ubuntu-phone team mailing list archive

[Matthias Apitz <guru@xxxxxxxxxxx>]

El d�Friday, June 12, 2015 a las 09:39:12AM +0200, Michael Zanetti escribi�> > Sorry, but I keep thinking that if anyone who found a device which
> > is locked by a passcode, but SIM signed in, can accept any incoming
> > call, that this is a security issue.
> 
> I guess I could agree, although, the other end is probably not going
> to give you bank details if the voice isn't what it expects...
> 
> > More, can the attacker after accepting the call even make an
> > outgoing call to "invite" a 3rd person into the conference or has
> > access to contact data while in the call? I have not tested this.
> 
> You should before complaining about it.

Just to clarify: I was not complaining, but asking! Meanwhile I have
done a test and it seems(!) that you can only run the incoming call, no
other functions. At least I have not found aqny way in a five minute
call.

	matthias
-- 
Matthias Apitz               |  /"\   ASCII Ribbon Campaign:
E-mail: guru@xxxxxxxxxxx     |  \ /   - No HTML/RTF in E-mail
WWW: http://www.unixarea.de/ |   X    - No proprietary attachments
phone: +49-176-38902045      |  / \   - Respect for open standards
                             | en.wikipedia.org/wiki/ASCII_Ribbon_Campaign