HP 印表機的 Port 與 Prometheus… – Gea-Suan Lin's BLOG
source link: https://blog.gslin.org/archives/2021/06/21/10210/hp-%e5%8d%b0%e8%a1%a8%e6%a9%9f%e7%9a%84-port-%e8%88%87-prometheus/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
HP 印表機的 Port 與 Prometheus...
Twitter 上看到這個,HP 印表機的 Port 9100 跟 Prometheus 撞到,再加上 mistype,於是就出事了:
HP Laserjet printer port: 9100
Prometheus node_exporter port: 9100
Probability that someone will mistype the printer IP address into their Prometheus configuration: 100.00000%Perfectly printed HTTP GET request every 15 seconds: yes pic.twitter.com/t64z0MZcUh
— Avi Kivity (@AviKivity) June 16, 2021
找了一下 HP 的文件,「HP Jetdirect Print Servers - HP Jetdirect Port Numbers for TCP/IP (UDP) Connections」:
9100 TCP port is used for printing. Port numbers 9101 and 9102 are for parallel ports 2 and 3 on the three-port HP Jetdirect external print servers.
翻了一下「Service Name and Transport Protocol Port Number Registry」這邊,看起來 HP 在很久前就登記了 9100/tcp 與 9100/udp...
不過這沒有誰對誰錯的問題,只是很好笑:Printer 在收到不認識的指令時會直接當做 text 印出來,加上 Prometheus 的 HTTP request 打進去...
Related
請更新 HP 印表機的韌體...
HP 發了安全通告「HPSBPI02728 SSRT100692 rev.2 - Certain HP Printers and HP Digital Senders, Remote Firmware Update Enabled by Default」,在安全通告內列出的印表機都有安全問題,「允許遠端安裝未經授權的印表機韌體」,攻擊者可以遠端直接安裝有木馬的韌體: A potential security vulnerability has been identified with certain HP printers and HP digital senders. The vulnerability could be exploited remotely to install unauthorized printer firmware. 另外可以參考 CVE-2011-4161 的說明: The default configuration…
January 7, 2012In "Computer"
關閉 GitLab 的 nginx,使用自己裝的 nginx
我自己架設的 GitLab 是透過「Install self-managed GitLab」這邊的方法裝進 Ubuntu 系統內的 (我在自己的 wiki 上也有整理:「GitLab」),他會自己下載所有對應的套件,包括了 nginx。 但這樣就直接把 TCP port 80/443 都吃掉了,同一台機器要放其他的 virtual host 就比較麻煩,所以找了些方法讓 GitLab 不要佔用 TCP port 80/443。 首先是找到這篇,資料有點舊,但裡面關掉 nginx 的方法還算是有用:「How to setup gitlab without embedded nginx」。 現在只要把 /etc/gitlab/gitlab.rb 裡面的: nginx['enable'] 改成 false web_server['external_users'] 改成 ['www-data'] 然後跑 gitlab-ctl reconfigure 讓他更新設定檔,接下來停掉整個 GitLab 再打開 (或是重開機) 讓…
November 28, 2020In "Computer"
Smart TV 與遊戲主機的 DNS 經常是設死的
在 Hacker News Daily 上看到「Your Smart TV is probably ignoring your PiHole」,裡面提到了很多遊戲主機並不會依照從 DHCP 拿到的 DNS 設定使用,而是直接設死: Nearly 70% of smart TVs and 46% of game consoles were found to contain hardcoded DNS settings - allowing them to simply ignore your local network’s DNS server entirely. On average, Smart TVs generate…
December 6, 2020In "Computer"
Author Gea-Suan LinPosted on June 21, 2021Categories Computer, Murmuring, Network, SoftwareTags header, hp, http, laserjet, network, port, printer, prometheus, request, tcp Leave a Reply Cancel reply
Your email address will not be published. Required fields are marked *
Comment
Name *
Email *
Website
Notify me of follow-up comments by email.
Notify me of new posts by email.
Post navigation
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK