Re.: BadUSB - On Accessories that Turn Evil, by Karsten Nohl + Jakob Lell

Julian H. Stacey jhs at berklix.com
Thu Sep 21 22:20:56 UTC 2017 

Hi all
Hans Petter Selasky wrote:
> On 09/20/17 20:06, Julian H. Stacey wrote:
> > A tiny diff to make it easier to grep sysctl descriptions:
> > 	http://www.berklix.com/~jhs/src/bsd/fixes/FreeBSD/src/gen/sys/dev/usb/usb_hub.c.REL=12.0-CURRENT.diff
> 
> Hi,
> 
> Please wrap the long string in multiple pieces 

Done.


> before committing it. 

See below


> Looks good. Hope the sysctl has saved you some trouble :-)

I'm not much exposed, but enthuse to others more exposed, how quickly
you provided it once the risk was spotted :-).  Hopefully those
most at risk will enable it most, & like a firewall, may be ignorant
if it saves them.  I'm going to have my /etc/rc.conf enable it for
all domains where `hostname` is not in my home domain.

> --HPS


> From: Gary Jennejohn <gljennjohn at gmail.com>
> I suppose Hans means "submitting it."  Julian should probably
> open a bug report and attach his diff to it.

Done, https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=222505


> Julian did at one time, many years ago, have a commit bit.  But I
> doubt he does now.

Yes unfortunately my commit bit evaporated way back, lack of use.


> From: "WhiteWinterWolf (Simon)" <freebsd.lists at whitewinterwolf.com>

Thanks for a post with many good points, starting:
> malicious mouse offers plenty of space to store all the chips you may


Thanks Gary for pointing out German CT magazine issue 18/2017
	https://www.heise.de/ct/ausgabe/2017-18-Gefahr-durch-angriffslustige-Hardware-3800729.html
For those who can't read German:
  Normaly I just point to http://www.berklix.org/trans/
  But currently as
    - Google have damaged their translator, no longer accept URLs 
    - & Bing wont translate https, only http
  Temporarily there's http://www.berklix.org/trans/ct/

Cheers,
Julian
-- 
Julian H. Stacey, Computer Consultant, BSD Linux Unix Systems Engineer, Munich
 Reply below, Prefix '> '. Plain text, No .doc, base64, HTML, quoted-printable.
 http://berklix.eu/queen/ Petition to get 3.5 million UK votes back.

More information about the freebsd-usb mailing list