Hi, I've written bootloaders before.I know that *blacklisting* addresses doesn't... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		32032141 on Jan 29, 2019 \| parent \| context \| favorite \| on: Ledger Live: A mobile companion app for Ledger har... Hi, I've written bootloaders before.I know that blacklisting addresses doesn't work, as many memory locations will be mapped multiple times. Strangely, most people that have worked with microcontrollers is aware of this, except for the people who wrote the closed source bootloader at ledger.

jki275 on Jan 29, 2019 [–]

Well, since you're the expert, why haven't you written a better one? There's a huge market for this...

32032141 on Jan 29, 2019 | [–]

I don't think my threat model encompasses the safety of other people's money.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact