[maemo-developers] Security Guidance for N800 OS development

From: Marius Gedminas marius at pov.lt
Date: Tue Feb 20 13:40:09 EET 2007
On Mon, Feb 19, 2007 at 09:00:18PM +0000, Dave Cridland wrote:
> If you're running network daemons on the device, you deserve 
> everything you get, of course, but even then, there's plenty of 
> documents and guides.

Canola comes with a network daemon.  It listens on (the
configuration web server, inaccessible from outside unless you check
some checkbox) and on port (no idea why, but I can telnet
to this port from outside).

Also, due to a bug, the X server on the N800 listens on TCP port 6000:

I wonder how many people install OpenSSH/Dropbear and then leave their
root password as the default value (rootme).

Marius Gedminas
A bus station is where a bus stops, a train station is where a train stops. On
my desk I have a work station...
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.maemo.org/pipermail/maemo-developers/attachments/20070220/b674203d/attachment.pgp 
More information about the maemo-developers mailing list