Archived from groups: alt.video.ptv.replaytv (
More info?)
On Fri, 07 Jan 2005 19:01:35 GMT, Steph
<CUT_skipatrol@hotmail.com_CUT> wrote:
>Mark Lloyd <mlloyd@5xxxmail.com5xxx> wrote in
>news:ffdtt0dns0ote4lhhdd4vc3adp1fq0rbj8@4ax.com:
>
>>>>>>Regina wrote:
>>>>>>
>>>>>>>This morning. I had the my machine reset for no reason. When the
>>>>>>>machine came back up All my shows were gone. All my
>>>>>>>channels...i.e. catches like more:documentary were gone. I went
>>>>>>>from 100 hours free on a 250 drive to 250 free in 7 minutes. Any
>>>>>>>one else seen this type of failure...any suggestions. Thank you in
>>>>>>>advance
>>>>>>
>>>>>>You had a problem which wiped out the inode table on the drive. The
>>>>>>drive is probably going bad. The OS and the shows are in different
>>>>>>partitions. It may be possibe to recover your shows by putting the
>>>>>>drive in a pc and using the Replay extract program.
>>>>>>
>>>>> on the other hand, if the RTV is not protected from the outside and
>>>>> his OS configuration was reset to factory defaults as well it could
>>>>> have been a malicious attacker.
>>>>>
>>>> You cannot modify a Replay OS, the modules are digitally signed. And
>>>> since the Replay runs VXWorks, it is immune to 17yr imbeciles
>>>> playing games, assuming said imbeciles even KNEW what port is being
>>>> forwarded to your Replay.
>>>>
>>>
>>>I am not speaking of hacking the system. Without spelling it out, let
>>>me restate that some users have their RTV plugged into broadband
>>>without a firewall in place,
>>
>> Of course, if you're using a router, you have that firewall.
>
>No, not all routers are firewalls. In fact there are still thousands of
>broadband customers that have paid for second or third ip addresses
>rather than install a device that does NAT. NAT devices depending on
>their configuraton may almost always be confused with firewalls.
>
Looks like I should have been more specific there. While not all
routers act as firewalls, most of those sold for small home networks
will block INCOMING connections usless you set them up otherwise.
>
>>> or they have opted to open a public port and mapped
>>>it to port 80 on their RTV. I am NOT talking about IVS.
>>>
>>
>> Maybe the ISP blocks port 80. A lot of them do.
>>
>Actually not only do few ISP's block port 80,
Notice the word "maybe" in what I said.
> but on th epublic side it
>could be ANY port -- heck you could map port 25 (normally DNS) to it if
>you like.
And why would you do that unless you WANTED someone to have access to
your Replay.
> Port 80 is what the RTV is using, and hopefully it is on a
>private LAN. Maybe you opened public 8000 and mapped it to your RTV's
>TCP 80.
But you would have to ACTUALLY DO THAT. Most people won't.
> If you have and a malicious person finds and knows how, they can
>manipulate your RTV from afar and do anything you can do with your
>remote -- including clearing the channel guide, scheduling a show to
>record, or resetting it to factory defaults.
>
>There are many tools that scan port ranges looking for open ports, and
>there are an equal number of tools that will report back the application
>that responded by its headers.
>
>For example (I really don't want this posted, but it seems you all won't
>get it if it isn't). I found a RTV accessible on the Internet -- it
>looks like this
>
>Initiating server query ...
>Looking up IP address for domain: rtv.bogus.net
>The IP address for the domain is: xxx.xxx.xxx.abc
>Connecting to the server on non-standard port: 8111
>[Connected] Requesting the server's default page.
>The server returned the following response headers:
>HTTP/1.1 404 Not Found
>Date: Thu, 01 Jan 1970 18:12:40 GMT
>Server: Unknown/0.0 UPnP/1.0 Virata-EmWeb/R6_0_1
>Connection: close
>Query complete.
>
>Now I won't share with you whether this is a 4xxx or a 5xxx (leaving it
>as an exercise), but basically a vulnerable RTV will be using
>Unknown/0.0 UPnP/1.0 Virata-EmWeb/R6_0_1 as it's web server.
--
Mark Lloyd
has a Replay 5xxx
http
/go.to/notstupid
http
/notstupid.laughingsquid.com
"It is a curious thing that every creed promises a
paradise which will be absolutely uninhabitable for
anyone of civilized taste." -- Evelyn Waugh
Facebook
Twitter