zlacker

[return to "Can you get root with only a cigarette lighter?"]
1. i4k+en[view] [source] 2024-10-07 15:45:18
>>1317+(OP)
This was very well written and an amazing challenge but my brain is wired to that "hacking common sense" that if you have physical access then it's already over... the first thing that came to my mind was that, if you have physical access, then you can reflash the BIOS, install a driver backdoor, you can boot a live OS and then it's just a matter of tampering /etc/{passwd,shadow,groups, etc} ...

but I remembered that most of the physical access hacks would not be possible if the disk is encrypted.. which then makes this kind of hack enormously attractive.

The antenna idea can be extended to be a piece of hardware with the interference device built-in (piezo or whatever) which communicates with the external world with any wireless medium and then the attacker can trigger the interference remotely. This, plus a website controlled by the hacker which the victim is scammed to visit can be enough to make it viable.

◧◩
2. johnis+qo[view] [source] 2024-10-07 15:52:08
>>i4k+en
> I remembered that most of the physical access hacks would not be possible if the disk is encrypted..

Only if you have not booted into your system through using a keyfile or a passphrase to decrypt the data, i.e. if your PC is shut down. I have full disk encryption, and when I boot into my system, it uses the keyfile with which it would perform the decryption, and boom, I have my PC ready to be accessed physically.

◧◩◪
3. causal+Mc3[view] [source] 2024-10-08 14:56:30
>>johnis+qo
Would flashing BIOS post-boot really work though?

Also don't see how the article's exploit would be useful pre-decryption.

[go to top]