And why not read the media?
Posted Nov 16, 2006 10:09 UTC (Thu) by eru
In reply to: November: the month of kernel bugs
Parent article: November: the month of kernel bugs
Just find someone who is busy enough and present them with a USB memory stick and they will probably just plug it in. It happens, the vulnerability should not be there.
Wasn't there a fairly recent report of an experiment by some security
researchers who just left USB sticks lying on the street? A surprising number
of people picked them up and plugged into their computers out of curiosity.
In a sense this is not at all unreasonable behavour. People think USB is just
a piece of media, like a CD record, or simply a leaflet. The idea that
merely reading it causes bad things to happen is counterintuitive.
I would argue that any system where you cannot safely insert a medium and mount it is seriously broken.
to post comments)