ubuntu-phone team mailing list archive

Thread
Date

Re: Status update: Planned changes to the developer mode/adb access

To: ubuntu-phone@xxxxxxxxxxxxxxxxxxx
From: Oliver Grawert <ogra@xxxxxxxxxx>
Date: Tue, 08 Jul 2014 10:36:29 +0200
In-reply-to: <53BB125E.2030809@canonical.com>
Sender: Oliver Grawert <oliver.grawert@xxxxxxxxxxxxxx>

hi,
Am Montag, den 07.07.2014, 17:34 -0400 schrieb Marc Deslauriers:
> On 14-07-07 06:43 AM, Oliver Grawert wrote:
> > 3) on request of the security team it should not be possible to enable
> > adb access if there is no password or the default password set for the
> > phablet user so that there is no predictable sudo password that is
> > identical on all devices. there are still a few blockers that prevent us
> > from finishing this bit (more on that below).
> 
> We also asked that adb refuse connections if the screen is locked. Is this
> implemented?

erm, no, what was asked was that you can only *enable* adb if there is a
sudo password set (one that isnt either empty or "phablet") and this is
what i am implementing atm ... we wont be able to keep smoke testing
working if you get kicked out when the device locks (and it would be
overly annoying) ... i think we need to make some compromise between
usability and security here ...

ciao
	oli

Attachment: signature.asc
Description: This is a digitally signed message part

Follow ups

Re: Status update: Planned changes to the developer mode/adb access
From: Marc Deslauriers, 2014-07-09
Re: Status update: Planned changes to the developer mode/adb access
From: Marc Deslauriers, 2014-07-08

References

Status update: Planned changes to the developer mode/adb access
From: Oliver Grawert, 2014-07-07
Re: Status update: Planned changes to the developer mode/adb access
From: Marc Deslauriers, 2014-07-07