Hi,
Call me paranoid but I would like to know if there is any way to limit
all types of communication to just several devices by checking with the
hardware addresses.
I understand that in principle not being discoverable and the pin
challenge should help you with being secure but to me this is not enough.
I'm currently running 2 class 1 devices to serve my flat with rfcomm for
dial in and I for sure do not want anyone besides me to get access to
these com ports.
Is there anything I can do to tighten security and limit all
communication to just some devices?
I do understand that even this is no guarantee for anything, but I'd for
sure feel better :)
kind regards Philip
-------------------------------------------------------
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
_______________________________________________
Bluez-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/bluez-users
Hi Philip,
> > you must change the code of the accept routine in the RFCOMM server
> > program that you are using.
>
> This is not quite what I want. I'd like to limit this at lowest layer
> possible. Actually I'm starting to wonder that there seems to be
> _nothing_ to that, which, at least I think so, poses a potential
> security risk.
you can of course limit this at HCI level, but then you must change the
kernel code. There is somekind of filter on the HCI hardware level, but
I am not quite sure if it can be used for that. Check the HCI part of
the Bluetooth specification.
Regards
Marcel
-------------------------------------------------------
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
_______________________________________________
Bluez-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/bluez-users
Marcel Holtmann wrote:
> you must change the code of the accept routine in the RFCOMM server
> program that you are using.
This is not quite what I want. I'd like to limit this at lowest layer
possible. Actually I'm starting to wonder that there seems to be
_nothing_ to that, which, at least I think so, poses a potential
security risk.
kind regards Philip
Hi Philip,
> Call me paranoid but I would like to know if there is any way to limit
> all types of communication to just several devices by checking with the
> hardware addresses.
>
> I understand that in principle not being discoverable and the pin
> challenge should help you with being secure but to me this is not enough.
>
> I'm currently running 2 class 1 devices to serve my flat with rfcomm for
> dial in and I for sure do not want anyone besides me to get access to
> these com ports.
>
> Is there anything I can do to tighten security and limit all
> communication to just some devices?
you must change the code of the accept routine in the RFCOMM server
program that you are using.
Regards
Marcel
-------------------------------------------------------
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
_______________________________________________
Bluez-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/bluez-users