From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from list by lists.gnu.org with archive (Exim 4.71)
	id 1U7pty-0004Ey-LL
	for mharc-grub-devel@gnu.org; Tue, 19 Feb 2013 11:18:42 -0500
Received: from eggs.gnu.org ([208.118.235.92]:40976)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <phcoder@gmail.com>) id 1U7pto-0004DY-62
	for grub-devel@gnu.org; Tue, 19 Feb 2013 11:18:41 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <phcoder@gmail.com>) id 1U7ptg-00044j-E8
	for grub-devel@gnu.org; Tue, 19 Feb 2013 11:18:32 -0500
Received: from mail-wg0-f51.google.com ([74.125.82.51]:35517)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <phcoder@gmail.com>) id 1U7ptg-00043H-2K
	for grub-devel@gnu.org; Tue, 19 Feb 2013 11:18:24 -0500
Received: by mail-wg0-f51.google.com with SMTP id 8so5508518wgl.18
	for <grub-devel@gnu.org>; Tue, 19 Feb 2013 08:18:20 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
	h=x-received:message-id:date:from:user-agent:mime-version:to:subject
	:references:in-reply-to:x-enigmail-version:content-type;
	bh=8HSgLp5wtShGjzU5EmNsfO0ykK1AQX4teBgw6PcpBTk=;
	b=ePGag2b5LWwMVnvf+yC4bLUzyWOgjGoQMhbU3gQwh4HxwI31XubxfLjw4/2r2Bdy/4
	s32NvG/6SHtI/pLnuAy+wz+wiFfXJMq1+OL2K54sDbFSKyh9V4MIMB5WakXnDNLdRgQ3
	X9xAGZzyw+VKF9HBo3+hRBRgzMA4GrUSkDYESC13D4lZ9vk3DpBQ73e86GBC8bwyhgtJ
	WDA2A8xeWN2tM2mj7b+g7uwuqSkTHKTmW3RPdjbi3dlZ+r5/WHaq0YwAU7uhjDVXP5Hr
	dubG8rIm0MjytuwtG6XcGeYwqPlhhPL5FnB6sIN/5nMzXPn05WLZTYgA6WzzroQxuttz
	53xw==
X-Received: by 10.180.79.6 with SMTP id f6mr28117246wix.26.1361288903533;
	Tue, 19 Feb 2013 07:48:23 -0800 (PST)
Received: from debian.x201.phnet ([217.193.148.98])
	by mx.google.com with ESMTPS id n2sm26273745wiy.6.2013.02.19.07.48.22
	(version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128);
	Tue, 19 Feb 2013 07:48:22 -0800 (PST)
Message-ID: <51239EC2.5040203@gmail.com>
Date: Tue, 19 Feb 2013 16:48:18 +0100
From: =?UTF-8?B?VmxhZGltaXIgJ8+GLWNvZGVyL3BoY29kZXInIFNlcmJpbmVua28=?=
	<phcoder@gmail.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64;
	rv:10.0.12) Gecko/20130116 Icedove/10.0.12
MIME-Version: 1.0
To: The development of GNU GRUB <grub-devel@gnu.org>
Subject: Re: GRUB and the risk of block list corruption in extX
References: <51138645.4050405@ts.fujitsu.com>
	<CAEaD8JPvEzCy=msDCzezzAn25Nc-n6cLfSTU2Jao1z2MS3UbmA@mail.gmail.com>
	<51153345.2020509@ts.fujitsu.com>
	<0088990F-66E5-4F51-A9C4-3BD8963A6DA0@colorremedies.com>
	<512261FE.2090604@ts.fujitsu.com>
	<E2C68865-294D-47A5-846A-0C7CBDFBA9E5@colorremedies.com>
	<512347F2.4070901@gmail.com> <512376DB.6000908@ts.fujitsu.com>
In-Reply-To: <512376DB.6000908@ts.fujitsu.com>
X-Enigmail-Version: 1.4.1
Content-Type: multipart/signed; micalg=pgp-sha512;
	protocol="application/pgp-signature";
	boundary="------------enig34EF3249089EDA9AEFD9695D"
X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x [fuzzy]
X-Received-From: 74.125.82.51
X-BeenThere: grub-devel@gnu.org
X-Mailman-Version: 2.1.14
Precedence: list
Reply-To: The development of GNU GRUB <grub-devel@gnu.org>
List-Id: The development of GNU GRUB <grub-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/grub-devel>,
	<mailto:grub-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/grub-devel>
List-Post: <mailto:grub-devel@gnu.org>
List-Help: <mailto:grub-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/grub-devel>,
	<mailto:grub-devel-request@gnu.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Feb 2013 16:18:41 -0000

This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enig34EF3249089EDA9AEFD9695D
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

On 19.02.2013 13:58, Martin Wilck wrote:

> Vladimir,
>=20
> thanks for your thoughtful answer. I understand your concerns better no=
w.
>=20
> On 02/19/2013 10:37 AM, Vladimir '=CF=86-coder/phcoder' Serbinenko wrot=
e:
>=20
>> Suppose blocklist changes because of e.g. user mistake. Yet at the old=

>> location there is still the old core.img. For the time being. So this
>> problem may go unnoticed for years yet if someone has the ability to
>> create new files on the disk in question, he creates ton of files with=

>> copies of malicious sector, one of them will overwrite core and be
>> executed on next reboot.
>=20
> Am I understanding correctly that the user mistake you describe must be=

> some manipulation of "core.img" itself (e.g. running grub2-mkimage but
> now grub2-setup, which would classify as "mistake" in a blocklist setup=
)?

Yes. Such kind of mistakes. Or deleting GRUB and restoring it from backup=
=2E

>=20
> Martin
>=20




--------------enig34EF3249089EDA9AEFD9695D
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iF4EAREKAAYFAlEjnsMACgkQNak7dOguQgkPpwD/dI43MymWbhLytbgVU7mIRDeZ
kx8Baix/3b/rBeqmMqcBALRhmz72jZDRvcjWQUfoa/hrNz9lINC2ulxDJ1E6Saf1
=kmm5
-----END PGP SIGNATURE-----

--------------enig34EF3249089EDA9AEFD9695D--