Tenkte kanskje dette var noe for dere inne her. En fyr har satt opp en Linux-server på PS3'en sin, og om du klarer å hacke den, så får du maskinen.

http://ps3.shimpinomori.net/index_en.html

"Hack the PS3 this site is running on, and you will earn:

* The PS3 with all its default accessories
(note: the hard disk was replaced with a 160 GB hard disk!),
* an HDMI cable,
* Linux (Fedora core 5 PPC + PS3 add-on) preinstalled, of course,
* The game "Resistance - the fall of Man". "

Ser ut som tjeneren kjører ftp og ssh, så hadde vært morsomt å prøvd litt brute-force mot en av disse protokollene

Noen som har noe brukbar brute-force-software å anbefale?

evuhleye, er ikke vits. Kommer til å ta 10000 år eller noe. Fyren som hoster kan sikkerheten sin og har neppe passord som står i en ordbok. Dessuten blir du kastet ut etter 3 forsøk mot ssh.

nja, får 6 forsøk før det er stopp.
skader jo ikke å prøve med en klient som mekker randompassord.. pcen står jo på 24/7 uansett..
finnes det ikke program som kobler seg til igjen automatisk etter å ha blitt kasta ut da?

Joda, det er bare å skrive et script. Men tror den blokker IPen din også. Går jo an å bypasse med proxyer. Er jo bare å skrive en liten bruteforcer selv i perl, python eller hva enn man liker.

Uansett, han skrev han hadde en halv GB logger av folk som hadde forsøk brute-forcing, så tror ikke det er stort å hente der.

Hvis noen av dere klarer det eller i det hele tatt kommer i nærheten av å klare det. Gidder dere å poste litt framgangsmåte osv. da? har nok peil til at jeg klarte å kjøre nmap mot siden :P
Kanskje dere gidder å poste framgangsmåte uansett om dere klarer det eller ikke?

Det er så mange i hele verden som kommer til å prøve, ønsker uansett de som prøver lykke til. BTW tviler på at dere er de eneste som tenker på Bruteforcing

Merkelig at han ikke har satt ps3'en til og ikke svare på ping.

Kvifor det? ping gjer da nada skadelig, bortsett fra å bruke litt båndbredde, og gjere det *litt* enklare å bruke nmap (slepp å ha på -p0). Reint sikkerhetsmessig er det uviktig.

@ps3.shimpinomori.net:

