Slashdot Mirror

← Back to Stories (view on slashdot.org)

Neopwn, the World's First Pentesting Mobile Phone

Posted by timothy on from the data-rate-plan dept.

thefanboy writes "What do you get when you cross BackTrack Linux apps with a mobile phone? This is the first ever publicly available mobile phone running a full custom Linux network auditing distribution, and it runs it surprisingly well. One can literally go from phone to pwn in 2 seconds. Based off of the Openmoko Neo Freerunner, many steps have been taken to compensate for the lack of a QWERTY keyboard with automation scripts, dialogs, and a point-and-pwn menu. It runs applications such as Metasploit and the Aircrack suite quite well, especially given the fact that it supports a wide array of USB WLAN cards."

103 comments

  1. I really hate the term 'pwn' by ttlgDaveh · · Score: 5, Insightful

    'pwn' drives me nuts. In my eyes the use of it seriously undermines any project and gives the impression that it is presided over by annoying 13 years olds which, in turn, pretty much makes me dismiss it.

    1. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0, Redundant

      I'm glad someone else agrees with me

    2. Re:I really hate the term 'pwn' by couchslug · · Score: 5, Funny

      "'pwn' drives me nuts. In my eyes the use of it seriously undermines any project and gives the impression that it is presided over by annoying 13 years olds which, in turn, pretty much makes me dismiss it."

      Even if it is accompanied by trendy, fresh terms like "Neo" ???

      --
      "This post is an artistic work of fiction and falsehood. Only a fool would take anything posted here as fact."
    3. Re:I really hate the term 'pwn' by m50d · · Score: 3, Insightful
      Try and remember how you were when you were 13. I've noticed a strong tendency for annoying 13 year olds to write damn good code. They're idealistic, trying to prove themselves, and don't have anything better to do; dealing with a little language silliness is a small price to pay.

      Seriously, I'd trust code written by 13 year olds a lot more than that written by major companies.

      --
      I am trolling
    4. Re:I really hate the term 'pwn' by dataninja · · Score: 1

      I second the motion

    5. Re:I really hate the term 'pwn' by cbreaker · · Score: 4, Insightful

      "Seriously, I'd trust code written by 13 year olds a lot more than that written by major companies."

      Then you'd be stupid.

      Sure, a young kid can write some novel little things, but serious software? No. It does in fact take teams of people do to that - in the OSS world or corporate world (or as often is the case, a mix of the two.)

      Generally speaking, 13 year old boys don't do much on the Internet except beg for shit, yell at shit, and talk shit. Lots of shit is involved.

      It's not limited to 13 year olds, but it sure is true for many 1st person shooter type games. I used to enjoy playing games like CS and stuff with my friend but we both eventually got tired of the little kiddies ruining every game.

      --
      - It's not the Macs I hate. It's Digg users. -
    6. Re:I really hate the term 'pwn' by Hal_Porter · · Score: 3, Funny

      Yeah, the OP really got pwned.

      --
      echo -e 'global _start\n _start:\n mov eax, 2\n int 80h\n jmp _start' > a.asm; nasm a.asm -f elf; ld a.o -o a;
    7. Re:I really hate the term 'pwn' by cbreaker · · Score: 1

      Interestingly enough, the most commonly known uses of Neo began with things like Neo-Nazi and Neoconservatism (which was intended to be a criticism.)

      I think using the word Neo for anything is annoying.
      Just say NEW.

      --
      - It's not the Macs I hate. It's Digg users. -
    8. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 2, Insightful

      Seriously, I'd trust code written by 13 year olds a lot more than that written by major companies.

      I don't trust a 13 year old kid to wash my car, let alone do something like write software for me. Wait until they've gone to school and got a bit of experience doing actual work, and then we'll talk.

    9. Re:I really hate the term 'pwn' by thetoadwarrior · · Score: 2, Funny

      I know. Any company that can't use the proper 0wn3d or cl0wn3d isn't getting my business.

    10. Re:I really hate the term 'pwn' by martinw89 · · Score: 1

      Uhhh, I don't know how everyone else was when they were 13, but when I was 13 I was watching cartoons and letting people think I was good at computers because I understood most of the settings on the computer. I didn't touch code until very late high school. If I did when I was 13 I think it would have been unmaintainable garbage.

      I also frequently used the term "pwn" in my shitty online videogames.

