schonelucht
Well-Known Member
I don't know much about this but there seems to be smart people on both sides of the argument but if you're right why haven't they been sued?
Because no one who has standing considers it worthwhile enough to sue.
You can install our site as a web app on your iOS device by utilizing the Add to Home Screen feature in Safari. Please see this thread for more details on this.
Note: This feature may not be available in some browsers.
I don't know much about this but there seems to be smart people on both sides of the argument but if you're right why haven't they been sued?
@neroden, I failed to read your post because I ran into a personal attack and moved it to snippiness. Please try again.
3. You may copy and distribute the Program (or a work based on it, under Section 2) in object code or executable form under the terms of Sections 1 and 2 above provided that you also do one of the following:
a) Accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or,
b) Accompany it with a written offer, valid for at least three years, to give any third party, for a charge no more than your cost of physically performing source distribution, a complete machine-readable copy of the corresponding source code, to be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange; or,
c) Accompany it with the information you received as to the offer to distribute corresponding source code. (This alternative is allowed only for noncommercial distribution and only if you received the program in object code or executable form with such an offer, in accord with Subsection b above.)"
The source code for a work means the preferred form of the work for making modifications to it. For an executable work, complete source code means all the source code for all modules it contains, plus any associated interface definition files, plus the scripts used to control compilation and installation of the executable.
Did you see any compilation configuration files? Linux has insanely large numbers of configuration options in the compilation scripts. Yes, they need to disclose which ones they used.
1. You may copy and distribute verbatim copies of the Program's source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice and disclaimer of warranty; keep intact all the notices that refer to this License and to the absence of any warranty; and give any other recipients of the Program a copy of this License along with the Program.
This is basic stuff. I've bought a lot of hardware with embedded software. An example is my router. I got a cute little one page piece of paper with the GPL and a copyright notice, a written offer to mail source code for the GPL-covered components on request, and the address of a website (produced by the manufacturer) where I can download the source code (so that nobody ever requests the mailing). If anyone does request the mailing, someone at the manufacturer simply downloads that section of the website onto a CD and mails it. I can show you these for many products from Intel, Netgear, etc. It's not difficult. It's not expensive. It's a sign of *incompetence* that Tesla hasn't done it.
And yes, if they don't fix this, they will get sued. Nobody in the free software business likes to sue, they'd nearly all rather have voluntary compliance, so it'll take a long time. But it'll happen.
The data is unencrypted. There is no good reason to encrypt it. That said, Tesla may do it in the future, but if they do, know that it does NOT increase security in any way, shape, or form, and is 100% part of Tesla's ongoing war on their own paying customers.1) I'm assuming the IC <-> CID traffic isn't encrypted? It seems like an SSL cert with client auth would be an easy patch for this exploit. I'm surprised they haven't done so already.
The information that they presented at defcon is outdated. As they said right in the presentation, many of those attack vectors had already been patched at the time of that presentation. So while yes, the key is shared over the network, there's no way of actually capturing and using it based solely on the information presented there (it's not being sent cleartext)2) My understanding from defcon was that the CID posts the access token to the IC every 24 hours. Also, that token is a password for one of the users on the CID, which has sudoers access. I'm assuming you know that and so I'm curious why you haven't used that to escalate to root. Is the token not sent cleartext or something? In any case, it sounds like if you can get root to the IC, that will be a quick jump over to root on the CID.
If you sniff the traffic, and see the variable names in there, and then look at the defcon talk again, you may find something with a familiar looking format to try...3) As mentioned, I'm waiting to get my car before I'll be able to sniff traffic, but I haven't quite bridged the gap in my mind between packet sniffing and collecting the factory mode REST/JSON command. It's not like the IC ever sends that to the CID. Maybe this will become obvious once I have wireshark up and running. Were you maybe able to get the values of the gui_* constants somehow so you could generate the correct message ids for things like factory mode?
Yes it is, but again, you need the token which you have no way of obtaining to do it. As a result, that method is quite impractical.4) Do you know if the UDP knock is still a valid way of accessing the VLAN from the "mystery cable"? This would definitely be a less invasive method compared to a switch behind the dash.
For the initial work I didn't bother with a switch at all, I simply disconnected the IC from the CID, connected a computer, sent the command, and then re-connected them. I kept it that way for a few weeks, connecting a computer as needed to issue commands (I did extend the cables down to a more convenient location so I wouldn't have to do the whole dash disassembly each time)5) I'm assuming you just hacked up a 12v lighter adapter and used it to power a network switch that accepts 12v?
I do not have root access, only internal network access. That gives the ability to set various variables, but not everything. Changing the images on the screens hasn't been a priority for me though it might be possible at this level.
I have reasonably reliable information that 8.0 would block setting variables without either full root, or diagnostic port access, neither of which I have yet. So 8.0 isn't going to happen yet. (Not that Tesla has offered, so far all they're showing me is the last 7.1)
My current information is that setting variables is not disabled, however certain variables are no longer there to set (specifically the ones that remove the restrictions on AP)@green1 - I am confused about your earlier post which is what led me to believe the setting of variables is disabled in 8.x. have you since uncovered information that suggests this is not the case?
That is what I am saying, yes.Additionally, by saying that the token is not sent clear text over the network you are implying that it is encrypted.
Interesting, where did you find that one?Found a little car called "Lightning McQueen" in my developer car on the bench.
Would be nice, if Tesla enabled this screen in the actual car GUI..
View attachment 212464
I think you can own a private airplane, but MUST have a certified mechanic make repairs and modifications. The Owner is not free to do whatever, but must follow rules and regulations to produce an airworthy plane. The blanket statement "If you can't modify it, you don't really own it." runs against [msnow] point that there are others lives to consider, and the long establish need to have certified mechanics working on certain machines.
OP: While I agree wireless plans & prices really suck here in Canada, there is one cheaper alternative prepaid offering you may not know about - Speakout Wireless/7-Eleven - an MNVO operating on Rogers networkIt appears obvious you are in a country with sane wireless services. I assure you, I am not.
"pre-paid" plans here expire after 30 days. The absolute cheapest plan in existence where I live is $15 for those 30 days, that does not include taxes, the hardware, or any data usage.
$25/yr for one way communication... starts adding up quickly if you want two way communication.OP: While I agree wireless plans & prices really suck here in Canada, there is one cheaper alternative prepaid offering you may not know about - Speakout Wireless/7-Eleven - an MNVO operating on Rogers network
Min $25 top-up valid for 1yr, unlike the other companies' 30-day expiry. Incoming SMS free, outgoing $0.15 ea.
You can buy just a SIM, $10. However if you need data, then that's +$10 for 100MB/30days. Just came across this thread so haven't read through all its details yet, but it seems there was some idea of just using SMS... so though I'd mention Speakout in case it helps (I have several relatives using Speakout for emergency-use only, i.e. $25 lasts them a whole year).
endurance?? you do realize that EV's have limited range capabilities? at track like speeds you'd spend more time charging than driving. have you really thought this idea through?Forgive my ignorance, I'm a Noob here!
My friends and I want to rework older Tesla's into race track performance and endurance cars. We would like to totally redo the IC (instrument cluster) with our own layouts and variable display. Has anyone done something like that here or elsewhere on the Internet?
Any help would be greatly appreciated. Thanks in advance.