56
Do you protect your USB port? (github.com)
submitted 1 month ago by j1racoon@lemmy.ml to c/privacy@lemmy.ml
30 comments fedilink hide all child comments

...by physically removing a port (who would do that) or using the software?

all 31 comments
sorted by: hot top controversial new old
[-] ParlimentOfDoom@piefed.zip 66 points 1 month ago

Yes. It's inside my house where no one else can get to it.

[-] RodgeGrabTheCat@sh.itjust.works 20 points 1 month ago

I have the port set to "Charge only when locked". I never use public charging stations.

[-] JustEnoughDucks@slrpnk.net 8 points 1 month ago

Sony, in their infinite wisdom, defaults full data without the ability to choose a default, you can only deny upon plugging it in and it will eventually revert back to full data anyway

[-] Ferrous@lemmy.ml 3 points 1 month ago

This is the best strategy.

However, if you ever knew youd NEED to use public charging, check out USB condom adapters. They open circuit the data pins.

[-] chemicalwonka@discuss.tchncs.de 18 points 1 month ago

You cant protect yourself from Microsoft that is the biggest threat

[-] ell1e@leminal.space 4 points 1 month ago

I agree. Kind of would seem more useful to have such a UI on Linux.

[-] ATS1312@lemmy.dbzer0.com 5 points 1 month ago

USBGuard was on Linux first.

[-] orphigle@lemmy.ml 1 points 1 month ago* (last edited 1 month ago)

True, USBGuard is using a mechanism that has been present on Linux since year 2007.

https://www.kernel.org/doc/Documentation/usb/authorization.txt

[-] FreddiesLantern@leminal.space 15 points 1 month ago

Shouldn’t you rather protect your usb ports from Windows?

(Kidding,… or am I?)

[-] yannic@lemmy.ca 7 points 1 month ago

Which Windows? My south-facing ones?

[-] IratePirate@feddit.org 1 points 1 month ago

Yo, dawg! I heard you like Linux! So we removed all the windows from your car!

[-] BCsven@lemmy.ca 7 points 1 month ago* (last edited 1 month ago)

The software locks out the auto discover and auto config of attached devices, unless they are in an allow list.

Same like some android phone models where you can turn off USB port to protect your phone from being infiltrated.

I did work at a place that filled the USB ports with HotGlue to stop workers loading movies on the computers on night shift

[-] MonkderVierte@lemmy.zip 3 points 1 month ago

to stop workers loading movies on the computers on night shift

Lol, did it work?

[-] BCsven@lemmy.ca 4 points 1 month ago

Yes because the keyboard and mouse were via the serial PS connectors, but the IT dudes could have just opened the case and unplugged the USB headers instead of permanently filling the slots with glue.

[-] NewNewAugustEast@lemmy.zip 3 points 1 month ago

Windows? Why bother.

[-] DieserTypMatthias@lemmy.ml 3 points 1 month ago

GrapheneOS allows you to disable it. I just charge mine wirelessly, though if the charger supports MagSafe, then you'll need to buy a MagSafe case for your Pixel, since built-in magnets are waaay too weak.

[-] vaionko@sopuli.xyz 2 points 1 month ago

No? I just don't plug random shit in my computer.

[-] orphigle@lemmy.ml 2 points 1 month ago

What, if somebody else does while you're not looking?

[-] vaionko@sopuli.xyz 1 points 1 month ago

I never leave my laptop unsupervised, I'm more concerned about it getting stolen than malicius USB devices. And if someone gets to my desktop while I'm not looking, I've got bigger problems.

[-] ell1e@leminal.space 1 points 1 month ago

Is there a similar program for Linux?

[-] SurpriseWaterfall@sopuli.xyz 11 points 1 month ago

Linux has USBGuard and is likely in your distro's repos. It operates the same way with having rules on which usb devices to allow

[-] MonkderVierte@lemmy.zip 8 points 1 month ago

So, uh, a udev GUI?

[-] utopiah@lemmy.ml 1 points 1 month ago* (last edited 1 month ago)

Be mindful that such a program would have to be safer than the situation without. A program on a public repository that isn't used by any distribution, isn't audited, hasn't a lot of comments (and thus eyes on its code) might be a disproportionate risk compared to the default settings of a popular open source distribution IMHO.

[-] xvertigox@lemmy.world 1 points 1 month ago

When I plug a USB device in on KDE I get prompted to see if I want to mount it or not.

[-] hexagonwin@lemmy.today 4 points 1 month ago

the usb device is auto detected and activated, it's just asking you to mount if it happens to be a storage device

[-] xvertigox@lemmy.world 1 points 1 month ago

That's true, I understand the need for USBGuard now.

[-] ell1e@leminal.space 1 points 1 month ago* (last edited 1 month ago)

I think to be fully safe, you would have to get prompted for any type of USB device including a mouse and keyboard. At least I think that's the idea of USBGuard.

[-] xvertigox@lemmy.world 1 points 1 month ago

Ah, that makes sense, cheers.

[-] Samsy@lemmy.ml 0 points 1 month ago

Do you protect your USB port?

Sure, I've got my HPV vaccination.

[-] ExcessShiv@lemmy.dbzer0.com 3 points 1 month ago

What would USB stand for in this? Under Sheets Buddy?

this post was submitted on 10 Mar 2026
56 points (98.3% liked)

Privacy

48271 readers
706 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz