On Wednesday 25 April 2007, Robert Marquardt wrote: > David Brownell schrieb: > > > If this is a "security" issue, what's the threat being defended against? > > Just for USB sticks? > > USB sticks are only an example here. All hotplug devices should be handled.
Why ... what's the threat? Does it apply to PS/2 keyboards and mice? Monitors? How about digital oscilloscopes, or protocol analysis tools? Speakers? > I do not see it primarily from the threat side. The other side is to > have access control. The security rationale for any kind of access control is to defend against some threat. There are non-security rationales aplenty though, also known as "support your local control-freak". "Security" sometimes meaning for their own job, via make-work. ;) > "I can plug my USB stick only to the computers of > my group". Indulge in some self-control, then. Resist those urges... > In fact there are not many users who can overcome the barrier > and externals wanting to do so need extra work like getting an USB stick > and the tools to clone it. That sounds like a control freak issue, not a security issue. - Dave ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ linux-usb-devel@lists.sourceforge.net To unsubscribe, use the last form field at: https://lists.sourceforge.net/lists/listinfo/linux-usb-devel
