-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hiho,
as far as I can recall, TomTom removed the USB storage mode because of the Microsoft patent troll lawsuit (there was a mail on this list - I can't find it right now...) I can understand the motivation to remove USB storage, however I'm pretty pissed because of the re-lockdown which is unnecessary. Tivoization is just plain wrong IMHO. To re-open the devices, my first step would be to intercept the USB/Ethernet communication with Wireshark. Either you will see SSH traffic and we would need to search for the client and the keys or you will see HTTP traffic and the used URLs. I did a quick search in the TomTom HOME binaries, but I didn't find anything directly suspicious. Since I don't have one of the newer devices, I can't do the Wireshark thing myself. We used to "convert" TomTom devices to measurement control systems (http://www.maintech.de/produkte/messtechnik/cockpit-bedienteil/), but right now we're porting our stuff to Android (using the Qt Lighthouse project). Best regards, Christian On 10.08.2011 18:55, Josef Wolf wrote: > On Wed, Aug 10, 2011 at 06:25:30PM +0200, Alexander Lehner wrote: >> On Wed, 10 Aug 2011, Josef Wolf wrote: >>> On Wed, Aug 10, 2011 at 04:55:25PM +0200, Josef Wolf wrote: >>> [ ... ] >>>> - on port 22 a dropbox ssh server is running, which seems to accept public >>> ^^^^^^^ >>> That should be "dropbear" instead of "dropbox", of course. Sorry for the >>> typo. >> The question is, how you would then upgrade the device, even if you >> had access through ssh? > > ssh-access would at least give me the possibility to lurk around and see what > exists on the device and whether there's a possibility to transfer data (maybe > scp). It might also allow me to see which URLs the web server is supposed to > accept. > >> For the hacker's delight I would give a try to find the private ssh >> key in the Windows TomTom Software. Maybe they were lazy enough to >> put it in plaintext somewhere. >> My private rsa keys have 64-byte lines ascii data, >> and the last line seems always to end with '=='. >> >> so maybe >> >> cat wine/c/TomTomApps/* | egrep '.{64}' > > Jeah, guess it's worth a try. > - -- - --------------------------------------------------- | maintech # Dipl. Inf (FH) Christian Daniel | | GmbH ### Otto-Hahn-Str. 15 · D-97204 Höchberg | - --------------------------------------------------- | AG Würzburg, HRB 8790 Tax-ID DE242279645 | - --------------------------------------------------- | http://www.maintech.de [email protected] | - --------------------------------------------------- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJOQsuLAAoJEHkgzUIsAWrizoYIAK4HrMuTAYfmpx2BaHZr/Y8S QG5JuNh3RXCtF3je5ba0rF5+/n23xYS+WWpOqwH4tyjl7RhaODNhTgCO66Qur3p0 /HzAn3B7Fo0y2ObPVFNmRX2+OUhDgh40kUMWGO8h8H3UagZ21AJXgQ81sIja5gIR lBfzx2CA89ykzBHUoEoTmlqvLjX60C1EGJS62P7pgdCuBlqF9rI+5X2qGN3u8Tiw ShSqYLbd6cQyW0miS4S+74hjBufYO7VzW6J9TLhZUqrYmiDX+jy6eWd6kwu1YRDV Pk3n/Ls7iGxlGNLhGrwZ1yxPfZ9AlPJv11FJ7SX19H16Oc6syoGVX2wMqPE+rEA= =ZyUq -----END PGP SIGNATURE-----
