Filtering Against Persistent Firmware Rootkits - BadUSB, HDDHack, UEFI

JD jd1008 at
Wed Mar 22 18:16:55 UTC 2017

It is virtually impossible to guard against firmware rootkits because
cpu cannot prevent the card's or device's cpu from from executing that code.
This was made known by the malware embedded in disk drives' FW, and
other peripherals' FW, such as wifi and graphics, to name a couple.
It is possible for such device FW to insert malware into,
or modify, the RAM resident OS.
Apparently making OS's executable segments "non-writeable" can be gotten 

On 03/22/2017 03:19 AM, Tomasz CEDRO wrote:
> I have created and for low-level access to
> embedded system resources, all developed on FreeBSD :-) Still no interest
> from investors/sponsors to support iCeDeROM so I could focus 108% on its
> development :-/
> --
> _______________________________________________
> freebsd-questions at mailing list
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at"

More information about the freebsd-questions mailing list