[GRLUG] does anyone see this as a worrisome security issue?
Michael Mol
mikemol at gmail.com
Sat Mar 22 14:59:14 EDT 2008
On Sat, Mar 22, 2008 at 2:06 PM, Steve Romanow <slestak989 at gmail.com> wrote:
> Michael Mol wrote:
> >
> >
> > I think it's pretty cool. It simplifies a task I've done quite a
> > number of times. The only concern I'd have is if someone were to
> > replace the script on the server with a malicious version. (So it's
> > probably better if you keep your own copy on a web server only you
> > have access to.)
> >
> But does it mean that any kiosk or secured environment with an optical
> drive or exposed usb port (assuming boot from usb is available) can be
> compromised in just minutes? Does this make the login prompt worthless?
*shrug*
Any kiosk or secured environment with an exposed optical drive or USB
port--that's configured to be booted from--is doomed from the start.
Having a tool to make the process easier doesn't make it any less
secure.
--
:wq
More information about the grlug
mailing list