On Wed, Oct 21, 2009 at 09:20:08PM -0700, Paul Ferguson wrote: > It doesn't have to be a "trusted admin" -- putting my "evil" cap on, it > could certainly be someone who impersonates a "trusted admin" or > "interested party".
Right. So now we have an existence proof that OnStar has this capability, and the problem reduces to figuring out how to exploit it. I wonder if anyone there has considered the consequences that would ensue should someone penetrate their security and send out the signal to shut them *all* down. ---Rsk _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
