http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/ Engadget Comments for Factory-fresh ASUS Eee PC vulnerable to hackers http://www.engadget.com/media/feedlogo.gif http://www.engadget.com en-us Copyright 2009 Weblogs, Inc. The contents of this feed are available for non-commercial use only. Blogsmith http://www.blogsmith.com/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 7:19PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 7:20PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 7:24PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 7:27PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 7:31PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 8:43PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 9th 2008 10:09PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 7:24PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 7:25PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/
smbd is a daemon primarily used for hooking up with windows networks (SAMBA).

someone would have to be actively sniffing for a telltale EEE user identifier in the air, so getting rooted is a little out there.

you can always migrate straight to Ubuntu to avoid the security issues of Xandros, because if a distro is giving you root without a password, doesn't have multiple user logins, doesn't have a screen lock, probably has some high security requirements missing.

On the other hand, using the EEE for what it was intended for, browsing, typing, viewing, it won't really matter, just do a system re-install once a month to keep it all clean.]]>Feb 8th 2008 7:39PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 11:46PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/
Jesus uses Unix!]]>Feb 9th 2008 6:16AMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 8:24PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 10:09PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/everything a by before I use it. In this case ubuntu all the way.
Never trust a manufacture to get it right.


http://packratstudios.com]]>Feb 8th 2008 10:09PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 8th 2008 10:15PMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 9th 2008 2:22AMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 9th 2008 2:39AMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/Feb 9th 2008 2:22AMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://vip.asus.com/eservice/techmaildetail.aspx?ID=WTM200712192037257291&Type=in

So that's the date to measure Asus's response from.

I hope RISE Security has also followed a path of responsible disclosure and given Asus a chance to respond before going public. Doesn't appear so, though.]]>Feb 9th 2008 4:32AMhttp://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/http://www.engadget.com/2008/02/08/factory-fresh-asus-eee-pc-vulnerable-to-hackers/
"I reported this on December 19: http://vip.asus.com/eservice/techmaildetail.aspx?ID=WTM200712192037257291&Type=in"

- Well, let´s wait for the Asus´s response so...


I hope RISE Security has also followed a path of responsible disclosure and given Asus a chance to respond before going public. Doesn't appear so, though.

- That´s a dumb comment... really dumb, since the vulnerability is public, with public exploit (also developed by RISE)...]]>Feb 11th 2008 8:35AM