* Posts by seskin

9 posts • joined 14 Jan 2015

Oh dear. Secret Huawei enterprise router snoop 'backdoor' was Telnet service, sighs Vodafone


Re: PREDICTION: As greybeards retire. we'll see a shitload more of this nonsense.

Microsoft have a huge backdoor called winlogon. Also you are right, it's going to get way worse.


Re: Telnet IS a backdoor

*cough* *cough* https://tools.ietf.org/html/rfc854


Re: Why would Telnet be required...

"t's definitely "old school" but wouldn't a plain 'ol RS-232 port that a technician could connect to be more secure than telnet?" - Typically during manufacturing you try to make things automated and simple.

If IPL works and it boots the default flash image it can then be programmed and tested over the network. If it doesn't boot it goes on a test-jig (push down tool onto pads on motherboard).

When you have hundreds to configure and test, potentially flash upgrade and soak test, it's a lot easier to plug them into an private network with DHCP, with entire process automated.

With RS-232 ports you would have the fun and games of needing terminal servers, slightly more annoying cabling, and slower flashing speeds etc.

Basically it's cheap, works, scales, is pretty quick (you can kick off other commands on the hosts like wget or curl to pull flash files over), doesn't require dealing with keys and certificates, simplifies cabling and could be turned off once complete.

That's why I imagine they use it.

OK Google, why was your web traffic hijacked and routed through China, Russia today?


wait I know... use artificial intelligence to maintain the filters and then.. oh.. wait. Artificial intelligence. Yeah.. never mind.

Rookie almost wipes customer's entire inventory – unbeknownst to sysadmin


Re: ...then there's backup stories...

ARCserve did have the verify options.. if you had the time :) We used to get lots of calls into support on that topic though, that, and tape rotation scheduling :)


Re: ...then there's backup stories...

ah.. write only back-ups. Classic


HP 4 and 8Gb DAT drives could be upgraded to 8 and 16Gb if you happened to have the right tape to put in it. The weirdest one I ever saw was when a vendor had taken components off a motherboard for a customer project. The national rail company had a bunch of servers that should have had two adaptec scsi chips on them but had been modified to only have one chip (essentially de-soldered the IC). Every time they hit a certain back-up speed Netware fell over with a kernel panic. After going on site and ending up physically opening one of the servers up I clocked the missing chip. Next day with a scsi bus analyzer I could see what was happening. Echo caused by the now modified bus. Only kicked off when we had our software running flat out. Fortunately our debug menu allowed you to limit the top speed the system would back up at... problem solved. Another good one was re-conditioned tape drives that vendors send back up with lower CRC checks. Looked identical. Returned same firmware and revisions. Was liable to making write only back ups.... grrr

Linux kernel's Torvalds: 'I am truly sorry' for my 'unprofessional' rants, I need a break to get help


Well that's depressing. I'm with the author of: https://medium.com/@infiltrator7n/deconstructing-coraline-ada-ehmke-s-contributor-covenant-and-why-it-s-foolish-801e1564afe4 on why these CoCs are a load of unnecessary drama. Linus... don't do it. Continue being as brutal as needed when it comes to your opinion of other peoples code. The kernel would be a real mess by now if you didn't care as much as you do about the quality.

'80s hacker turned journo, IT crime ace Steve Gold logs off


Very sad news

Takes me back to the halcyon days of hacking around on Prestel from one of the libraries in Camden. I knew of Steve via my friend Adrian who was a good friend of his. I still have my copy of the hackers handbook, it's sat next to a hand drawn copy of the Essex Mud map


Biting the hand that feeds IT © 1998–2020