gustavonihei commented on issue #3011: URL: https://github.com/apache/incubator-nuttx/issues/3011#issuecomment-793829373
Every OS provides debug features that, if kept enabled on the final product, may end up compromising its security. But I agree with @btashton, its the vendor responsibility to perform the security assessment of its product and disable these interfaces. Although, I confess I didn't know these NSH commands existed, maybe because there are so many commands and I've never gone through each of them. Maybe we could modify the option names in the `Disable Individual commands` menu from Menuconfig to clarify their behavior. For example: "Disable move byte command (mb)" or "Disable mb (move byte)". This is a simple change that may improve the menuconfig experience and also help to catch the developer's eye that it is indeed a memory manipulation tool and has security implications. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
