Re: PREDICTION: As greybeards retire. we'll see a shitload more of this nonsense.
Microsoft have a huge backdoor called winlogon. Also you are right, it's going to get way worse.
9 posts • joined 14 Jan 2015
"t's definitely "old school" but wouldn't a plain 'ol RS-232 port that a technician could connect to be more secure than telnet?" - Typically during manufacturing you try to make things automated and simple.
If IPL works and it boots the default flash image it can then be programmed and tested over the network. If it doesn't boot it goes on a test-jig (push down tool onto pads on motherboard).
When you have hundreds to configure and test, potentially flash upgrade and soak test, it's a lot easier to plug them into an private network with DHCP, with entire process automated.
With RS-232 ports you would have the fun and games of needing terminal servers, slightly more annoying cabling, and slower flashing speeds etc.
Basically it's cheap, works, scales, is pretty quick (you can kick off other commands on the hosts like wget or curl to pull flash files over), doesn't require dealing with keys and certificates, simplifies cabling and could be turned off once complete.
That's why I imagine they use it.
HP 4 and 8Gb DAT drives could be upgraded to 8 and 16Gb if you happened to have the right tape to put in it. The weirdest one I ever saw was when a vendor had taken components off a motherboard for a customer project. The national rail company had a bunch of servers that should have had two adaptec scsi chips on them but had been modified to only have one chip (essentially de-soldered the IC). Every time they hit a certain back-up speed Netware fell over with a kernel panic. After going on site and ending up physically opening one of the servers up I clocked the missing chip. Next day with a scsi bus analyzer I could see what was happening. Echo caused by the now modified bus. Only kicked off when we had our software running flat out. Fortunately our debug menu allowed you to limit the top speed the system would back up at... problem solved. Another good one was re-conditioned tape drives that vendors send back up with lower CRC checks. Looked identical. Returned same firmware and revisions. Was liable to making write only back ups.... grrr
Well that's depressing. I'm with the author of: https://medium.com/@infiltrator7n/deconstructing-coraline-ada-ehmke-s-contributor-covenant-and-why-it-s-foolish-801e1564afe4 on why these CoCs are a load of unnecessary drama. Linus... don't do it. Continue being as brutal as needed when it comes to your opinion of other peoples code. The kernel would be a real mess by now if you didn't care as much as you do about the quality.
Biting the hand that feeds IT © 1998–2020