[Gulli] Philips Hue Linux powered
Fabrizio Carrai
fabrizio.carrai@gmail.com
Sab 6 Feb 2016 15:30:34 CET
Grazie delle informazioni, molto interessanti. E leggendo si capisce che
non bisogna fermarsi alla prima riga, ma entrare nello specifico. Infatti
in uno dei documenti a cui si fa riferimento [1] le conclusioni inizian con:
"The security features provided by the ZigBee standard can be considered as
very strong and robust"
E' poi la gestione e/o l'implementazione che, in alcuni casi, fallisce.
Vedi l'efficacia del "social engineering
<https://it.wikipedia.org/wiki/Ingegneria_sociale>" rispetto alle tecniche
che potrebbero essere usate dai cracker (quelli cattivi...).
F.
[1] http://cognosec.com/zigbee_exploited_8F_Ca9.pdf
2016-02-06 13:46 GMT+01:00 Rebecca B. <rebecca.b.9292@gmail.com>:
> http://fortune.com/2015/08/07/zigbee-hacked/
> Il 06/feb/2016 13:45, "Rebecca B." <rebecca.b.9292@gmail.com> ha scritto:
>
>> Lessi su testate italiane. Vedo se recupero qualcosa.
>> Il 06/feb/2016 13:42, "Fabrizio Carrai" <fabrizio.carrai@gmail.com> ha
>> scritto:
>>
>>> Riferimenti ? Al GULLI interessa la sicurezza..
>>> Il 06 feb 2016 1:40 PM, "Rebecca B." <rebecca.b.9292@gmail.com> ha
>>> scritto:
>>>
>>>> Nonostante tutto hanno problemi di sicurezza eccessivi
>>>> Il 06/feb/2016 13:38, "Fabrizio Carrai" <fabrizio.carrai@gmail.com> ha
>>>> scritto:
>>>>
>>>>> Ho capito bene ? Convertitore di protocollo Wi-Fi Zigbee ?
>>>>>
>>>>> 2016-02-06 9:51 GMT+01:00 Alessandro Marzini <
>>>>> alessandro.marzini@gmail.com>:
>>>>>
>>>>>> Wow, ho appena scoperto che le mie nuove e coloratissime lampade
>>>>>> philips hue sono linux powered + tanto altro software opensource:
>>>>>>
>>>>>> HUE PERSONAL WIRELESS LIGHTING
>>>>>>
>>>>>> Welcome to hue - your personal wireless lighting system. For more
>>>>>> information please see our website www.meethue.com
>>>>>> Open Source
>>>>>>
>>>>>> This product contains software licensed under an open source license.
>>>>>> For acknowledgements and license texts, *see below*. *Philips
>>>>>> Lighting B.V.* hereby offers to deliver, upon request, a copy of the
>>>>>> complete corresponding source code for the copyrighted open source software
>>>>>> packages used in this product for which such delivery is requested by the
>>>>>> respective licenses. This offer is valid up to three years after *purchase
>>>>>> or software update* to anyone in receipt of this information. To
>>>>>> obtain source code, please send your request in English with product type
>>>>>> to open.source@philips.com. If you prefer not to use email or if you
>>>>>> do not receive confirmation receipt within 2 weeks after mailing to this
>>>>>> email address, please write in English to "Open Source Team, Philips
>>>>>> Intellectual Property & Standards, P.O. Box 220, 5600 AE Eindhoven, The
>>>>>> Netherlands". If you do not receive timely confirmation of your letter,
>>>>>> please email to the email address above.
>>>>>> SHA-1
>>>>>>
>>>>>> Website: http://www.packetizer.com/security/sha1/
>>>>>> License: sha_license.txt <http://192.168.178.114/sha_license.txt>
>>>>>> OpenSSL AES Encryption
>>>>>>
>>>>>> Website: https://www.openssl.org/docs/apps/enc.html
>>>>>> License: aesenc_license.txt
>>>>>> <http://192.168.178.114/aesenc_license.txt>
>>>>>> JSON_checker
>>>>>>
>>>>>> Website: http://www.json.org/JSON_checker/
>>>>>> License: jsonchecker_license.txt
>>>>>> <http://192.168.178.114/jsonchecker_license.txt>
>>>>>> UTF-8 Decoder
>>>>>>
>>>>>> Website: http://bjoern.hoehrmann.de/utf-8/decoder/dfa
>>>>>> License: utf8decoder_license.txt
>>>>>> <http://192.168.178.114/utf8decoder_license.txt>
>>>>>> openwrt-runtime
>>>>>>
>>>>>> Website: http://www.openwrt.org
>>>>>> License: license_openwrt-runtime.txt
>>>>>> <http://192.168.178.114/licenses/license_openwrt-runtime.txt>
>>>>>> zlib 1.2.8
>>>>>>
>>>>>> Website: http://www.zlib.net
>>>>>> License: license_zlib_1.2.8.txt
>>>>>> <http://192.168.178.114/licenses/license_zlib_1.2.8.txt>
>>>>>> uboot 1.1.4
>>>>>>
>>>>>> Website: http://www.denx.de/wiki/U-Boot/WebHome
>>>>>> License: license_uboot_1.1.4.txt
>>>>>> <http://192.168.178.114/licenses/license_uboot_1.1.4.txt>
>>>>>> busybox 1.19.4
>>>>>>
>>>>>> Website: http://www.busybox.net/
>>>>>> License: license_busybox_1.19.4.txt
>>>>>> <http://192.168.178.114/licenses/license_busybox_1.19.4.txt>
>>>>>> firewall 2014-03-20
>>>>>>
>>>>>> Website: https://openwrt.org/
>>>>>> License: license_firewall_2014-03-20.txt
>>>>>> <http://192.168.178.114/licenses/license_firewall_2014-03-20.txt>
>>>>>> fstools 2014-04-07
>>>>>>
>>>>>> Website: https://openwrt.org/
>>>>>> License: license_fstools_2014-04-07.txt
>>>>>> <http://192.168.178.114/licenses/license_fstools_2014-04-07.txt>
>>>>>> ppp-default 2.4.5
>>>>>>
>>>>>> Website: None <http://192.168.178.114/>
>>>>>> License: license_ppp-default_2.4.5.txt
>>>>>> <http://192.168.178.114/licenses/license_ppp-default_2.4.5.txt>
>>>>>> netifd 2014-04-07
>>>>>>
>>>>>> Website: http://wiki.openwrt.org/doc/techref/netifd
>>>>>> License: license_netifd_2014-04-07.txt
>>>>>> <http://192.168.178.114/licenses/license_netifd_2014-04-07.txt>
>>>>>> iw 3.17
>>>>>>
>>>>>> Website: http://git.sipsolutions.net/iw.git/
>>>>>> License: license_iw_3.17.txt
>>>>>> <http://192.168.178.114/licenses/license_iw_3.17.txt>
>>>>>> ed25519-donna 1.0
>>>>>>
>>>>>> Website: https://github.com/floodyberry/ed25519-donna
>>>>>> License: license_ed25519-donna_1.0.txt
>>>>>> <http://192.168.178.114/licenses/license_ed25519-donna_1.0.txt>
>>>>>> libiwinfo
>>>>>>
>>>>>> Website: http://wiki.openwrt.org/doc/devel/packages/iwinfo
>>>>>> License: license_libiwinfo.txt
>>>>>> <http://192.168.178.114/licenses/license_libiwinfo.txt>
>>>>>> libgcc 0.9.33.2
>>>>>>
>>>>>> Website: https://gcc.gnu.org/onlinedocs/gccint/index.html
>>>>>> License: license_libgcc_0.9.33.2.txt
>>>>>> <http://192.168.178.114/licenses/license_libgcc_0.9.33.2.txt>
>>>>>> linux 3.14
>>>>>>
>>>>>> Website: http://www.kernel.org
>>>>>> License: license_linux_3.14.txt
>>>>>> <http://192.168.178.114/licenses/license_linux_3.14.txt>
>>>>>> poly1305-donna 1.0
>>>>>>
>>>>>> Website: http://cr.yp.to/mac.html
>>>>>> License: license_poly1305-donna_1.0.txt
>>>>>> <http://192.168.178.114/licenses/license_poly1305-donna_1.0.txt>
>>>>>> libgpio 2015-01-15
>>>>>>
>>>>>> Website: https://github.com/Linutronix/libgpio
>>>>>> License: license_libgpio_2015-01-15.txt
>>>>>> <http://192.168.178.114/licenses/license_libgpio_2015-01-15.txt>
