On 09/26/2013 07:27 PM, Jim Blandy wrote:
On 09/21/2013 05:49 AM, Jonas Sicking wrote:
The attack here is if the user gets the device stolen, then the thief
could go into the settings and explicitly turn debugging on. He/she
could then use the debugger to suck out all sorts of data from various
apps. Things like login tokens to your email or even raw passwords
from applications that store those client-side.
Right - the debugging protocol allows users, thieves or otherwise,
access to data apps don't offer via their UIs. But most data the user
cares about protecting *is* available via the UIs. And access to the
user's email account will allow the attacker to change the user's
passwords (in the guise of "password recovery", so auth tokens are
effectively available to the thief, debugger or not. So the additional
exposure here is minor; am I missing something?
More succinctly: when a developer's phone is stolen, is their reaction
going to be "Oh dear, someone might hook up a debugger!"?
I'm saying that's going to be pretty far down on their list of concerns.
And if developers don't care about that, non-developer users won't either.
_______________________________________________
dev-b2g mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-b2g
