashdotting...

[Anonymous Coward]

**WARNING** The following instructions will render the iMac Core Duo (Intel) TOTALLY USELESS. There is NO KNOWN METHOD OF RESTORING the iMac Core Duo to a previous functioning state. **WARNING**

I AM NOT KIDDING. THE FOLLOWING METHODS WILL PUT THE IMAC IN A STATE OF DISREPAIR BY AN END USER, EVEN WITH ACCESS TO THE INTERNAL HARDWARE.

With that said, here is how I killed the iMac Core Duo:

1. Downloaded EFI sample implementation and unzipped
2. Moved the 'Binary' folder to the hidden EFI partition (sudo mkdir /V

Dual Booting is not the answer

[ZachPruckowski (918562)]

I have a feeling that a virtualization/emulation with hardware graphics support will be available within 6 months that'll make dual booting pointless. I have a feeling that dual-booting OS X with XP or Vista will not work because it's got EFI/BIOS issues and the hard drive formatting issue. And any number of issues that haven't come up yet.

Re:Dual Booting is not the answer

[Incongruity (70416)]

Moreover, running a full windows install within OS X, through some sort of emulation/virtualization is going to be fairly easy as compared to, say PPC versions of virtual pc and it will potentially allow you to sandbox windows and thereby keep it much more secure than the standard installation on commodity hardware. Furthermore, there are few reasons to dual-boot if you can simul-boot? Done right, that method could really make the Intel/OS X macs a major player (think swiss-army knife) -- I know there's been talk of a similar sort of thing w/ linux and windows via WINE but it really looks like the OS X side might come to fruition first, though this really is all conjecture on my part, so whatever.

Re:Dual Booting is not the answer

[Elwood P Dowd (16933)]

And why do you think that OSX will be able to run windows binaries better than WINE and/or Cedega considering that the people at WINE etc. have been trying to reverse engineer the windows libraries for many years now.

Because VirtualPC & VMWare has been "able to run windows binaries better than WINE and/or Cedega" for many years now. Virtualization will work nicely here. No one expects to reverse engineer the windows libraries any better than WINE.

Dunno why no one in this thread seems to be talking about vanderpool. Maybe y'all should just wait to hear from someone who knows what they're talking about. (Not me, for example.)

Re:Dual Booting is not the answer

[killtherat (177924)]

And why do you think that OSX will be able to run windows binaries better than WINE and/or Cedega considering that the people at WINE etc. have been trying to reverse engineer the windows libraries for many years now.

One word: Money.

Apple has lots of it. They can through gobs of money at the problem, and that will always move things faster then a grass roots problem. Just imagine 150 engineers working full time on Wine. They've previously gotten MacOS9 programs to run in MacOSX, so they probably already have a pool of engineers with the needed talents.

Given that MacOSX is based off of BSD Unix, and they've already plugged a great deal of work into the KHTML rendering engine, it's not completely insane to suggest that Apple could pick up Wine, through a large number of engineers at it, and get it to the point were it can run Office and DirectX 9 games.

Re:What about Linux?

[ZachPruckowski (918562)]

Well, OS X runs X11, which lets it do some Linux apps. Aside from that, you're looking at the same situation Windows is, unless there is a specially designed Linux that does EFI and the GPT (or whatever the Hard Drive issue is). I'd say dual-booted Linux would beat XP to the Mactels because of the fact that a version of Linux can be engineered to work on the Mactels.

Re:What about Linux?

[Millenniumman (924859)]

There are Linux distros that work with EFI and making a properly formatted partition isn't hard.

Re:What about Linux?

[Bert64 (520050)]

Support for EFI is a standard linux kernel option, and i doubt it would be hard to support apple's partitioning scheme... They already used their own partitioning scheme on PPC machines, and linux supports that just fine.

I also believe EFI is the standard firmware used on Itanium systems too, so linux already must support it to run on such systems.

Re:Dual Booting is not the answer

[Ford Prefect (8777)]

Six Months? How about right now. OpenOSX has released their "Wintel" package updated for MacOS X on Intel. It features the BOCHS 'emulator' that will run all manner of Windows, Linux, etc. MacNN has the scoop It's $25 to download.

