Full Disclosure mailing list archives
Re: scada/plc gear
From: gmaggro <gmaggro () rogers com>
Date: Wed, 09 Jan 2008 08:45:01 -0500
That is certainly some rather odd behaviour... The fact that the other ports remained makes it likely an application (modbus) problem.
Yes, I thought it was interesting. I really wish I didn't fry the thing as I'd like to have eliminated the possibility it was something funny on my end. So far, not a great record - these things seems about as robust as network printers, which is to say, not very.
Was it an ethernet to rs232 converter? (I obviously didn't look up the part number).
RS-485 to Ethernet.
Did you happen to catalogue the 'crud' which you sent prior to failure?
I wish I had; but it was nothing unusual. I like to start out by scanning and hammering these devices with common tools, so I used nmap, nessus and amap. If I had to pick something, it would be setting amap on 502/tcp overnight that did it.
I know particular header options have unexpected results a great deal of control systems. I also know particular vendor's ip stack implementations have been known to be produced some very things, eg, odd ip options (off the top of my head the AB series of PLCs).
Yes indeed, I can not wait to get my hands on some real PLCs, and not just these little converters or more modern pieces.
Now I'm curious, what other devices are you testing?
2 more devices arrived yesterday: - i.Board i.CanDoIt embedded webserver (http://www.csimn.com/CSI_pages/iboard.html) which is built similar to the Kohler in that it uses an embedded ethernet module, but this time from Digi (http://www.digi.com/products/embeddedsolutions/digiconnectme.jsp) - ADAM-4572 (http://www.ucs.co.uk/index.php?pid=948) - Lantronix MSS485-T (http://www.lantronix.com/device-networking/external-device-servers/mss485-t.html) - Phoenix Contact FL IL 24 BK-PAC (http://tinyurl.com/2c6x96) - DLI Ethernet DIN Relay (http://www.digital-loggers.com/din.html) _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- scada/plc gear gmaggro (Jan 05)
- Re: scada/plc gear b9u4ea (Jan 07)
- Re: scada/plc gear gmaggro (Jan 07)
- Re: scada/plc gear b9u4ea (Jan 08)
- Re: scada/plc gear gmaggro (Jan 09)
- Re: scada/plc gear gmaggro (Jan 07)
- Re: scada/plc gear b9u4ea (Jan 07)
- Re: scada/plc gear full disclosure (Jan 07)
- <Possible follow-ups>
- Re: scada/plc gear Worthless Email (Jan 09)
- Re: scada/plc gear b9u4ea (Jan 10)
- Re: scada/plc gear gmaggro (Jan 11)
- Re: scada/plc gear b9u4ea (Jan 10)
- Re: scada/plc gear gmaggro (Jan 15)
- Re: scada/plc gear gmaggro (Jan 15)
- Re: scada/plc gear gmaggro (Jan 24)