>>>>>> uci 2014-02-18.1
>>>>>>
>>>>>> Website: https://openwrt.org/
>>>>>> License: license_uci_2014-02-18.1.txt
>>>>>> <http://192.168.178.114/licenses/license_uci_2014-02-18.1.txt>
>>>>>> mtd-utils 1.5.0
>>>>>>
>>>>>> Website: http://www.linux-mtd.infradead.org/
>>>>>> License: license_mtd-utils_1.5.0.txt
>>>>>> <http://192.168.178.114/licenses/license_mtd-utils_1.5.0.txt>
>>>>>> librt 0.9.33.2
>>>>>>
>>>>>> Website: http://www.uclibc.org/
>>>>>> License: license_librt_0.9.33.2.txt
>>>>>> <http://192.168.178.114/licenses/license_librt_0.9.33.2.txt>
>>>>>> dropbear 2014.63
>>>>>>
>>>>>> Website: https://matt.ucc.asn.au/dropbear/dropbear.html
>>>>>> License: license_dropbear_2014.63.txt
>>>>>> <http://192.168.178.114/licenses/license_dropbear_2014.63.txt>
>>>>>> json-c 0.11
>>>>>>
>>>>>> Website: https://github.com/json-c/json-c/wiki
>>>>>> License: license_json-c_0.11.txt
>>>>>> <http://192.168.178.114/licenses/license_json-c_0.11.txt>
>>>>>> libpthread 0.9.33.2
>>>>>>
>>>>>> Website: http://www.uclibc.org/
>>>>>> License: license_libpthread_0.9.33.2.txt
>>>>>> <http://192.168.178.114/licenses/license_libpthread_0.9.33.2.txt>
>>>>>> ubus 2014-03-18
>>>>>>
>>>>>> Website: https://openwrt.org/
>>>>>> License: license_ubus_2014-03-18.txt
>>>>>> <http://192.168.178.114/licenses/license_ubus_2014-03-18.txt>
>>>>>> jsmn
>>>>>>
>>>>>> Website: http://zserge.com/jsmn.html
>>>>>> License: license_jsmn.txt
>>>>>> <http://192.168.178.114/licenses/license_jsmn.txt>
>>>>>> tommath 0.42.0
>>>>>>
>>>>>> Website: None <http://192.168.178.114/>
>>>>>> License: license_tommath_0.42.0.txt
>>>>>> <http://192.168.178.114/licenses/license_tommath_0.42.0.txt>
>>>>>> libnl-tiny 0.1
>>>>>>
>>>>>> Website: http://wiki.openwrt.org/doc/devel/packages/libnl-tiny
>>>>>> License: license_libnl-tiny_0.1.txt
>>>>>> <http://192.168.178.114/licenses/license_libnl-tiny_0.1.txt>
>>>>>> curve25519-donna 1.0
>>>>>>
>>>>>> Website: http://code.google.com/p/curve25519-donna/
>>>>>> License: license_curve25519-donna_1.0.txt
>>>>>> <http://192.168.178.114/licenses/license_curve25519-donna_1.0.txt>
>>>>>> libubox 2014-03-18
>>>>>>
>>>>>> Website: http://wiki.openwrt.org/doc/techref/ubox
>>>>>> License: license_libubox_2014-03-18.txt
>>>>>> <http://192.168.178.114/licenses/license_libubox_2014-03-18.txt>
>>>>>> iptables 1.4.21
>>>>>>
>>>>>> Website: http://www.netfilter.org/
>>>>>> License: license_iptables_1.4.21.txt
>>>>>> <http://192.168.178.114/licenses/license_iptables_1.4.21.txt>
>>>>>> uClibc 0.9.33.2
>>>>>>
>>>>>> Website: http://www.uclibc.org/
>>>>>> License: license_uClibc_0.9.33.2.txt
>>>>>> <http://192.168.178.114/licenses/license_uClibc_0.9.33.2.txt>
>>>>>> procd 2014-03-18
>>>>>>
>>>>>> Website: http://wiki.openwrt.org/doc/techref/procd
>>>>>> License: license_procd_2014-03-18.txt
>>>>>> <http://192.168.178.114/licenses/license_procd_2014-03-18.txt>
>>>>>> u-boot 2013.10
>>>>>>
>>>>>> Website: http://www.denx.de/wiki/U-Boot
>>>>>> License: license_u-boot_2013.10.txt
>>>>>> <http://192.168.178.114/licenses/license_u-boot_2013.10.txt>
>>>>>> i2c-tools 2013-12-15
>>>>>>
>>>>>> Website: http://www.lm-sensors.org/wiki/I2CTools
>>>>>> License: license_i2c-tools_2013-12-15.txt
>>>>>> <http://192.168.178.114/licenses/license_i2c-tools_2013-12-15.txt>
>>>>>> sysfsutils 2.1.0
>>>>>>
>>>>>> Website: http://linux-diag.sourceforge.net/Sysfsutils.html
>>>>>> License: license_sysfsutils_2.1.0.txt
>>>>>> <http://192.168.178.114/licenses/license_sysfsutils_2.1.0.txt>
>>>>>> tomcrypt 1.17
>>>>>>
>>>>>> Website: https://github.com/libtom/libtomcrypt
>>>>>> License: license_tomcrypt_1.17.txt
>>>>>> <http://192.168.178.114/licenses/license_tomcrypt_1.17.txt>
>>>>>> libdaemon 0.14
>>>>>>
>>>>>> Website: http://0pointer.de/lennart/projects/libdaemon/
>>>>>> License: license_libdaemon_0.14.txt
>>>>>> <http://192.168.178.114/licenses/license_libdaemon_0.14.txt>
>>>>>> opkg-unsigned 9c97d5ecd795709c8584e972bfdf3aee3a5b846d
>>>>>>
>>>>>> Website: http://code.google.com/p/opkg/
>>>>>> License:
>>>>>> license_opkg-unsigned_9c97d5ecd795709c8584e972bfdf3aee3a5b846d.txt
>>>>>> <http://192.168.178.114/licenses/license_opkg-unsigned_9c97d5ecd795709c8584e972bfdf3aee3a5b846d.txt>
>>>>>> chacha20-simple 1.0
>>>>>>
>>>>>> Website: http://chacha20.insanecoding.org/
>>>>>> License: license_chacha20-simple_1.0.txt
>>>>>> <http://192.168.178.114/licenses/license_chacha20-simple_1.0.txt>
>>>>>> hostapd 2015-01-20
>>>>>>
>>>>>> Website: http://hostap.epitest.fi/hostapd/
>>>>>> License: license_hostapd_2015-01-20.txt
>>>>>> <http://192.168.178.114/licenses/license_hostapd_2015-01-20.txt>
>>>>>> libnl 3.2.21
>>>>>>
>>>>>> Website: http://www.infradead.org/~tgr/libnl/
>>>>>> License: license_libnl_3.2.21.txt
>>>>>> <http://192.168.178.114/licenses/license_libnl_3.2.21.txt>
>>>>>> hostapd-full 2015-01-20
>>>>>>
>>>>>> Website: https://w1.fi/hostapd/
>>>>>> License: license_hostapd-full_2015-01-20.txt
>>>>>> <http://192.168.178.114/licenses/license_hostapd-full_2015-01-20.txt>
>>>>>> openssl 1.0.1j
>>>>>>
>>>>>> Website: http://www.openssl.org
>>>>>> License: license_openssl_1.0.1j.txt
>>>>>> <http://192.168.178.114/licenses/license_openssl_1.0.1j.txt>
>>>>>> srp 2.1.1
>>>>>>
>>>>>> Website: http://srp.stanford.edu/
>>>>>> License: license_srp_2.1.1.txt
>>>>>> <http://192.168.178.114/licenses/license_srp_2.1.1.txt>
>>>>>> ubox 2014-03-27
>>>>>>
>>>>>> Website: https://openwrt.org/
>>>>>> License: license_ubox_2014-03-27.txt
>>>>>> <http://192.168.178.114/licenses/license_ubox_2014-03-27.txt>
>>>>>> libconfig 1.4.9
>>>>>>
>>>>>> Website: http://www.hyperrealm.com/libconfig/
>>>>>> License: license_libconfig_1.4.9.txt
>>>>>> <http://192.168.178.114/licenses/license_libconfig_1.4.9.txt>
>>>>>> avahi 0.6.31
>>>>>>
>>>>>> Website: http://avahi.org/
>>>>>> License: license_avahi_0.6.31.txt
>>>>>> <http://192.168.178.114/licenses/license_avahi_0.6.31.txt>
>>>>>> mtd
>>>>>>
>>>>>> Website: http://wiki.openwrt.org/doc/techref/mtd
>>>>>> License: license_mtd.txt
>>>>>> <http://192.168.178.114/licenses/license_mtd.txt>
>>>>>> ᐧ
>>>>>>
>>>>>> --
>>>>>> Mailing list info: http://lists.linux.it/listinfo/gulli
>>>>>> Pagina web del GULLI: www.linux.livorno.it
>>>>>>
>>>>>
>>>>>
>>>>>
>>>>> --
>>>>> *Fabrizio*
>>>>>
>>>>> --
>>>>> Mailing list info: http://lists.linux.it/listinfo/gulli
>>>>> Pagina web del GULLI: www.linux.livorno.it
>>>>>
>>>>
>>>> --
>>>> Mailing list info: http://lists.linux.it/listinfo/gulli
>>>> Pagina web del GULLI: www.linux.livorno.it
>>>>
>>>
>>> --
>>> Mailing list info: http://lists.linux.it/listinfo/gulli
>>> Pagina web del GULLI: www.linux.livorno.it
>>>
>>
> --
> Mailing list info: http://lists.linux.it/listinfo/gulli
> Pagina web del GULLI: www.linux.livorno.it
>
--
*Fabrizio*
-------------- parte successiva --------------
Un allegato HTML è stato rimosso...
URL: <http://lists.linux.it/pipermail/gulli/attachments/20160206/3bd9ed2a/attachment.html>
Maggiori informazioni sulla lista
Gulli