Y
Hacker News
new
|
ask
|
show
|
jobs
by
pmoriarty
3340 days ago
So if you don't use the RJ45 port on the motherboard but instead use an RJ45 port on an expansion card instead you're safe?
1 comments
mschuster91
3340 days ago
Partially. Expansion cards use PCI-E which has DMA capability, so a bug/backdoor in their firmware can very well be used to attack a system.
But I believe newer systems with MMUs acting as "firewalls" for DMA are safe from this vector.
link
woodrowbarlow
3340 days ago
there's also the concern of physical attacks, via the motherboard's RJ45 or USB.
link
mschuster91
3340 days ago
At least USB doesn't have device-initiated DMA, but USB descriptor parsing bugs have in the past led to exploits (I remember the PlayStation jailbreak).
link
pmoriarty
3339 days ago
A good argument to epoxy those ports shut, if you're really worried about that.
link
But I believe newer systems with MMUs acting as "firewalls" for DMA are safe from this vector.