Upload File

2#m;;bm;i?2coj 6`2/`bf ¹?`bi` ºk s`bm+bt hj2k#2`q7h2+?mb+...

  • Home
  • Documents
  • 2#m;;BM;i?2CoJ 6`2/`BF ¹?`bi` ºK S`BM+BT HJ2K#2`Q7h2+?MB+ …gotocon.com/dl/goto-cph-2012/slides/war-stories/War2.pdf · 2012. 5. 21. · X X X X X X _2;Bbi2`b U7`QK h?`2 /*QMi2ti,
76

Upload: others

Post on 27-Jan-2021

0 views

Category:

Documents


0 download

Report

TRANSCRIPT

  • !

    !

    !

    !

    !

    !

  • !

    !

  • !

    !

  • HACKING MY ROUTERAnders Skovsgaard

    Hackavoid!

  • The Router!

    2!

  • The Router!

    3!

  • The Config File!  http://10.0.0.1:2033/rom-‐0  and public (WAN)  http://212.242.220.16/rom-‐0  !

    4!

  • The Diff!

    5!

    Fabricated Config File #1!Password: 1234!

    Fabricated Config File #2!Password: 4321!

  • The Replace!

    6!

    Fabricated Config File!Password: 1234!

    Real Config File!Password: ?!

  • The New Config File!

    7!

  • Router and Connection Password!

    8!

  • Attacks!

    9!

    •  Make fun!n  Reset the router.!n  Change passwords.!n  Change NAT settings.!

    •  More severe!n  Upload buggy firmware.!n  Upgrade his connection.!n  Change DNS settings.!

  • DNS Attack!

    10!

  • DNS Attack!

    11!

    •  ISP Name Server returns:!

     www.google.com.  CNAME  www.l.google.com.  www.l.google.com.  A  173.194.69.99  www.l.google.com.  A  173.194.69.104  www.l.google.com.  A  173.194.69.106  www.l.google.com.  A  173.194.69.147  www.l.google.com.  A  173.194.69.105  www.l.google.com.  A  173.194.69.103  www.l.google.com.  A  173.194.69.99  www.l.google.com.  A  173.194.69.104  

  • DNS Attack!

    12!

    •  New DNS settings:!

    !Primary DNS Server: 212.242.220.16 (attacker IP)!

    •  Returns:!

     www.google.com.  A  212.242.220.16  

  • DNS Attack!

    13!

    “New  Job”   “New  Job”  

  • •  Attacks on https:// not possible.!

    DNS Attack!

    14!

    •  Unless:!

  • •  Google Public DNS!70 billion requests/day.!!

    •  OpenDNS!30 billion requests/day.!!

    •  Many more: Dnsadvantage, Norton, ScrubIT.!!

    + !Faster!+ !No censorship!!- !DNS Attacks may happen.!

    !Trust your DNS and Certificate Authorities (CA).!

    DNS Risks!

    15!

  • •  ZyXEL fixed the problem in 2008.!

    •  The solution:!!Default setting: Public (WAN) access is disabled.!!

    •  What could be done?!

    n  Secure the Config File – require login.!

    n  Encrypt the complete Config File – not only the password.!!

    The Router Fix!

    16!

  • Questions? !!

    Anders [email protected]!

    www.hackavoid.dk!

    17!

  • War StoriesTracking down an IE7 performance problem

    1Monday, May 21, 12

  • The Problem

    • Application load time in Internet Explorer 7 suddenly and dramatically increased

    2Monday, May 21, 12

  • My job?

    • To track down the revision that caused it

    3Monday, May 21, 12

  • Simple?

    4Monday, May 21, 12

  • Not really...

    • Automated tests hadn’t been running for several days

    • The performance environment didn’t have a simple way to redeploy previous versions

    • ...it’s Internet Explorer

    5Monday, May 21, 12

  • 1. Eyeball the Revisions

    6Monday, May 21, 12

  • 2. Binary Search

    7Monday, May 21, 12

  • 8Monday, May 21, 12

  • 9Monday, May 21, 12

  • 10Monday, May 21, 12

  • 11Monday, May 21, 12

  • But first...

    12Monday, May 21, 12

  • ...can we start now?