1433/tcp open ms-sql-s
1434/tcp open ms-sql-m
1435/tcp open ibm-cics
1436/tcp open sas-2
1437/tcp open tabula
1438/tcp open eicon-server
1439/tcp open eicon-x25
1440/tcp open eicon-slp
1441/tcp open cadis-1
1442/tcp open cadis-2
1443/tcp open ies-lm
1444/tcp open marcam-lm
1445/tcp open proxima-lm
1446/tcp open ora-lm
1447/tcp open apri-lm
1448/tcp open oc-lm
1449/tcp open peport
1450/tcp open dwf
1451/tcp open infoman
1452/tcp open gtegsc-lm
1453/tcp open genie-lm
1454/tcp open interhdl_elmd
1455/tcp open esl-lm
1456/tcp open dca
1457/tcp open valisys-lm
1458/tcp open nrcabq-lm
1459/tcp open proshare1
1460/tcp open proshare2
1461/tcp open ibm_wrless_lan
1462/tcp open world-lm
1463/tcp open nucleus
1464/tcp open msl_lmd
1465/tcp open pipes
1466/tcp open oceansoft-lm
1467/tcp open csdmbase
1468/tcp open csdm
1469/tcp open aal-lm
1470/tcp open uaiact
1471/tcp open csdmbase
1472/tcp open csdm
1473/tcp open openmath
1474/tcp open telefinder
1475/tcp open taligent-lm
1476/tcp open clvm-cfg
1477/tcp open ms-sna-server
1478/tcp open ms-sna-base
1479/tcp open dberegister
1480/tcp open pacerforum
1481/tcp open airs
1482/tcp open miteksys-lm
1483/tcp open afs
1484/tcp open confluent
1485/tcp open lansource
1486/tcp open nms_topo_serv
1487/tcp open localinfosrvr
1488/tcp open docstor
1489/tcp open dmdocbroker
1490/tcp open insitu-conf
1491/tcp open anynetgateway
1492/tcp open stone-design-1
1493/tcp open netmap_lm
1494/tcp open citrix-ica
1495/tcp open cvc
1496/tcp open liberty-lm
1497/tcp open rfx-lm
1498/tcp open watcom-sql
1499/tcp open fhc
1500/tcp open vlsi-lm
1501/tcp open sas-3
1502/tcp open shivadiscovery
1503/tcp open imtc-mcs
1504/tcp open evb-elm
1505/tcp open funkproxy
1506/tcp open utcd
1507/tcp open symplex
1508/tcp open diagmond
1509/tcp open robcad-lm
1510/tcp open mvx-lm
1511/tcp open 3l-l1
1512/tcp open wins
1513/tcp open fujitsu-dtc
1514/tcp open fujitsu-dtcns
1515/tcp open ifor-protocol
1516/tcp open vpad
1517/tcp open vpac
1518/tcp open vpvd
1519/tcp open vpvc
1520/tcp open atm-zip-office
1521/tcp open oracle
1522/tcp open rna-lm
1523/tcp open cichild-lm
1524/tcp open ingreslock
1525/tcp open orasrv
1526/tcp open pdap-np
1527/tcp open tlisrv
1528/tcp open mciautoreg
1529/tcp open support
1530/tcp open rap-service
1531/tcp open rap-listen
1532/tcp open miroconnect
1533/tcp open virtual-places
1534/tcp open micromuse-lm
1535/tcp open ampr-info
1536/tcp open ampr-inter
1537/tcp open sdsc-lm
1538/tcp open 3ds-lm
1539/tcp open intellistor-lm
1540/tcp open rds
1541/tcp open rds2
1542/tcp open gridgen-elmd
1543/tcp open simba-cs
1544/tcp open aspeclmd
1545/tcp open vistium-share
1546/tcp open abbaccuray
1547/tcp open laplink
1548/tcp open axon-lm
1549/tcp open shivahose
1550/tcp open 3m-image-lm
1551/tcp open hecmtl-db
1552/tcp open pciarray
1600/tcp open issd
1650/tcp open nkd
1651/tcp open shiva_confsrvr
1652/tcp open xnmp
1661/tcp open netview-aix-1
1662/tcp open netview-aix-2
1663/tcp open netview-aix-3
1664/tcp open netview-aix-4
1665/tcp open netview-aix-5
1666/tcp open netview-aix-6
1667/tcp open netview-aix-7
1668/tcp open netview-aix-8
1669/tcp open netview-aix-9
1670/tcp open netview-aix-10
1671/tcp open netview-aix-11
1672/tcp open netview-aix-12
1680/tcp open CarbonCopy
1720/tcp open H.323/Q.931
1723/tcp open pptp
1755/tcp open wms
1761/tcp open landesk-rc
1762/tcp open landesk-rc
1763/tcp open landesk-rc
1764/tcp open landesk-rc
1827/tcp open pcm
1900/tcp open UPnP
1935/tcp open rtmp
1984/tcp open bigbrother
1986/tcp open licensedaemon
1987/tcp open tr-rsrb-p1
1988/tcp open tr-rsrb-p2
1989/tcp open tr-rsrb-p3
1990/tcp open stun-p1
1991/tcp open stun-p2
1992/tcp open stun-p3
1993/tcp open snmp-tcp-port
1994/tcp open stun-port
1995/tcp open perf-port
1996/tcp open tr-rsrb-port
1997/tcp open gdp-port
1998/tcp open x25-svc-port
1999/tcp open tcp-id-port
2000/tcp open callbook
2001/tcp open dc
2002/tcp open globe
2003/tcp open cfingerd
2004/tcp open mailbox
2005/tcp open deslogin
2006/tcp open invokator
2007/tcp open dectalk
2008/tcp open conf
2009/tcp open news
2010/tcp open search
2011/tcp open raid-cc
2012/tcp open ttyinfo
2013/tcp open raid-am
2014/tcp open troff
2015/tcp open cypress
2016/tcp open bootserver
2017/tcp open cypress-stat
2018/tcp open terminaldb
2019/tcp open whosockami
2020/tcp open xinupageserver
2021/tcp open servexec
2022/tcp open down
2023/tcp open xinuexpansion3
2024/tcp open xinuexpansion4
2025/tcp open ellpack
2026/tcp open scrabble
2027/tcp open shadowserver
2028/tcp open submitserver
2030/tcp open device2
2032/tcp open blackboard
2033/tcp open glogger
2034/tcp open scoremgr
2035/tcp open imsldoc
2038/tcp open objectmanager
2040/tcp open lam
2041/tcp open interbase
2042/tcp open isis
2043/tcp open isis-bcast
2044/tcp open rimsl
2045/tcp open cdfunc
2046/tcp open sdfunc
2047/tcp open dls
2048/tcp open dls-monitor
2049/tcp open nfs
2053/tcp open knetd
2064/tcp open dnet-keyproxy
2065/tcp open dlsrpn
2067/tcp open dlswpn
2068/tcp open advocentkvm
2105/tcp open eklogin
2106/tcp open ekshell
2108/tcp open rkinit
2111/tcp open kx
2112/tcp open kip
2120/tcp open kauth
2121/tcp open ccproxy-ftp
2201/tcp open ats
2232/tcp open ivs-video
2241/tcp open ivsd
2301/tcp open compaqdiag
2307/tcp open pehelp
2401/tcp open cvspserver
2430/tcp open venus
2431/tcp open venus-se
2432/tcp open codasrv
2433/tcp open codasrv-se
2500/tcp open rtsserv
2501/tcp open rtsclient
2564/tcp open hp-3000-telnet
2600/tcp open zebrasrv
2601/tcp open zebra
2602/tcp open ripd
2603/tcp open ripngd
2604/tcp open ospfd
2605/tcp open bgpd
2627/tcp open webster
2628/tcp open dict
2638/tcp open sybase
2766/tcp open listen
2784/tcp open www-dev
2809/tcp open corbaloc
2903/tcp open extensisportfolio
2998/tcp open iss-realsec
3000/tcp open ppp
3001/tcp open nessusd
3005/tcp open deslogin
3006/tcp open deslogind
3049/tcp open cfs
3052/tcp open PowerChute
3064/tcp open dnet-tstproxy
3086/tcp open sj3
3128/tcp open squid-http
3141/tcp open vmodem
3264/tcp open ccmail
3268/tcp open globalcatLDAP
3269/tcp open globalcatLDAPssl
3292/tcp open meetingmaker
3306/tcp open mysql
3333/tcp open dec-notes
3372/tcp open msdtc
3389/tcp open ms-term-serv
3421/tcp open bmap
3455/tcp open prsvp
3456/tcp open vat
3457/tcp open vat-control
3462/tcp open track
3531/tcp open peerenabler
3632/tcp open distccd
3689/tcp open rendezvous
3900/tcp open udt_os
3984/tcp open mapper-nodemgr
3985/tcp open mapper-mapethd
3986/tcp open mapper-ws_ethd
3999/tcp open remoteanything
4000/tcp open remoteanything
4002/tcp open mlchat-proxy
4008/tcp open netcheque
4045/tcp open lockd
4125/tcp open rww
4132/tcp open nuts_dem
4133/tcp open nuts_bootp
4144/tcp open wincim
4224/tcp open xtell
4321/tcp open rwhois
4333/tcp open msql
4343/tcp open unicall
4444/tcp open krb524
4480/tcp open proxy-plus
4500/tcp open sae-urn
4557/tcp open fax
4559/tcp open hylafax
4660/tcp open mosmig
4662/tcp open edonkey
4672/tcp open rfa
4899/tcp open radmin
4987/tcp open maybeveritas
4998/tcp open maybeveritas
5000/tcp open UPnP
5001/tcp open commplex-link
5002/tcp open rfe
5003/tcp open filemaker
5010/tcp open telelpathstart
5011/tcp open telelpathattack
5050/tcp open mmcc
5060/tcp open sip
5100/tcp open admd
5101/tcp open admdog
5102/tcp open admeng
5145/tcp open rmonitor_secure
5190/tcp open aol
5191/tcp open aol-1
5192/tcp open aol-2
5193/tcp open aol-3
5232/tcp open sgi-dgl
5236/tcp open padl2sim
5300/tcp open hacl-hb
5301/tcp open hacl-gs
5302/tcp open hacl-cfg
5303/tcp open hacl-probe
5304/tcp open hacl-local
5305/tcp open hacl-test
5308/tcp open cfengine
5400/tcp open pcduo-old
5405/tcp open pcduo
5432/tcp open postgres
5490/tcp open connect-proxy
5510/tcp open secureidprop
5520/tcp open sdlog
5530/tcp open sdserv
5540/tcp open sdreport
5550/tcp open sdadmind
5555/tcp open freeciv
5560/tcp open isqlplus
5631/tcp open pcanywheredata
5632/tcp open pcanywherestat
5679/tcp open activesync
5680/tcp open canna
5713/tcp open proshareaudio
5714/tcp open prosharevideo
5715/tcp open prosharedata
5716/tcp open prosharerequest
5717/tcp open prosharenotify
5800/tcp open vnc-http
5801/tcp open vnc-http-1
5802/tcp open vnc-http-2
5803/tcp open vnc-http-3
5900/tcp open vnc
5901/tcp open vnc-1
5902/tcp open vnc-2
5903/tcp open vnc-3
5977/tcp open ncd-pref-tcp
5978/tcp open ncd-diag-tcp
5979/tcp open ncd-conf-tcp
5997/tcp open ncd-pref
5998/tcp open ncd-diag
5999/tcp open ncd-conf
6000/tcp open X11
6001/tcp open X11:1
6002/tcp open X11:2
6003/tcp open X11:3
6004/tcp open X11:4
6005/tcp open X11:5
6006/tcp open X11:6
6007/tcp open X11:7
6008/tcp open X11:8
6009/tcp open X11:9
6017/tcp open xmail-ctrl
6050/tcp open arcserve
6101/tcp open VeritasBackupExec
6103/tcp open RETS-or-BackupExec
6105/tcp open isdninfo
6106/tcp open isdninfo
6110/tcp open softcm
6111/tcp open spc
6112/tcp open dtspc
6141/tcp open meta-corp
6142/tcp open aspentec-lm
6143/tcp open watershed-lm
6144/tcp open statsci1-lm
6145/tcp open statsci2-lm
6146/tcp open lonewolf-lm
6147/tcp open montage-lm
6148/tcp open ricardo-lm
6346/tcp open gnutella
6347/tcp open gnutella2
6400/tcp open crystalreports
6401/tcp open crystalenterprise
6502/tcp open netop-rc
6543/tcp open mythtv
6544/tcp open mythtv
6547/tcp open PowerChutePLUS
6548/tcp open PowerChutePLUS
6558/tcp open xdsxdm
6588/tcp open analogx
6666/tcp open irc-serv
6667/tcp open irc
6668/tcp open irc
6699/tcp open napster
6881/tcp open bittorent-tracker
6969/tcp open acmsoda
7000/tcp open afs3-fileserver
7001/tcp open afs3-callback
7002/tcp open afs3-prserver
7003/tcp open afs3-vlserver
7004/tcp open afs3-kaserver
7005/tcp open afs3-volser
7006/tcp open afs3-errors
7007/tcp open afs3-bos
7008/tcp open afs3-update
7009/tcp open afs3-rmtsys
7010/tcp open ups-onlinet
7070/tcp open realserver
7100/tcp open font-service
7200/tcp open fodms
7201/tcp open dlip
7273/tcp open openmanage
7326/tcp open icb
7464/tcp open pythonds
7597/tcp open qaz
7937/tcp open nsrexecd
7938/tcp open lgtomapper
8000/tcp open http-alt
8007/tcp open ajp12
8009/tcp open ajp13
8021/tcp open ftp-proxy
8080/tcp open http-proxy
8081/tcp open blackice-icecap
8082/tcp open blackice-alerts
8443/tcp open https-alt
8888/tcp open sun-answerbook
8892/tcp open seosload
9090/tcp open zeus-admin
9100/tcp open jetdirect
9111/tcp open DragonIDSConsole
9152/tcp open ms-sql2000
9535/tcp open man
9876/tcp open sd
9991/tcp open issa
9992/tcp open issc
9999/tcp open abyss
10000/tcp open snet-sensor-mgmt
10005/tcp open stel
10082/tcp open amandaidx
10083/tcp open amidxtape
11371/tcp open pksd
12000/tcp open cce4x
12345/tcp open NetBus
12346/tcp open NetBus
13701/tcp open VeritasNetbackup
13702/tcp open VeritasNetbackup
13705/tcp open VeritasNetbackup
13706/tcp open VeritasNetbackup
13708/tcp open VeritasNetbackup
13709/tcp open VeritasNetbackup
13710/tcp open VeritasNetbackup
13711/tcp open VeritasNetbackup
13712/tcp open VeritasNetbackup
13713/tcp open VeritasNetbackup
13714/tcp open VeritasNetbackup
13715/tcp open VeritasNetbackup
13716/tcp open VeritasNetbackup
13717/tcp open VeritasNetbackup
13718/tcp open VeritasNetbackup
13720/tcp open VeritasNetbackup
13721/tcp open VeritasNetbackup
13722/tcp open VeritasNetbackup
13782/tcp open VeritasNetbackup
13783/tcp open VeritasNetbackup
15126/tcp open swgps
16444/tcp open overnet
16959/tcp open subseven
17007/tcp open isode-dua
17300/tcp open kuang2
18000/tcp open biimenu
18181/tcp open opsec_cvp
18182/tcp open opsec_ufp
18183/tcp open opsec_sam
18184/tcp open opsec_lea
18185/tcp open opsec_omi
18187/tcp open opsec_ela
19150/tcp open gkrellmd
20005/tcp open btx
22273/tcp open wnn6
22289/tcp open wnn6_Cn
22305/tcp open wnn6_Kr
22321/tcp open wnn6_Tw
22370/tcp open hpnpd
26208/tcp open wnn6_DS
27000/tcp open flexlm0
27001/tcp open flexlm1
27002/tcp open flexlm2
27003/tcp open flexlm3
27004/tcp open flexlm4
27005/tcp open flexlm5
27006/tcp open flexlm6
27007/tcp open flexlm7
27008/tcp open flexlm8
27009/tcp open flexlm9
27010/tcp open flexlm10
27374/tcp open subseven
27665/tcp open Trinoo_Master
31337/tcp open Elite
32770/tcp open sometimes-rpc3
32771/tcp open sometimes-rpc5
32772/tcp open sometimes-rpc7
32773/tcp open sometimes-rpc9
32774/tcp open sometimes-rpc11
32775/tcp open sometimes-rpc13
32776/tcp open sometimes-rpc15
32777/tcp open sometimes-rpc17
32778/tcp open sometimes-rpc19
32779/tcp open sometimes-rpc21
32780/tcp open sometimes-rpc23
32786/tcp open sometimes-rpc25
32787/tcp open sometimes-rpc27
38037/tcp open landesk-cba
38292/tcp open landesk-cba
43188/tcp open reachout
44334/tcp open tinyfw
44442/tcp open coldfusion-auth
44443/tcp open coldfusion-auth
47557/tcp open dbbrowse
49400/tcp open compaqdiag
50000/tcp open iiimsf
50002/tcp open iiimsf
54320/tcp open bo2k
61439/tcp open netprowler-manager
61440/tcp open netprowler-manager2
61441/tcp open netprowler-sensor
65301/tcp open pcanywhere

scanned in 126.819 seconds

hm.. -falske porter, eller hva tros?

Det eneste som er "drit" med en PS3 er at den er dyr, så gjør meg den glede og hack denne siden, så får du deg en gratis samtidig som vi slipper klaging. Spennende "prosjekt". Lurer på hvor lenge han har den gående og hvor lenge det tar før den er knekt.

snudebil, er bare ssh og http åpent til selve boksen.

Garantert fake som villaste helvete. Blir litt meir interessant når du hiver på versjonsprobing da, uten at eg skal røpe for mykje...

Aldri om hadde turt og hatt ms-sql på den boksen der.

Eg innbilte meg at ms-sql, veritas backup-exec for windows, samt diverse andre ting kjørte heller dårlig på windows. Som sagt, versjons-probing er opplevelse i seg sjølv.

Går ganske greit på windows, men det er verre i Linux på Cell prosessor

Det skjer ikke at noen kommer inn på boksen innen januar mm. det blir funnet et veldig stort hull i ssh eller apache (sikkert den webserveren som kjøres), noe som neppe skjer.

Apache har hull fra tid til annen, og enklaste er å sjekke jevnlig når det kjem ny versjon, og be om at eigaren ikkje oppdaterer apache daglig...

Han kjører ikke apache men publicfile, et program som blandt annet chrooter til webroten, har aldri hatt et sikkerhetshull, og som, ifølge det samme forumet som er nevnt over, brukes mye av amerikanske myndigheter..

Men han kjører OpenSSH 4.3: http://secunia.com/advisories/22173/

Tror han skrev at han ikke kom til å gjøre noe som helst med boksen etter at den var satt opp og patchet.