Date: Sun, 08 Jan 2012 12:19:44 +0100 From: Florian Weimer <fw@...eb.enyo.de> To: oss-security@...ts.openwall.com Subject: Re: Malicious devices & vulnerabilties * Xi Wang: > I am wondering where to draw the line. Should such device drivers > be considered vulnerable or not? Thanks. I think they should be considered vulnerable. Some applications need some robustness to attacks even from the local console (e.g., student computer rooms). USB is also a popular transport in many air-gapped environments.
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