      Well actually, as a testament to my nerdiness, I thought it meant "pawn" first. As in, someone's so awesome they killed the other guy with a pawn. So upon kicking someone's ass in my dragon ball z game, I let everyone know I "pawned" him. It must have been quite a site.

      Note to future employers: I am now a focused individual who is not anything like his 13 year old self.

    11. Re:I really hate the term 'pwn' by thetoadwarrior · · Score: 2, Insightful

      Neo is older than new and comes from the Greeks to mean new or young. So maybe you should be using neo rather than that neoterm new.

    12. Re:I really hate the term 'pwn' by Cecil · · Score: 2, Insightful

      I wrote a (shitty) text adventure on the C64 when I was 8 or 9. By I was 13 I was probably hacking away in MOO code and Turbo Pascal. But yeah, I agree, the original post about trusting a 13-year-old's code is a bit ridiculous.

      --
      Random and weird software I've written.
    13. Re:I really hate the term 'pwn' by jabithew · · Score: 3, Informative

      Neologism, not neoterm. The word you were looking for already conveniently exists.

      --
      All intents and purposes. Not intensive purposes.
    14. Re:I really hate the term 'pwn' by mR.bRiGhTsId3 · · Score: 1

      It usually annoys me to, but I thought it a clever play on the word phone, and upon looking through their screenshots, it looks like it only appears once or twice.

    15. Re:I really hate the term 'pwn' by martinw89 · · Score: 1

      Unfortunately, being a sophmore in college, my first "real" computer was with Windows 95. We had one before then that was text only, but I used it so little I have no idea what it was.

      Thank god for Tech TV telling me about Linux. If I hadn't had a system with which I could play around so much I wouldn't be a CS major now.

    16. Re:I really hate the term 'pwn' by martinw89 · · Score: 1

      Oops, thanks for pointing out the homonym.

    17. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 2, Funny

      Generally speaking, 13 year old boys don't do much on the Internet except beg for shit, yell at shit, and talk shit. Lots of shit is involved.

      Ummm, no. You forgot the pr0n. Lots & lots of pr0n.

      It's not limited to 13 year olds, but it sure is true for many 1st person shooter type games. I used to enjoy playing games like CS and stuff with my friend but we both eventually got tired of the little kiddies ruining every game.

      Probably because you got pwned.

    18. Re:I really hate the term 'pwn' by m50d · · Score: 4, Insightful
      Sure, a young kid can write some novel little things, but serious software? No. It does in fact take teams of people do to that - in the OSS world or corporate world (or as often is the case, a mix of the two.)

      No it doesn't. Any piece of software actually large enough to need a team (which is a far far smaller number than the number which are generally written by team) should be separated into smaller components. A single good coder beats a team - of any size - every time; I've lost count of the number of times I've seen a kid write a superior replacement for something that took a major corp. six months in one 36-hour shot.

      Generally speaking, 13 year old boys don't do much on the Internet except beg for shit, yell at shit, and talk shit. Lots of shit is involved.

      95% of everything is shit. Yes, a lot of 13 year olds are doing shit, but they aren't the ones who are writing and releasing code.

      It's not limited to 13 year olds, but it sure is true for many 1st person shooter type games. I used to enjoy playing games like CS and stuff with my friend but we both eventually got tired of the little kiddies ruining every game.

      You'd be surprised how many of those "kiddies" are actually in their 20s or worse.

      --
      I am trolling
    19. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 2, Funny

      PWNED!!!

    20. Re:I really hate the term 'pwn' by atraintocry · · Score: 1

      I think parent works for a marketing firm.

      On a sad side note, 'ginormous' doesn't even trip my spell-check.

    21. Re:I really hate the term 'pwn' by atraintocry · · Score: 4, Funny

      Homophone
      :P

    22. Re:I really hate the term 'pwn' by martinw89 · · Score: 1

      Oh man, I guess two day's not my day.

      Wait... Shit!

    23. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      Are you 13 or do you have a love one who is 13? Mesothelioma... scratch that, eh you're a bad shill for child labor.

    24. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      Lol....

    25. Re:I really hate the term 'pwn' by Hognoxious · · Score: 1

      The word you were looking for already conveniently exists.

      Coincidentally, so does "whoosh".

      --
      Confucius say, "Find worm in apple - bad. Find half a worm - worse."
    26. Re:I really hate the term 'pwn' by cbreaker · · Score: 2, Informative

      Well yes, but they weren't use in common English. Not really..

      --
      - It's not the Macs I hate. It's Digg users. -
    27. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      Words that sound like other words are called homophobes.

    28. Re:I really hate the term 'pwn' by MrMista_B · · Score: 1

      You're old.

    29. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      I have some code that I wrote when I was thirteen, and it's crap.
      The best that might be said for it is that at least I knew how to separate code into functions. I thought rather highly of myself at the time, so it's worth keeping it around to keep me humble.
      Learning to plan out sustainable architecture, how to arrange code readably, separating between 'good' and 'bad' cleverness, etc. takes time, and you really should try for someone with at least the maturity of postpubescence.
      Maybe things are better these days, what with the internet and all the code examples and such that are available, but an inexperienced coder can't really tell the good examples from the bad ones, of which there are a ton more. From what I've seen I'd say; when you're trusting a 13 year old, you're trusting a PHP web developer.

    30. Re:I really hate the term 'pwn' by hobbit · · Score: 1

      Nah. I was way better at coding when I was 15 than when I was 13 ;)

      --
      "Wise men talk because they have something to say; fools, because they have to say something" - Plato
    31. Re:I really hate the term 'pwn' by slashgrim · · Score: 1
      neoconservatism is an oxymoron...think about it newstickwiththeold? It doesn't even make sense.

      and if you disagree check out the history of the term: http://en.wikipedia.org/wiki/Neoconservatism#Left-wing_past_of_neoconservatives

    32. Re:I really hate the term 'pwn' by centuren · · Score: 2, Interesting

      The word "conservatism" is being used to mean "the principles and practices of political conservatives" in that context. A new variant of principles and practices by political conservatives is quite obviously a legitimate condition and neoconservatism describes it without confusion. "Newstickwiththeold" certainly doesn't make sense, both as a word and as a conceptual breakdown of the term neoconservative.

    33. Re:I really hate the term 'pwn' by extrasolar · · Score: 1

      That's not nerdiness, that's called "stupidity".

      He already said he was 13.

    34. Re:I really hate the term 'pwn' by TehZorroness · · Score: 1

      Don't let them ruin your game. Ruin their's first. It's so much more fun!

    35. Re:I really hate the term 'pwn' by m50d · · Score: 1
      Are you 13 or do you have a love one who is 13?

      No; well, there are 13-year-olds in my family, but that's neither here nor there.

      scratch that, eh you're a bad shill for child labor.

      Au contraire; I think the main reason they code so well is it's done out of love rather than for material gain - and there are no deadlines or project management in their way.

      --
      I am trolling
    36. Re:I really hate the term 'pwn' by PhasmatisApparatus · · Score: 0

      The word "pwn" has been around for long enough that characterizing it as slang used exclusively by 13-year-olds is more than a little silly.

      Also, with so few alternatives that have not been tainted by alternative meanings ("hack", anyone?), "pwn" is a legitimate word among hacker types.

    37. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      A single good coder beats a team - of any size - every time...

      Sooooo, are you suggesting that 13 year old coders are generally good coders?

      Look, I agree. Using "pwn" would be pretty lame if Neo wasn't also in the name.

    38. Re:I really hate the term 'pwn' by John+Whitley · · Score: 1

      Just say NEW.

      What, as in "newspeak"? I think not. Orwell put the kibosh on that quite firmly.

      As for complaining about the use of the Greek "neo" as a prefix, that horse left the barn at least two hundred years ago. See "neologism", coined in 1803.

    39. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      Perhaps it's technically possible to write code that works better than what was produced by a team of programmers after a much longer development time. But I would guess that such an occurrence would be rare and would probably depend on the situation.

      But most importantly, it's not a reliable way of producing software, and when was the last time you met a 13-year old who knows how to comment his code? Not to mention version control and the like (but I'm not a software developer, so I've never had to worry too much about that). Anyways, if you say that a bunch of 13-year olds are already performing at that level, then I would say those are the rare exceptions who are acting a lot older than their age :P

    40. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      13-year-old kids, probably not, but maybe, say, 16-year-old kids, sure.

      Wait, I am 16.

    41. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0
      (posting anonymously because of personal details)

      When I was 13 (way back in the early 60s) I built a lot of electronic equipment (analog circuits, digital wasn't 'invented' yet) that was used to win science fairs and just for fun hacking. Also a photo darkroom including the timers as well as much of the optical and lab equipment (when you have time and no money, its the only way to go)...

