*** This bug is a security vulnerability ***
Public security bug reported:
Do a simple Google search or eBay search for microSD or FLASH memory and
you'll quickly realize something: There are some great prices out there!
That is, until you actually get the memory device in your hands, test it
out, and it fails within a matter of hours. There needs to be something
out there, a common technology practice, to correctly and accurately
test these memory modules the first time the user plugs in the device in
order to prevent imminent data failure at an unexpected moment.
I have the idea for the GNOME Disk Utility in Ubuntu -- To accurately
test any new memory module installed with the consent of the user the
second the module is plugged in and allowed to gain ROOT access to the
filesystem. A simple test like this can save the general public tonnes
of money when it comes to buying memory, keep malicious codes from
entering our loved computer systems, and help educate us on how to
choose the correct memory technology, where to buy it, and what to look
for, etc.. Included in this idea I have is an optional form to report
certain module types into a larger database that is interconnected
between all computers using the GNOME Disk Utility and connected to the
internet for even faster emergency diagnosis with instant fraudulent
device recognition that will then push a warning to the user to remove
the module at once and a set of instructions on how to properly request
a refund for their counterfeit device.
Something like this has never before been integrated into mainstream
computing methods, and it's about time a smart, automated, self-
learning, user-teaching system like this is implemented.
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: gnome-disk-utility 3.10.0-1ubuntu3
ProcVersionSignature: Ubuntu 3.13.0-27.50-generic 3.13.11
Uname: Linux 3.13.0-27-generic x86_64
NonfreeKernelModules: nvidia
ApportVersion: 2.14.1-0ubuntu3.2
Architecture: amd64
CurrentDesktop: Unity
Date: Wed Jul 9 13:15:58 2014
InstallationDate: Installed on 2014-02-19 (140 days ago)
InstallationMedia: Ubuntu 13.10 "Saucy Salamander" - Release amd64 (20131016.1)
ProcEnviron:
LANGUAGE=en_US
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: gnome-disk-utility
UpgradeStatus: Upgraded to trusty on 2014-04-18 (82 days ago)
** Affects: gnome-disk-utility (Ubuntu)
Importance: Undecided
Status: Confirmed
** Tags: amd64 apport-bug counterfeit fake flash internet microsd nand
securedigital trusty
** Attachment added: "Screenshot of the current abilities Gnome Disk Utility
has to offer me on benchmarking a fraudulent microSD device I have received in
the mail. Please note that I needed to have known what to do in order to get to
the benchmarking process, after benchmarks are complete the application still
does not tell me if this is likely counterfeit and has no automated "report"
and "test" features."
https://bugs.launchpad.net/bugs/1339820/+attachment/4148976/+files/Screenshot%20from%202014-07-09%2013%3A29%3A26.png
** Information type changed from Private Security to Public Security
** Changed in: gnome-disk-utility (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Desktop Bugs, which is subscribed to gnome-disk-utility in Ubuntu.
https://bugs.launchpad.net/bugs/1339820
Title:
Preventing fraudulent flash memory
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gnome-disk-utility/+bug/1339820/+subscriptions
--
desktop-bugs mailing list
desktop-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/desktop-bugs
