Date: Wed, 22 Oct 2014 08:19:55 +0200 From: Hans Petter Selasky <hps@selasky.org> To: Dewayne Geraghty <dewayne.geraghty@heuristicsystems.com.au> Cc: freebsd-security@freebsd.org, freebsd-usb@freebsd.org Subject: Re: BadUSB - On Accessories that Turn Evil, by Karsten Nohl + Jakob Lell Message-ID: <54474C8B.5020000@selasky.org> In-Reply-To: <544703E5.7000007@heuristicsystems.com.au> References: <201410082347.s98NkjW3025396@fire.js.berklix.net> <54362AE2.90501@selasky.org> <CAPjTQNHbh40oeeuJnCk%2BiiKLOFO9TJU0Z13uRp6FawuUrmHvnw@mail.gmail.com> <54369F43.9010806@selasky.org> <544703E5.7000007@heuristicsystems.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
On 10/22/14 03:09, Dewayne Geraghty wrote: > Hans, > Thank-you for these enhancements, as its good to have something in the > armoury to try to address this issue. > > I applied the patch > https://lists.freebsd.org/pipermail/svn-src-head/2014-October/063443.html to > an updated 10.Stable overnight. Disabling enumeration works as > described above except that, placing the following in loader.conf has no > effect? > --- tail of /boot/loader.conf --- > # 20141022 Didn't work as expected > #dev.uhub.0.disable_enumeration="1" > #dev.uhub.1.disable_enumeration="1" > #dev.uhub.2.disable_enumeration="1" > #dev.uhub.3.disable_enumeration="1" > #dev.uhub.4.disable_enumeration="1" > > # 20141022 Also didn't work > hw.usb.disable_enumeration="1" > --- end of /boot/loader.conf --- Hi, The /boot/loader.conf only works in -current, because in 10-stable SYSCTLs cannot be automatically loaded from TUNABLEs. You would need to add some TUNABLE() statements for that. --HPS
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?54474C8B.5020000>