baseband-devel Digest, Vol 35, Issue 28

Vic Delorge cityhnet at gmail.com
Sat Dec 29 17:06:21 CET 2012 

@ nico en sylvain
i know it's a stripped down version of layer 2,3 butt still it's great you
got it working :)
and about the sms stuff ( you read other phones sms on the osmocom phone
itself )
i must say the DOS part in the talk is scarry stuff . seems like gsm is
more and more broken i hope we soon get 4G lte .

@the mailinglist
these are the slides from the talk
http://fandango.binarybase.org/~nion/let_me_answer_that_for_you.pdf

and this is a blogpost from nico about it
http://nion.modprobe.de/blog/


2012/12/29 <baseband-devel-request at lists.osmocom.org>

> Send baseband-devel mailing list submissions to
>         baseband-devel at lists.osmocom.org
>
> To subscribe or unsubscribe via the World Wide Web, visit
>         https://lists.osmocom.org/mailman/listinfo/baseband-devel
> or, via email, send a message with subject or body 'help' to
>         baseband-devel-request at lists.osmocom.org
>
> You can reach the person managing the list at
>         baseband-devel-owner at lists.osmocom.org
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of baseband-devel digest..."
>
> Today's Topics:
>
>    1. Re: Bug in switching baud rates in burst_ind branch? (Bhaskar11)
>    2. Beginner question of firmware and C139 (david at frinet.es)
>    3. 29c3 youtube video (Vic Delorge)
>    4. Re: Bug in switching baud rates in burst_ind branch? (J T Dsouza)
>    5. Re: 29c3 youtube video (Akib Sayyed)
>    6. Re: 29c3 youtube video (Sylvain Munaut)
>    7. Re: 29c3 youtube video (Nico Golde)
>    8. Re: 29c3 youtube video (Akib Sayyed)
>
>
> ---------- Doorgestuurd bericht ----------
> From: Bhaskar11 <niceguy108 at gmail.com>
> To: Erich Dachleger <edachleger at yahoo.com>, osmocomBB <
> baseband-devel at lists.osmocom.org>
> Cc:
> Date: Sat, 29 Dec 2012 00:33:51 +0530
> Subject: Re: Bug in switching baud rates in burst_ind branch?
> Sysmocom sells pre-modified CP201x. You can use them as they are.
>
> "mostly" LAPDm and Paging messages is normal. You should also see call
> setups and SMSs as they are used, much less frequently depending on local
> traffic.  :-)
>
> If you have your cellphone on the same ARFCN, you should be able to see
> your cell making/receiving calls and sending messages.
>
> B.
>
>
> On Fri, Dec 28, 2012 at 4:12 PM, Erich Dachleger <edachleger at yahoo.com>wrote:
>
>> I am also using CP210x from sysmocom and haven't modified it since I
>> thought it didn't require modification.
>> Is that wrong?
>> When I use burst_ind with unmodified CP210x I receive mostly LAPDM and
>> System 4 messages in wireshark.
>> Regards
>> Erich
>>
>>
>
> ---------- Doorgestuurd bericht ----------
> From: david at frinet.es
> To: baseband-devel at lists.osmocom.org
> Cc:
> Date: Sat, 29 Dec 2012 00:06:16 +0100
> Subject: Beginner question of firmware and C139
> Hi all,
> I am starting with this project and i have problems downloading the
> firmware to a c139, i built the t191 and i'm using a FTDI usb-serial.
> I use the command that is described in "Motorola C140" section:
>
> ./osmocon -p /dev/ttyUSB0 -m c140 -c ../../target/firmware/board/**compal_e86/layer1.highram.bin
> ../../target/firmware/board/**compal_e86/chainload.**compalram.bin
>
> and also i have used it with "-m c140xor" but when i push briefly
> power button, shows it in next lines "got 1 byte from modem, data
> looks like: ff .", the data are changing in next lines, some times the
> bytes received are more than 1, are 2, 5, 6.
> I have some questions:
> Which is the sequence that have to receive the osmocon to start the
> comunication with the phone?
> Is posible that the compilation of osmocon has been badly?
>
> Thanks and regards.
>
>
>
>
>
> ---------- Doorgestuurd bericht ----------
> From: Vic Delorge <cityhnet at gmail.com>
> To: baseband-devel at lists.osmocom.org
> Cc:
> Date: Sat, 29 Dec 2012 06:24:18 +0100
> Subject: 29c3 youtube video
> this is the 29c3 talk about GSM DOS and SMS sniffing .
> awesome work osmocom team. layer 1,2,3 now runs all on the phone :)
> http://youtu.be/a1iZV2nl28A
>
>
>
> ---------- Doorgestuurd bericht ----------
> From: J T Dsouza <jtd1959 at gmail.com>
> To: Bhaskar11 <niceguy108 at gmail.com>
> Cc: osmocomBB <baseband-devel at lists.osmocom.org>, Erich Dachleger <
> edachleger at yahoo.com>
> Date: Sat, 29 Dec 2012 11:43:55 +0530
