Hit by a Bus: Physical Access Attacks with Firewire - 2008 - Ruxcon
01.11.2014 Views
Share Embed Flag

Hit by a Bus: Physical Access Attacks with Firewire - 2008 - Ruxcon

Hit by a Bus: Physical Access Attacks with Firewire - 2008 - Ruxcon

Hit by a Bus: Physical Access Attacks with Firewire - 2008 - Ruxcon

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
ruxcon.org.au

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

Mitigation<br />

• The OHCI spec doesn't provide much scope for<br />

mitigation. :(<br />

• Turn off your <strong>Firewire</strong> port in hardware<br />

• On G5 Macs, enable an Open Firmware password<br />

• Disable the OS OHCI controller drivers<br />

• In Linux, modprobe ohci1394 phys_dma=0<br />

• Fill your <strong>Firewire</strong> ports <strong>with</strong> epoxy<br />

• Some software (usually endpoint security<br />

solutions) provide tools to control USB and<br />

<strong>Firewire</strong>. Some work, some don't.<br />

In general, ones that restrict individual devices (eg “no<br />

ipods”) won't work.<br />

Copyright Security-Assessment.com 2006

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!