Archive for August, 2015

Creating packages with FPM

http://rnelson0.com/2014/09/15/creating-packages-with-fpm/

https://www.digitalocean.com/community/tutorials/how-to-use-fpm-to-easily-create-packages-in-multiple-formats

https://github.com/jordansissel/fpm

http://www.ducea.com/2011/08/31/build-your-own-packages-easily-with-fpm/

▶ Analysis of IPMI based vulnerabilities

https://www.youtube.com/watch?v=GZeUntdObCA

And here is a good introduction on the vulnerabilities in detail:

https://community.rapid7.com/community/metasploit/blog/2013/07/02/a-penetration-testers-guide-to-ipmi

IPMI architecture diagram shows BMC sideband via SMBUS.

https://threatpost.com/vulnerabilities-in-ipmi-protocol-have-long-shelf-life/106480

https://www.us-cert.gov/ncas/alerts/TA13-207A

https://securityledger.com/2014/06/ipmis-inconvenient-truth-a-conversation-with-dan-farmer/

http://fish2.com/ipmi/

http://www.fish2.com/security/

http://fish2.com/ipmi/river.pdf

http://fish2.com/ipmi/itrain.pdf

http://fish2.com/ipmi/itrain-gz.html

https://en.wikipedia.org/wiki/Intel_Active_Management_Technology

https://en.wikipedia.org/wiki/WS-Management

Tools:

http://www.gnu.org/software/freeipmi/

http://sourceforge.net/projects/ipmitool/

Redfish:

http://dmtf.org/standards/redfish

http://robhirschfeld.com/2014/12/11/redfish-ipmi-bios/

http://www.uefi.org/sites/default/files/resources/UEFI_Plugfest_May_2015_HTTP_Boot_Redfish_Samer_El-Haj_ver1.2.pdf

Different presentations:

https://groups.google.com/forum/#!topic/pdxdevops/KGu9kbVMstg

IPMI + RESTFUL API

https://wiki.openstack.org/wiki/IpmiCredentials

https://github.com/Ahiknsr/igor-rest-api

http://www.eyeshalfclosed.com/blog/2014/08/28/building-the-igor-rest-api/

Foreman:

http://www.fitzdsl.net/tag/ipmi/

Post-28 Sep 2015 update (all the fish2.com document seemed to be inaccessible now….):

IPMI specification (2013):

http://www.intel.com/content/dam/www/public/us/en/documents/product-briefs/ipmi-second-gen-interface-spec-v2-rev1-1.pdf

http://openipmi.sourceforge.net/IPMI.pdf

https://jhalderm.com/pub/papers/ipmi-woot13.pdf

http://www.ptsecurity.ru/ics/ipmi_v7_fix.pdf

http://www.dell.com/downloads/global/power/ps4q04-20040204-murphy.pdf

http://safecomputing.umich.edu/events/sumit13/docs/Bonkoski_IPMI_SUMIT_2013b.pdf

ftp://ftp.penguincomputing.com/pub/penguin/Other/IPMI/ipmi_howto.pdf

http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/ts/guide/UCSTroubleshooting/UCSTroubleshooting_chapter_01000.pdf

https://docs.oracle.com/cd/E19860-01/E21452/E21452.pdf

http://www.fujitsu.com/downloads/SPARCE/manuals/sparc-t5e/ilom3.0-snmp-ipmi-en-01.pdf

https://administratosphere.files.wordpress.com/2011/02/25133701.pdf

How to quickly compile all the Android samples via command line?

The procedure described here is working only for the “legacy” branch of Android SDK, as the later version are all using “Gradle” now (procedure to compile to be covered in another blog).

First the prerequisites (for Ubuntu 14.04 64-bit host environment, and Android SDK has been installed in /opt/android-sdk-linux directory):

1. Update Android SDK:

cd /opt/android-sdk-linux
tools/android update sdk –no-ui

2. Ensure “ant” is installed: “sudo apt-get install ant”.

3. Ensure java and javac is installed, version 7 preferred. (Java 6 confirmed will give errors).

4. Next, “cd /opt/android-sdk-linux/samples/android-22/legacy” to the Android version 22 legacy branch.

Using this script (named as “myant”):

#!/bin/bash

export ANDROID_SDK=/opt/android-sdk-linux
export ANDROID_HOME=/opt/android-sdk-linux

$ANDROID_SDK/tools/android update project –path . –target android-21

ant debug

(Noticed above that I specified the target as Android version 21).

5. And then run the following script (ensuring that the above “myant” is in your $PATH):

list=”AccelerometerPlay/ \
ActionBarCompat/ \
AndroidBeamDemo/ \
ApiDemos/ \
AppNavigation/ \
BackupRestore/ \
BasicGLSurfaceView/ \
BluetoothHDP/ \
ContactManager/ \
CrossCompatibility/ \
CubeLiveWallpaper/ \
GestureBuilder/ \
HelloEffects/ \
Home/ \
HoneycombGallery/ \
JetBoy/ \
KeyChainDemo/ \
LunarLander/ \
MultiResolution/ \
NotePad/ \
RandomMusicPlayer/ \
RenderScript/ \
SampleSyncAdapter/ \
SearchableDictionary/ \
SipDemo/ \
SkeletonApp/ \
Snake/ \
SoftKeyboard/ \
SpellChecker/ \
Spinner/ \
SpinnerTest/ \
TicTacToeLib/ \
TicTacToeMain/ \
ToyVpn/ \
TtsEngine/ \
UiAutomator/ \
VoicemailProviderDemo/ \
VoiceRecognitionService/ \
WeatherListWidget/ \
WidgetPreview/ \
WiFiDirectDemo/ \
WiFiDirectServiceDiscovery/ \
Wiktionary/ \
WiktionarySimple/ \
XmlAdapters/”

for name in $list
do
if
[ -f “$name/AndroidManifest.xml” ]
then
cd $name
myant
cd ..
else
echo $name NOTBUILD
fi
done

All the samples will build successfully (just grep for successful) but only three subdirectory remain untouch: Renderscript, UiAutomator, and SpellChecker. Just “cd” to specific directory involved, and execute “myant” whenever AndroidManifest.xml is found.

Only UiAutomator remained cannot be compiled, as it does not comes with “AndroidManifest.xml” file.

%d bloggers like this: