You are not logged in.
- Topics: Active | Unanswered
#1 2016-12-22 02:05:22
- FlowIt
- Member
- Registered: 2014-10-25
- Posts: 243
[Solved] Can a disabled webcam be hacked?
Specifically, I am interested if blacklisting the uvcvideo module prohibits my webcam getting hacked (under the assumption that the hacker cannot reverse the blacklisting). This is more a theoretical question since I would disable the webcam for my use as well and I am aware of many other ways of keeping my system secure.
Last edited by FlowIt (2016-12-22 14:47:39)
Offline
#2 2016-12-22 04:55:28
- x33a
- Forum Fellow
- Registered: 2009-08-15
- Posts: 4,587
Re: [Solved] Can a disabled webcam be hacked?
If someone can log in to your machine, they can simply load the module again. So, it depends on how your machine/webcam was compromised. The safest option is to use a tape 
Offline
#3 2016-12-22 08:41:03
- graysky
- Wiki Maintainer
- From: :wq
- Registered: 2008-12-01
- Posts: 10,696
- Website
Re: [Solved] Can a disabled webcam be hacked?
Use a postnote or small piece of tape. Hack proof.
CPU-optimized Linux-ck packages @ Repo-ck • AUR packages • Zsh and other configs
Offline
#4 2016-12-22 13:28:27
- FlowIt
- Member
- Registered: 2014-10-25
- Posts: 243
Re: [Solved] Can a disabled webcam be hacked?
This does not answer my question. I use tape, I am happy with it, I know it's secure.
But I am more interested in the theory behind this. We are talking about a remote attacker without root privilleges. Is it possible to access the camera (independently whether the attacker actually sees something or not) when the uvcvideo module is blacklisted?
Offline
#5 2016-12-22 14:08:18
- Lone_Wolf
- Administrator
- From: Netherlands, Europe
- Registered: 2005-10-04
- Posts: 13,352
Re: [Solved] Can a disabled webcam be hacked?
from https://wiki.archlinux.org/index.php/Ke … acklisting
The blacklist command will blacklist a module so that it will not be loaded automatically, but the module may be loaded if another non-blacklisted module depends on it or if it is loaded manually.
Not sure how a remote attacker could use that, but it does show a weakness in using blacklisting as a security measure .
Maybe blocking the kernel from seeing the camera device at all using vfio-pci or pci-stub would be a better way ?
Disliking systemd intensely, but not satisfied with alternatives so focusing on taming systemd.
clean chroot building not flexible enough ?
Try clean chroot manager by graysky
Offline
#6 2016-12-22 14:14:30
- R00KIE
- Forum Fellow
- From: Between a computer and a chair
- Registered: 2008-09-14
- Posts: 4,734
Re: [Solved] Can a disabled webcam be hacked?
I'm not sure vfio-pci or pci-stub would work to bind to a specific usb device. You could use the install directive, that should really keep the module from loading. Without root access I'm not sure there can be raw access to the webcam but if you are worrying about a compromised machine it is game over anyway as the attacker could use a 0-day to gain root access.
R00KIE
Tm90aGluZyB0byBzZWUgaGVyZSwgbW92ZSBhbG9uZy4K
Offline
#7 2016-12-22 14:19:50
- ayekat
- Member
- Registered: 2011-01-17
- Posts: 1,616
Re: [Solved] Can a disabled webcam be hacked?
We are talking about a remote attacker without root privilleges.
So no.
Unless they find a way to perform a privilege escalation.
What exactly is your threat model?
Offline
#8 2016-12-22 14:34:17
- Trilby
- Inspector Parrot
- Registered: 2011-11-29
- Posts: 30,333
- Website
Re: [Solved] Can a disabled webcam be hacked?
You realize the answers you are getting are all couched in conditionals. This is because you are asking about a black swan. If someone were to know of a specific way to hack a disabled webcam they could confirm it was possible (although asking about this on the forums would likely run afoul to legality rules). But if someone doesn't know of a specific way to hack a disabled webcam they cannot confirm that it is impossible - the best they can do is speculate about some approaches to the attack and ponder the feasibility of them.
No one who is both honest and rational could confirm that such a hack was impossible. On the other hand, if you want a dishonest or irrational answer, I'd be happy to provide one: your webcam is perfectly safe.
"UNIX is simple and coherent" - Dennis Ritchie; "GNU's Not Unix" - Richard Stallman
Offline
#9 2016-12-22 14:47:24
- FlowIt
- Member
- Registered: 2014-10-25
- Posts: 243
Re: [Solved] Can a disabled webcam be hacked?
There will always be conditionals when it comes to security questions. I am happy with the answers provided and will mark this as solved. So there is no trivial attack vector, but depending on how powerful the attacker is there might still be a vulnerability.
Offline
#10 2016-12-22 15:20:58
- Alad
- Wiki Admin/IRC Op
- From: Bagelstan
- Registered: 2014-05-04
- Posts: 2,420
- Website
Re: [Solved] Can a disabled webcam be hacked?
I found this after a ~10s google search:
http://insecure.org/sploits/kerneld.isc … _load.html
20 years old, but ok. 
Side-note, I'm happy to see how many people put tape over their laptop cameras.
Last edited by Alad (2016-12-22 15:21:37)
Mods are just community members who have the occasionally necessary option to move threads around and edit posts. -- Trilby
Offline
#11 2016-12-22 15:26:51
- ugjka
- Member
- From: Latvia
- Registered: 2014-04-01
- Posts: 1,875
- Website
Re: [Solved] Can a disabled webcam be hacked?
If linux is so ultra hackable why you are only worried about your webcam? What about the built in mic and on course your data? Why would someone just hack your webcam when they could have it all?
https://ugjka.net
"It is easier to fool people, than to convince them that they've been fooled" ~ Dr. Andrea Love
Offline