      So yes, I'd trust a 13 year old to write good code.

    42. Re:I really hate the term 'pwn' by xouumalperxe · · Score: 1

      Even if it is accompanied by trendy, fresh terms like "Neo" ???

      I don't know about fresh, but the term is definitely new

      .

    43. Re:I really hate the term 'pwn' by Khomar · · Score: 1

      I think the problem here is the definition of "good". While it might be inventive or very efficient, it will probably not be very readable or maintainable. Thirteen year old programmers aren't thinking about commenting, portability, planning for future changes, etc. Experience counts for an awful lot because you know how to avoid the pitfalls that will surprise the novice programmer. Version 1.0 will look great. But creating 2.0 could be a nightmare, and only the original coder will have a chance of pulling it off. A well organized and experienced programmer at a major company can produce code that can be maintained for years and handle many different scenarios. A software company is worried about the entire life-cycle of a product and has to be concerned with the usual programmer turnover.

      A thirteen year old prodigy has a lot of potential, but without proper guidance and, most importantly, experience, they will not be able to compete with a solid, seasoned programmer long term.

      --

      I believe in de-evolution. God made the world perfect, man fell, and its been going downhill ever since!

    44. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      No, it seriously DOES NOT take teams to write "serious" software. In fact, the teams you are talking about write the world's worst code. Buggy and bloated, uncommitted, passionless, bullshit fodder that is only good enough to convince idiot VPs that it saves them money.

    45. Re:I really hate the term 'pwn' by Anonymous Coward · · Score: 0

      There's nothing more humiliating than being the victim of frequent headshots from a bloody kid barely tall enough to reach the bloody keyboard/mouse *if* he stood on the chair on his knees.
      A kid that was barely more than a glint in the milkman's eye when the first Alpha of CS was launched on the net.

      That was what done it for me and CS.

  2. But... by Anonymous Coward · · Score: 0

    But can it run -- oh wait. Nevermind. Well then, imagine a Beowulf cluster of these suckers!

  3. What in the world am I going to do by iminplaya · · Score: 1

    with a protesting mobile phone?

    --
    What?
    1. Re:What in the world am I going to do by Anonymous Coward · · Score: 0

      Riot?

  4. 0 to NSA blacklist in 6.3 seconds by zappepcs · · Score: 1, Interesting

    Now, you might disagree with me, but I think this officially means that the NSA and other government agencies (I'm looking at you Alaska) need to work extra hard to ensure their networks are locked down good.

    Point and click becomes point and own? Maybe not that easy, but All your AP are belong to us is going to happen soon enough. One thing that Linux and F/OSS definitely does do; puts real software and OS in the hands of those that the NSA would rather not need to worry about.

    I see a rather large police state like effort coming.

    --
    Support NYCountryLawyer RIAA vs People
    1. Re:0 to NSA blacklist in 6.3 seconds by ColdWetDog · · Score: 4, Insightful

      (I'm looking at you Alaska)

      Actually, the IT infrastructure in the State of Alaska is reasonably good. What you are asking for is that Alaska politicians understand the difference between .ak.gov and yahoo.com. Not only that, you're asking for Alaska politicians to not circumvent that difference whenever they feel it's convenient.

      Fat Chance. Remember, this is the state that created the Tubes. And that thinks boiled Moose noses are delicacies.

      --
      Faster! Faster! Faster would be better!
  5. bad summary by Anonymous Coward · · Score: 0

    anyone else find the summary poorly worded and confusing?

  6. GPL? by Anonymous Coward · · Score: 0

    Has had any luck downloading any of the source for this? Not seeing any GPL software links on their site, might have to shoot them an e-mail...

    1. Re:GPL? by cbreaker · · Score: 1

      Don't do it! They'll pwn you!

      --
      - It's not the Macs I hate. It's Digg users. -
    2. Re:GPL? by Anonymous Coward · · Score: 1, Informative

      Contrary to popular belief, they don't need to provide the source code to the public if they wish to abide to the GPL, they only need to provide it to those they have provided with the software (or the phone, in this case).

  7. Words!!? by Lunatrik · · Score: 1

    Good god, I generally consider myself on top of technology but this summary seems to be written in another language, and not just 1337sp33k....

  8. Place your bets by cmacb · · Score: 4, Insightful

    Will the reaction to such devices be to strengthen the security of our cellular networks, or to simply outlaw such devices?

