Hi Burn, and all, I've been aware of this issue for a while now, but wasn't directly working on it. Now that I'm taking a closer look at this issue, I am wondering how much USBGuard changes the equation?
https://www.kernel.org/doc/Documentation/usb/authorization.txt https://usbguard.github.io/ https://github.com/USBGuard/usbguard https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/security_guide/sec-using-usbguard It has tools to generate baseline lists of devices, but this is only for usb. Other interfaces would need to be appropriately instrumented. - RGB -- Richard Guy Briggs <[email protected]> Sr. S/W Engineer, Kernel Security, Base Operating Systems Remote, Ottawa, Red Hat Canada IRC: rgb, SunRaycer Voice: +1.647.777.2635, Internal: (81) 32635 -- Linux-audit mailing list [email protected] https://www.redhat.com/mailman/listinfo/linux-audit
