From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with archive (Exim 4.43) id 1KbMZE-0000Ys-O2 for mharc-grub-devel@gnu.org; Thu, 04 Sep 2008 17:40:40 -0400 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1KbMZC-0000WQ-Uv for grub-devel@gnu.org; Thu, 04 Sep 2008 17:40:38 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1KbMZC-0000VK-8u for grub-devel@gnu.org; Thu, 04 Sep 2008 17:40:38 -0400 Received: from [199.232.76.173] (port=39657 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1KbMZB-0000V1-W2 for grub-devel@gnu.org; Thu, 04 Sep 2008 17:40:38 -0400 Received: from fg-out-1718.google.com ([72.14.220.155]:10765) by monty-python.gnu.org with esmtp (Exim 4.60) (envelope-from ) id 1KbMZB-0004or-Lv for grub-devel@gnu.org; Thu, 04 Sep 2008 17:40:37 -0400 Received: by fg-out-1718.google.com with SMTP id l26so571643fgb.30 for ; Thu, 04 Sep 2008 14:40:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :x-enigmail-version:content-type:content-transfer-encoding; bh=k9Fv87cfoYGS8Pwk+cJDDH210ulHhEdMkI53EmEO8/w=; b=t5Hr0MDlo2g8coxS9P+bs/Giu+3/7O1ln3VFHoST0Ep5IZXIOptj2p2g2atXpU3DRa cYZovLUTFSW24/FIFReeZAk8y9L+9qDxKot7cH1qPzXQ8H7xrSbh03FfTGHAlu7XGXBO qac82PSNIwa9YVjebtIANy6HaAKuRtZAUkCns= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:x-enigmail-version:content-type :content-transfer-encoding; b=qGDCXahTk5BOFsog2tc58Ik42/lCR6cmqg5UsVuoSO4T88Rl8z/s8FI34nc4Wmb92b eSXRueMssCzdStATNq9NXf99RbKjJIZ0+tYyYdLvdgCBzEe9ht4Ws6fmkpWKUCWgqZGf eUpFCm7FTfNR4uATe5PXvu4pTzNfjxMXajco8= Received: by 10.86.82.16 with SMTP id f16mr8138630fgb.16.1220564436770; Thu, 04 Sep 2008 14:40:36 -0700 (PDT) Received: from ?192.168.1.15? ( [85.0.144.99]) by mx.google.com with ESMTPS id 3sm108264fge.3.2008.09.04.14.40.34 (version=TLSv1/SSLv3 cipher=RC4-MD5); Thu, 04 Sep 2008 14:40:35 -0700 (PDT) Message-ID: <48C055D0.5010402@gmail.com> Date: Thu, 04 Sep 2008 23:40:32 +0200 From: phcoder User-Agent: Thunderbird 2.0.0.16 (X11/20080724) MIME-Version: 1.0 To: The development of GRUB 2 References: <48BE5DE9.4090302@gmail.com> <20080903103654.GC29762@thorin> <48BE838E.9090204@gmail.com> <48BEC078.7030006@nic.fi> <48BEC6AD.5040305@gmail.com> <48BECE1A.1070406@nic.fi> <20080904193714.GE9133@thorin> In-Reply-To: <20080904193714.GE9133@thorin> X-Enigmail-Version: 0.95.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-detected-kernel: by monty-python.gnu.org: Linux 2.6 (newer, 2) Subject: Re: [RFC] Boot parameters and geometrical stability X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: The development of GRUB 2 List-Id: The development of GRUB 2 List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Sep 2008 21:40:39 -0000 Robert Millan wrote: > On Wed, Sep 03, 2008 at 08:49:14PM +0300, Vesa Jääskeläinen wrote: >> Possibilites are there, but basically they are limited to something like: >> >> (ata0) (pci-X-Y-Z:ata0) (usb-X-Y:scsi0) (pci-X-Y-Z:scsi0) > > I think this is overkill, and doesn't really address the root of the problem. > > The real security problem here is whether the executable code you're loading is > trusted, NOT where you load the code from. If the code is loaded from the same place as we do then we can trust it (if attacker could modify the code, he could also modify us) > > When you use crypto checksums, if you get a match why would you care if you're > loading from (some-safe-disk) or from (evil-place)? It's the same data! > Yes it is. But I don't know how big the crypto-checksum-check module would be. Vladimir 'phcoder' Serbineko