    13Monday, May 21, 12

  • Are we there yet?

    14Monday, May 21, 12

  • I’m dying here

    15Monday, May 21, 12

  • Binary search worst case?

    16Monday, May 21, 12

  • 17Monday, May 21, 12

  • In Conclusion

    • It’s a good thing we had perf tests• Repeatable, reliable tests are handy• Ask everyone in the team individually if

    they broke it

    • Sometimes, it’s just not worth the time

    18Monday, May 21, 12


BM 200 - BM 400 - BM 600 - Iberfluid · 2016. 8. 23. · Positive displacement meters series BM 200 - BM 400 - BM 600 ISOIL PD meter series BM sizes 2”, 3”, 4” and 6” offers

agr˜ solut˜ons - prokcssmedia.blob.core.windows.net · Star 300 BM Monophase 250 - 300 3.5 - 5 180 4 hp, 220 V 4 hp, 220 V 0.5 hp, 220 V 20 325 195 x 110 x 165 Star 1000 BM 1000

Rasputin Boney M 1 |: Bm :|x4 |: Bm |Bm |Em |F# Bm :|x2 |: Bm | | Hey! hey! hey! hey!... | Em | F#m Bm :|x2 |: Bm A |G F# :|x2 |: Bm |Bm F#m :|x2 Bm 4222

lbBM; BQbB;M Hb 7Q` P#D2+iBp2 J2 bm`2K2Mi Q7 S ...lbBM; "BQbB;M Hb 7Q` P#D2+iBp2 J2 bm`2K2Mi Q7 S`2b2M+2 BM oB`im H _2 HBiv 1MpB`QMK2Mib JX i?B7 1 ;3- "X GX EX _ i?M v F2 - aX JX .X

Sops Then how Unis. Bm bm bm bm bm bm bm bm, the rein- deer loved—— him 00, the the rein-deer loved him. Then all the rein- deer, Ru the rein-deer loved him. red - nosed rein the

Expression and subcellular localization of a novel gene Bm ...28a(+)-Bm-X and expressed it in Escherichia coli. We expressed the fusion protein rBm-X which purified by Ni-affinity

 · 2017-11-06 · (1st X Band Out) (2nd X Band Build) BRIDGE LE Savior O Come To The Altar - 2 Bm Bm isn't he wonderful Christ is risen Sing alle - luia Bow down be - Sing alle -

Bm D% o 9 ] F 0% Bm +f D% Bm D%

Loly Climber CC & BM - HAGS · 2020. 7. 23. · Loly Climber 2 /17 kg kg kg kg kg kg kg kg kg kg kg kg kg kg kg kg x x x x x x x x x x x x x x x x 1. 33003004 1. 2864 x 905 x 905

Bbi2 o grade 10 business – final exam

 · bm-7057 bm-7058 02-4871 bm-7070 58-2313 40-5162 40-5160 40-5164 40-5163 40-5161 bm-7105 bm-7106 bm-7161 bm-7256 bm-7163 bm-7232 bm-7233 10-6631 bm-7137 58-1538 am-ioo am-150 am-300

BM, BMhp - Grundfosnet.grundfos.com/Appl/ccmsservices/public/... · General description, BM 6 2 BM, BMhp 2. General description, BM Applications The Grundfos BM booster module is

BM SUPER BM SUPER/800 - bmofficine.com

What’s new in EB s new in EB research ... BM D BK BM D BK BM D BK BM D BK BM D BK BM D BK BM D Suprabasal EBS Basal EBS TGM5 JUP DST, ... treatment of DEB

Proyectos de Integración BM&FBOVESPA CLASSIFICATION OF INFORMATION: CONFIDENTIAL RESTRICTEDCONFIDENTIALINTERNAL USEPUBLIC X

bm super bm super/800

B-MAX4Ⅱ 2011 FACTORY Exploded Viewsite.petitrc.com › setup › yokomo › setupbmax4 › Bmax4II_ExplodedView.pdfbm-s4f12 bm-s812 bm-s106t(f) ys-8bh bm-s5f bm-s5r bm-206 sd-tb39

recombination X RecBCD X-independent recombinase subunit · Treatment ofCells with Bleomycin (Bm). Asample froma concentrated stock solution of Bm sulfate (courtesy of H. MackNachfolger,

BM 160 - decathlonsav · 2017-06-28 · BM 160 180 x 148,9 x 73 cm 46,5 x 59 x 29 inch 25,73 kg 56,12 lbs Vous avez choisi un appareil Fitness de marque DOMYOS. Nous vous remercions

¡logo BM.pdf · referencia BM 00101 BM 00107 BM 00113 BM 00119 BM 00125 BM 00131 BM 00137 BM 00143 BM 00201 BM 00207 BM 00219 BM 00225 BM 00231 BM 00237 BM 00243

Map Edition - USGS Store · 480 400 011 Black Gap BM 322 5 20 AIRFIELD (Closed) B 3126 21 *273 330 LOW ED. NO 002 M-050 320 High Med 7643014044752 Ref No BM X 219.2 x 143.9

legacy-reports.cotswoldarchaeology.co.uk · BM 109.43m El Sub Sta BM 111.02m Sabre BM 109.72m 108.8m 109.7m BM 109.59m BM 1 08 108.8m Car Park BM 112.00m 110.6m 110.9m 108.2m BM 111.53m

G. Longo, E. Moggi. Cartesian closed categories of ... · where :BM b x BM n ÷BM n is an acceptable pairing w.r.t. BMn+I~ What remains to verified is that actually

i a+B2M+2 BM S`Q/m+iBQM, mBH/BM; a+ H #H2 JQ/2H …samples.leanpub.com/ProductionDataScience-sample.pdf · 2020-01-01 · yxj *q/2 1t kth2b x x x x x x x x x x x x x x x x x x x

BM-52S BM-52HS BM-52S 3,800 6,650 2,300 200V 1.5kw —7) BM

BLANCOSWIFT BM/1420 BLANCOSWIFT BM/1426*

BM 200 - BM 400 - BM 600 - Aljac Fuelling Components · Positive displacement meters series BM 200 - BM 400 - BM 600 ISOIL PD meter series BM sizes 2”, 3”, 4” and 6” offers

Scanned by CamScannerU.G)20181008.pdf · BM-102 BM-103 Paper code BM-201 BM-'02 BM-203 Paper code BM-301 BkM-303 Paper code Paper code BM-501 BM-502 BM-503 Paper code B.M-601 BM-602

BM 200 - BM 400 - BM 600 - Iberfluid instruments · BM 200 - BM 400 - BM 600 BM 400 BM 600 BM 200. Positive displacement ... PED (dir. 97/23/CE) Compliant directive 97/23/CE, with

Post-mortem diagnostics for the Taiwan Light Source · 14A BM - IR Microscopy 15A 16A IASW 17B W20 - X-ray Scattering 17C W20 - EXAFS 18A BM - Beam Diagnosis 18B BM - LIGA 19A BM

Stone: Broughton Moor...Inside Back Cover: Temple Quay House - Bristol - UK 8 11 9 7 Broughton ProjeCtS Moor 10 BM 02 BM 03 BM 04 BM 07 BM 08 BM 09 BM 12 BM 13 BM 14 BM 17 BM 18 …

COLOR VIDEO MONITOR BM-H1900SU BM-H1310SUpro.jvc.com/pro/attributes/monitor/manual/BM-H1310SU.pdf · BM-H1900SU COLOR VIDEO MONITOR INSTRUCTIONS BM-H1310SU For Customer Use: Enter

Evolution of Emergent Architectures · 2017-05-18 · Evolution of Emergent Architectures Alan Brenner (858) 354-2000 [email protected] Claudia Rose (619) 997-5492 [email protected]

KMBT C554-20130902074035 - · PDF file · 2013-09-02rines. sub found bm waves ma - bm bm rines. the bm so sea bm up bm green. bm to bm the sun bm lived Bm bm bm ma - bm bm till bm

sImfw- v bm{Xm hnh-cWw - Wikimedia Commons · (aebmfw) sImfw_v bm{Xmhnh-c-Ww (bm{Xm-hn-hcWw) Imcp-Nnd Koh¿Kokv siΩm-i≥]T\w : ^m. tPm¨ tXmakv Icn-ßm-´n¬ Pohn-X-tcJ : Fw. Ipcy≥