Hi
2009/1/19 Dan Hatton vi5u0-alug@yahoo.co.uk:
On Mon, 19 Jan 2009, Keith Edmunds wrote:
Google for "udev rules", which are a way of giving consistent names to (typically USB) devices, although the rules are also useful for other things, such as making sure Ethernet adaptors have a consistent ethx number.
Nice idea. But what was primarily troubling me was the potential for the following process, which would be done and dusted before udev runs:
- Boot computer with USB stick already plugged in
- USB stick grabs id "/dev/sda", relegating hard drive to "/dev/sdb"
I don't think this is possible. If you take a look at dmesg output, you will notice that the disk drive controllers are initialised BEFORE any USB HCI drivers are loaded.
- at worst, it's a maliciously crafted USB stick, which inserts an image into RAM that does untold nasty things to my computer
Err. You do realise that if anyone has direct physical access to your machine, they can do more damage than that?
And if you are the one using the machine at the time (and not some cyber criminal), then don't boot USB pen drives that you don't know if you can trust.
Srdjan