Bochs? It's great if you want a full, perfect emulation of PC hardware done completely in software, but it's horribly slow. Oh, and it's both free and open source [sourceforge.net] - that $25 is solely for some crappy third-party GUI. The 'native to Intel' thing just means you're doing a full PC emulation without going through Rosetta as well...

If you do want to emulate a PC in a slightly faster manner, try QEMU [bellard.free.fr]. I've no idea if it can be compiled on an Intel-powered Mac yet, but an emulated Windows 98 was just about usable for website testing on my 933MHz iBook G4.

Counterintuitively...

[Anonymous Coward]

Unbootable iMacs support an even wider selection of games than do bootable iMacs.

Re:Counterintuitively...

[happyemoticon (543015)]

Like:

• MacketBall
• HackyMac
• Hot Mactatoe
• Mactch (like catch, but with a mac!)
• PattyMac
• HopMac (somewhat detrimental to the screen)
• Pin the FireWire-800 on the MacBook

• • And the one those people who were foolish enough to screw with their computer's firmware are now playing: Doctor.

Sometimes fix

[Anonymous Coward]

If you can get it to boot at all, try reinstalling from the 10.4.4 media. That's supposed to fix some changes in the EFI.

Not quite

[daveschroeder (516195)]

When the iMac is in this broken state, it doesn't boot, chime, show anything on the screen, or read from media.

Can't exactly "reinstall from the 10.4.4 media". ;-)

Zapping NVRAM (still supported with cmd-opt-P-R), removing the motherboard battery and letting it sit with AC for an extended period, and disconnecting the hard drive all do not revive the machine.

its a matter of time

[loserhead (941655)]

i am confident that a workaround will eventually be developed. if it takes destroying a few macs, so be it...

An Omen

[bedouin (248624)]

Isn't this kind of like trying to open the mummy's tomb? Nothing good can come out of it.

This is an early warning!

Wait for virtualization so all of Microsoft's inherent evil can be sandboxed into a self-destructing disk image of darkness and peril.

Malware

[msbsod (574856)]

Great. How about attacks on EFI [intel.com] by malware? An iMac costs just a few hundred bucks. Bad enough. But, what about those shiny new Itanium systems with EFI for 10 grants per box?

Re:Malware

[chrismcdirty (677039)]

Those Itanium boxes must be huge! [sonofthesouth.net]

Denial Of Service - Putting people at threat

[NZheretic (23872)]

Hackers discover vulnerabilities and someone creates malware ( Worm, Trojan, Attack kit or Virus ) that screws with the BIOS settings effectively turning your DRM restricted system into a useless brick.

Just substitute Apple for Microsoft, Mac for Xbox and Internet for Xbox Live in the following...
Denial Of Service - Putting people at threat [zdnet.com]:

Want to guess how long it will take?

It is inevitable that someone mucking around trying to get their XBox360 to do something will trip the hardwired Trusted Platform Modules lock down. Effectively turning the trusted black box into a useless dead heap.

It is inevitable that this and other methods discovered will be publicly known, since the discoverer will want to warn others.

It is also inevitable this and other methods will become the basis for a widespread denial of service attack. Firstly through a fake Email campaign ( "Microsoft alert - follow these instructions to secure your XBox" or "Get Free games/porn - do this to your XBox" ) and later through viruses and networked worms embedded in Microsoft's mediaplayer formats.

Soon a worm that locks users out of their Xbox will be spread via Microsoft's Xbox live service.

Then it will be inevitable that criminals adapt the malware to display a message instructing the hapless victim how to make a payment to fix the problem. The messages would soon contain threats that their Xbox now contains contraband installed by the malware that would get the user in legal peril if they choose to take the Xbox back for repair or to the authorities. The potential rewards to the offshore cyber-criminals would far outweigh the risks.

http://itheresies.blogspot.com/2005_08_01_itheresi es_archive.html [blogspot.com]
Hollywood and the recording industry hold an effective monopoly on a large section of popular content. Both Microsoft and Apple are now offering the ability to content providers to demand that users must use unmodified systems to view said content. It locks you out of parts of your system that will inevitably be abused by third parties wanting to abuse you.

