Hacker News new | ask | show | jobs
by chatmasta 972 days ago
I agree with you, but that doesn't negate what I said about this being correctable in software. Whereas if someone implants a malicious HSM in my iPhone, or a screen that has a secondary chip connected to it recording everything I touch, then that's not correctable in software.

It also does not qualify as "pwning" your device, at least for my interpretation of the word "pwn."
2 comments
lxgr 972 days ago
> that doesn't negate what I said about this being correctable in software

“My house is on fire, but that is easily correctable by the fire department using water, a cheap and widely available commodity. The real concern is alien abductions in my neighborhood. We are defenseless against these!”

> It also does not qualify as "pwning" your device, at least for my interpretation of the word "pwn."

Random people on the same train as me being able to crash my phone fits my definition of “pwned”. And so does me having to use wired headphones as a countermeasure.

link
AshamedCaptain 972 days ago
Your threat model is still ridiculously upside down. You are literally arguing that you are more worried about the possibility that someone subjects you to some type of maid attack (which requires an almost implausible level of dedication) rather than someone with a 5$ atmel chip claiming to be an Apple TV, automatically pairing with your device, and afterwards doing god knows what with it (including leaking more data than _anything you could do_ with a even country-agent level trojanized replacement screen). All from the comfort of their car and with so little targeting they could practically wardrive with it.
link
chatmasta 972 days ago
I'm assuming I can opt-into the threat, i.e. it's possible for me to disable Bluetooth to remove my exposure to this class of attacks. When I turn on my WiFi I know that I'm subjecting myself to de-auth attacks, for example.

I can't opt out of a hardware attack once a malicious repair shop has replaced a critical module in my phone with their own.

Like I said, I'm more concerned with the latter. It doesn't mean I'm not concerned about attacks from external devices too.

link
AshamedCaptain 972 days ago
> can't opt out of a hardware attack once a malicious repair shop

So apparently you forever disable Bluetooth out of concern but at the same time think it is unavoidable to leave your iPhone unattended at random repair shops? At least the maid stuff (even if astronaut-level engineering) is remotely plausible.

link
lxgr 972 days ago
Since when can de-auth attacks crash devices? That is what’s happening here!
link