Welcome to GOFASTMOTORSPORTS.com ... ... ... Green Flag - Green Flag - Go Go Go ... ... Brought to you by Ricks Satellite - Where the Big Dish Rules!

Ricks Satellite Wildfeed and Backhaul Forum
Register Latest Topics
 
 
 


Reply
  Author   Comment  
merkin

Registered:
Posts: 770
Reply with quote  #1 
alright..been struggling with this.  commercial receivers are nice, but only when they can be remote controlled.
so i got lucky when i tried to create a telnet session and was presented with a VxWorks login.
https://community.rapid7.com/community/metasploit/blog/2010/08/02/shiny-old-vxworks-vulnerabilities

i did a ram dump and sent the output to 'strings'...and there it was in clear text:
U: Keystone
P: KeystoneUser

these creds not only work with http, but also ftp and telnet.
all credit goes to the great work of the metasploit team.

Screen Shot 2017-08-29 at 7.28.33 PM.png 



majortom

Avatar / Picture

Registered:
Posts: 4,942
Reply with quote  #2 
telnet..2009.. that is funny... isn't that why they created ssh??
__________________
Perfect 10 7.5' mesh Chapparal C/Ku Co-Rotor feed, Norsat 8115 CBAND, Norsat 4106A Ku Thomson Saginaw Actuator, Vbox positioner,
Home Brew Polarotor683 Servo circuit. Openbox S9, Prof7500, v4l-updatelee linux drivers installed.
ricardo's geo-orbit archive: https://web.archive.org/web/20150516202529/http://www.geo-orbit.org:80/sizepgs/tuningp2.html#anchor469886
merkin

Registered:
Posts: 770
Reply with quote  #3 
vxworks commandline is just brutal.  found what looks copies of the firmware:
-rwxrwxrwx 1 0 0 437 Mar 1 2010 packing.txt
-rwxrwxrwx 1 0 0 30720 Mar 1 2010 tpActive.tar
-rwxrwxrwx 1 0 0 4576629 Mar 1 2010 Keystone
-rwxrwxrwx 1 0 0 2775050 Mar 1 2010 DC.tar
-rwxrwxrwx 1 0 0 2853 Dec 27 1990 moto.gif
-rwxrwxrwx 1 0 0 503704 Dec 27 1990 fpga6000.gz
-rwxrwxrwx 1 0 0 2874 Dec 27 1990 code00.gz
-rwxrwxrwx 1 0 0 63954 Dec 27 1990 code01.gz
-rwxrwxrwx 1 0 0 5566 Aug 23 18:26 RetuneEventLog.txt
-rwxrwxrwx 1 0 0 49274 Aug 23 18:27 SystemEventLog.txt

..but i havent yet figured out how to copy remotely.
the old firmware kinda worked in my favor..who knows maybe motorola patched the vulnerability in a later update.
telnet is still pretty common for device config.  we use it at work all the time with our cisco gear.
nmap showed only tcp ports open were 21/23/80..no 22 unfortunately.
iboston

Avatar / Picture

Registered:
Posts: 258
Reply with quote  #4 
That's awesome!  Congrats!  So, now you can switch channels without getting off the couch?
__________________
  • C/KU band
  • Visible Arc 37 -139w
Dc2tracker

Registered:
Posts: 313
Reply with quote  #5 
Man this GiG-E plug in open's up a whole new world on these mpeg 4 DSR's ! You can do so many things with it. Im loven it! This New Dsr 6050 is by far, the BEST $200 bucks ive spent in year's! Nice find Merkin!
__________________
J.J
Dc2tracker

Registered:
Posts: 313
Reply with quote  #6 
Quote:
Originally Posted by iboston
That's awesome!  Congrats!  So, now you can switch channels without getting off the couch?
You should really consider an up-grade from your dsr 4410. You won't be sorry! P.S. Start a Dsr piggy bank.......

__________________
J.J
merkin

Registered:
Posts: 770
Reply with quote  #7 
Quote:
Originally Posted by iboston
That's awesome!  Congrats!  So, now you can switch channels without getting off the couch?

yup i can now just put it downstairs in the rack

merkin

Registered:
Posts: 770
Reply with quote  #8 
Quote:
Originally Posted by Dc2tracker
Man this GiG-E plug in open's up a whole new world on these mpeg 4 DSR's ! You can do so many things with it. Im loven it! This New Dsr 6050 is by far, the BEST $200 bucks ive spent in year's! Nice find Merkin!

have you tried the transcoding function? im curiouse if it will transcode 4:2:2 to 4:2:0?
Dc2tracker

Registered:
Posts: 313
Reply with quote  #9 
Quote:
Originally Posted by merkin

have you tried the transcoding function? im curiouse if it will transcode 4:2:2 to 4:2:0?
No, ive not tried that yet. Im to busy making new Sat & TP maps for fast scanning. I will have to check on the 4:2:2? Do's anyone know of any DC2 8psk Turbo TP,s to test on??

