Distributed Censorship or Extortion? The IoT vs Brian Krebs

Now it’s official. The particular website that was hit by a record-breaking distributed denial of service (DDOS) attack that we covered a few days ago was that of white-hat security journalist [Brian Krebs]: Krebs on Security.

During the DDOS attack, his site got 600 Gigabits per second of traffic. It didn’t involve amplification or reflection attacks, but rather a distributed network of zombie domestic appliances: routers, IP webcams, and digital video recorders (DVRs). All they did was create HTTP requests for his site, but there were well in excess of 100,000 of these bots.

In the end, [Krebs’] ISP, Akamai, had to drop him. He was getting pro bono service from them to start with, and while they’ve defended him against DDOS attacks in the past, it was costing them too much to continue in this case. An Akamai exec estimates it would have cost them millions to continue defending, and [Brian] doesn’t blame them. But when Akamai dropped the shields, his hosting provider would get slammed. [Krebs] told Akamai to redirect his domain to localhost and then he went dark.

Continue reading “Distributed Censorship or Extortion? The IoT vs Brian Krebs”

Inventables Releases Improved X-Carve CNC Router

Introduced last year as an improvement on the very popular Shapeoko CNC router, the X-Carve by Inventables has grown to be a very well-respected machine in the community. It’s even better if you throw a DeWalt spindle on there, allowing you to cut almost everything that’s not steel. With a recent upgrade to the X-Carve, it’s even more capable, featuring the best mods and suggestions from the community that has grown up around this machine.

The newest iteration of the X-Carve features higher power drivers, better rigidity, and a heat sink for the spindle. That last item is an interesting bit of kit – routing takes time, and a 1¼HP motor will turn electricity into heat very effectively.

X-CarveIn addition to the 500mm square and 1000mmm square routers previously available, there’s a new, 750mm square machine available. All machines feature a new electronics box for the X-Carve, the X-Controller. This ‘brain box’ is a combined power supply, stepper driver, and motion controller built into a single box. The stepper drivers are able to supply 4A to a motor, is capable of 1/16 microstepping, and has connections for limit switches, spindle control speed, a Z probe, and outputs for vacuums or coolant systems. The underlying controller is based on grbl, making this brain box a very solid foundation for any 3-axis CNC build. The ‘brain box’ format seems to be the way the hobbyist CNC market is going, considering the whispers and rumors concerning Lulzbot selling their Taz6 brainbox independently from a 3D printer.

The new X-Carve is available now, with a fully-loaded 1000mm wide machine coming in at about $1400. That’s comparable to many other machines with the same volume, unlike the Chinese 3040 CNC machines, you don’t need to find an old laptop with a parallel port.

Hands-On the Shaper Origin: A Tool That Changes How We Build

I bet the hand saw really changed some things. One day you’re hacking away at a log with an ax. It’s sweaty, awful work, and the results are never what you’d expect. The next day the clever new apprentice down at the blacksmith’s shop is demoing his beta of his new Saw invention and looking for testers, investors, and a girlfriend. From that day onward the work is never the same again. It’s not an incremental change, it’s a change. Pure and simple.

This is one of those moments. The world of tools is seeing a new change, and I think this is the first of many tools that will change the way we build.

Like most things that are a big change, the components to build them have been around for a while. In fact, most of the time, the actual object in question has existed in some form or another for years. Like a crack in a dam, eventually someone comes up with the variation on the idea that is just right. That actually does what everything else has been promising to do. It’s not new, but it’s the difference between crude and gasoline.

My poetic rasping aside, the Shaper Origin is the future of making things. It’s tempting to boil it down and say that it’s a CNC machine, or a router. It’s just, more than that. It makes us more. Suddenly complex cuts on any flat surface are easy. Really easy. There’s no endless hours with the bandsaw and sander. There’s no need for a 25,000 dollar gantry router to take up half a garage. No need for layout tools. No need to stress about alignment. There’s not even a real need to jump between the tool and a computer. It can be both the design tool and the production tool. It’s like a magic pencil that summons whatever it draws. But even I had to see it to believe it.

Continue reading “Hands-On the Shaper Origin: A Tool That Changes How We Build”

DIY Linux Computer and 6LoWPAN Gateway

We toss together our own PCB designs, throwing in a microcontroller here or there. Anything more demanding than that, and we reach for a Raspberry Pi or BeagleBone (or an old Linksys router). Why don’t we just whip together a PCB for a small Linux computer? Because we don’t know how…but [Jonas] apparently does. And when we asked him why he did it, he replied “because I can!”

zb

His Ethernet-to-6LoWPAN gateway project is a small, OpenWRT-capable Linux computer in disguise. Rather than yet another Raspberry Pi project, he designed around an Atmel AT91SAM9G25 400 MHz CPU, and added some memory, Ethernet, and a CC2520 radio chip to handle the wireless side. It’s all done on a four-layer board, and hotplate/skillet reflowed. This seems temptingly like something within our reach. [Jonas] had access to X-ray machines to double-check his reflow work, which probably isn’t necessary, although it looks really cool.

