Posted: Mon Sep 18, 2006 1:54 pm Post subject: Is FireWire target disk mode a Security Weakness?
Hello,
Is FireWire target disk mode a weakness in Security?
The reason I ask is that I understand that practically any security can be broke if phyical access to the device is obtainable but wouldn't this feature just make it easlier for them to do some or all of the following
1) Obtain Access to the HDD Contents
2) Copy the Hard Drive for hacking the data later(if FileVault is used)
3) Erase the HDD
Has anybody looked into this and if so could they provide some feedback to this situation
yep can be a major security weakness. which is why you need to prevent them getting access to the machine in the first place.
this article here however talks about Open Firmware Password Protection. prevents the use of such things as target mode. but as always, not 100% full proof. i've never used it, but looks half decent. but could become a hassle if you need to use different things such as target mode regularly.
Joined: 26 Sep 2006 Posts: 0 Location: Norwell, MA
Posted: Tue Sep 26, 2006 7:18 pm Post subject:
Target mode is a security problem! Of course it is also a solution to a whole bunch of other problems. Open Firmware is easily defeated by simply zapping the PRAM (repeatedly ~5 times) or pulling a ram chip out. (The Intel chip Macs don't do Open Firmware in any event.)
So, in answer to your question, Target Mode makes it much easier to access a protected machine. Open Firmware is easily defeated. Changing the Admin's password is trivial with the Start Up disk. However, File Vault is very strong medicine!
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum