From owner-svn-src-head@freebsd.org Tue Apr 26 22:30:27 2016 Return-Path: Delivered-To: svn-src-head@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id BBA62B1D0CB for ; Tue, 26 Apr 2016 22:30:27 +0000 (UTC) (envelope-from pfg@FreeBSD.org) Received: from nm39-vm5.bullet.mail.bf1.yahoo.com (nm39-vm5.bullet.mail.bf1.yahoo.com [72.30.239.149]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 7135B1E31 for ; Tue, 26 Apr 2016 22:30:27 +0000 (UTC) (envelope-from pfg@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1461706579; bh=o1UzjtBkbc8yH4WyYzbnQpO/chly96bUyjAnJhh/tOM=; h=Subject:To:References:Cc:From:Date:In-Reply-To:From:Subject; b=lPrHTlosCcgsH+jHHsbbwcBG8rNSxf0VADJi9hmT+nFZQRAIt6UJyQOxio9fdRcuRqMnFu8hP6UNycmwGqhW5y2whJ0TGfcTWrS8VaQtIR+GdG5iXwqKHNU8PsvAfehZ1VFKZbZjG7HlMyZhDtY9tZ8YqKjHAMqdKBFH7jl4kVawfcmce49SLzfgAUgpPCwMJTGNiAdYiab7GixXZDE1j5x7xkwaJcBiM8L//Guw1X3peSRr5x62nQjEOVk4JTkfj5VTNUxTknsObJEIKzK9rF/9dFEoea9yXeGAp1boOCHkgY04CFfTNRxz6aHwmOfBwyXNQMOqGv6w9X2TK4ab+Q== Received: from [98.139.215.142] by nm39.bullet.mail.bf1.yahoo.com with NNFMP; 26 Apr 2016 21:36:19 -0000 Received: from [98.139.211.205] by tm13.bullet.mail.bf1.yahoo.com with NNFMP; 26 Apr 2016 21:36:19 -0000 Received: from [127.0.0.1] by smtp214.mail.bf1.yahoo.com with NNFMP; 26 Apr 2016 21:36:19 -0000 X-Yahoo-Newman-Id: 595955.71016.bm@smtp214.mail.bf1.yahoo.com X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: Cpkjoc8VM1mFV4UNhJwVTSKl782LGqM5CUNmvBbZV33zNqo v11CvsOl0pPwxw7O1N34aw2Hy28xM0yzZ1SqB66ntmrynfYyuo.H3_qHGhzB KbcvrEWXmEho9ReKyqz7ei5b.7bH6pstWYlpbPNaCl6UudFs1VT6vvO6ke3O jfMvw365VUyBdHX8FFoMaESmTL5g_jKecfk6SG9GtTpjhq8mSmoDnMa8JjPG 5zsUtep8yXgIR7JJKzVgbh1YKlWAqbdnOyzq_EGfaghk5U6iQZMwun2s9sPO JFA4CZn9Q4opZ9gGxu.AjNILIEpj93PDWBbLpKyBHZyDpz9t8jo6HcNCu.ln dp2S3tDwUWpFwJP8DhdYhVWxJezgYT98C7rWQGZX92p8oAbcqiJ5C8IhEFh6 LA71MWN1ctAcWGO.8dptw0NKL8wPXQDGZhOJENKR8Nxjn2aiBTFO9Fy._IQd 4WjYy3.31MqFqFWhPBNPLlSY3fvNV3r7B3q2xcp0MHYOwuaccwvgcNfuUyNd tlSCUu1lC81_XfmP2lC0HXodOFxtOLZh_ X-Yahoo-SMTP: xcjD0guswBAZaPPIbxpWwLcp9Unf Subject: Re: svn commit: r298664 - head/sys/fs/msdosfs To: cem@FreeBSD.org References: <201604262036.u3QKaWto038435@repo.freebsd.org> <20160426210138.GA13055@mutt-hardenedbsd> Cc: Kristof Provost , "src-committers@freebsd.org" , "svn-src-all@freebsd.org" , "svn-src-head@freebsd.org" From: Pedro Giffuni Message-ID: <36e8fe15-2b0f-6d50-92ca-84f29d70df20@FreeBSD.org> Date: Tue, 26 Apr 2016 16:36:32 -0500 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:45.0) Gecko/20100101 Thunderbird/45.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit X-BeenThere: svn-src-head@freebsd.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: SVN commit messages for the src tree for head/-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Apr 2016 22:30:27 -0000 On 04/26/16 16:17, Conrad Meyer wrote: > On Tue, Apr 26, 2016 at 2:13 PM, Adrian Chadd wrote: >> You mean "hotplug mount a malicious USB disk via some installed >> graphical enviornment?" >> >> NOone does that... :) > > Sure, but there the vulnerability is (IMO) that users are allowed to > arbitrarily mount stuff. That's a huge attack surface and this fix > only scratches the surface. > This is a plain bug, it may be nasty but not really a security vulnerability. If you give physical access to your system to an attacker you probably have bigger problems than this. > We do need to make filesystems more resilient to malice. AFL? > That is a good idea. For reference: https://lwn.net/Articles/637151/ Cheers, Pedro.