USB device monitor tool
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
usb-discover (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
*** This is NOT a bug, but a feature request that regards to security. ***
(Don't see any method to add a feature request..)
As a solution to badUSB for *Desktops*, a small software that monitors the USB devices on insertion may be used.
The software can utilize the 'udev' functionality of Linux.
This is an extermely useful solution since that it may be applied also to Android-base smartphones, because that 'udev' is a Linux kernel feature.
The key tenets of the software are as follows:
* The software will automatically block all USB devices until they are specifically allowed by the user.
* The first keyboard & mouse that are connected to the dekstop will be automatically allowed.
* Further USB devices will require the permission of the user. A prompt will appear and it will show all the info (=sysfs/USB attributes) about the device that is asking to connect to the PC. Four buttons should exist in the prompt: "Always allow", "Allow once", "Always block", "Block once". Either choice will be saved in a database and could be modified in a control/
* If a device presents itself as a keyboard, while a keyboard is already connected to the PC, then a special bold warning will appear in the prompt - alerting the user about the risk.
* All the info about USB devices that are allowed will be stored in a database. ('info' means sysfs attributes)
* The database has an export/import functionality.
---
How the software will work?
By exploiting the existing 'udev' functionality and running a software whenever a device is connected.
See the general method at the following link:
http://
An example for a udev file is in the attached text file "udev.rule".
See additional info about 'udev' at:
http://
Hello and thanks for the passing along this idea for a new feature.
I'm going to make the bug public and drop the security tag since there are no existing vulnerabilities reported in this feature request. In addition, I'll add a task for the upstream usb-discover project so that they can weigh in.