Help - Search - Members - Calendar
Full Version: We need CPR for this forum!
OESF Forums > General Forums > General Support and Discussion > Security and Networking
Foxdie
Well this section of the forum has been here for quite a while and still it has cobwebs, time to brush them away I think.

The Zaurus, is it secure or not? Why is it/isn't it?

Comments please.
Mickeyl
What is CPR ?
Anonymous
it means die Herz-Lungen-Reanimation

regards,
xconduct smile.gif
Foxdie
http://depts.washington.edu/learncpr/
Capt_Caveman
Is it secure?

Not really, at least not the default configuration. The 2 biggest weaknesses I can think of off the top of my head would have to be that there is not even a rudimentry firewall installed and the initial root password can only be a numeric string of, IIRC, 8 characters. The fact that letters or punctuation aren't used reduces the amount of time needed to crack passwords by orders of magnitude. I've seen iptables packages available, but I'm not sure if you can use it without recompiling the kernel to include netfilter support. There's a boat-load of other security issues you could nit-pick about, but it really comes down to a trade-off between sacrificing usability for security. How many newbies want to write iptables scripts just so they can get there Z to sync? Not many.
Taim
I think part of the reason security really wasn't considered is because PDAs in general do not have security features other than a simple password to keep prying fingers off of them. Keep in mind, up until recently, wired/wireless/mobile connectivity has not been a popular or affordable option for PDAs. As more and more PDAs and wired/wireless/mobile solutions become available, PDA OSes do have to change.

I also wonder if security is a "size" issue 'thang. The more security you pack into a PDA, the more memory and FS space it takes up.
Capt_Caveman
True, especially when you think about all the necessary modules that come along with iptables.

Unfortunately a zaurus with wireless networking makes a nice springboard into a network; especially with nasties like samba shares and tFTP available. Though it is possible to turn off some of the un-needed networking daemons. I can't remember what the default config looks like, but I remember turning off a bunch of stuff when I first got my Z.

To be fair though, I don't think that it differs from any other PDA that I'm aware of. That just seems to be the industry standard, probably for the reasons you pointed out Taim.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2015 Invision Power Services, Inc.