LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 05-31-2005, 06:44 PM   #1
t3gah
Member
 
Registered: Dec 2004
Distribution: SuSE, RedHat, ubuntu, Debian
Posts: 734

Rep: Reputation: 30
Exclamation Has your motherboard or hardware device been "Cracker Flash-Trashed" today?


Has your motherboard or hardware device been "Cracker Flash-Trashed" today?

What is "cracker flash-trashed"?

It's when a system motherboard or hardware device has been partial or fully flashed with bad code, as in bios or firmware upgrade. Which of course renders it completely useless, as in "totalled".

How do "crackers" (hackers gone bad and bent on evil) do this nasty deed?

They crack through the security, both physical (bios password) and operating system of your system, run a scan on the sys and periph's, then flash the devices that can be flashed with hacked code or original code with a "force" command through a tcp/ip connection which they sever in midstream by killing the tcp/ip stream. Which if you didn't know renders all devices done as in hosed, trash.

Nifty, huh?!

Nope! They are evil meanies that need to be brought to justice!!!

So if your hardware starts acting up after you've been on the Internet, don't be too suprised if it's not juse a permission problem as this is the cost for running a system that doesn't have an embedded operating system.

What can be don't about this to protect your "non-embedded linux system"?

No Firetrucking Idea (nfi).

Note: The definition of "hardware device" includes all devices that are able to have their firmware or bios updated with code from the manufacturer that made the device. Which includes CD-ROM, CD-RW, DVD, DVD-RW, DAT, HD, RAID controller, sata controller, scsi controller, network card, video card, sound card, modem, etc.

Note: "Crackers" can also "burn out" your monitor or damage it if the "crack" they perform is also one on the video settings of the X Window System server.



Just a friendly fyi....
 
Old 06-01-2005, 11:48 AM   #2
Kdr Kane
Member
 
Registered: Jan 2005
Distribution: SUSE, LFS
Posts: 357

Rep: Reputation: 30
You must be running Windows.
 
Old 06-01-2005, 03:54 PM   #3
benjithegreat98
Senior Member
 
Registered: Dec 2003
Location: Shelbyville, TN, USA
Distribution: Fedora Core, CentOS
Posts: 1,019

Rep: Reputation: 45
Quote:
Note: "Crackers" can also "burn out" your monitor or damage it if the "crack" they perform is also one on the video settings of the X Window System server.
For the last few years, the monitors that you buy will not get "burned out" if you go beyond their operating frequencies. They now display a message that says "out of range" or something like that or just stay blacked out until the frequency is OK. Older monitors don't do this and try to display the setting they can't do. You used to could ruin your monitor if you setup X incorrectly.
 
Old 06-01-2005, 05:35 PM   #4
t3gah
Member
 
Registered: Dec 2004
Distribution: SuSE, RedHat, ubuntu, Debian
Posts: 734

Original Poster
Rep: Reputation: 30
if you can do this ... http://www.linuxquestions.org/questi...icle&artid=458

if

then


fi
 
Old 06-01-2005, 07:42 PM   #5
Kdr Kane
Member
 
Registered: Jan 2005
Distribution: SUSE, LFS
Posts: 357

Rep: Reputation: 30
Absolutely hate people that post links without saying anything to contribute.

This whole thread is trash and certainly shouldn't be in Security.

Script-kiddies should be required to go through training before allowed access to a browser.
 
Old 06-02-2005, 04:26 PM   #6
thorn168
Member
 
Registered: Oct 2004
Location: USA
Distribution: Vector Linux 5.1 Std., Vector Linux 5.8 Std., Win2k, XP, OS X (10.4 & 10.5)
Posts: 344

Rep: Reputation: 42
Sounds like FUD to me..

Where is the "profit" in destroying a cracked computer?

The is coming when script kiddies are going to find themselves hunted down by angry lynch mobs.
 