Posted by: David Mohring [slashdot.org] Posted on: 11/29/05

Re:Denial Of Service - Putting people at threat

[krbvroc1 (725200)]

On a related note, my neighbor asked me to perform the normal 'cleanup / devirus / windows update' on his laptop. He owns an HP laptop and has a 'Boot up BIOS password set'. So I didnt have to enter a password each time, the first thing I did was go into the BIOS. I entered the current password and when asked for a new password, I simply hit 'Enter' and 'Enter' to confirm. When I rebooted, it still asked for a password and 'Enter' does not work. The laptop is now completely useless. I have no idea how it will be fixed. From some internet searches, supposedely I can provide HP with a magic 'system hash code' and they can tell me a password, but I have no clue if I can get through to the right person, what happens if it is outside of warranty, etc.

Re:Denial Of Service - Putting people at threat

[evilviper (135110)]

IBM insisted there was no way to flash/unlock or otherwise repair the problem.

IBM are lying assholes. Anybody, with $20 worth of equipment can wire up a simple adapter for a thinkpad and read the EEPROM, where the password is stored in the clear. I was one of the people who helped figure out the requisite information that made it's way onto this site: http://www.ja.axxs.net/unlock/ [axxs.net]

What can I say? Read it and weep. I wouldn't be surprised if IBM was selling new systems to customers, then turning around and clearing the passwords on the old ones and reselling them as "refurbished".

Seems like a poor design, but certainly nobody ever saw her locked documents.

That's ridiculous. First of all, the power-on password has nothing to do with the hard drive password, except that most notebooks typically tie them together. IBM could easily have the hard drive passworded, but make the notebook perfectly usable once the drive has been swapped.

Additionally, it's trivially easy to read files off of a passworded hard drive. The password is stored in an EEPROM on the board, so all you have to do is buy an nearly identical drive and swap the circuit board to read all the documents.

If they were smart, they would store the password in sector 0 on the platters. Then, swaping the board wouldn't work. Also, running a strong magnet over the hard drive would erase the password as it erased the files, keeping the files safe, but also allowing you to erase the whole drive, and use it again without knowing the password.

Re:Denial Of Service - Putting people at threat

[Chuckstar (799005)]

As recently as the G4 towers, a firmware update required the user to physically depress the Programmer's button (the hardware interrupt button) on the computer itself. This may be different now, although I doubt it. The whole point was to make software-only firmware updates impossible in order to avoid this very threat. The hardware simply will not re-flash the firmware without that button being pressed. So at least some social engineering is required to get users to press that button.

I always assumed all computers worked that way. Otherwise, it would be trivial to get people to ruin their firmware -- just trojan horse the thing.

Re:Denial Of Service - Putting people at threat

[adrianmonk (890071)]

As recently as the G4 towers, a firmware update required the user to physically depress the Programmer's button (the hardware interrupt button) on the computer itself.

Strictly speaking, using the Programmer's button wasn't required to update the firmware. You can instead use option-apple-O-F to boot to the OpenFirmware prompt, then use the boot command and the path of the OpenFirmware updater (having used devalias, dev device , cd dir , and ls to browse around and find that image); when you do this, the system boots from the standalone OpenFirmware update image instead of loading the regular bootloader, and when that code runs, it updates the firmware. I'm 90% sure it doesn't require you to hit the Programmer's button either, and instead the Programmer's button thing just triggers the system to load the same executable that you can load manually with the boot command.

So, the point is, on a G4 tower at least, although the Programmer's button is involved in the process, it isn't actually required and doesn't provide any security, as far as I can tell.

If you're wondering how I figured this out, let's just say I was trying to get a Mac working that failed to autoboot, dumping me at the OpenFirmware prompt every time. I thought it was a problem with OpenFirmware settings, so I aimed to find a way to upgrade the OpenFirmware on the assumption that doing this would force the system to also reset every setting related to it (more thoroughly than just "zap the PRAM"). I couldn't use the normal method because the failure to autoboot prevented that method from working.

