From owner-freebsd-bugs@freebsd.org Mon Jan 4 18:07:32 2016 Return-Path: Delivered-To: freebsd-bugs@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 0EEEEA62728 for ; Mon, 4 Jan 2016 18:07:32 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id DAD8014DD for ; Mon, 4 Jan 2016 18:07:31 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id u04I7Vgr012870 for ; Mon, 4 Jan 2016 18:07:31 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 205886] USB install image requires write access to install media during boot! Date: Mon, 04 Jan 2016 18:07:32 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Base System X-Bugzilla-Component: conf X-Bugzilla-Version: 10.2-STABLE X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Many People X-Bugzilla-Who: oliver.jones@gmx.com X-Bugzilla-Status: New X-Bugzilla-Resolution: X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: freebsd-bugs@FreeBSD.org X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-bugs@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 Jan 2016 18:07:32 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D205886 Bug ID: 205886 Summary: USB install image requires write access to install media during boot! Product: Base System Version: 10.2-STABLE Hardware: Any OS: Any Status: New Severity: Affects Many People Priority: --- Component: conf Assignee: freebsd-bugs@FreeBSD.org Reporter: oliver.jones@gmx.com I have a Kanguru FlashTrust USB stick, which I used to boot and install Fre= eBSD 10.2 from. This particular USB stick has a physical write-protect switch, w= hich I enable after setup, to prevent unauthorised modifications. I use this particular brand because: a) The firmware is signed, to prevent exploits or attacks via BadUSB. b) The write protection secures install media against unauthorised changes. There is one small problem, however: When booting from the USB image, FreeB= SD 10.2 requires write access to the USB install medium in order to proceed! Booting with the write protect switch enabled on the USB stick will prevent FreeBSD 10.2 from booting and starting the installer! To boot without errors requires the boot media to be writable. This is not necessary with Linux or Windows (typically Windows PE) USB images. I appreciate that this issue is probably not noticeable in most cases, beca= use most USB sticks cannot be write-protected, and will therefore silently acce= pt writes. But this is a security flaw, since it prevents the boot media from being secured against unauthorised changes after creation and verification. Please fix it. --=20 You are receiving this mail because: You are the assignee for the bug.=