    Hmmmm, ponder, ponder, ponder.

    My money is on the latter.

  9. The ultimate geek toy by David+Gerard · · Score: 4, Funny

    The anti-iPhone: the Linux telephone that operates entirely from the command line! The Ultimate One-Dimensional Desktop! What can't you do with a bash prompt?

    (The v2 version will, of course, run Emacs and be programmed entirely in eLisp written on the fly.)

    --
    http://rocknerd.co.uk
    1. Re:The ultimate geek toy by Bob+The+Cowboy · · Score: 1

      Do you really need to link to your own Fake News blog in every post you make...? Your homepage already links to it, and your .sig already links to it. Seems a little excessive.

    2. Re:The ultimate geek toy by kwabbles · · Score: 1

      The v2 version will, of course, run Emacs

      So it has the 32gb flash memory then? Badass.

      --
      Just disrupt the deflector shield with a tachyon burst.
    3. Re:The ultimate geek toy by watice · · Score: 1

      The anti-iPhone: the Linux telephone that operates entirely from the command line! The Ultimate One-Dimensional Desktop! What can't you do with a bash prompt?

      (The v2 version will, of course, run Emacs and be programmed entirely in eLisp written on the fly.)

      looks cool but waaaaaaay too expensive. I'll stick to my first gen iphone, a wifi signal, and metasploit and i'm just as happy.

    4. Re:The ultimate geek toy by Anonymous Coward · · Score: 0

      You can already get a DOS Shell with a BASIC interpreter on a mobile:
      http://www.whoredoeuvre.com/dros2.html

      not so much use for the Pentesting though!

    5. Re:The ultimate geek toy by strjms72 · · Score: 1

      How else is he going to make google pr and stuff? :D

  10. Re:Yet another Linux geek wetdream by David+Gerard · · Score: 1

    Jamie Zawinski.

    --
    http://rocknerd.co.uk
  11. 503 Service Unavailable. by shadow42 · · Score: 1

    "The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later."

    Evidently they can't save their own site from being pwned.

    1. Re:503 Service Unavailable. by Pvt_Ryan · · Score: 1

      well tbh it is hard to protect againist a ddos from /.

  12. They forgot.. by Pvt_Ryan · · Score: 1

    the source code..

    Can't see a link for it. Unless they are waiting until they start shipping to put it up..

    or maybe its for customers only.

  13. Slashdotted! by supernova_hq · · Score: 1

    Wow, not even a single post and already a 503...

  14. boiled moose noses? by Anonymous Coward · · Score: 0

    apparently you haven't seen the recipe for "stink fish" yet. seriously. no joke. and yes, that's the real name (in english) of the dish.

    bury a freshly caught fish in the ground for a few days. dig it up. eat it.

  15. No phone by Anonymous Coward · · Score: 0

    Just get an eeeeeepc or something similar - it's cheaper and you can do real 'pwning' with that (has keyboard and screensize > 1'' or so).

  16. GPL Violations by galaad2 · · Score: 1, Troll

    in between a ton of 503 http replies (slashdotting in progress) i have managed to browse all those pages (F5 FTW!) and i have NOT seen a link to download the software itself or even the source code and not even a promise of future availability.

    Since the Linux kernel is licensed under the GPL and they seem to provide a binary-only kernel for their customers (no source code that i saw) it seems we have here yet another clear cut GPL violation case.

    On their page at http://www.neopwn.com/software.php i know that the following have GPL licenses and they must also provide the source code for but they don't do it:

    Debian OS (Lenny / ARMEL) - packages are GPL mostly
    Custom Kernel - (Linux 2.6.24) - GPL definitely
    Open Source Penetration Testing Application Ports - again, mostly GPL stuff

    Also on their site at http://www.neopwn.com/store.php the cheapest option is $80... with a SD card and dvd thrown in but again no source code download available...

    so, what gives? Do they charge for source code too ?

    Admittedly, the site is still under construction and the suite has not yet been formally released, so they still have time to correct the issues.

    ~~~~
    just my 2 cents

    --
    root@127.0.0.1
    1. Re:GPL Violations by Anonymous Coward · · Score: 0

      Read the GPL. It says nowhere they have to offer the source code for download for everyone (at least when they don't offer the binaries for everyone either).

