Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]

To: debian-devel@lists.debian.org
Subject: Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
From: Tom <tb.31123.nospam@comcast.net>
Date: Wed, 3 Dec 2003 01:16:39 -0800
Message-id: <[🔎] 20031203091639.GA11005@comcast.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20031203090316.GJ1068@donarmstrong.com>
References: <[🔎] E1AR6Vn-0001YY-Vx@mid.downhill.at.eu.org> <[🔎] 20031202232021.GA32333@daedalus.andrew.net.au> <[🔎] 200312031117.19034.russell@coker.com.au> <[🔎] 20031203005423.GA1132@daedalus.andrew.net.au> <[🔎] 20031203011922.GA2828@comcast.net> <[🔎] 20031203013405.GF1068@donarmstrong.com> <[🔎] 20031203055418.GA2843@comcast.net> <[🔎] 20031203082059.GH1068@donarmstrong.com> <[🔎] 20031203082852.GA8865@comcast.net> <[🔎] 20031203090316.GJ1068@donarmstrong.com>

On Wed, Dec 03, 2003 at 01:03:16AM -0800, Don Armstrong wrote:
> [NB: I wanted to take this OT discussion off d-d@ldo and into private
> mail, but your e-mail address was munged in some sort of anti-spam
> measure, and not trivially un-mungeable. Please consider providing
> information on how to demunge it in some X- header, or not using
> munging at all.]

Heh.  That's my actual email address.  Fooled ya.

> Well, the DD can't log in without the smart card, so that's clearly a
> prerequisite.

You leave it unplugged until you need it, do your thing, then unplug it.

Sure, I could still infect your toolchain so you unwittingly upload 
trojaned stuff.  But the fact is in this *actual* compromise the 
password was stolen and the hacker worked later at his leisure:
smartcards would have prevented this *actual* incident (but of course 
doesn't prohibit other ways of attack).

If something could have prevented something that actually happened, I 
say go for it.

Reply to:

Follow-Ups:
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Hamish Moffatt <hamish@debian.org>

References:
- Re: Backport of the integer overflow in the brk system call
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>
- Re: Backport of the integer overflow in the brk system call
  - From: Andrew Pollock <debian-lists@andrew.net.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Russell Coker <russell@coker.com.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Andrew Pollock <debian-devel@andrew.net.au>
- Re: Backport of the integer overflow in the brk system call
  - From: Tom <tb.31123.nospam@comcast.net>
- OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Don Armstrong <don@donarmstrong.com>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Don Armstrong <don@donarmstrong.com>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Tom <tb.31123.nospam@comcast.net>
- Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
  - From: Don Armstrong <don@donarmstrong.com>

Prev by Date: Re: UserLinux white paper
Next by Date: Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
Previous by thread: Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
Next by thread: Re: OT: Smartcards and Physical Security [Was: Re: Backport of the integer overflow in the brk system call]
Index(es):
- Date
- Thread