• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Is FireWire target disk mode a Security Weakness?

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Macintosh

View previous topic :: View next topic  
Author Message
2bitwannabe
Just Arrived
Just Arrived


Joined: 18 Sep 2006
Posts: 0
Location: UK

Offline

PostPosted: Mon Sep 18, 2006 1:54 pm    Post subject: Is FireWire target disk mode a Security Weakness? Reply with quote

Hello,
Is FireWire target disk mode a weakness in Security?
The reason I ask is that I understand that practically any security can be broke if phyical access to the device is obtainable but wouldn't this feature just make it easlier for them to do some or all of the following
1) Obtain Access to the HDD Contents
2) Copy the Hard Drive for hacking the data later(if FileVault is used)
3) Erase the HDD

Has anybody looked into this and if so could they provide some feedback to this situation

Thanks
Dean
Back to top
View user's profile Send private message Visit poster's website
Ex0dus
Just Arrived
Just Arrived


Joined: 18 Nov 2005
Posts: 0
Location: Down Under

Offline

PostPosted: Thu Sep 21, 2006 10:00 am    Post subject: Reply with quote

yep can be a major security weakness. which is why you need to prevent them getting access to the machine in the first place.

this article here however talks about Open Firmware Password Protection. prevents the use of such things as target mode. but as always, not 100% full proof. i've never used it, but looks half decent. but could become a hassle if you need to use different things such as target mode regularly.

http://docs.info.apple.com/article.html?artnum=106482
Back to top
View user's profile Send private message
Sherman Homan
Just Arrived
Just Arrived


Joined: 26 Sep 2006
Posts: 0
Location: Norwell, MA

Offline

PostPosted: Tue Sep 26, 2006 7:18 pm    Post subject: Reply with quote

Target mode is a security problem! Of course it is also a solution to a whole bunch of other problems. Open Firmware is easily defeated by simply zapping the PRAM (repeatedly ~5 times) or pulling a ram chip out. (The Intel chip Macs don't do Open Firmware in any event.)

So, in answer to your question, Target Mode makes it much easier to access a protected machine. Open Firmware is easily defeated. Changing the Admin's password is trivial with the Start Up disk. However, File Vault is very strong medicine!
Back to top
View user's profile Send private message Send e-mail Visit poster's website
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Macintosh All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register