    2. Re:GPL Violations by smoker2 · · Score: 1

      Since the Linux kernel is licensed under the GPL and they seem to provide a binary-only kernel for their customers (no source code that i saw) it seems we have here yet another clear cut GPL violation case.

      Since they haven't distributed anything yet, that is libel. Not to mention they don't have to distribute source to everybody, just with the devices. And you don't know what's on the backup DVD.

    3. Re:GPL Violations by schon · · Score: 3, Informative

      on their site the cheapest option is $80... with a SD card and dvd thrown in but again no source code download available...

      It didn't occur to you that the source code of the GPl'ed components could be on the DVD or SD card?

      What on earth makes you think that they have to provide downloads of their software?

    4. Re:GPL Violations by wild_berry · · Score: 1

      Let's check I'm not misunderstanding you. They supply the software on DVD and SD card to people who purchse it. There's no need for downloads, you say.

      What of the 'any third party' requirements of the GPL: that source code improvements on any GPL-licensed work must be conveyed to any third party who requests it? So they might send out DVD's, but I'd assume that it's cheaper to pay bandwidth on an online repository than to make up DVD images every time their repositories update.

    5. Re:GPL Violations by MechaStreisand · · Score: 1

      That "any third party" requirement only kicks in if they DON'T supply the source code with the software. If they do supply it to anyone who gets the software, they're well within their rights to tell the original complainer to buy it or shut up.

      --
      Disclaimer: IANAL. This post is, however, legal advice, and creates an attorney-client relationship.
    6. Re:GPL Violations by wild_berry · · Score: 1

      I've just checked and you're right. Is that not a loophole in the spirit of the GPL: sell GPL'd software as the only place to get your particular improvements?

      (But once it's escaped your clutches it's Free Software -- whether by US-style first-sale or EU-style exhaustion of rights -- and you can't stop someone to whom it has been conveyed from making it available for download. That's what CEntOS do for RHEL.)

    7. Re:GPL Violations by MechaStreisand · · Score: 1

      I don't think it's really a loophole. I think it's more intended to be easy on people for whom the requirement to offer it to *anyone* for three years would be too much of a pain in the ass. After all, they would have to keep the last three years' worth of versions handy. Not that this is an insurmountable requirement: lots of people do it. But for a company who's not specializing in distributing anything over the web, it's probably easier just to send the source code with the binary code.

      And as you said, anyone who gets it from that point can make it available to others. Kind of a shame when companies like Red Hat force people to remove all references to them from what is redistributed, though, and sounds borderline illegal as well. Statements of fact on the website that tell that the source was derived from Red Hat's Enterprise Linux shouldn't infringe trademark, I think.

      --
      Disclaimer: IANAL. This post is, however, legal advice, and creates an attorney-client relationship.
  17. what by Bizzeh · · Score: 1

    all that effort put into getting a story onto slashdot, and it doesnt even tell you what it actually does.

    --
    portfolio
    1. Re:what by rundgren · · Score: 1

      and it doesnt even tell you what it actually does.

      Yes it does: "We have gone great lengths in making the NeoPwn user friendly when it comes to performing many of the necessary tasks in automating system controls and penetration tests." That means it does systems control and penetration testing. And of course it's a phone as well.

  18. Debian! Gnome! It's got freakin' IceWeasel! by operator_error · · Score: 1

    OMG! This ain't no Poniez. Is the full-on Backtrack CD (just google backtrack for the link). Most users know it on either Live-CD or USB-stick boot-up form. I don't know of any manufacturers until now, that offer it pre-installed, tweaked, and (semi?) supported.

    You think its news when Dell pre-loads Ubuntu on a laptop? In certain circles, this is *much* bigger news. It makes auditing one's own network a much more routine task, because this is a handy little wifi tool! Even *with* a live CD or USB stick, Good Luck acquiring or tweaking the wifi hardware to run the Backtrack distro well. This is a really compelling tool for people responsible for securing wifi networks. And its a PHONE too; that just happens to run Debian/Gnome. I want one BAD. All it needs is a bluetooth folding keyboard and its Golden; and I'm certain that's do-able. Oh, a thumb-scanner would be cool too. Schweeet!

  19. Re:Yet another Linux geek wetdream by Nursie · · Score: 1

    lol.

    My time is very valuable, but a large part of that is directly because of all the time I have invested in Linux.

    Linux software development and administration is big business. Linux is not only free, it actually pays you!

