usbguard
usbguard copied to clipboard
USBGuard
USBGuard is a software framework for implementing USB device authorization policies (what kind of USB devices are authorized) as well as method of use policies (how a USB device may interact with the...
Please bring back the Qt applet - it was much easier and more user-friendly to quickly allow/block the device than using the CLI. Or at least make it a separate...
I used the rules from “Reject devices with suspicious combination of interfaces”, so perhaps it should be said something about USB devices acting as a bridge. My Transcend StoreJet 25H3...
[Thunderspy](https://thunderspy.io/): > We have found 7 vulnerabilities in Intel’s design and developed 9 realistic scenarios how these could be exploited by a malicious entity to get access to your system,...
Usbguard-daemon creates files in world-writable directories (`/dev/shm`, `/tmp`) with rather predictable file names (e.g. `/dev/shm/qb-usbguard-request-7096-835-12-data`). Also `O_EXCL` flag is not used when opening the files. This could be exploited by...
Hello, It would be nice to manage several rules.conf files (one specific for USB keys). Is it possible to reload the rules.conf file(s) without restarting the usbguard service? Regards
So, this is my first "issue" that I would have ever submitted to any 'Git' project of any kind, so apologies in advance if this is the incorrect way to...
I just upgraded my kernel to the latest stable (5.0.7->5.0.9) and I notticed that `usbguard-applet-qt` has a gray icon. In it's log I can see the following messages: ``` [Sat...
According to systemd documentation for forking services: "The child continues to run as the main service process, and the service manager will consider the unit started when the parent process...
In the file `/etc/usbguard/usbguard-daemon.conf` there are two settings: ``` ImplicitPolicyTarget=block InsertedDevicePolicy=apply-policy ``` When they are set in the way you see above, you can whitelist some devices and add them...
per-interface authorization was recently added to the kernel, so we should reflect this in USBGuard too. https://www.spinics.net/lists/linux-usb/msg126182.html
