From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 89FDE1396D9 for ; Wed, 8 Nov 2017 05:53:32 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id D4B34E0EC3; Wed, 8 Nov 2017 05:53:27 +0000 (UTC) Received: from gw1.antarean.org (gw1.antarean.org [194.145.200.214]) by pigeon.gentoo.org (Postfix) with ESMTP id 6F690E0E62 for ; Wed, 8 Nov 2017 05:53:27 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by gw1.antarean.org (Postfix) with ESMTP id 8EBFB2137A for ; Wed, 8 Nov 2017 06:28:28 +0100 (CET) X-Virus-Scanned: amavisd-new at antarean.org Received: from gw1.antarean.org ([127.0.0.1]) by localhost (gw1.antarean.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id asDom6_FbJQp for ; Wed, 8 Nov 2017 06:28:27 +0100 (CET) Received: from mailstore1.antarean.org (localhost [127.0.0.1]) by gw1.antarean.org (Postfix) with ESMTP id A7D4C20849 for ; Wed, 8 Nov 2017 06:28:27 +0100 (CET) Received: from lan001.nl.antarean.org (lan001.nl.antarean.org [10.20.13.101]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mailstore1.antarean.org (Postfix) with ESMTPSA id B1F8B32 for ; Wed, 8 Nov 2017 06:53:25 +0100 (CET) Date: Wed, 08 Nov 2017 05:53:23 +0000 In-Reply-To: <65c1af14-a224-4c9f-1ca8-eca4ccc71d0f@gmail.com> References: <65c1af14-a224-4c9f-1ca8-eca4ccc71d0f@gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Subject: Re: [gentoo-user] Linux USB security holes. To: gentoo-user@lists.gentoo.org From: "J. Roeleveld" Message-ID: <556A9D39-68CC-4E4F-9BDA-545EBB0F9D69@antarean.org> X-Archives-Salt: 823186de-e8e2-4ec5-a9b1-57e19ad1334a X-Archives-Hash: d3f28e963d1b81b021c62a23e0fe6da1 On 8 November 2017 06:08:21 GMT+01:00, Dale wrote: >Howdy, > >I ran up on this link=2E=C2=A0 Is there any truth to it and should any of= us >Gentooers be worried about it? > >http://www=2Etheregister=2Eco=2Euk/2017/11/07/linux_usb_security_bugs/=C2= =A0 > >Isn't Linux supposed to be more secure than this?? > >Dale > >:-)=C2=A0 :-)=C2=A0 From=20what I read, you need physical access=2E And I am not certain what you need to do to the firmware on the USB device= to trigger this=2E -- Joost=20 --=20 Sent from my Android device with K-9 Mail=2E Please excuse my brevity=2E