When finished, the project will link together a 6LoWPAN network (probably home automation) and his home wired network. That makes this device a rival to something like Philips’ Hue Bridge, which was the subject of some controversy when they locked out other devices for a few days until they recanted. Indeed, in response to this, there’s been quite a lot of effort at hacking the firmware of the Hue device, just to stay on the safe side in case Philips plays shenanigans again.

Soon, that’s not going to be necessary. [Jonas]’s design is open from the ground up, and coupled with open software running on top of the OpenWRT router operating system, that’s the full stack. And that’s great news for folks who are thinking about investing in a home automation technology, but afraid of what happens then the faceless corporations decide to pull the plug on their devices.

FCC Reaches Agreement With Router Manufacturers

Last year, the Federal Communications Commission proposed a rule governing the certification of RF equipment, specifically wireless routers. This proposed rule required router manufacturers to implement security on the radio module inside these routers. Although this rule is fairly limited in scope – the regulation only covers the 5GHz U-NII bands, and only applies to the radio subsystem of a router, the law of unintended consequences reared its ugly head. The simplest way to lock down a radio module is to lock down the entire router, and this is exactly what a few large router manufacturers did. Under this rule, open source, third-party firmwares such as OpenWRT are impossible.

Now, router manufacturer TP-Link has reached an agreement with the FCC to allow third-party firmware. Under the agreement, TP-Link will pay a $200,000 fine for shipping routers that could be configured to run above the permitted power limits.

This agreement is in stark contrast to TP-Link’s earlier policy of shipping routers with signed, locked firmware, in keeping with the FCC’s rule.

This is a huge success for the entire open source movement. Instead of doing the easy thing – locking down a router’s firmware and sending it out the door – TP-Link has chosen to take a hit to their pocketbook. That’s great news for any of the dozens of projects experimenting with mesh networking, amateur radio, or any other wireless networking protocol, and imparts a massive amount of goodwill onto TP-Link.

Thanks [Maave] for the tip.

The Othermill Is Something Else

I’ll admit. When I saw the Othermill for the first time I thought it was just another mill with cheap Chinese hardware inside sold as a premium. I’m ashamed to say that I even trash talked it a little bit. It gave me another chance to relearn that I should always do my research before being a jerk, check my assumptions thoroughly, and even then it’s not recommended. Other Machine Company was kind enough to let me swing by the office in Berkeley California. [Danielle], the CEO, led me through the design of the mill as well as the challenges in running the operation.

The Othermill is a serious machine, and with the recent release of the Othermill Pro, it’s only getting better. The components are not bargain basement. This is something that could be more obvious, but it’s almost entirely made from US sourced parts, including the custom stepper motors. There aren’t any ball bearings that will start to make strange noises in a year. It can now cut 6mil traces in a PCB all day long. To put it into perspective. The Othermill Pro costs a third of the price of an equivalent machine from LPKF and has the same capabilities.

Continue reading “The Othermill Is Something Else”

The Onion Omega2: The Latest Router Dev Board

A few years ago, the best way to put a device or project online was by hacking a router. With an inconspicuous Linksys WRT54G held onto a project with baling wire, anything can connect to the Internet. A lot has changed in a few years, and now those routers are development boards themselves. The latest of these is the Onion Omega2, a follow-up crowdfunding campaign to the very popular original Omega. Now, this tiny dev board is faster, more capable, and now it’s giving the Raspberry Pi Zero a run for its money.

The original Onion Omega was released last year with specs you would expect from an Internet of Things development board designed upon a chip for a cheap router. The original Onion used an Atheros AR9331 SOC running at 400 MHZ, had 64MB of RAM and 16MB of storage – enough to run a lightweight Linux distro – and also included USB, 802.11b/g/n, and a handful of GPIOs and a single UART. The Omega2 is a vast improvement over the original Omega, featuring a CPU that is 45% faster. The upgraded version of the Omega sports twice as much RAM, twice as much storage, and a MicroSD slot. This enables some Linux distros with a little more oomph behind them, and of course the SD card allows for local storage.

The original Onion Omega was funded through a crowdfunding campaign, with a single Onion Omega and dock available for a pledge of $19. Taking a lesson from the C.H.I.P. and the Pi Zero, the team at Onion have slashed the price. The Omega2 is only five dollars. If you want more RAM, storage, and an SD card socket, that price goes up to $9 USD. That’s amazing, and just goes to show how far hardware designed to service the Internet of Things has come in just a few short years.