[LinuxBIOS] Hard drive passwords
Peter Stuge
peter at stuge.se
Tue Aug 14 16:11:16 CEST 2007
On Tue, Aug 14, 2007 at 04:07:28PM +0200, Quux wrote:
> there is also the issue, that unless BIOS disables the feature, a virus
> can lock up a modern hard drive for good at run time. this was reported
> on c't security some time ago.
Hah. :p
Well, not for good? It wouldn't be too difficult to make a brute
force thingy that tests a few passwords then resets power, then
continues.
I don't believe the drive ever locks up completely, regardless of the
number of tries.
> There were no known legacy BIOSes aware of this vulnerability at
> the time (~2005). --Q
LB 1 - legacy 0
//Peter
More information about the coreboot
mailing list