02:49.27 | *** join/#maemo-ssu amiconn_ (amiconn@rockbox/developer/amiconn) |
03:18.37 | *** join/#maemo-ssu n900-dk (~kgu@freebox.dk) |
04:33.57 | *** join/#maemo-ssu int_ua (~int_ua@ip-602f.proline.net.ua) |
05:55.53 | *** join/#maemo-ssu LauRoman (~LauRoman@5-14-93-219.residential.rdsnet.ro) |
06:32.56 | *** join/#maemo-ssu Martix_ (~martix@static-84-242-103-180.net.upcbroadband.cz) |
06:46.11 | *** join/#maemo-ssu luf (~luf@80.188.29.62) |
06:49.10 | *** join/#maemo-ssu Pali (~pali@Maemo/community/contributor/Pali) |
07:11.52 | *** join/#maemo-ssu dos1 (~dos@unaffiliated/dos1) |
07:21.25 | *** join/#maemo-ssu amiconn (amiconn@rockbox/developer/amiconn) |
09:27.12 | *** join/#maemo-ssu dos1 (~dos@unaffiliated/dos1) |
09:35.11 | *** join/#maemo-ssu arcean (~arcean@aaeo4.neoplus.adsl.tpnet.pl) |
10:11.12 | *** join/#maemo-ssu Martix_ (~martix@static-84-242-103-180.net.upcbroadband.cz) |
10:27.12 | *** join/#maemo-ssu lizardo (lizardo@nat/indt/x-csprbvsdctuwhhev) |
11:46.36 | *** join/#maemo-ssu sunny_s (~sunny_s@business-092-079-020-027.static.arcor-ip.net) |
12:08.32 | *** join/#maemo-ssu mkaindl (~mkaindl@ama-dablam.markus-kaindl.de) |
12:10.36 | *** part/#maemo-ssu mkaindl (~mkaindl@ama-dablam.markus-kaindl.de) |
12:12.10 | *** join/#maemo-ssu arcean (~arcean@aaeo4.neoplus.adsl.tpnet.pl) |
12:26.20 | *** join/#maemo-ssu lizardo (lizardo@nat/indt/x-emwfnumlakpjfaww) |
13:46.23 | *** join/#maemo-ssu Pali (~Pali@Maemo/community/contributor/Pali) |
13:49.19 | *** join/#maemo-ssu arcean_ (~arcean@aacv2.neoplus.adsl.tpnet.pl) |
13:52.10 | FatPhil | Where's the best place for bug reports? |
13:52.53 | FatPhil | Had some graphical issues with BT pairing UI (and here you say "but we don't have the source to that, ur skroooood") |
13:54.13 | Pali | bugs.maemo.org |
13:57.48 | FatPhil | Not sure which component is to blame - it's a compositor problem (the pairing popup is blurred). Is that a compositor issue, or... |
13:58.30 | *** join/#maemo-ssu Martix_ (~martix@eduroam-171.fi.muni.cz) |
14:01.14 | FatPhil | PAli: is there no single sign on across the sites? bugs.m.o doesn't recognise me |
14:01.52 | *** join/#maemo-ssu M13 (~MirandaLS@170.133-224-87.telenet.ru) |
14:05.27 | *** join/#maemo-ssu Martix_ (~martix@eduroam-171.fi.muni.cz) |
14:19.58 | Pali | garage, bmo and tmo have separate accounts |
14:28.08 | DocScrutinizer05 | sign on in garage is via your mail account as "nick" |
14:28.34 | DocScrutinizer05 | s/garage/bmo/ |
14:29.26 | DocScrutinizer05 | SSO never got implemented, though long pending and planned |
14:31.58 | FatPhil | yup, signed up |
14:52.00 | DocScrutinizer05 | :-) |
14:53.04 | DocScrutinizer05 | on a general heads-up: malware on your router? http://www.heise.de/ct/artikel/Aufstand-der-Router-1960334.html |
14:53.58 | DocScrutinizer05 | that's pretty BAD[TM] and I'm amazed it didn't make it to the general news yet |
14:54.41 | FatPhil | malware on your hard disk is possible too |
14:54.56 | FatPhil | malware on your SD+WiFi card is possible too |
14:55.03 | DocScrutinizer05 | but your HD is usually not executing it |
14:55.49 | DocScrutinizer05 | and even if it were executing it, it's still not exactly simple to inject general purpose malware into the system via the HDD |
