Re: dell-smm-hwmon: security problems

2016-06-08 Thread Pali Rohár
On Wednesday 08 June 2016 19:37:43 Guenter Roeck wrote: > On Wed, Jun 08, 2016 at 03:55:48PM +0200, Pali Rohár wrote: > > And do you have idea what to do with problem 1)? > > If you really want to do something about it, you could whiteout the > serial number if CAP_SYS_ADMIN is not set. Ok, that

Re: dell-smm-hwmon: security problems

2016-06-08 Thread Pali Rohár
On Wednesday 08 June 2016 19:54:35 Austin S. Hemmelgarn wrote: > On 2016-06-08 13:37, Guenter Roeck wrote: > > On Wed, Jun 08, 2016 at 03:55:48PM +0200, Pali Rohár wrote: > >> On Wednesday 08 June 2016 15:24:10 Guenter Roeck wrote: > >>> On 06/08/2016 02:57 AM, Pali Rohár wrote: > Hello! > >>>

Re: dell-smm-hwmon: security problems

2016-06-08 Thread Austin S. Hemmelgarn
On 2016-06-08 13:37, Guenter Roeck wrote: On Wed, Jun 08, 2016 at 03:55:48PM +0200, Pali Rohár wrote: On Wednesday 08 June 2016 15:24:10 Guenter Roeck wrote: On 06/08/2016 02:57 AM, Pali Rohár wrote: Hello! Mario wrote me about two I think security problems in dell-smm-hwmon driver and I woul

Re: dell-smm-hwmon: security problems

2016-06-08 Thread Guenter Roeck
On Wed, Jun 08, 2016 at 03:55:48PM +0200, Pali Rohár wrote: > On Wednesday 08 June 2016 15:24:10 Guenter Roeck wrote: > > On 06/08/2016 02:57 AM, Pali Rohár wrote: > > > Hello! > > > > > > Mario wrote me about two I think security problems in > > > dell-smm-hwmon driver and I would like to ask you

Re: dell-smm-hwmon: security problems

2016-06-08 Thread Pali Rohár
On Wednesday 08 June 2016 15:24:10 Guenter Roeck wrote: > On 06/08/2016 02:57 AM, Pali Rohár wrote: > > Hello! > > > > Mario wrote me about two I think security problems in > > dell-smm-hwmon driver and I would like to ask you, how to fix > > them. > > > > 1) File /proc/i8k (exists only when kern

Re: dell-smm-hwmon: security problems

2016-06-08 Thread Guenter Roeck
On 06/08/2016 02:57 AM, Pali Rohár wrote: Hello! Mario wrote me about two I think security problems in dell-smm-hwmon driver and I would like to ask you, how to fix them. 1) File /proc/i8k (exists only when kernel is compiled with CONFIG_I8K) exports DMI_PRODUCT_SERIAL and it can be read by ord

dell-smm-hwmon: security problems

2016-06-08 Thread Pali Rohár
Hello! Mario wrote me about two I think security problems in dell-smm-hwmon driver and I would like to ask you, how to fix them. 1) File /proc/i8k (exists only when kernel is compiled with CONFIG_I8K) exports DMI_PRODUCT_SERIAL and it can be read by ordinary user, without root permission. Norm