i6000

Scalar i500, i2000, and i6000 Security - Service Port

Submitted by gpmidi on Mon, 12/17/2018 - 09:51

If you're using a Quantum, Dell, or ADIC Scalar product you need to make sure the 'service port' isn't remotely accessible. If it is then there is a pretty trivial way to get into the system as 'root'. The port is explicitly listed in the manual as not for "normal" use. 

tl;dr If you aren't plugging in stuff you shouldn't (per manual) then the risk isn't that bad. 

Logging In As root - Scalar i2000 (and maybe i6000)

Submitted by gpmidi on Fri, 12/14/2018 - 16:02
  1. Connect to the service port
    1. It's that little black covered on that says not to use
  2. Set your ip to 10.10.1.100
    1. The last octet can be anything but .1
  3. Use 'telnet' to connect to 10.10.1.1
  4. Login with "root" and "dallas"

 

I found this by using john the ripper on /etc/shadow in 10.10.1.1:/tftpboot/cmboot/initrd-dmcb (NFS). The initrd is gzip'ed. Once unzipped you can mount it with a loop device.

 

/etc/passwd

 

Tape Library: Initial Costs

Submitted by gpmidi on Tue, 12/11/2018 - 10:50

I'm sure some of you are wondering how much this project costs...

  • 1x Scalar i2000 = $1755 + $432 shipping
  • 1x Scalar i6000 = $2,500 + $750 shipping
  • 6x Misc i2000/i6000 FC blades (2x 2Gbps, 4x 4Gbps) = $210
  • 6x FC Quad Port HBAs = $260
  • 2x Cisco DS-C9148-32P-K9 = $550
  • Misc fiber, SFPs, patch panels, etc = ~$1,500
  • 1x LTO-6 FC tape drive = $1,895

Total: ~$10,000