Sunday, January 28, 2007

Printer are a target ?

Yeah .. sebagaimana di tulis oleh Larry Seltzer yang diberi judul "Our Printer Got Hacked?!?!" dalam kolom security di situs eweek.com bertanggal 25 januari 2007, lebih lanjut dia beropini bahwa hacker dapat "memasuki" port yang terbuka dan melakukan bof exploit terhadap printer.

Setelah sedikit membaca tulisan tersebut gw jadi teringat dengan salah satu buku yang pernah gw baca dan gw ingat di salah satu chapternya menceritakan detil proses hacking terhadap printer, dan "keren"nya lagi buku ini di terbitkan pada tahun 2003 (underground technique huh??, yipie), berikut sedikit "potongan" dari chapter tersebut
h3X is a hacker, or to be more precise, she is a hackse (from hexe, the German word for witch). Currently,h3X is on the lookout for some printers. Printers are the best places to hide files and share them with other folks anonymously. And since not too many people know about that, h3X likes to store exploit codes and other kinky stuff on printers, and point her buddies to the Web servers that actually run on these printers.
Chapter 4, h3X’s Adventures in Networkland by FX; Stealing the network: How To Own a box

Sebenarnya gw sendiri juga belum pernah melakukan "POC" sedikitpun terkait dengan hal ini, tetapi sebagaimana arsitektur dari sebuah printer yang di lengkapi dengan memory serta menjalankan service (binding port on pc) maka adalah mungkin untuk menjadikannya file servers, mengeskploitasinya, bahkan hanya melakukan "anonymous printing". ow yah sedikit pertanyaan dari gw, apakah setelah terjadi kegagalan dalam proses printing dan kamu me-restart komputer dan printer maka setelah semua menyala sempurna maka printer akan langsung mencetak "pending/failed process"?
The on-board memory consists of six areas: base code,language code, fonts, DRAM, EEROM (electrically erasable read-only memory), and expandable. The base code is split between two 500K-byte devices and uses one of the minor support ASICs to interface with the data bus. Its two functions are to help ease bus loading and to provide a small pipeline. The language code uses a single 2M-byte read-only-memory (ROM) which contains the PCL 5C language and
several internal demonstration plots. The fonts are also contained in a single 2M-byte ROM. The main DRAM is used for swath and processor scratch memory. The PCL 5C ROM, the font ROM, and the DRAM have direct access to the address and data bus. The EEROM stores constants that must be retained when the unit is powered off. Finally, the expandable space can be used for up to 24M bytes of DRAM, or up to 18M bytes with the PostScript option
HP DeskJet 1200C Printer Architecture; www.hpl.hp.com/hpjournal/94feb/feb94a8.pdf
Dare to try it ?

No comments:

Post a Comment