11/14/2023 0 Comments Nxfilter raspberry piInstall nxfilter and/or pihole to test them.Įdit TZ=Europe/Vienna to match your timezone: Nxfilterĭocker run -d -name nxfilter -v nxfilter-conf:/nxfilter/conf -v nxfilter-log:/nxfilter/log -v nxfilter-db:/nxfilter/db -e TZ=Europe/Vienna -net=aqua -restart=unless-stopped packetworks/nxfilter-base:latest Piholeĭocker run -d -name pihole -e TZ="Europe/Vienna" -e WEBPASSWORD="admin" -v "$(pwd)/etc-pihole/:/etc/pihole/" -v "$(pwd)/etc-dnsmasq.d/:/etc/dnsmasq.d/" -cap-add NET_ADMIN -net=aqua -restart=unless-stopped pihole/pihole:latest Portainerīrowse to setup admin username/password and select Local. Now you can manage the containers via web UI.Ĭheck the IPs of your machines, if you installed in a different order they may differ. We think it is probably a good idea to view IOActive's work as constructive criticism, rather than dismiss it out of hand.You may use a static route on the internet gateway for the aqua network to go to the docker machine. Ideas for better security were already suggested like removing the external USB port or some software / firmware modifications. However, an exec from the International Gaming Standards Association which sets standards in casinos, talked constructively about assembling a technical committee to look into IOActive's findings. The firm stated that there is no known evidence of one of their devices being hacked on the Casino floor. Looking at quotes in the Wired report, the makers of the Deckmate series Light & Wonder, seemed to exhibit a head-in-the-sand approach to the warnings from IOActive. This opens it up more attack surfaces for man-in-the-middle attacks, or cellular signal spoofing. Also some Deckmates were said to include a cellular modem for the manufacturer to monitor them. The team noted that the original Deckmate has no USB port, but could be tampered with in other ways, especially if there was a willing casino insider. There were some other interesting research findings shared by IOActive. Tartaro said of the rather extensive sounding Deckmate 2 hack: "Basically, it allows us to do more or less whatever we want … We can, for example, just read the constant data from the camera so we can know the deck order, and when that deck goes out into play, we know exactly the hand that everyone is going to have." The second person could work in cahoots with the player at the table, to signal a decision or strategy. An obvious cheating method which could stem from this is that visual data could be sent to a nearby smartphone via Bluetooth, which the IOActive team also tested. IOActive found that the camera feed could be accessed to learn the entire order of the deck in real time. Moreover, you don't even to be a card-playing genius to make sense of the Deckmate 2's data, it even has a built-in camera, for deck verification purposes. With bags of money at stake, a cheater might be tempted to invest. IOActive say that a determined cheater could probably fashion a purpose-built device with the same functionality in a form factor as small as a typical USB dongle. The hacking device used by IOActive for its proof-of-concept casino cheating demonstration, plugging into the Deckmate 2 USB interface, was based around a Raspberry Pi Zero. In other words, someone who could garner any extra knowledge of the cards dealt could have a small to massive advantage. The security researchers found that a hacking device inserted into the Deckmate 2's USB port could "alter the shuffler’s code to fully hijack the machine and invisibly tamper with its shuffling." Most people with a little knowledge of cards and gambling (or even movies featuring gambling) know that knowledge is power in these card games. If hackers have access to the device, then all bets are off. Interestingly, the newest version is the Deckmate 2, often sits under a table next to players' knees, and the device has an exposed USB port. IOActive acquired a few Deckmate machines and talked with experienced operators and engineers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |