Register Guidelines E-Books Search Today's Posts Mark Forums Read

Go Back   MobileRead Forums > E-Book General > News

Notices

Reply
 
Thread Tools Search this Thread
Old 10-22-2006, 01:08 PM   #1
Alexander Turcic
Fully Converged
Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.Alexander Turcic ought to be getting tired of karma fortunes by now.
 
Alexander Turcic's Avatar
 
Posts: 18,163
Karma: 14021202
Join Date: Oct 2002
Location: Switzerland
Device: Too many to count here.
Hacks for iRex iLiad and Sony Reader round-up

Aside the obvious E Ink technology, what makes the iLiad and the Reader similar is the fact that both devices run on Linux. While we are still waiting for iRex and Sony to release SDKs, clever MobileReaders have found their own ways to gain shell access to both devices.

Here is a current round-up of all hacking attempts:

Sony Reader

iRex iLiad
Alexander Turcic is offline   Reply With Quote
Old 10-22-2006, 01:26 PM   #2
TadW
Uebermensch
TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.
 
TadW's Avatar
 
Posts: 2,583
Karma: 1094606
Join Date: Jul 2003
Location: Italy
Device: Kindle
Addition:

Gseryakov began putting down the internals of the Sony Reader in the Wiki: https://wiki.mobileread.com/wiki/Sony_Reader_hack
TadW is offline   Reply With Quote
Advert
Old 10-22-2006, 01:38 PM   #3
CommanderROR
eink fanatic
CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.CommanderROR is fluent in JavaScript as well as Klingon.
 
CommanderROR's Avatar
 
Posts: 2,022
Karma: 4924
Join Date: Mar 2006
Location: Germany
Device: STAReBOOK, iRex Iliad, Sony 505, Kindle 2
I guess iRex and Sony will both start working very hard at fixing these "holes" tomorrow...:-)

Maybe it's time the both (but especially iRex) see the light and offer a full-fledged SDK because otherwise the hacking will continue and possibly reveal a lot more than they ever intenede the public to see...
CommanderROR is offline   Reply With Quote
Old 10-22-2006, 01:56 PM   #4
b_k
Übernerd
b_k is on a distinguished road
 
Posts: 238
Karma: 74
Join Date: Jun 2006
Location: Germany
Device: iRex iLiad
At least the pressure is getting higher to make them actually do something. Other than empty promises.
b_k is offline   Reply With Quote
Old 10-22-2006, 04:34 PM   #5
tcv
Addict
tcv will become famous soon enoughtcv will become famous soon enoughtcv will become famous soon enoughtcv will become famous soon enoughtcv will become famous soon enoughtcv will become famous soon enough
 
tcv's Avatar
 
Posts: 330
Karma: 596
Join Date: Oct 2006
All these hacks bring up a question for me...

Has anyone ever tried to use the Pepperpad 3 as an ebook reader?
tcv is offline   Reply With Quote
Advert
Old 10-23-2006, 03:35 AM   #6
ath
Addict
ath doesn't litterath doesn't litter
 
Posts: 222
Karma: 110
Join Date: Jun 2006
Location: Malmo, Sweden
Device: iLiad, Sony PRS-505, Kindle Paperwhite & Oasis
Quote:
Originally Posted by Alexander Turcic
Here is a current round-up of all hacking attempts:
I would like to urge anyone coming up with security hacks on these (and other platforms) to get them 'officially' reported and logged. Most people wanting to find out if there are known security problems with, say, the Sony Reader, would use the main vulnerability databases at www.securityfocus.com, www.secunia.com, nvd.nist.gov or www.osvdb.org, or just the bugtraq mailing list which serves as one of the inputs to securityfocus.

That makes the problems more obvious to the security community at large, and helps increase that pressure to get things right.

Last edited by ath; 10-23-2006 at 03:42 AM.
ath is offline   Reply With Quote
Old 10-23-2006, 08:21 AM   #7
arivero
Guru
arivero knows what time it isarivero knows what time it isarivero knows what time it isarivero knows what time it isarivero knows what time it isarivero knows what time it isarivero knows what time it isarivero knows what time it isarivero knows what time it isarivero knows what time it isarivero knows what time it is
 
arivero's Avatar
 
Posts: 607
Karma: 2157
Join Date: Oct 2005
Device: NCR3125, Nokia 770,...
Quote:
Originally Posted by ath
I would like to urge anyone coming up with security hacks on these (and other platforms) to get them 'officially' reported and logged. Most people wanting to find out if there are known security problems with, say, the Sony Reader, would use the main vulnerability databases at www.securityfocus.com, www.secunia.com, nvd.nist.gov or www.osvdb.org, or just the bugtraq mailing list which serves as one of the inputs to securityfocus.

