Date: Fri, 22 Sep 2017 00:20:03 +0200 From: "Julian H. Stacey" <jhs@berklix.com> To: Hans Petter Selasky <hps@selasky.org> Cc: freebsd-usb@freebsd.org, freebsd-security@freebsd.org, Astrid Jekat <astrid_jekat@genua.eu> Subject: Re: Re.: BadUSB - On Accessories that Turn Evil, by Karsten Nohl + Jakob Lell Message-ID: <201709212220.v8LMK45d026318@fire.js.berklix.net> In-Reply-To: Your message "Wed, 20 Sep 2017 22:18:02 %2B0200." <b30710e5-6152-c20b-1356-04877b83e5fb@selasky.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi all Hans Petter Selasky wrote: > On 09/20/17 20:06, Julian H. Stacey wrote: > > A tiny diff to make it easier to grep sysctl descriptions: > > http://www.berklix.com/~jhs/src/bsd/fixes/FreeBSD/src/gen/sys/dev/usb/usb_hub.c.REL=12.0-CURRENT.diff > > Hi, > > Please wrap the long string in multiple pieces Done. > before committing it. See below > Looks good. Hope the sysctl has saved you some trouble :-) I'm not much exposed, but enthuse to others more exposed, how quickly you provided it once the risk was spotted :-). Hopefully those most at risk will enable it most, & like a firewall, may be ignorant if it saves them. I'm going to have my /etc/rc.conf enable it for all domains where `hostname` is not in my home domain. > --HPS > From: Gary Jennejohn <gljennjohn@gmail.com> > I suppose Hans means "submitting it." Julian should probably > open a bug report and attach his diff to it. Done, https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=222505 > Julian did at one time, many years ago, have a commit bit. But I > doubt he does now. Yes unfortunately my commit bit evaporated way back, lack of use. > From: "WhiteWinterWolf (Simon)" <freebsd.lists@whitewinterwolf.com> Thanks for a post with many good points, starting: > malicious mouse offers plenty of space to store all the chips you may Thanks Gary for pointing out German CT magazine issue 18/2017 https://www.heise.de/ct/ausgabe/2017-18-Gefahr-durch-angriffslustige-Hardware-3800729.html For those who can't read German: Normaly I just point to http://www.berklix.org/trans/ But currently as - Google have damaged their translator, no longer accept URLs - & Bing wont translate https, only http Temporarily there's http://www.berklix.org/trans/ct/ Cheers, Julian -- Julian H. Stacey, Computer Consultant, BSD Linux Unix Systems Engineer, Munich Reply below, Prefix '> '. Plain text, No .doc, base64, HTML, quoted-printable. http://berklix.eu/queen/ Petition to get 3.5 million UK votes back.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201709212220.v8LMK45d026318>