• Fwd: Re: arbitrary code execution on unformatted usb stick

    From estellnb@elstel.org@21:1/5 to All on Sat May 2 20:50:04 2020
    I am forwarding you this email in the hope that it will be useful:
    (They simply could not have known what reason I was installing mininet
    for and that I would try to install it at all if they would not have
    observed what I was doing even if they would have supposed that I wanna continue on a̅tea. Besides this kind of live-blocking every step that
    would be useful to achieve my goal is noteable on a computer that I
    believed to be totally clean in the time before. That was how things
    started to uncover.)

    -------- Originalnachricht --------
    Betreff: Re: arbitrary code execution on unformatted usb stick
    Datum: 02.05.2020 18:22
    Von: estellnb@elstel.org
    An: vince@vheuser.com

    Dear Vince

    I in deed mean that they have an internet connection channel for this offline computer. The computer does not have Wifi nor a LAN cable. What
    they were doing can not be explained by other means. I wonder how they
    transfer the data between the internet and that computer that should be separated physically from the internet. What I have observed can not be explained by malware unleashed at the time I have last plugged an USB
    stick.

    Elmar

    Am 02.05.2020 18:16, schrieb vince@vheuser.com:
    Yes, I know the article and the long history building up that
    capacity.  You may recall I backed you up on the DANE support
    discussion.  What you are developing is a reliable secure software
    system.

    The problem of compromised hardware is a different problem. Intel
    builds back door circuits for NSA into their chips So I don't think
    you'll build a laptop from them that NSA can't compromise.

    Unless you are engaging in international espionage or blowing the
    whistle on them like Eric Snowden, I don't think they will compromise
    their systems on low value targets.  In that case, it doesn't make
    much difference that they can get in, does it?

    On the other hand, a working DANE system can be used to keep our
    conversation between us against most others except NSA and that alone
    is worth something.  Isn't it?  Debian Security list members can't do
    must about compromised hardware except be aware of it....



    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)