Quote:
Originally Posted by Frenbar
Try investing $3 in some crazy glue and squirting in into your USB ports.
You could get a job working in government security with that "security in hindsight" outlook.
Once you've been pwned via your usb port, block it it. Wait until you're pwned over your LAN before going for a direct connection. Wait until you've been pwned by a poisoned DNS server / update before taking precautions against that.
My point is there are hundreds of ways your poker playing laptop can be compromised. Blocking up your USB ports is shutting the stable door once the horse has bolted - and what are you going to plug your mouse into?
As has been mentioned, the USB attack does - in theory - need to be executed as well as just plugging it in. But there have been hundreds of worms that self-propogate over USB using exploits and autorun exploits. So merely plugging it in *is* enough to exploit your system.
As someone has said already, if an intruder has physical access to your system and knows what they're doing, it's game over.