On a side note, I succeeded in updating the OpenFirmware to a newer version, and it didn't help at all. I eventually discovered that the machine was a Frankstein computer that had the wrong Front Panel Board in it, and THAT was why the OpenFirmware wouldn't boot -- it knew something was wrong with its hardware. I finally traded this Front Panel Board with someone else for the right one, and now my friend who bought the G4 tower for half price because of the fact that it wouldn't autoboot is happily using it.

On another side note, isn't the flash chip on the iMac Core Duo socketed, and can't they get an identical chip and make a copy of its contents BEFORE they go messing with it, thus allowing them to monkey with the copy and revert to the original if needed?

Except in this case the user : s/user/malware/

[NZheretic (23872)]

Except in this case the user has to do a bunch of things - download the EFI software from Intel, a sudo command and a reboot. While some of this can be automated, OS X won't just allow all this to be run without the user helping it along.

Substitute "user" with Malware.

Download the EFI software from Intel: Or include an copy in the malware.
a sudo command: Or use an escalation of privilege vulnerability [google.com]
and reboot : Err, not that difficult to achive in software.

Re:Except in this case the user : s/user/malware/

[Phroggy (441)]

Instead of using sudo...

Make an Installer package (using /Developer/Applications/Utilities/PackageMaker) that requires root access (under the Configuration tab, select Root from the Authentication menu). Set it to require a restart after installation (select Required Restart from the Post-Install Action menu). It doesn't have to actually install anything, just go through the motions. Put the malware in a script called InstallationCheck, put it in the Resources folder, and make it executable.

Build your package, make a disk image from it (open Disk Copy, select File/New/Disk Image from Folder, select your package), set the internet-enable bit (open Terminal, type hdiutil internet-enable -yes /path/to/image.dmg), throw it on a web server and trick users into downloading it by telling them it's a pornographic screen saver or something.

Upon downloading the .dmg file, your package will automatically be opened. The user will be prompted to enter an Administrator password, and they will be told the installer needs to run a script to see whether the software can be installed. If they enter their password and click OK to the security prompt, the script will run with root privileges even if the user changes their mind and cancels the installation. If they proceed with the installation, they'll be asked to restart the computer.

Anyone who says Mac OS X isn't susceptible to malware doesn't know what they're talking about. Yes, this method requires the user to enter their password and confirm a security warning, but these are perfectly normal things to do when installing software, so most users are accustomed to it. As long as you make them think what they're installing is something they want to have, most users won't even blink.

To be honest, I'm surprised this hasn't been done on a wide scale already.

Btw, please don't do this, kthx.

Re:Denial Of Service - Putting people at threat

[TheRaven64 (641858)]

When the first flash BIOSes came out in the PC world there were a few viruses that would re-flash the BIOS with junk, turning the machine into a doorstop. These days most virus writers want to add your machine to a botnet, rather than destroy it, so it's probably less likely. More likely is hiding a copy of the virus in the EFI code so that it is automatically reinstated if removed when the system invokes an EFI call (resume from sleep would be my choice).

The real question here should be...

[BigZaphod (12942)]

When you screw this up, do you still get the sad mac?

Re:The real question here should be...

[Anonymous Coward]

You'll have to settle for a sad owner instead.

Update

[daveschroeder (516195)]

Hello. Just to give a bit of an update on this issue...

The iMacs in question were rendered unbootable by trying to load additional modules from Intel's EFI Sample Implementation [intel.com]. It is not known which module is at fault currently.

Once the iMac is unbootable, it doesn't chime, boot, attempt to access media, or display an image on the screen. Attempts to zap NVRAM (cmd-opt-P-R is still supported for this task on Intel-based Macs), remove the motherboard battery and leave the AC power disconnected for an extended period of time, and disconnecting the hard disk do not resolve the issue.

At present, we seem to have a number of difficult situations that prevent the installation of Windows directly on Intel-based Macs:

1. Apple did not include its own EFI shell or other tools to access the EFI with the Intel-based Macs, so the tools used have consisted of Intel's EFI Sample Implementation [intel.com], and Tianocore's EFI Developer Kit [tianocore.org].