That makes the problems more obvious to the security community at large, and helps increase that pressure to get things right.
The only security-involved hack is the existence of a open Xserver, and even this does not qualify as a security problem if a way to write to the disk is not found, at this moment it is only a partial privacy problem. Moreover, in standard mode, the Xserver display is not showing any text while it is opened.

As for the other hacks, you can not tell that accesing a device from its main console is a security hole, can you?
arivero is offline   Reply With Quote
Old 10-23-2006, 04:03 PM   #8
design256
Connoisseur
design256 doesn't litterdesign256 doesn't litter
 
Posts: 78
Karma: 103
Join Date: Aug 2006
Location: Ipswich, UK
Device: Irex Iliad
Quote:
Originally Posted by arivero
The only security-involved hack is the existence of a open Xserver, and even this does not qualify as a security problem if a way to write to the disk is not found, at this moment it is only a partial privacy problem. Moreover, in standard mode, the Xserver display is not showing any text while it is opened.
This could be a serious exploit - in my office, all computers are on the same LAN. Easy to popup a dialog on the manager's Iliad asking for his master username and password, then log the response.
design256 is offline   Reply With Quote
Old 10-24-2006, 04:12 AM   #9
ath
Addict
ath doesn't litterath doesn't litter
 
Posts: 222
Karma: 110
Join Date: Jun 2006
Location: Malmo, Sweden
Device: iLiad, Sony PRS-505, Kindle Paperwhite & Oasis
Quote:
Originally Posted by arivero
The only security-involved hack is the existence of a open Xserver, and even this does not qualify as a security problem if a way to write to the disk is not found,
An open X server is always a security problem. It's an oversight in configuration, and where there is one mistake, there are probably more. The severity of it may be high or low -- and also tends to alter over time, and depending on who is affected by it. To the bog-standard iLiad it is probably fairly small right now, but is that true also for that flight-chart reading iLiad, or any other special iLiads in the works?

My concern was, however, more with the Sony Reader - it occurred to me that the ability to read and write files via USB just might make it easier to get round DRM protection.
ath is offline   Reply With Quote
Old 10-24-2006, 05:38 AM   #10
igorsk
Wizard
igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.igorsk ought to be getting tired of karma fortunes by now.
 
Posts: 3,442
Karma: 300001
Join Date: Sep 2006
Location: Belgium
Device: PRS-500/505/700, Kindle, Cybook Gen3, Words Gear
Quote:
Originally Posted by ath
My concern was, however, more with the Sony Reader - it occurred to me that the ability to read and write files via USB just might make it easier to get round DRM protection.
That doesn't matter since it's much simpler to hack the PC software.
igorsk is offline   Reply With Quote
Old 10-24-2006, 05:43 AM   #11
TadW
Uebermensch
TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.TadW ought to be getting tired of karma fortunes by now.
 
TadW's Avatar
 
Posts: 2,583
Karma: 1094606
Join Date: Jul 2003
Location: Italy
Device: Kindle
Quote:
Originally Posted by ath
...just might make it easier to get round DRM protection.
Not something we might necessarily want to do. Right?
TadW is offline   Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
iRex iLiad vs Sony Reader 505 for a university student i, Podius Which one should I buy? 3 10-27-2008 09:23 PM
Sony Reader vs. iRex Iliad e-book reader Alexander Turcic iRex 150 12-19-2007 09:46 PM
Where did you first hear about the Sony Reader or iRex Iliad? Bob Russell Lounge 47 09-11-2007 06:40 PM
Sony Reader Vs iRex iLiad - viewing figures pdam iRex 19 11-28-2006 04:45 PM
M-edge cases for the iRex Iliad and Sony Reader now available CommanderROR iRex 0 10-22-2006 03:30 PM


All times are GMT -4. The time now is 06:07 AM.


MobileRead.com is a privately owned, operated and funded community.