Bugtraq: Re: [Full-disclosure] Firewire Attack on Windows Vista

[Tim <tim-security () sentinelchicken org>]

> Is it not possible for Windows (or any OS) to open up DMA for a device
> only to a certain range? 
>
> If not, what options are available? 
I have various forms of RSI and don't feel like typing it again: 

On Thu, Mar 06, 2008 at 12:00:09PM -0800, Tim wrote:
> [...]
> Of course this is not an optimal fix.  The drivers should just
> automatically restrict the DMA accesses in real time to a range that is
> safe but still permits devices to use it.  (Presumably to buffers
> allocated specifically for I/O.)  Not sure if some devices would still
> have problems with this, but I think this is the intended operation of
> ieee1394 based on the specs and I'd imagine it would work on a greater
> number of devices than having it disabled completely.
> [...]
So yes, this is possible.  AFAIK, driver writers on all sides have just
been lazy.  At least with free OSes they have a lame hack to protect
you.

tim