<div dir="auto"><div><div class="gmail_quote"><<a href="mailto:rreiter91@gmail.com">rreiter91@gmail.com</a>><br>Date: Mar 16, 2017 12:49 PM<br>Subject: Re: [GTALUG] DMA kernel attacks<br>To: "Lennart Sorensen" <<a href="mailto:lsorense@csclub.uwaterloo.ca">lsorense@csclub.uwaterloo.ca</a><blockquote class="quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="auto"><div class="quoted-text"><div><div class="gmail_extra"><div class="gmail_quote">On Mar 13, 2017 10:50 AM, "Russell Reiter" <<a href="mailto:rreiter91@gmail.com" target="_blank">rreiter91@gmail.com</a>> wrote:<br type="attribution"><blockquote class="m_-187108693022579535quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="auto"><div class="m_-187108693022579535quoted-text"><div><br><div class="gmail_extra"><br><div class="gmail_quote">On Mar 13, 2017 10:27 AM, "Lennart Sorensen" <<a href="mailto:lsorense@csclub.uwaterloo.ca" target="_blank">lsorense@csclub.uwaterloo.ca</a>> wrote:<br type="attribution"><blockquote class="m_-187108693022579535m_-493729367253425671quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="m_-187108693022579535m_-493729367253425671elided-text">On Sat, Mar 11, 2017 at 01:02:45PM -0500, Russell Reiter via talk wrote:<br>
> Another DEFCON talk. This is a hardware attack on M$, OSX & Linux, PCIleech<br>
> = 150mbs over usb3.<br></div></blockquote></div></div></div></div></div></blockquote></div></div></div><div dir="auto"><br></div></div><div dir="auto">Sorry, I wasn't clear here. The PCI card goes in the attacking machine. The steal is over USB. Two tries for the linux box.</div><div class="quoted-text"><div dir="auto"><br></div><div dir="auto"><div class="gmail_extra"><div class="gmail_quote"><blockquote class="m_-187108693022579535quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="auto"><div class="m_-187108693022579535quoted-text"><div><div class="gmail_extra"><div class="gmail_quote"><blockquote class="m_-187108693022579535m_-493729367253425671quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="m_-187108693022579535m_-493729367253425671elided-text">
><br>
> <a href="https://www.youtube.com/watch?v=fXthwl6ShOg&list=PL9fPq3eQfaaAvXV3hJc4yHuNxoviVckoE&index=15#t=2508.995164" rel="noreferrer" target="_blank">https://www.youtube.com/watch?<wbr>v=fXthwl6ShOg&list=PL9fPq3eQfa<wbr>aAvXV3hJc4yHuNxoviVckoE&index=<wbr>15#t=2508.995164</a><br>
<br>
</div>Well first you have to install your PCIe card in the target machine,<br>
which means you would have to shut it down first, which could make<br>
booting it again difficult.</blockquote></div></div></div><div dir="auto"><br></div></div><div dir="auto">Ummm ... PCIe is hot plugable with the right software.</div><div class="m_-187108693022579535quoted-text"><div dir="auto"><div class="gmail_extra"><div class="gmail_quote"><blockquote class="m_-187108693022579535m_-493729367253425671quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><br>
I thought initially they found a flaw in USB3, but no that is not<br>
the case.<br>
<br>
So it doesn't do anything we didn't already have a problem with in<br>
firewire years ago. So yes if you get to put your own PCIe hardware in<br>
a machine, you can DMA memory. And it's a bit faster than a firewire<br>
card was.<br>
<br>
The firewire and thunderbolt issues in the past seem much more of a<br>
concern than this because they were hardware already present in the<br>
target machine. This is pretty much just irrelevant.<br>
<font color="#888888"></font></blockquote></div></div></div><div dir="auto"><br></div></div><div dir="auto">Maybe to you. I dont consider increase of transfer rate from 3mbs to 150mbs irrelevant by any means. </div><div dir="auto"><br></div><div dir="auto">Just because I highlight one bit of information which I gleaned from a source and wanted to share, as a matter of general interest; this doesent mean I didn't want you to learn from the post. </div><div dir="auto"><br></div><div dir="auto">I did it because I do want you to learn from it. Like you just now learned PCIe can be accessed without rebooting.</div></div></blockquote></div></div></div></div></div></blockquote></div></div><div dir="auto"><br></div><div dir="auto">Among other things.</div><div dir="auto"><div class="gmail_quote"><blockquote class="quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="auto"><div class="quoted-text"><div dir="auto"><div class="gmail_extra"><div class="gmail_quote"><blockquote class="m_-187108693022579535quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="auto"><div dir="auto"><font color="#888888"><br></font></div><font color="#888888"><div dir="auto"><br></div><div dir="auto"><br></div><div dir="auto"><div class="gmail_extra"><div class="gmail_quote"><blockquote class="m_-187108693022579535m_-493729367253425671quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><font color="#888888">
--<br>
Len Sorensen<br>
</font></blockquote></div><br></div></div></font></div>
</blockquote></div><br></div></div></div></div>
</blockquote></div><br></div></div>