Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 09 Jan 2012 14:56:15 -0700
From: Kurt Seifried <>
CC: Florian Weimer <>
Subject: Re: Malicious devices & vulnerabilties

On 01/09/2012 12:35 PM, Florian Weimer wrote:
> * Kurt Seifried:
>> Firewire has DMA. 
>> eSATA - also does DMA.
>> Thunderbolt also does DMA. 
>> In other words a lot of the newer/higher end interfaces all do DMA
>> which is ... a problem.
> Gigabit Ethernet adapters also do DMA.  Is it really the case that the
> (e)SATA implementation is as problematic as IEEE 1394?  I don't think
> SATA exposes the DMA functionality over the wire.
Hmmm yeah reading some Intel docs it would appear they did DMA and SATA

However it would appear Thunderbolt didn't do such a good job:


-- Kurt Seifried / Red Hat Security Response Team

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