Harald Welte's blog

Categories

Root (688)
- ccc (20)
- electronics (8)
- gsm (3)
- knf (4)
- linux (510)
  - a780 (39)
  - ath-driver (1)
  - conferences (79)
  - cyberjack (4)
  - gnuradio (4)
  - gpl-violations (103)
  - gspc (6)
  - mrtd (29)
  - netfilter (114)
    - ct sync (6)
  - openmoko (29)
  - opentom (7)
- misc (10)
- personal (80)
  - bollywood (14)
- photography (9)
- politics (21)
  - swpat (3)

Archives

2008 (29)
- May (5)
- April (6)
- March (6)
- February (7)
- January (5)
2007 (53)
- December (9)
- November (5)
- October (3)
- September (6)
- August (3)
- July (3)
- June (3)
- April (3)
- March (6)
- February (7)
- January (5)
2006 (154)
- December (12)
- November (9)
- October (8)
- September (12)
- August (10)
- July (13)
- June (21)
- May (13)
- April (23)
- March (6)
- February (14)
- January (13)
2005 (248)
- December (8)
- November (25)
- October (33)
- September (22)
- August (17)
- July (30)
- June (27)
- May (21)
- April (14)
- March (22)
- February (13)
- January (16)
2004 (198)
- December (8)
- November (18)
- October (18)
- September (15)
- August (19)
- July (17)
- June (11)
- May (5)
- April (22)
- March (13)
- February (24)
- January (28)
2003 (5)
- December (3)
- November (1)
- September (1)
2002 (1)
- February (1)

Harald's Web
gnumonks.org
hmw-consulting.com
dunkelromantik.org

Projects
netfilter/iptables
ulogd
asis
gspc
opentom.org
librfid
openmrtd
gpl-devices.org
gpl-violations.org
OpenPCD
OpenBeacon
OpenMoKo

Other Bloggers
Rusty Russell
David Miller
Martin Pool
Lawrence Lessig
Sirtaj Singh Kang
Jeremy Kerr
Atul Chitnis
Frank Rosengart (German)
Tim Pritlove
fukami
Michael Lauer
Stefan Schmidt
Kalyan Varma

Aggregators
kernelplanet.org
planet.netfilter.org
planet.openezx.org
planet.openmoko.org
planet.foss.in

Articles on this blog/journal are licensed under a Creative Commons Attribution-NoDerivs 2.5 License.

Mon, 27 Mar 2006

Downloading and executing your own code in RAM of EZX phones

In the last two days I've written a small program that allows you to utilize part of the built-in firmware update mechanism of the Motorola EZX phones. In fact, what it does is to download an arbitrary (max 1MB) piece of code from the PC to the phone via USB, and then execute that code on the phone.

On the one hand, this might look like a security hole (but well, nobody really cares about security on mobile phones anyway). On the other hand, this should definitely speed up kernel and driver development within the OpenEZX project, since it basically removes the need to flash the phone for testing of some new code.

Also, once a working driver for the TransFlash slot has been cooked up, it would actually be possible to usb-boot the phone into an OS that mounts its files from TransFlash. This doesn't touch a single bit of flash memory and is therefore ideal for development and probably even something similar to what 'live CD' distributions are to PC systems.

[ /linux/a780 | permanent link ]

OpenWRT terminates GPL License to SveaSoft

It might not be something new to you at all, but it was new to me, since it happened during my holidays: OpenWRT has sent SveaSoft a note of terminating of rights under the GPL.

I've had SveaSoft on my radar several times, but the whole situation seems to be so messy, and there seems to be a history of different violations with each and every release they made. Also, there seems to be quite some confusion on the whereabouts of the developer[s?], which makes it difficult to find an applicable jurisdiction.

[ /linux/gpl-violations | permanent link ]

Wed, 22 Mar 2006

Upcoming Chaosradio show on encryption

After quite some time of absence, I'm finally going to participate in Chaosradio again. The subject of the upcoming show is encryption for personal use, mostly focusing on hard disk and email encryption.

[ /ccc | permanent link ]

netfilter do_replace() bug is not remotely exploitable

I don't know how people like securityfocus and heise.de and others claim that the recently-discovered and fixed 'do_replace()' bug is remotely exploitable.

In fact, the bug (which was found and fixed by Solar Designer while working for the OpenVZ project) can only happen in a codepath that can be executed by the local root user. Not even a non-root user, neither any remote parties can hit that bug and/or exploit anything.

[ /linux/netfilter | permanent link ]

I'm single again

Those of you who know me one a more personal level will find it hard to believe that I'm actually a single again. Especially following up the engagement some two years ago.

After knowing Elisabeth for nine years, having lived together about half that time, it actually feels more like a divorce than 'just' a normal separation / split-up.

I will not make the mistake to state any reasons publicly in this weblog, sorry ;) Let just be said that we both feel very sad, and it was certainly not a lighthearted decision.

There's going to be some rough time ahead, and I'm certainly not in the mood for any kind of serious relationship anytime soon.

Always in motion, the future is.

