Home page logo

basics logo Security Basics mailing list archives

reconsidering physical security: pod slurping
From: Abe Usher <abe.usher () sharp-ideas net>
Date: Sun, 12 Jun 2005 23:34:33 -0400

pod slurping

I've written a report that explores an idea that has been known by the security community for decades: physical security is important to information system security.

A year ago a report was published by the Gartner Group warning that iPods <http://www.apple.com/ipod/> (and other multi-gigabyte portable storage devices) pose a security risk for enterprises <http://www.infoworld.com/article/04/07/06/HNipodsrisk_1.html>. I've created an application (*slurp.exe*) that demonstrates this concept. When the program is run from an iPod, it can __very__quickly__ copy thousands of interesting files* from a PC to an iPod.

The full article and proof-of-concept application are available at:

Abe Usher, CISSP

* Office documents, *.pdf,*.xml, *.dbf, *.log, *.dat, *.txt, *.csv, *.htm, *.url, et cetera

  By Date           By Thread  

Current thread:
  • reconsidering physical security: pod slurping Abe Usher (Jun 13)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]