HP Admitted Back Doors in Storage ProductsAdded: Wednesday, July 17th, 2013
Category: Bit Torrent Freedom > The Right To Share
Tags:ET, p2p, Torrent, Piracy, Peer To Peer, Network, Hackers, Internet, BitTorrent, Google, utorrent, bitcomet, extratorrent, www.extrattorrent.com, 2013
HP has recently been forced to admit that the developers built secret backdoors into enterprise storage products. The secret was revealed after a security problem was found in HP’s StoreOnce systems last month. In result, it turned out that there were more backdoors in other HP storage and SAN products.
HP confessed that all HP StoreVirtual Storage systems are equipped with a mechanism that lets its support to access the underlying OS in case the option is provided by the client. It literally means that HP can use the back doors only with permission of the customer.
However, this announcement, coming on the back of the PRISM scandal in the United States, is very surprising, and not without a reason. Actually, if the NSA knows that HP has backdoors in its server, it might use a secret court order to obtain access. According to HP cloud executive, there was already a corporate understanding of the abovementioned privacy questions before the PRISM revelations. Steve Dietch, VP, worldwide cloud at HP, explained that there wasn’t much one can do if the authorities have access to private information while being provided either legally or illegally (based on your country) with access through ISPs.
Technical details are scanty, but it is known that entry points consist of a hidden administrator account with root access to StoreVirtual systems. Nevertheless, HP points out that even with root access, the secret admin account doesn’t allow support techs or anyone else access to information stored on the HP machines. In the meantime, it could still use the data to cripple the storage cluster. The most worrying thing is that a business rival can find one of the backdoors and exploit it as a kind of corporate sabotage.
Actually, the backdoor was quite easy to find. The experts reveal that you can simply open an SSH client, key in the IP of an HP D2D unit and enter in yourself the username HPSupport with a password having a SHA1 of 78a7ecf065324604540ad3c41c3bb8fe1d084c50. You’ll find an administrative account you didn’t know existed and your father’s brother should be called Robert. The experts were fruitlessly trying to notify HP for weeks before making it public that the hash hiding the login was easily brute-forced and has been done more than 50 times. HP promised to release a patch in the next few days.
July 17th,2013Posted by:
Wednesday, July 17th, 2013
|HP needs to be "Brute F*C*ED in there BACKDOOR" !! see how they like it lol ..... thanks for the hard work as always SaM ;> , keep up the hardwork.|
|Nothing new. HP been doing that for years.|
HP is one worse's pc company. I've been
repairing pc's for years and HP tops the top
with software and hardware breakdowns and the
worse consumer support. Oh, not to mention the
zillions of class action lawsuits against HP
for computers desktops and laptops motherboards
burning out after one year. Think that's why HP
got out of the home computer business?
|Nothing is 100%, but its defintiely time for people to realize that Linux is the way to go if you want privacy without the 'backdoors'. Since Linux is OpenSource, anyone has the right to look over the code and see whats ticking 'inside' an OS development release. Cant hide shit if everyone can see whats what.|
|posted by (2013-07-19 00:33:45)|
|humm, is it not well known already, that by law any and all US companies have to provide backdoor to the government, whether it is encryption codes or operating systems even US based anti viruses companies are prohibited from detecting US government viruses and Trojans by law. most of these types of laws came into effect once encryption levels passed 128 bit. since then all US based encryption software had to have backdoor keys. one of the major reason US based linux version do not have to follow these rules. as it only applies to software sales, as the US government will pull your US distribution license if you do not abide. and since Linux is free it pretty hard to threaten them by making it more difficult for them to sell their product when the products free|
|posted by (2013-07-19 10:34:28)|
|I don't normally comment, but I have to agree. I use Ubuntu along with windoz (dual boot)and Linux is awsome. I have always been a proponent of of open source..|
|trust no one,not even your mother.|
|say it once and say it again and again ,,, the US government is the largest criminal organization on the face of this planet!!!||
Most Popular Stories