Scott Lovenberg wrote:

>> I have tried telnet and ssh directly, but I haven't scanned for open
>> ports. How do I do that?
>> Rick J.

> Use NMap with NMapFE (nmap frontend) on Linux, or something like YAPS
> (yet another port scanner) on Windows. Any crappy port scanner will do,
> you don't need anything like stealth scanning (I hope!). Which ever one
> you use, do a service scan, or scan the first 1024 ports. You could try
> something fancier like a SYN or XMAS scan if it's a BSD based appliance.
> Also, does it have a USB port or any other interface? Like anything
> else, it's just about getting your foot in the door, after that, you
> just need a bit of leverage. The thing is, most of these boxes have
> to have a way for the upstream vendor to upgrade the firmware, which is
> usually just an IMG of the compressed OS, so they're usually not
> completely locked down.

Below are the port scan results:

Starting nmap 3.93 ( ) at 2008-04-28 18:17 UTC
Interesting ports on
(The 65532 ports scanned but not shown below are in state: closed)
80/tcp open http
139/tcp open netbios-ssn
445/tcp open microsoft-ds
4301/tcp open unknown
MAC Address: 00:10:75:00:FD:91 (Maxtor)

Nmap finished: 1 IP address (1 host up) scanned in 15.124 seconds

The device does have two USB ports in addition to the ethernet port.

FWIW, new firmware can be downloaded into the device via the browser
interface, so perhaps there is some way to use port 80 to see the

Best Regards,

Rick J.
To unsubscribe from this list go to the following URL and read the