Bug#56821: Important security hole: mbr allows anyone to boot from a floppy.

To: Pierre Beyssac <beyssac@enst.fr>, 56821@bugs.debian.org
Cc: thomas@cuivre.fr.eu.org, Adam Di Carlo <adam@onshore.com>, Ben Collins <bcollins@debian.org>, sam@infres.enst.fr, pb@enst.fr
Subject: Bug#56821: Important security hole: mbr allows anyone to boot from a floppy.
From: Stephane Bortzmeyer <bortzmeyer@pasteur.fr>
Date: Wed, 02 Feb 2000 12:40:11 +0100
Message-id: <[🔎] 200002021140.MAA11726@ezili.sis.pasteur.fr>
Reply-to: Stephane Bortzmeyer <bortzmeyer@pasteur.fr>, 56821@bugs.debian.org
In-reply-to: <[🔎] 20000202114003.Q99806@enst.fr> (Pierre Beyssac <beyssac@enst.fr>'s message of Wed, 02 Feb 2000 11:40:03 +0100)

On Wednesday 2 February 2000, at 11 h 40, the keyboard of Pierre Beyssac 
<beyssac@enst.fr> wrote:

> Please READ the mails we sent; this is not about the MBR of the
> boot floppy, this is about the MBR of the HARDDISK as installed by
> default.

Adam was not talking about the boot floppy but about the "boot-floppies" 
package, which he is in charge of. This package is responsible for the 
installation floppies or CD and hence the question of the default MBR 
installed is his responsability.

[Adam, I disagree with the much too fast change of the severity.]

Reply to:

Prev by Date: Bug#56821: Important security hole: mbr allows anyone to boot from a floppy.
Next by Date: Bug#56821: Important security hole: mbr allows anyone to boot from a floppy.
Previous by thread: Bug#56821: POSSIBLE GRAVE SECURITY HOLD]
Next by thread: Installing to loopback device
Index(es):
- Date
- Thread