From owner-freebsd-security@FreeBSD.ORG Mon Oct 6 20:48:20 2014 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 8E0E763A; Mon, 6 Oct 2014 20:48:20 +0000 (UTC) Received: from mail.turbocat.net (mail.turbocat.net [IPv6:2a01:4f8:d16:4514::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 508D5826; Mon, 6 Oct 2014 20:48:20 +0000 (UTC) Received: from laptop015.home.selasky.org (cm-176.74.213.204.customer.telag.net [176.74.213.204]) (using TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by mail.turbocat.net (Postfix) with ESMTPSA id AD4C01FE022; Mon, 6 Oct 2014 22:48:17 +0200 (CEST) Message-ID: <5433000E.7000404@selasky.org> Date: Mon, 06 Oct 2014 22:48:14 +0200 From: Hans Petter Selasky User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:24.0) Gecko/20100101 Thunderbird/24.1.0 MIME-Version: 1.0 To: Poul-Henning Kamp , "Julian H. Stacey" Subject: Re: BadUSB - On Accessories that Turn Evil, by Karsten Nohl + Jakob Lell References: <201410061956.s96Ju8S3089675@fire.js.berklix.net> <66233.1412627400@critter.freebsd.dk> In-Reply-To: <66233.1412627400@critter.freebsd.dk> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Mailman-Approved-At: Mon, 06 Oct 2014 21:28:45 +0000 Cc: freebsd-security@freebsd.org, freebsd-usb@freebsd.org X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Oct 2014 20:48:20 -0000 On 10/06/14 22:30, Poul-Henning Kamp wrote: > -------- > In message <201410061956.s96Ju8S3089675@fire.js.berklix.net>, "Julian H. Stacey > " writes: > >> For FreeBSD, >> I guess for serious security, every new device that is connected >> & recognised by /sbin/devd should in future be personaly authorised >> by a human ! One can no longer trust what reports itself to be >> eg a keyboard to actually Be a keyboard, etc. > > "no longer" ? > > When you could you *ever* trust a USB device about anything ? > Hi, You should not assume you can trust hardware :-) Especially removable hardware. It is possible to add a sysctl to halt the probing of USB devices, so that USB devices can only be detached from the system. The problem is that if the main input is a USB keyboard and that goes away, you have no easy way to recover your system ... Anyway, USB 2.0 and 1.0 are broadcast based, and technically one device might highjack the traffic of another one. --HPS