Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 9 Jan 2012 16:48:04 +0400
From: Vasiliy Kulikov <segoon@...nwall.com>
To: oss-security@...ts.openwall.com
Subject: Re: Malicious devices & vulnerabilties

Hi,

On Sun, Jan 08, 2012 at 16:32 -0500, Xi Wang wrote:
> On Jan 8, 2012, at 3:19 PM, Eitan Adler wrote:
> > Computer monitors? Keyboards. Anything you could plug into the
> > computer without opening up the case.
> 
> That makes sense, though it's a little bit strange to say "hey man
> plug in this fancy monitor" for an attack, compared to lending a
> usb stick. ;-)

As USB device could pretend being almost any external device and fake
its own device ID, sizes and popularity of the device shouldn't limit
the set of untrusted drivers.

Thanks,

--
Vasiliy Kulikov
http://www.openwall.com - bringing security into open computing environments

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