Full Disclosure: Re: Bluetooth Activesync - requesting test

[Adam Laurie <adam.laurie () thebunker net>]

** copied relevant text back to full disclosure

Greg wrote:

[snip]
> What *I* think is wrong is that I should never have been able to discover
> the computer let alone sync with it but I could do both. Now I am prepared
> to believe that I am missing something here and be corrected which is why I
> asked for help. So, can you see anything wrong with my thinking? If not, do
> you also believe, as I do at the moment, that the PDA should never have been
> able to discover, pair or sync with the computer?
You are correct in thinking that if the computer was set to 
non-discoverable then the PDA should not have seen it. So, the logical 
conclusion is that either the computer was set to discoverable and it's 
user interface is misleading, or there is a bug whereby it's showing 
itself as non-discoverable when actually it's discoverable (we have seen 
this on a mobile phone before, so not completely out of the question).
> This all sounds like the old cordless phone days where phreakers used to
> walk up and down streets pushing the talk button on and off until they got a
> dial tone! 
That depends. Are you saying that you didn't have to touch the PC at all 
in order to pair the second device?
cheers,
Adam
--
Adam Laurie                         Tel: +44 (0) 20 7605 7000
The Bunker Secure Hosting Ltd.      Fax: +44 (0) 20 7605 7099
Shepherds Building                  http://www.thebunker.net
Rockley Road
London W14 0DA                      mailto:adam () thebunker net
UNITED KINGDOM                      PGP key on keyservers

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/