  20. "Pocket penetration"? "Pentesting"? by Anonymous Coward · · Score: 0

    Test all you want. No pen can penetrate my 3M pocket protector.

  21. Might come in handy by Anonymous Coward · · Score: 1, Funny

    I'll try it out the next time I go "penetration testing" in "places where being promiscuous and undetected is essential."

  22. It depends who you give it to by EmbeddedJanitor · · Score: 2, Interesting

    It's OK for "Serious" people with the maturity to not abuse any holes they find. But putting a point-and-click level device in the hands of irresponsible people is in itself irresponsible.

    --
    Engineering is the art of compromise.
  23. Today, Emacs is quite lean by mechsoph · · Score: 1

    You forget, emacs once (jokingly) stood for "Eight Megs and Constantly Swapping." You know how much memory emacs uses today? Eight megs. Now find an app that does everything that emacs can in less than tens times that much memory.

    1. Re:Today, Emacs is quite lean by kwabbles · · Score: 1

      You know how much memory emacs uses today? Eight megs. Now find an app that does everything that emacs can in less than tens times that much memory.

      I think you mean the text manual for emacs takes up eight megs.

      --
      Just disrupt the deflector shield with a tachyon burst.
  24. My openmoko already runs debian. by miffo.swe · · Score: 1

    Debian runs very well on my openmoko and its not that hard to use the commandline with rastermans keyboard. The screen has excellent resolution so reading the terminal works really well.

    This device makes things dandy for people who want an easy way to test their network. Scriptkiddies will love them to but thats just fine. The script kids are the ones who forces better security trough. The alternative is to be hacked all day by corps and govts and never nowing about it.

    --
    HTTP/1.1 400
  25. Someone deface their website by extrasolar · · Score: 1

    It would be funny...if it was 1991.

  26. And that really sucks by extrasolar · · Score: 1

    This will be the single biggest justification that Apple and other locked down mobile device vendors will use against projects like OpenMoko. I mean, do they really have to distribute metasploit with it?

    I understand the thrill of walking around with conveniant access to script kiddie^W^Wpenetration testing tools wherever you go and are, really, I do. Business treats you bad? Take over^W^Wpwn their network. Girlfriend breaks up with you? Upload a picture of your penis as her background. Okay, so let me be honest, I never think like this. But that's all I can think of when I see these kinds of projects. The old geek fantasy of finally being able to get back at the jock (or whoever) because he has computer skills!

    But, in the end, it's all fun and games until someone gets sued.

  27. OMG SPOT THE PEDO by Anonymous Coward · · Score: 0

    You sure do have a thing for pubescent kids.

  28. No monitor mode by oddeirik · · Score: 3, Interesting

    or packet injection with the built-in wifi module:

    "Note that the current firmware limitations of the internal wireless does not allow for monitor mode nor packet injection. An external USB WLAN is required for this type of operation."

    I like how an external adapter can be an option, but as of now it's a requirement. This sort of ruins the image of this being "a powerful discreet network auditing tool for the penetration tester", atleast for me.
    (They do mention that it's the current firmware limiting this, but there's nothing about if and when they'll "fix" this)

  29. Seriously, though... by Simon+Brooke · · Score: 2, Interesting

    This looks like the quickest way to get open source phones banned off every network that you can imagine. So it looks like a big fat juicy own goal, to me.

    --
    I'm old enough to remember when discussions on Slashdot were well informed.
  30. umm what by poot_rootbeer · · Score: 2, Insightful

    Neopwn ... Pentesting ... BackTrack ... pwn ... Openmoko Neo Freerunner ... Metasploit ... Aircrack

    Can anyone point me in the direction of an article-to-English dictionary?

    1. Re:umm what by Danny+Rathjens · · Score: 1

      neopwn - the name of the project
      pentesting - penetration testing is running scans to find security holes in a network
      backtrack - backtrack is a linux distro that comes with all the tools to do so
      pwn - slang corruption of "own" - another way of saying taking over a machine
      openmoko - is a version of linux for running on mobile phones such as...
      neo freerunner - is the name for the physical phone
      metasploit - is a software tool for scanning/running exploits
      aircrack - is a software tool for cracking wep keys and the like on wireless networks

  31. not even close to the first by mambosauce · · Score: 1

    the article's title is so misleading. immunity's silica, although not cheap has been out for years. http://www.immunityinc.com/products-silica.shtml