|
|||
The enemy in the network card
From http://www.h-online.com/security/new...d-1141556.html
Quote:
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump |
|
|||
This is one attack vector that's overly practical unless the person knows the card you use, if they happen to be on your subnet, the most they could determine would be vendor.
If you use a card that has a non-socketed/non-upgradeable factory flashed rom, there is perhaps less risk of attack.. it's hard to find something these days not using embedded arm/mips processors, but a proprietary simple ASIC would also make this difficult (..no development toolchain, documentation). If the firmware is loaded onto the device by the kernel, they would also need to have root access, perhaps even physical access to reduce the chance of temporarily bricking the card. It's a cool presentation, and impressive that they were able to learn enough to get this far.. but it's definitely chipset specific. Might be something worth considering, make sure you get your firmware images from a trusted source.. and be wary about purchased cards with socketed roms (..most sockets are PXE boot roms anyway, ASIC rom is often embedded). |
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Network Card Configuration | Freeco | FreeBSD Installation and Upgrading | 6 | 8th May 2010 11:11 AM |
HOWTO: Enemy Territory on FreeBSD | tangram | Guides | 0 | 9th June 2009 03:31 PM |
Double network card Dilemma | disappearedng | FreeBSD General | 6 | 1st September 2008 06:31 AM |
Realtek Gigabit 8169SC Network card not workies!! | ashleyd | FreeBSD General | 5 | 11th August 2008 12:50 PM |
Wireless Card on T61 | disappearedng | FreeBSD General | 1 | 13th July 2008 12:54 AM |