[ /personal | permanent link ]

Mon, 20 Mar 2006

Returned from vacation in India

Just got back from the airport. Everyone who emailed me: Please keep patient, as I've got some thousands of mails to wade through. Sorry for any inconvenience. I should be back and fully running no later than end of the week.

[ /personal | permanent link ]

Harald Welte's blog

	RSS Categories Root (688) ccc (20) electronics (8) gsm (3) knf (4) linux (510) a780 (39) ath-driver (1) conferences (79) cyberjack (4) gnuradio (4) gpl-violations (103) gspc (6) mrtd (29) netfilter (114) ct sync (6) openmoko (29) opentom (7) misc (10) personal (80) bollywood (14) photography (9) politics (21) swpat (3) Archives 2008 (29) May (5) April (6) March (6) February (7) January (5) 2007 (53) December (9) November (5) October (3) September (6) August (3) July (3) June (3) April (3) March (6) February (7) January (5) 2006 (154) December (12) November (9) October (8) September (12) August (10) July (13) June (21) May (13) April (23) March (6) February (14) January (13) 2005 (248) December (8) November (25) October (33) September (22) August (17) July (30) June (27) May (21) April (14) March (22) February (13) January (16) 2004 (198) December (8) November (18) October (18) September (15) August (19) July (17) June (11) May (5) April (22) March (13) February (24) January (28) 2003 (5) December (3) November (1) September (1) 2002 (1) February (1) Harald's Web gnumonks.org hmw-consulting.com dunkelromantik.org Projects netfilter/iptables ulogd asis gspc opentom.org librfid openmrtd gpl-devices.org gpl-violations.org OpenPCD OpenBeacon OpenMoKo Other Bloggers Rusty Russell David Miller Martin Pool Lawrence Lessig Sirtaj Singh Kang Jeremy Kerr Atul Chitnis Frank Rosengart (German) Tim Pritlove fukami Michael Lauer Stefan Schmidt Kalyan Varma Aggregators kernelplanet.org planet.netfilter.org planet.openezx.org planet.openmoko.org planet.foss.in Articles on this blog/journal are licensed under a Creative Commons Attribution-NoDerivs 2.5 License.	Mon, 27 Mar 2006 Downloading and executing your own code in RAM of EZX phones In the last two days I've written a small program that allows you to utilize part of the built-in firmware update mechanism of the Motorola EZX phones. In fact, what it does is to download an arbitrary (max 1MB) piece of code from the PC to the phone via USB, and then execute that code on the phone. On the one hand, this might look like a security hole (but well, nobody really cares about security on mobile phones anyway). On the other hand, this should definitely speed up kernel and driver development within the OpenEZX project, since it basically removes the need to flash the phone for testing of some new code. Also, once a working driver for the TransFlash slot has been cooked up, it would actually be possible to usb-boot the phone into an OS that mounts its files from TransFlash. This doesn't touch a single bit of flash memory and is therefore ideal for development and probably even something similar to what 'live CD' distributions are to PC systems. [ /linux/a780 \| permanent link ] OpenWRT terminates GPL License to SveaSoft It might not be something new to you at all, but it was new to me, since it happened during my holidays: OpenWRT has sent SveaSoft a note of terminating of rights under the GPL. I've had SveaSoft on my radar several times, but the whole situation seems to be so messy, and there seems to be a history of different violations with each and every release they made. Also, there seems to be quite some confusion on the whereabouts of the developer[s?], which makes it difficult to find an applicable jurisdiction. [ /linux/gpl-violations \| permanent link ] Wed, 22 Mar 2006 Upcoming Chaosradio show on encryption After quite some time of absence, I'm finally going to participate in Chaosradio again. The subject of the upcoming show is encryption for personal use, mostly focusing on hard disk and email encryption. [ /ccc \| permanent link ] netfilter do_replace() bug is not remotely exploitable I don't know how people like securityfocus and heise.de and others claim that the recently-discovered and fixed 'do_replace()' bug is remotely exploitable. In fact, the bug (which was found and fixed by Solar Designer while working for the OpenVZ project) can only happen in a codepath that can be executed by the local root user. Not even a non-root user, neither any remote parties can hit that bug and/or exploit anything. [ /linux/netfilter \| permanent link ] I'm single again Those of you who know me one a more personal level will find it hard to believe that I'm actually a single again. Especially following up the engagement some two years ago. After knowing Elisabeth for nine years, having lived together about half that time, it actually feels more like a divorce than 'just' a normal separation / split-up. I will not make the mistake to state any reasons publicly in this weblog, sorry ;) Let just be said that we both feel very sad, and it was certainly not a lighthearted decision. There's going to be some rough time ahead, and I'm certainly not in the mood for any kind of serious relationship anytime soon. Always in motion, the future is. [ /personal \| permanent link ] Mon, 20 Mar 2006 Returned from vacation in India Just got back from the airport. Everyone who emailed me: Please keep patient, as I've got some thousands of mails to wade through. Sorry for any inconvenience. I should be back and fully running no later than end of the week. [ /personal \| permanent link ]