security - How can USB vendor ID and product ID values be spoofed on OSX? -

-

we considering using vendor , product id of usb device (obtained via iokit) unlock features of application. i'm aware these values can spoofed, i'm not sure how can done on osx. involved in spoofing vendor , product id? non-programmer can easily?

a non-programmer cannot that. can writing kernel extension (an iokit driver) device, has matching dictionary matching real vendor-/product-id of device, causes system automatically load kernel extension when device connected , pass reference device object. driver responsible initializing device , create necessary user space information necessary iokit framework (the user space library) communicate device. apple has default iokit drivers usb device classes (that's why don't need driver every usb mouse or keyboard example), if there more specific driver found, driver used instead. , when creating user space data, of course driver may lie vendor-/product-id, causing user space program see false values. since iokit written in c++ , heavily depends upon objects , object inheritance, not necessary write driver scratch, instead can inherit apple's default driver , override methods , otherwise rely upon super implementation. however, writing iokit kernel drivers not easy , people developing mac software years may have no idea how , iokit documentation 1 of worst ones apple offering.

so answer question: possible? yes. easy? no. can non-programmers it? not, unless else has written ready use extension them, need install.


Comments

Post a Comment

Popular posts from this blog

objective c - Change font of selected text in UITextView -

-
can suggest me how change font of selected text in uitextview.i cannot use uiwebview since have edit text. have seen pages app.how possible in app. see formatting text within uilabel differently . since need editing, should @ javascript-based editors such ckeditor or tinymce . highly recommend wwdc 2011 video session 511: "rich text editing in safari on ios."
Read more

php - Accessing POST data in Facebook cavas app -

-
so i've got simple form in canvas / iframe facebook app, , i'm trying pass along values post. reading on s.o. , fb's latest docs, understand it, data send via post form can accessed on receiving end $_request object. i read on thread on s.o. in order post forms work need pass along input named "signed_request" value current signed_request (i have signed request working ok otherwise...all login , authentication stuff working fine). isnt mentioned anywhere in official fb docs. so problem comes in $_request object signed request, , bunch of other session stuff. form inputs found. the way can read them set method of form "request" isn't real form method. takes of inputs , sends them args in url. horrible. here's sample page canvas app form i'm using try debug (leaving out authentication stuff): <form enctype="application/x-www-form-urlencoded" method="post" target="_top" id="my_form" action=...
Read more

c# - Getting control value when switching a view as part of a multiview -

-
i have following code in aspx page: <asp:button id="display_button" runat="server" text="display" onclick="button1_click" /> &nbsp; <asp:button id="edit_button" runat="server" text="edit" onclick="button2_click" /> &nbsp; <asp:button id="save_button" runat="server" text="save" onclick="button3_click" visible="false" /> &nbsp; <asp:multiview id="multiview1" runat="server" activeviewindex="0"> <asp:view id="view1" runat="server"> <asp:formview id="view_program" runat="server"> <itemtemplate> <%# eval("status").tostring().trim() %> </itemtemplate> </asp:formview> </asp:view> <asp:view id="view2" runat="server"> ...
Read more