> Subject: Re: Bug in switching baud rates in burst_ind branch?
> http://cp210x-program.sourceforge.net/
>
> works nicely for me, except I have never used it to change the baudrate
> table.
>
> On Sat, Dec 29, 2012 at 12:33 AM, Bhaskar11 <niceguy108 at gmail.com> wrote:
>
>> Sysmocom sells pre-modified CP201x. You can use them as they are.
>>
>> "mostly" LAPDm and Paging messages is normal. You should also see call
>> setups and SMSs as they are used, much less frequently depending on local
>> traffic.  :-)
>>
>> If you have your cellphone on the same ARFCN, you should be able to see
>> your cell making/receiving calls and sending messages.
>>
>> B.
>>
>>
>> On Fri, Dec 28, 2012 at 4:12 PM, Erich Dachleger <edachleger at yahoo.com>wrote:
>>
>>> I am also using CP210x from sysmocom and haven't modified it since I
>>> thought it didn't require modification.
>>> Is that wrong?
>>> When I use burst_ind with unmodified CP210x I receive mostly LAPDM and
>>> System 4 messages in wireshark.
>>> Regards
>>> Erich
>>>
>>>
>
>
> ---------- Doorgestuurd bericht ----------
> From: Akib Sayyed <akibsayyed at gmail.com>
> To: Vic Delorge <cityhnet at gmail.com>
> Cc: osmocomBB <baseband-devel at lists.osmocom.org>
> Date: Sat, 29 Dec 2012 12:04:22 +0300
> Subject: Re: 29c3 youtube video
> is code is online for all layer 1 2 3 ?
>
>
> On Sat, Dec 29, 2012 at 8:24 AM, Vic Delorge <cityhnet at gmail.com> wrote:
>
>> this is the 29c3 talk about GSM DOS and SMS sniffing .
>> awesome work osmocom team. layer 1,2,3 now runs all on the phone :)
>> http://youtu.be/a1iZV2nl28A
>>
>>
>
>
> --
> Akib Sayyed
> Matrix-Shell
> akibsayyed at gmail.com
> akibsayyed at matrixshell.com
> Mob:- +91-966-514-2243
>
>
>
> ---------- Doorgestuurd bericht ----------
> From: Sylvain Munaut <246tnt at gmail.com>
> To: Vic Delorge <cityhnet at gmail.com>
> Cc: baseband-devel at lists.osmocom.org
> Date: Sat, 29 Dec 2012 10:07:50 +0100
> Subject: Re: 29c3 youtube video
> Hi,
>
> > layer 1,2,3 now runs all on the phone :)
>
> Not really ... AFAIK the L2/3 running on the phone on that demo are
> just minimal implementation to just do what the demo showed and be as
> fast as possible (since being fast was the whole point here). It's not
> the full mobile application.
>
> Cheers,
>
>     Sylvain
>
>
>
>
> ---------- Doorgestuurd bericht ----------
> From: Nico Golde <osmocom at ngolde.de>
> To: baseband-devel at lists.osmocom.org
> Cc:
> Date: Sat, 29 Dec 2012 11:18:11 +0100
> Subject: Re: 29c3 youtube video
> Hi,
> * Vic Delorge <cityhnet at gmail.com> [2012-12-29 11:15]:
> > this is the 29c3 talk about GSM DOS and SMS sniffing .
>
> Please check the slides of the presentation or watch the
> youtube recording. This is not related to sniffing at all.
>
> > awesome work osmocom team. layer 1,2,3 now runs all on the phone :)
>
> This is not true, it is just a minimal subset of layer2
> and an even more stripped down subset of layer3 messages
> that are required just for the attack.
>
> Cheers
> Nico
>
>
>
>
> ---------- Doorgestuurd bericht ----------
> From: Akib Sayyed <akibsayyed at gmail.com>
> To: Nico Golde <osmocom at ngolde.de>
> Cc: osmocomBB <baseband-devel at lists.osmocom.org>
> Date: Sat, 29 Dec 2012 13:46:45 +0300
> Subject: Re: 29c3 youtube video
> dear Nico
>
> Please share slides :)
>
>
> On Sat, Dec 29, 2012 at 1:18 PM, Nico Golde <osmocom at ngolde.de> wrote:
>
>> Hi,
>> * Vic Delorge <cityhnet at gmail.com> [2012-12-29 11:15]:
>> > this is the 29c3 talk about GSM DOS and SMS sniffing .
>>
>> Please check the slides of the presentation or watch the
>> youtube recording. This is not related to sniffing at all.
>>
>> > awesome work osmocom team. layer 1,2,3 now runs all on the phone :)
>>
>> This is not true, it is just a minimal subset of layer2
>> and an even more stripped down subset of layer3 messages
>> that are required just for the attack.
>>
>> Cheers
>> Nico
>>
>>
>
>
> --
> Akib Sayyed
> Matrix-Shell
> akibsayyed at gmail.com
> akibsayyed at matrixshell.com
> Mob:- +91-966-514-2243
>
>
> _______________________________________________
> baseband-devel mailing list
> baseband-devel at lists.osmocom.org
> https://lists.osmocom.org/mailman/listinfo/baseband-devel
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.osmocom.org/pipermail/baseband-devel/attachments/20121229/97c2330d/attachment-0001.html>

More information about the baseband-devel mailing list