Feature #5631
Disable PCMCIA when unused at boot
Start date:
Due date:
% Done:
0%
Description
I find pcmcia invaluable for wifi and card readers.
What would be gained by crippling it?
According to PCMCIA, 32bit PCMCIA gets DMA. This would be the main reason to disable it, I believe.
We discussed what usability vs. security balance we want.
See also disable expresscard? (Feature #5828)
There was a demonstration where a pcmcia firewire card was inserted into a live running system, the host OS auto-installed it, and then the firewire-exploit was used on its firewire ports pcmcia already gets dma, and could be used in other unforeseen ways the 5 minute window looks like the best compromise
wait for protect against external bus memory forensics (Feature #5451).
Subtasks
Related issues
| Related to Tails - Feature #5828: Disable ExpressCard when it's unused at boot | Confirmed | ||
| Related to Tails - Feature #5547: Deactivate PCMCIA, ExpressCard and FireWire if unused after 5 minutes | Confirmed | ||
| Blocked by Tails - Feature #5451: Protect against external bus exploitation | Confirmed | 2015-06-13 |
History
#1 Updated by intrigeri 2013-07-19 06:56:43
- Subject changed from disable pcmcia? to disable PCMCIA when unused at boot
#2 Updated by intrigeri 2013-07-19 06:57:03
- Type of work changed from Wait to Code
#3 Updated by BitingBird 2014-06-09 10:58:07
- Subject changed from disable PCMCIA when unused at boot to Disable PCMCIA when unused at boot
- Starter set to No
#4 Updated by BitingBird 2015-01-02 21:24:56
- related to Feature #5828: Disable ExpressCard when it's unused at boot added
#5 Updated by BitingBird 2015-01-02 23:16:44
- related to Feature #5547: Deactivate PCMCIA, ExpressCard and FireWire if unused after 5 minutes added