Re: [PATCH] USB: disable all RNDIS protocol drivers

From: Jan Engelhardt
Date: Wed Jan 11 2023 - 08:41:19 EST

Next message: Robin Murphy: "Re: [PATCH v8 24/26] PCI: dwc: Set coherent DMA-mask on MSI-address allocation"
Previous message: Yanchao Yang (杨彦超): "Re: [PATCH net-next v1 02/13] net: wwan: tmi: Add buffer management"
In reply to: James Hilliard: "Re: [PATCH] USB: disable all RNDIS protocol drivers"
Next in thread: Greg Kroah-Hartman: "Re: [PATCH] USB: disable all RNDIS protocol drivers"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wednesday 2022-11-23 13:46, Greg Kroah-Hartman wrote:
>
>The Microsoft RNDIS protocol is, as designed, insecure and vulnerable on
>any system that uses it with untrusted hosts or devices. Because the
>protocol is impossible to make secure, just disable all rndis drivers to
>prevent anyone from using them again.
>
>Windows only needed this for XP and newer systems, Windows systems older
>than that can use the normal USB class protocols instead, which do not
>have these problems.

In other news, someone just proposed adding "RNDIS" things to UEFI, so
now the security problem is added right back into machines but at
another layer?!

https://edk2.groups.io/g/devel/topic/patch_1_3/95531719

Next message: Robin Murphy: "Re: [PATCH v8 24/26] PCI: dwc: Set coherent DMA-mask on MSI-address allocation"
Previous message: Yanchao Yang (杨彦超): "Re: [PATCH net-next v1 02/13] net: wwan: tmi: Add buffer management"
In reply to: James Hilliard: "Re: [PATCH] USB: disable all RNDIS protocol drivers"
Next in thread: Greg Kroah-Hartman: "Re: [PATCH] USB: disable all RNDIS protocol drivers"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]