__________________
J.J
iboston

Avatar / Picture

Registered:
Posts: 258
Reply with quote  #10 
Quote:
Originally Posted by Dc2tracker
You should really consider an up-grade from your dsr 4410. You won't be sorry! P.S. Start a Dsr piggy bank.......


What features above and beyond the DSR4410 does it have?  I actually bought a DSR6000 for dirt cheap, but it was broken.. Luckily i got my monies back.  That was a few months back.

__________________
  • C/KU band
  • Visible Arc 37 -139w
Dc2tracker

Registered:
Posts: 313
Reply with quote  #11 
Quote:
Originally Posted by iboston


What features above and beyond the DSR4410 does it have?  I actually bought a DSR6000 for dirt cheap, but it was broken.. Luckily i got my monies back.  That was a few months back.
Well for one is the HD tp's that you can lock that more than double's the chance's of locking FP mode. The GIG-E also opens so many new doors as well. Still learning on it. Im going to install Tsreader next, just for starter's. Myself ive been watching MGM HD for the last two weeks ( ever since i hook up the new unit). Alot of really good movie's on this channel!

__________________
J.J
Dc2tracker

Registered:
Posts: 313
Reply with quote  #12 
Quote:
Originally Posted by merkin

have you tried the transcoding function? im curiouse if it will transcode 4:2:2 to 4:2:0?
Well merkin , i looked today for CBS 4:2:2 on G-28 and its not there. Did it move sat's? I know 4:2:2 shows up on G-17 ku sometimes. Do you or anyone know of a 7-24 feed i can test on?

__________________
J.J
majortom

Avatar / Picture

Registered:
Posts: 4,942
Reply with quote  #13 
dc2, see post#1 in the cbs thread.
http://rickcaylor.websitetoolbox.com/post/cbs-network-is-now-mpeg4-8565577?&trail=15
The CBS muxes ARE 24/7, as they have always been... should always at least have a signal there, just may find
test patterns during off hours..

__________________
Perfect 10 7.5' mesh Chapparal C/Ku Co-Rotor feed, Norsat 8115 CBAND, Norsat 4106A Ku Thomson Saginaw Actuator, Vbox positioner,
Home Brew Polarotor683 Servo circuit. Openbox S9, Prof7500, v4l-updatelee linux drivers installed.
ricardo's geo-orbit archive: https://web.archive.org/web/20150516202529/http://www.geo-orbit.org:80/sizepgs/tuningp2.html#anchor469886
Dc2tracker

Registered:
Posts: 313
Reply with quote  #14 
Quote:
Originally Posted by majortom
dc2, see post#1 in the cbs thread.
http://rickcaylor.websitetoolbox.com/post/cbs-network-is-now-mpeg4-8565577?&trail=15
The CBS muxes ARE 24/7, as they have always been... should always at least have a signal there, just may find
test patterns during off hours..
yeah i saw the new mpeg 4 feeds but i was looking for the flutter of color on the tv screen and the hum in the audio like it used to do ,that's why i didnt think i was on the right freq, but i was! I havnt been keeping up with 4:2:2 till now. I will play with it tonite....Thanx majortom for your repley!

__________________
J.J
Previous Topic | Next Topic
Print
Reply

Quick Navigation:

Easily create a Forum Website with Website Toolbox.

Fellow Members, your posts are welcome here! Do not worry about posting everything perfect. Different receivers and LNB's will give you different Frequencies and Symbol Rates. Some set top boxes, PCI cards and USB receivers, Do Not Require all of the same information that others may need. It is not Required to post everything that others may need to tune in a feed. It is just most important to share the find. We can always adjust the Frequency and Symbol Rates and try the various Modulations and FEC's on our own receivers until we get a lock and then give a polite reply with what works for your receiver, as that information might help others as well. We all appreciate the efforts and energy of the Posters!

Thank You for Visiting GOFASTMOTORSPORTS.com - Keep Your Eyes on the Sky and the Track!