|
Re: Maemo 5 as a vulnerability / "hacking" victim
Quote:
Here is the official OpenSSH link: http://www.openssh.org/security.html |
Re: Maemo 5 as a vulnerability / "hacking" victim
Using passwords sucks big time. To prevent against a scripted password-guessing bot, just disable password login on your N900 and only use keys.
edit (as root) /etc/ssh/sshd_config: Code:
PasswordAuthentication noedit: woowoo post 1,000! |
Re: Maemo 5 as a vulnerability / "hacking" victim
Quote:
1K get in my thread? What an honour :D .- |
Re: Maemo 5 as a vulnerability / "hacking" victim
I've just checked the freemantle repository.
Openssh is version 5.1p1 There are at least 3 published problems with security. And OpenSSl is 0.9.8n, it also has 3 published issues. Normally that would not be a severe problem given the use of the device. The herd logic dictates that the probability is low. But since you decided to enter the place where many lions seek food, your chances of getting eaten have risen significantly. :D Good luck! |
Re: Maemo 5 as a vulnerability / "hacking" victim
Quote:
|
Re: Maemo 5 as a vulnerability / "hacking" victim
Quote:
http://www.openssh.org/txt/cbc.adv |
Re: Maemo 5 as a vulnerability / "hacking" victim
Quote:
Well after carefully reading the reported vulnerabilities (shame on me), it seems neither of the vulnerabilities is applicable to this particular case, or at lease probability is low as stated in: http://www.openssh.com/txt/cbc.adv As for openssl: this one may be applicable depending on how the package was built. The rest of them are related to server functionalities. In any case, the point is that the "secure" is a very relative term that very often degrades over time. Btw: Can someone check if there is a Comodo root certificate inside keystore within N900? SSL redirection is still viable threat. More info on: http://www.thoughtcrime.org/software/sslstrip/ That one actually works on wifi!!! :D:D:D:D EDIT: Added more details and corrected errors |
Re: Maemo 5 as a vulnerability / "hacking" victim
Well so far so good:
No Comodo or Honest Achmed within Diablo. (at least not for the built in browser/chat/e-mail) As for N900, I don't own one so I can not check. |
Re: Maemo 5 as a vulnerability / "hacking" victim
Does our openvpn client have any known vulnerabilities?(let's assume the server is secure) Does HMAC auth apply to client as well as server? Can user/group nobody be set up on client side if server is not *NIX. Would chroot work client side only in the same scenario?
Is there any way to log keystrokes through a browser in N900? Sandboxing Maemo's browsers? Just some questions that I'd love to hear your opinion about. |
Re: Maemo 5 as a vulnerability / "hacking" victim
Quote:
A lot depends on the actual configuration of vpn server. In addition, there may be weaknesses in implementation as well as cryptography. In brief: OpenVPN uses TLS/SSL as transport protocol. When SSL session is established, two sides exchange public keys (certificates). By applying both keys to Diffie-Hellman authentication, the shared secret is computed. This shared secret is the symmetric key that is used for the symmetric cipher to transform the plain text to cipher text at the source, and later to transform the cipher text to plain text at the destination. Quote:
Quote:
Quote:
The attacker poses as a default router, by producing massive number of arp messages in order to confuse the victim about default gateways actual ARP address. The attacker itself is configured to forward any incoming traffic to the legitimate router. The sslstrip is used in-between to replace unencrypted HTML login pages, with ones that can be used to log username/passwords. Once the username/password is recovered, the information is used to create a legitimate session, so victim firmly belives it is secure, since the SSL is established and locker is visible. :D |
| All times are GMT. The time now is 21:15. |
vBulletin® Version 3.8.8