*** This bug is a security vulnerability *** Public security bug reported:
As Adam Boileau and others pointed out, Firewire has direct memory access without any participation of the OS. Using some nice tools he provides on his website http://storm.net.nz/projects/16 one can access the whole memory of a target computer as soon as one has physical access - no reboot needed! Some explanations on backgrounds and how to do it can be found in a PDF containing the slides of his talk at RuxCon 2006: http://storm.net.nz/static/files/ab_firewire_rux2k6-final.pdf There's a very easy solution to this: ohci1394 should be loaded with option "phys_dam=0" by default - maybe this slowdowns Firewire access a little, but the computer can't be forged anymore! At least Gutsy doesn't do this as far as I can tell (my laptop didn't have the option set, according to modconf - now it has...) ** Affects: ubuntu Importance: Undecided Status: New ** Visibility changed to: Public -- DMA for firewire opens security hole https://bugs.launchpad.net/bugs/200109 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
