site: mjg59.dreamwidth.org
Avoiding gaps in IOMMU protection at boot
https://mjg59.dreamwidth.org/54433.html [mjg59.dreamwidth.org]
2020-02-12 00:43
tags:
bios
hardware
linux
security
systems
update
But setting things up in the OS isn’t sufficient. If an attacker is able to trigger arbitrary DMA before the OS has started then they can tamper with the system firmware or your bootloader and modify the kernel before it even starts running. So ideally you want your firmware to set up the IOMMU before it even enables any external devices, and newer firmware should actually do this automatically. It sounds like the problem is solved.
source: solar
Wifi deauthentication attacks and home security
https://mjg59.dreamwidth.org/53968.html [mjg59.dreamwidth.org]
2019-12-27 15:21
tags:
ioshit
security
wifi
So, the attack is to simply monitor the network for any devices that fall into the address range you want to target, and then immediately start shooting deauthentication frames at them once you see one. I hacked airodump-ng to ignore all clients that didn’t look like a Ring, and then pasted in code from aireplay-ng to send deauthentication packets once it saw one. The problem here is that wifi cards can only be tuned to one frequency at a time, so unless you know the channel your potential target is on, you need to keep jumping between frequencies while looking for a target - and that means a target can potentially shoot off a notification while you’re looking at other frequencies.
The Intel ME vulnerabilities are a big deal for some people, harmless for most
https://mjg59.dreamwidth.org/49788.html [mjg59.dreamwidth.org]
2017-12-14 19:38
tags:
bios
hardware
security
systems
Some plain English analysis.
source: L
Potential impact of the Intel ME vulnerability
https://mjg59.dreamwidth.org/49611.html [mjg59.dreamwidth.org]
2017-11-27 23:40
tags:
admin
bios
hardware
security
systems
Summary: Worst case here is terrible, but unlikely to be relevant to the vast majority of users.
Maybe. Some day we’ll know for sure. Maybe.
source: L
Intel's remote AMT vulnerablity
http://mjg59.dreamwidth.org/48429.html [mjg59.dreamwidth.org]
2017-05-02 01:58
tags:
bugfix
hardware
security