Old 06-04-2005, 12:57 AM   #7
t3gah
Member
 
Registered: Dec 2004
Distribution: SuSE, RedHat, ubuntu, Debian
Posts: 734

Original Poster
Rep: Reputation: 30
Question just how new is everyone's monitors then?

since "new monitor" is a vague statement and not everyone in the world who has a computer bought it new to run Linux, I'd say 'burning out' a monitor is more than likely since the majority of monitors in the world are NOT the new smart type as most people buy new computers and keep the old monitor because, well, quite frankly, it's still working, unless the size is too small for the users needs.




















And then of course if and when your sys gets trashed, you'll be convinced it can be done.

.... Since when do 'hackers gone bad' have interest in making a profit? I thought their main creedo is 'destroy and conquer or conquer and destroy'! those evil meanies!!!!
 
Old 06-04-2005, 04:09 AM   #8
freakyg
Member
 
Registered: Apr 2005
Distribution: LFS 5.0 and 6.1
Posts: 705

Rep: Reputation: 30
eh, I'm not worried. I run Linux for 6 yrs now, never been compromised! these script kiddie/punk/losers are not good enough to get into my boxes!!
 
Old 06-12-2005, 09:06 PM   #9
t3gah
Member
 
Registered: Dec 2004
Distribution: SuSE, RedHat, ubuntu, Debian
Posts: 734

Original Poster
Rep: Reputation: 30
I forgot to add where I got the content for this thread. I researched various security websites and the linux doc proj which had a notrious message:

systems can be taken over or worse


the 'or worse' part is what this thread is mentioning.

many sites including TLDP don't go into detail because they don't want people to freak out that their systems can not only be 'cracked', but they can be 'destroyed'.
 
Old 06-13-2005, 06:33 AM   #10
rjw1678
Member
 
Registered: Sep 2003
Location: Delaware, USA
Distribution: Ubuntu 12.04 LTS
Posts: 55

Rep: Reputation: 15
You say that you have done research - but I do not see any links to prove what you are telling us. Please post links.

Later
Bob W.
 
Old 06-13-2005, 03:23 PM   #11
broch
Member
 
Registered: Feb 2005
Distribution: Arch current, SuSe 10.1 32-bit, FreeBSD current, OpenBSD 4.0
Posts: 453

Rep: Reputation: 30
Quote:
many sites including TLDP don't go into detail because they don't want people to freak out that their systems can not only be 'cracked', but they can be 'destroyed'.
Sounds like conspiracy theory, did you lately watch Mel Gibson movie?
 
Old 06-14-2005, 12:52 AM   #12
RandomLinuxNewb
Member
 
Registered: Oct 2003
Distribution: Slackware
Posts: 101

Rep: Reputation: 15
The important part that you forget to mention is that a cracker would need to get root privlages for your system. Then they would have to see what hardware you have, upload the flash utility, and then run it. Also most motherboards cannot be flashed while the system is running, they need to be booted to a clean DOS enviroment. Now you may be able to flash firmware for CDROMs and the like but of course you could always flash them back. Hardware vendors are aware that people can flash unsigned firmware that's why they often have checksums or digital signatures that must be present to preform the operation. What your describing would be a very rare occurance and I would be surprised if it ever happended.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
"Successful install" results in "Boot device not found" slackr007 Fedora 2 06-21-2005 04:05 PM
"Successful install" results in "Boot device not found" slackr007 Linux - Newbie 2 05-31-2005 08:02 PM
"Unable to open USB device "usb://hp/LaserJet%201000": No such device" lordshipmayhem Mandriva 2 08-08-2004 04:56 PM
how do i know if a cracker has corrupted my "ps" zoltar77n Linux - Newbie 2 10-16-2003 11:09 PM
A7N266-VM Motherboard; Hang at "Checking Module Dependencies" if USB Device Connected jfxberns Linux - General 2 04-19-2003 11:12 AM


All times are GMT -5. The time now is 03:19 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration