General NAS-Central Forums

Welcome to the NAS community
It is currently Sun Nov 19, 2017 2:18 pm

All times are UTC




Post new topic Reply to topic  [ 8 posts ] 
Author Message
PostPosted: Sat May 17, 2008 3:20 pm 
Offline

Joined: Sat May 17, 2008 2:57 pm
Posts: 32
Hello,

Could you tell me is there any way to get into this embedd linux without opening box?


Top
 Profile  
 
PostPosted: Sat May 17, 2008 8:52 pm 
Offline

Joined: Thu Mar 06, 2008 12:23 pm
Posts: 58
Location: Vienna
usually there are 2 ways:

1) there is a telnet/ssh daemon running on the box or it can be started somehow....
not very common to have it running by default.....but sometimes it can be started somehow.

2) create a firmware update which is telnet enabled and upgrade the firmware
not easily possible...download a firmware update and take a look at the file...i do not see any way to decrypt the file so far....but i guess this could be found out by
looking at the root filesystem of the hdd...maybe the script itself that handles the upload via the webinterface has the decryption in clear text


well...if all does not help serial is the best option when trying to hack a box.....

why don`t you want to open the box? is there a warranty sticker on the box? if not pictures of both sides of the mainboard would help us to find serial.


Top
 Profile  
 
PostPosted: Sat May 17, 2008 10:12 pm 
Offline

Joined: Sat May 17, 2008 2:57 pm
Posts: 32
Hello,
Thank you for your answer!

1) Only ports: 21, 80, 139, 445 are opened by default (according to nmap scan result). Mayby there is some way to run ssh/telnet deamon, but I have no idea how to do it :|

2) I am able to update firmware via www panel. Firmware is here: http://www.lacie.com/support/drivers/dr ... m?id=10105 ,but there are no clear text lines inside and also I don't know how to recognise the file format.

I think that file decryption process takes place outside the webinterface, so I am not able to recognise specification of it.

I have no access to root filesystem, but I have log file: http://pastebin.com/m19950e9f

These are photos from inside the box that I've found:
http://www.smallnetbuilder.com/images/s ... al_big.jpg
http://www.smallnetbuilder.com/images/s ... rd_big.jpg

but what I already know (according to log) is that I have diffrent HDD vendor, but it doesn't matter, right? :)

Yes, there is damn warranty sticker so I would like to do everything that is possible to avoid removing it:)


Top
 Profile  
 
PostPosted: Wed May 21, 2008 11:48 am 
Offline

Joined: Thu Mar 06, 2008 12:23 pm
Posts: 58
Location: Vienna
the first one always has to bite the bullet :)

but hey, i sent a diskless Lacie EBD to timtimred (foonas.org) .... he might not have the stock rootfs but he might be able to get foonas supported...it has ssh enabled by default then.


Top
 Profile  
 
PostPosted: Fri May 23, 2008 9:37 pm 
Offline

Joined: Sat May 17, 2008 2:57 pm
Posts: 32
I know... :cry:

What does timtimred mean? :)

UPDATE:

I have just found the newest picture of EBD inside: http://hax0r.schleppingsquid.net/Files/Images/MyLacieGuts.gif


Top
 Profile  
 
PostPosted: Sat May 24, 2008 7:38 am 
Offline

Joined: Thu Mar 06, 2008 12:23 pm
Posts: 58
Location: Vienna
timtimred will surely directly connect serial.....foonas will feature ssh......but it depends on his time when he does deals with the lacie EBD


Top
 Profile  
 
PostPosted: Wed May 28, 2008 2:07 pm 
Offline

Joined: Sat May 17, 2008 2:57 pm
Posts: 32
Thank you for your answer!

For others:

Until today I' ve been looking for solution to hack EBD without opening the box, but with no results. You can try with exploit for PureFTP, but I couldn't manage...

If you decide to open the box, here is simple instruction http://www.goodjobsucking.com/?p=17 (sic!). I know, url looks little strange :P, but it is okey.

If you find any other way to hack EBD, please post it here.


Top
 Profile  
 
PostPosted: Wed May 28, 2008 11:26 pm 
Offline

Joined: Thu Mar 06, 2008 12:23 pm
Posts: 58
Location: Vienna
looks like as if timtimred did not receive a Lacie EDMini v2 in the end....we need to get one from elsewhere...


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 8 posts ] 

All times are UTC


Who is online

Users browsing this forum: No registered users and 6 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group