| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu Feb 9 13:25:26 2006 From: adam.laurie at thebunker.net (Adam Laurie) Subject: Bluetooth Activesync - requesting test ** copied relevant text back to full disclosure Greg wrote: [snip] > > What *I* think is wrong is that I should never have been able to discover > the computer let alone sync with it but I could do both. Now I am prepared > to believe that I am missing something here and be corrected which is why I > asked for help. So, can you see anything wrong with my thinking? If not, do > you also believe, as I do at the moment, that the PDA should never have been > able to discover, pair or sync with the computer? You are correct in thinking that if the computer was set to non-discoverable then the PDA should not have seen it. So, the logical conclusion is that either the computer was set to discoverable and it's user interface is misleading, or there is a bug whereby it's showing itself as non-discoverable when actually it's discoverable (we have seen this on a mobile phone before, so not completely out of the question). > > This all sounds like the old cordless phone days where phreakers used to > walk up and down streets pushing the talk button on and off until they got a > dial tone! That depends. Are you saying that you didn't have to touch the PC at all in order to pair the second device? cheers, Adam -- Adam Laurie Tel: +44 (0) 20 7605 7000 The Bunker Secure Hosting Ltd. Fax: +44 (0) 20 7605 7099 Shepherds Building http://www.thebunker.net Rockley Road London W14 0DA mailto:adam@...bunker.net UNITED KINGDOM PGP key on keyservers
Powered by blists - more mailing lists