asciilifeform: ^ lulzies! they very much don't want you replacing that uboot.
asciilifeform: 'As evidence, consider that in version 5.5.4 of the AirMax firmware, the kernel was modified such that the MTD partitions would be read only, however this change cannot be found in the corresponding kernel patches or source.'
asciilifeform: a standard jtag probe of whatever kind you're partial to (i like 'bus blaster') and a copy of openocd is all you need
asciilifeform: and why does a reverse engineer need to travel anyway
asciilifeform: mircea_popescu: is it because most folks need fallback employment if a job falls through? sure - but if a craftsman is needed badly, he will go on tour to antarctica. so long as the costs are covered.
asciilifeform: mircea_popescu: fact remains, they could get reversers. it's just another kind of craftsman, like heart surgeon. they would simply have to pay the fee
asciilifeform: mircea_popescu: i thought the pattern was, 'don't need men, only their dough' ?
asciilifeform: because the only industry is meat processing ?
asciilifeform: mircea_popescu: not necessarily. but perhaps ar doesn't -need- any ?
asciilifeform: decimation: it is a very common setting in a uboot used for dev work
asciilifeform: mircea_popescu: the ubiquiti example dovetails nicely with the thread re: unemployed reversers. if persians happily buy turdware, they either haven't many, or haven't any competent ones, or they are all occupied with something else (what ?)
asciilifeform: betcha the bots are happy to speak with one another.
asciilifeform: ;;later tell decimation before you ceremonially burn that thing, or put openbsd on it, etc. consider posting the u-boot partition to #b-a warez (talk to kakobrekla?)
asciilifeform: usg contractor supplying boobytrapped goodies to the untermenschen
asciilifeform: 'From my conversations with Ubiquiti, I have found that they claimed that it's alright to refuse to provide source code to GPL-licensed software if "This decision was taken with the security of the users in mind". Furthermore, my conversations were endlessly delayed by the supposed necessity to forward my query to another, unnamed, team.' << now we can probably say what.☟︎
asciilifeform: i am quite certain of having seen something quite like this before. and i knew that ~x
asciilifeform: they used to follow a similar pattern, e.g., 'this post is a very astute commentary on the subject, i should like to read another like it, please carry on the good work' etc.
asciilifeform: in a production machine, 'uboot' should skip straight to loading from nand
asciilifeform: still saves time and wear on the nand vs flashing it in every time
asciilifeform: mircea_popescu: iirc he hammered in the command every time into the serial console
asciilifeform: in which case it will certainly ask for tftp every time on boot.
asciilifeform: ^ unless we're all killed & replaced with impersonators, l0l
asciilifeform: (what it was - they left tftp on. in precisely the way we won't in 'pogotron')
asciilifeform: ;;later tell decimation ^ iirc you were using a naked 'edgerouter' somewhere. the time to stop was - july. the second best time - now
asciilifeform: and, '...anyone with physical access to the end of the Ethernet cable to your Ubiquiti airOS-based device... ...can obtain the plain text configuration while leaving behind no trace that they dumped your configuration ...'
asciilifeform: of course, now we have a helpful recipe for determining whether it's a don't-give-a-fuck-shop or a usg honeypot - sue, and see if state secrets privilege is invoked...
asciilifeform: ut Ubiquiti remains under review by the Department .... '
asciilifeform: 'It said in its prospectus that certain of its products were sold to Iran, Cuba, Syria, the Sudan and North Korea and that some of its encryption components were sold without the appropriate export authorization… A review of Ubiquiti's sales to Iran by the Department of Commerce's Office of Export Enforcement earlier this year resulted in a warning letter, but no criminal or administrative prosecution or other penalties -- b
asciilifeform: owed them to continue for another year, until February 2011, OFAC said. The company said, in a filing released Thursday, that until early 2010 it didn’t prohibit its distributors from selling its products to Iran. After it learned of the potential violations, the company said that it failed to immediately ‘amend all its distribution agreements and to implement more robust compliance controls.’'
asciilifeform: 'Ubiquiti “demonstrated reckless disregard for U.S. sanction” law, and allowed its wireless equipment to be exported into Iran through distributors located in the United Arab Emirates and Greece, according to a release from the U.S. Office of Foreign Assets Control. The firm had no compliance program at the time, according to the release. And even after Ubiquiti learned that the transactions broke U.S. law, the company all
asciilifeform: mircea_popescu: i have a kind of image of just this animal in my head. but not earthling elephant, but the creature from '5th elephant' who i think of as 'desk elephant', or, alternatively, 'lisp elephant'