14:56.31 | FatPhil | Nope, I mean your HD could be running an infected kernel |
14:57.03 | DocScrutinizer05 | your router though can run arbitrary sniffers on *all* the traffic not only from your LAN to internet but *also* on your LAN as well, and send all that stuff to arbitrary public servers |
14:57.16 | FatPhil | http://hackaday.com/2013/08/02/sprite_tm-ohm2013-talk-hacking-hard-drive-controller-chips/ |
14:57.59 | FatPhil | which points to http://spritesmods.com/?art=hddhack |
14:58.15 | DocScrutinizer05 | I know that article |
14:59.04 | DocScrutinizer05 | it's clearly elaborating on how hard it would be to draft an attack on a wide range of targets concurrently |
14:59.23 | DocScrutinizer05 | friggin linksys routers are vulnerable via internet |
14:59.57 | DocScrutinizer05 | and once compromised/rooted they can siff on *all* your network traffic |
15:00.55 | DocScrutinizer05 | this is kinda worse than the windows worms that used dunno port139 or whatever, to propagate without user "support" |
15:02.15 | DocScrutinizer05 | c't mag calls it a router-botnet, and heck it IS |
15:02.44 | DocScrutinizer05 | and a botnet way worse than any windoze based botnet |
15:03.18 | DocScrutinizer05 | since it has full control over all ypour local machines' traffic as well as your traffic and link to the internet |
15:03.37 | DocScrutinizer05 | and you can't fight it by any of the usual antivir means |
15:03.44 | DocScrutinizer05 | not even detect it |
15:04.32 | FatPhil | What's the infection vector? Google translate mentions a web browser, but it's a bit mangled |
15:06.06 | DocScrutinizer05 | aiui the vector is a hmtl page used in the dd-wrt config UI, that usually is not supposed to get exposed to global internet, but will allow privilege escalation to everybody when you set router to "remote config allowed" |
15:06.26 | *** join/#maemo-ssu NIN101 (~NIN@p57B9EE21.dip0.t-ipconnect.de) |
15:06.45 | DocScrutinizer05 | of course any virus mail opened in LAN will as well be able to exploit that vector even when no remote config allowed |
15:06.50 | FatPhil | Publicly-visible admin page = turn around, trousers down... |
15:06.56 | FatPhil | true |
15:06.57 | DocScrutinizer05 | sure |
15:07.09 | DocScrutinizer05 | that's not limited to admin pages aiui |
15:07.28 | DocScrutinizer05 | there are as well status pages that are not allowed to do any config |
15:07.29 | FatPhil | Well, false. As mail is a sequence of (preferably) text characters, which is never executed |
15:07.55 | DocScrutinizer05 | unless your software house sits in Redmond |
15:08.07 | DocScrutinizer05 | and your mail client looks out |
15:08.12 | FatPhil | ANyone executing code in an email basically has their head in a bag and their legs in the air |
15:08.46 | DocScrutinizer05 | sure, *I* know that, and we both know there's legion of those users |
15:10.06 | DocScrutinizer05 | html mail with external href= |
15:10.10 | DocScrutinizer05 | damage done |
15:10.12 | FatPhil | YEah, and their machines are sending my mail server about 50000+ mails per day :-( |
15:10.30 | FatPhil | SO I do have some interest in wiping them out. |
15:11.38 | DocScrutinizer05 | anyway that dd-wrt vulnerabilities are pretty nasty and not at all related to Redmond |
15:12.17 | DocScrutinizer05 | I just checked for my router and it turns out the most recent available firmware is 2009-10-10 |
15:12.17 | FatPhil | Rather disappointing that a 4 year old exploit is still open |
15:12.43 | DocScrutinizer05 | yep |
15:12.55 | FatPhil | Presumably you can just log in and change the apache conf files? |
15:13.14 | DocScrutinizer05 | yep, I can, but mine isn't vulnerable |
15:13.31 | DocScrutinizer05 | at least not in the exposed IP |
15:13.50 | FatPhil | 's never liked web configuration interfaces anyway. SSH in, edit a config file, and HUP |
15:14.01 | DocScrutinizer05 | eventually I gonna check how to fix any possible LAN vulnerability |
15:14.09 | DocScrutinizer05 | ack |
15:19.49 | *** join/#maemo-ssu Martix (~martix@eduroam-171.fi.muni.cz) |
15:34.03 | freemangordon | yay!!! https://lkml.org/lkml/2013/9/24/316 |
16:00.26 | *** join/#maemo-ssu Martix (~martix@dhcp-229-088.eduroam.muni.cz) |
16:01.51 | FatPhil | That TI licence is the worst-written English I've ever seen. It's barely parseable, and utterly unenforceable. |
16:16.57 | *** join/#maemo-ssu dos1 (~dos@unaffiliated/dos1) |
16:21.31 | kerio | DocScrutinizer05: i'm getting more and more convinced that dd-wrt is a piece of crap :v |
16:21.35 | kerio | my router crashes all the time |
16:48.30 | *** join/#maemo-ssu Martix (~martix@dhcp-236-077.eduroam.muni.cz) |
16:49.09 | *** join/#maemo-ssu Martix_ (~martix@eduroam-sci-dhcp241.sci.muni.cz) |
17:08.58 | *** join/#maemo-ssu mkaindl (~mkaindl@ama-dablam.markus-kaindl.de) |
17:09.37 | *** join/#maemo-ssu xes (~xes@unaffiliated/xes) |
17:26.38 | *** join/#maemo-ssu freemangordon_ (~freemango@213.137.35.49) |
17:57.12 | *** join/#maemo-ssu Pali (~Pali@Maemo/community/contributor/Pali) |
18:03.30 | *** join/#maemo-ssu M4rtinK (~M4rtinK@ip-89-177-124-88.net.upcbroadband.cz) |
18:04.22 | *** join/#maemo-ssu LauRoman (~LauRoman@5-14-93-219.residential.rdsnet.ro) |
18:14.25 | *** join/#maemo-ssu mkaindl (~mkaindl@ama-dablam.markus-kaindl.de) |
18:18.14 | *** join/#maemo-ssu mkaindl (~mkaindl@ama-dablam.markus-kaindl.de) |
18:46.09 | *** join/#maemo-ssu discopig (~discopig@unaffiliated/discopig) |
20:13.15 | *** join/#maemo-ssu kerio (kerio@acehack.de) |
20:26.27 | *** join/#maemo-ssu xes (~xes@unaffiliated/xes) |
21:00.56 | *** join/#maemo-ssu oldtopman (~oldtopman@184-96-244-42.hlrn.qwest.net) |
21:01.03 | *** join/#maemo-ssu oldtopman (~oldtopman@unaffiliated/oldtopman) |
21:03.49 | *** join/#maemo-ssu sunny_s (~sunny_s@business-092-079-020-027.static.arcor-ip.net) |
21:20.47 | *** join/#maemo-ssu robotanarchy (~robotanar@e179220036.adsl.alicedsl.de) |
21:56.51 | *** join/#maemo-ssu _nicolai_ (~nicolai@pop8-126.catv.wtnet.de) |
21:57.35 | *** join/#maemo-ssu Martix_ (~martix@static-84-242-103-180.net.upcbroadband.cz) |
22:19.55 | *** join/#maemo-ssu nox- (noident@freebsd/developer/nox) |
22:56.02 | *** join/#maemo-ssu discopig (~discopig@unaffiliated/discopig) |
23:10.58 | *** join/#maemo-ssu DrCode (~DrCode@gateway/tor-sasl/drcode) |
23:23.39 | *** join/#maemo-ssu freemangordon (~freemango@213.137.35.49) |
23:26.14 | *** join/#maemo-ssu DrCode (~DrCode@gateway/tor-sasl/drcode) |
23:40.27 | *** join/#maemo-ssu dos1 (~dos@unaffiliated/dos1) |