Eduardo M KALINOWSKI <edua...@kalinowski.com.br> writes: > How much do you trust your USB drive? It could have a malicious > controller that detects when the correct Fedora files are written to > it, and replaces with hacked copies. And when you try to verify the > copy, it detects this and returns the SHA1 (or any other checksum) of > the original files.
How would the USB drive tell whether you were reading the file to verify its checksum or to use its contents? -- Ben Pfaff http://benpfaff.org -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/877hem0xki....@benpfaff.org
