[Secure-testing-team] Disabling autorun by default
Michael Gilbert
michael.s.gilbert at gmail.com
Mon Feb 14 04:18:17 UTC 2011
Just curious whether we should follow Microsoft's [0] and Ubuntu's [1]
lead and make it a policy to disable desktop autorun options by default.
Note that this was one of the flaws that allowed stuxnet to propagate to
network isolated machines.
So far, I've only checked xfce, and it has autorun enabled by default.
If there is consensus that this would be a good thing, then I'll start
submitting bugs. Not sure if it would be worth pushing this in a point
update for the stable releases also?
Best wishes,
Mike
[0] http://www.itnews.com.au/News/247616,microsoft-says-rip-windows-xp-autorun.aspx
[1] http://www.outflux.net/blog/archives/2011/02/11/shaping-the-direction-of-research/
More information about the Secure-testing-team
mailing list