Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 24 May 2014 10:32:56 -0600 (MDT)
From:      Warren Block <wblock@wonkity.com>
To:        Polytropon <freebsd@edvax.de>
Cc:        Arthur Chance <freebsd@qeng-ho.org>, FreeBSD Mailing List <freebsd-questions@freebsd.org>
Subject:   Re: write-protected usb flash drive
Message-ID:  <alpine.BSF.2.00.1405241018440.94204@wonkity.com>
In-Reply-To: <20140524174102.66eff3da.freebsd@edvax.de>
References:  <537FE744.3030002@dreamchaser.org> <20140524080127.f2e788d5.freebsd@edvax.de> <5380AB17.2070300@dreamchaser.org> <5380B953.5090700@qeng-ho.org> <20140524174102.66eff3da.freebsd@edvax.de>

next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, 24 May 2014, Polytropon wrote:

> On Sat, 24 May 2014 16:22:59 +0100, Arthur Chance wrote:
>> OK, thought I'd better try my own advice rather than just handing it
>> out. I put a microSD card out of an old phone into a SanDisk mSD -> SD
>> adapter and plugged that into my SanDisk SD -> USB adapter, mounted it
>> (FAT32 file system already on it) and wrote a file to it. Worked as
>> you'd expect. I then unmounted and unplugged it, flipped the write
>> protect switch and tried to remount. Result was
>>
>> mount_msdosfs: /dev/da5s1: Input/output error
>>
>> Mounting it read-only was fine. So, the write protect is honoured by at
>> least some SD -> USB adapters.
>
> This is already on file system level. It _should_ work the same
> at upper layers, for example when using dd to write NULs to the
> device with the write protection on - an error should (correctly)
> occur in that case.
>
> When a r/o mount is forced, the routines accessing that file
> system cannot avoid the write protection. Still writes are
> possible _aside of_ the file system which should be prevented
> by the switch as well. It's probably a good idea to check that
> too, e. g. put in the card with write protection on and then
> try dd or newfs on it.

These are worthwhile tests, but remember that they are done in an 
environment where everything is playing by the rules and trying to do 
the right thing.  The drivers will try to support the write-protect 
switch.

Malicious software could use custom or patched drivers to ignore the 
settings of the switch or anything else.

The card reader microcontroller might be responsible for the write 
protect, which would make it much safer than just being honored by 
higher-level drivers.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.BSF.2.00.1405241018440.94204>