2. Apple's EFI implementation does not include CSM (Compatibility Support Module), the BIOS backward compatibility layer necessary for booting 32-bit versions of Windows (pre-Vista), such as Windows XP.

3. 32-bit versions of Windows do not currently support booting an EFI machine. (And the Gateway Media Center machine with EFI people keep talking about boots Windows XP Media Center Edition 2005 in BIOS compatibility mode, not with EFI.)

4. Windows XP 64-bit and Windows Server 2003 64-bit support EFI, but the Intel Core Duo is a 32-bit architecture.

5. Windows Vista does support EFI, but the EFI booter (cdboot.efi) currently does not appear to be functioning, and/or it is looking for, and not finding, information that it is looking for on the installation DVD. It does display the typical Windows "Please press any key to boot from the CD..." message. However, the DVD does not appear to contain the necessary EFI boot partition, and EFI does not support UDF volumes and El Torito booting. (Yes, this is a DVD obtained via official channels.)

6. Mac OS X's startup disk control panel presents a Windows Vista installation on a FAT/FAT32 volume as a valid bootable volume, but Windows Vista does not support booting from a FAT/FAT32 partition, only NTFS. Mac OS X can read NTFS volumes, but not write to them. This is currently the stage we're at now. No, I haven't tried "just hooking up a drive with Vista installed" (as many have asked elsewhere) or forcibly creating an NTFS partition whose contents are an already-installed instance of Vista.

7. grub, elilo, etc., all do not work on the Intel-based Macs at this time.

Eventually, whatever method boots Windows natively will have to have a nice wrapper put around it to make it easy for a normal person to do so, and easily dual boot in addition.

To regurgitate what I've said a bit elsewhere, the real benefit to most people will come from running Windows alongside Mac OS X in a "virtual machine" environment, in a window or even full screen, with, for example, a hotkey to switch back and forth between Mac OS X and Windows. To many users who prefer Mac OS X, particularly in enterprise, academic, and research environments, but who also have the occasional applications (usually administrative) that require Windows, this configuration would be a holy grail of sorts. And in this configuration, Windows wouldn't be running in emulation, but it would be running at essentially the native speed of the underlying hardware (with the exception of graphics and disk I/O performance). It will be *much* faster than any emulation ever has been, and there will no doubt be several open source (qemu, xen, wine) and commercial (vmware, Virtual PC) that will allow running Windows (or Windows software) in various capacities. Intel's Virtualization Technology (VT), allowing multiple operating systems to run in separate hardware "partitions" on one

Re:Update

[daveschroeder (516195)]

I should note that a colleague is also tracking these issues on his site [journalspace.com], the same one noted in the submission. Sooner or later, and with a bounty now offered for anyone who gets Windows XP booting on a Mac [winxponmac.com], I've no doubt something interesting will be accomplished.

Update: iMacs restored to working state

[daveschroeder (516195)]

By following these steps, the iMacs that had difficulty with certain EFI modules appear to have been restored to a functioning state:

1. Disconnect the internal hard disk

2. Disconnect the iMac from AC power

3. Plug in AC while holding the power button

4. Power up the iMac and zap NVRAM (cmd-opt-P-R)

The hard disk can be reformatted and the operating system restored.

Ugly reality from the article (no joke)...

[Orrin Bloquy (898571)]

"Apples implementation of EFI allows software to modify the computers ability to boot - or NOT. "

Enough of this firmware is flash-based that software can trash it to the point that it no longer boots from optical media. Key-mashers need to understand that EFI *precedes* the Apple Option-key tricks, so if EFI is hung you are crap out of luck. Unless there's some jumper inside the case which resets EFI to a factory state, that EFI will have to be pulled and reflashed.

We're going to pretend Apple doesn't really release mistakes like this and that there's a failsafe for restoring the EFI. Otherwise, you potentially have the mother of all DRM traps in front of you.

Re:Ugly reality from the article (no joke)...

