From owner-freebsd-questions@FreeBSD.ORG Sat Feb 21 03:32:22 2015 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 89AAF3E0 for ; Sat, 21 Feb 2015 03:32:22 +0000 (UTC) Received: from mx02.qsc.de (mx02.qsc.de [213.148.130.14]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 48BCE892 for ; Sat, 21 Feb 2015 03:32:22 +0000 (UTC) Received: from r56.edvax.de (port-92-195-149-162.dynamic.qsc.de [92.195.149.162]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx02.qsc.de (Postfix) with ESMTPS id D3168276F3; Sat, 21 Feb 2015 04:32:12 +0100 (CET) Received: from r56.edvax.de (localhost [127.0.0.1]) by r56.edvax.de (8.14.5/8.14.5) with SMTP id t1L3WCHj002026; Sat, 21 Feb 2015 04:32:12 +0100 (CET) (envelope-from freebsd@edvax.de) Date: Sat, 21 Feb 2015 04:32:12 +0100 From: Polytropon To: jd1008 Subject: Re: How secure are our phones (even freebsd and linux based phones) Message-Id: <20150221043212.8074927e.freebsd@edvax.de> In-Reply-To: <54E7F581.1040008@gmail.com> References: <54E7F581.1040008@gmail.com> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Cc: FreeBSD Users X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 21 Feb 2015 03:32:22 -0000 On Fri, 20 Feb 2015 20:03:29 -0700, jd1008 wrote: > https://firstlook.org/theintercept/2015/02/19/great-sim-heist/ Phones are INSECURE and have always been. Period. Just a reminder from few years ago (if you thought that "modern technology" could save you): http://arstechnica.com/security/2013/01/hack-turns-the-cisco-phone-on-your-desk-into-a-remote-bugging-device/ If you want a _really_ secure phone line, you need security in _all_ involved aspects (terminal devices, connection line, surrounding and so on). http://cryptomuseum.com/crypto/phone.htm And don't place it the same room where your "Smart TV" and your new "intelligent thermostat" are happily listening. Don't expect a smartphone (or a web app) to solve all the involved problems with "the one solution". :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ...