funsec mailing list archives
Re: Wondering
From: Rich Kulawiec <rsk () gsp org>
Date: Thu, 22 Oct 2009 08:50:58 -0400
On Wed, Oct 21, 2009 at 09:20:08PM -0700, Paul Ferguson wrote:
It doesn't have to be a "trusted admin" -- putting my "evil" cap on, it could certainly be someone who impersonates a "trusted admin" or "interested party".
Right. So now we have an existence proof that OnStar has this capability, and the problem reduces to figuring out how to exploit it. I wonder if anyone there has considered the consequences that would ensue should someone penetrate their security and send out the signal to shut them *all* down. ---Rsk _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Wondering chaim . rieger (Oct 21)
- Re: Wondering security curmudgeon (Oct 21)
- Re: Wondering Buhrmaster, Gary (Oct 21)
- Re: Wondering steve pirk [egrep] (Oct 21)
- Re: Wondering Paul Ferguson (Oct 21)
- Re: Wondering Rich Kulawiec (Oct 22)
- OnStar and law enforcement (was: Wondering) Young, Keith (Oct 22)
- Re: Wondering steve pirk [egrep] (Oct 22)
- Re: Wondering Rich Kulawiec (Oct 22)
- Re: Wondering Buhrmaster, Gary (Oct 21)
- Re: Wondering security curmudgeon (Oct 21)