[Budenny (888916)]

"Otherwise, you potentially have the mother of all DRM traps in front of you."

Yes. This, if it turns out to be the way it looks at first glance, is truly evil. Very important to realise what you may be looking at. The first commercial example of a company which has totally taken away control of your hardware.

Lets hope it turns out not to be true. Because if it is true, its war.

Re:Ugly reality from the article (no joke)...

[Budenny (888916)]

The inability to reflash the EFI has all the marks of being deliberate. The issue is not whether other OSs are supported. There is no reason why any company has to support them. The issue is not like trying to run BSD on your Thinkpad, where you just reboot when you don't have the drivers and restart, and reinstall XP. Not having the drivers does not reduce your machine to junk.

The issue is, or rather, one should be cautious, the issue may be, that this could be the first instance of a company having deliberately implemented something that reduces your computer to a doorstop if you just take reasonable steps to run something they don't like on it.

They are under no obligation to support Windows, Linux or Plan 9. What they are under an obligation to do is give you a way of reflashing your EFL.

If they do not. If it does turn out that the aim is and always was to sell hardware that you can only run what they choose on it, then it is indeed the first shot in a war. It will be the first of many such attempts by a lot of people. The OP in this thread, and some others, is right: it will be the first of many efforts to stop you altering your machine in any way from its purchased state, because someone feels it is less profitable for them if you do, and it will be the first of many measures taken to reduce your machine to junk as a sanction.

Its one of those test cases the community has to win. If it turns out to be what it looks like, there's no melodrama at all in looking at it like this.

and...

[nuckin futs (574289)]

somewhere in this [journalspace.com] thread are various instructions on how to fix it.

One word...

[andy55 (743992)]

iPaperweight.

Well, don't do that, then!

[jcr (53032)]

Until and unless Apple publishes a spec for how to modify the EFI, this is in the "you broke it, tough shit" category.

-jcr

Get rid of EFI completely!

[dfjunior (774213)]

I got tired of mucking around with all the electronic gobbldeygook connected to EFI, so I just tore all that shit out and bolted on a good old-fashioned Holley 4bbl carburetor...

Next step is a hood scoop and a bigger hard drive...

RTFC

[kuwan (443684)]

Instructions for breaking the iMac's are presently located at the bottom of the comments

Actually, if you RTFC (RTF Comments) which are at the end of the article (as it says in the story) you'll find that you can completely screw your new Intel Mac into not booting. Not even running the OS X install CD will fix it. Here's one of the comments describing the problem:

From Dave Schroeder posted 01/23/06

We have already irreversibly lost a couple of iMacs trying to load various EFI modules. They will no longer boot, even with "zapping the PRAM" (firmware reset), or with disconnecting the motherboard battery and removing power for an extended period of time. Further, the tianocore EFI shell *only allows features already present in the manufacturer's EFI implementation to be accessed* (see the documentation for details).

Re:RTFC - can restore brick macs

[rkww (675767)]

...but it you read to the end now, you'll find:

From Dave Schroeder posted 01/23/06

By following these steps, the iMacs that had difficulty with certain EFI modules appear to have been restored to a functioning state:

1. Disconnect the internal hard disk
2. Disconnect the iMac from AC power
3. Plug in AC while holding the power button
4. Power up the iMac and zap NVRAM (cmd-opt-P-R)

The hard disk can be reformatted and the operating system restored.

Re:Hey, Is this possible ?

[blueio69 (948983)]

I think the best way to go about this would be to do something that was done to enable Linux to boot on old world Macs. On a PowerMac 8600 (for example) the best way to boot into PPC Linux, was to use a special boot loader called BootX http://penguinppc.org/bootloaders/bootx/ [penguinppc.org]. Basically, it was an OS 9 program that immediately ran as OS 9 had a basic initialization startup. It gave you a choice to ether to continue to boot into OS 9 or boot into Linux. It is unique from other boot loaders in that it bypasses a computer's firmware and lets Mac OS handle it. I think this is the way to go....let OS X handle the boot process that deals with the firmware, then give users a choice to boot into Windows or finish with the OS X boot process.