my profile | my password | search | faq & rules | forum home

» Film-Tech Forum ARCHIVE   » Operations   » Digital Cinema Forum   » root pasword Doremi DCP2000

Author Topic: root pasword Doremi DCP2000 Cristian Company Film Handler Posts: 1 From: Monzon, Huesca, Spain Registered: Jun 2012 posted 07-03-2012 08:12 PM                     Hi everybody. Anyone knows the default root password, to this server? Doremi DCP2000. HI has VNC default password, but I need root default password. Thanks  |  IP: Logged Harold Hallikainen Jedi Master Film Handler Posts: 906 From: Denver, CO, USA Registered: Aug 2009 posted 07-03-2012 09:26 PM                        I believe it's in the manual, but it has been suggested it not be posted. Hence the edit. Harold  |  IP: Logged Gordon McLeod Film God Posts: 9532 From: Toronto Ontario Canada Registered: Jun 99 posted 07-03-2012 10:09 PM                     Not sure of the rules but i believe passwords are not to be posted personally i would ban anyone who posts one in a public forum  |  IP: Logged Scott Norwood Film God Posts: 8146 From: Boston, MA. USA (1774.21 miles northeast of Dallas) Registered: Jun 99 posted 07-03-2012 11:28 PM                        Obviously, this is Brad's forum and he can do as he pleases. That said, I am of two minds on this topic: I can completely understand that manufacturers withhold some information from the "general public" and make it available on a "need to know" basis; we should respect this and not post anything that might encourage unqualified people to cause serious harm to the equipment. It is in no one's interest to do things that might result in lost shows or anything else that would give the industry a bad reputation. Still, I absolutely cannot stand the secrecy and paranoia that is associated with D-cinema. I strongly believe that the installation manuals should include all of the information that is necessary to install and repair the equipment, which (as far as I know), none of them does (just try finding marriage passwords anywhere). The owner of the equipment should be entitled to receive this information, and the fact that this does not happen is a travesty. I could accept the idea that "using this password voids your warranty" or something along those lines, but withholding it completely is shameful. My inclination at this point is that we should err on respecting the manufacturers' wishes for the good of the industry, but that opinion may change at some point. The secrecy issue is more of a DCI problem than a manufacturer problem, anyway.  |  IP: Logged Monte L Fullmer Film God Posts: 8367 From: Nampa, Idaho, USA Registered: Nov 2004 posted 07-04-2012 01:10 AM                     quote: Scott Norwood people to cause serious harm to the equipment Let along lawsuits that can come out of this.. to Film-Tech since it allowed confidental info to be published.  |  IP: Logged Brad Miller Administrator Posts: 17775 From: Plano, TX (36.2 miles NW of Rockwall) Registered: May 99 posted 07-04-2012 01:33 AM                     Monte, you sure are wrong about a lot of stuff lately. There is no set policy against posting passwords. It's just common sense not to. Anyone who has legitimate training to work on a piece of equipment already knows the passwords or can easily request them from the manufacturer. I don't know Cristian's level of experience or what his need for the root password is, but he should be able to email Doremi, identify himself, explain why he needs it and receive the root password from them if there is a reason for him to have it. The whole DCI security thing is quite the ridiculous waste of time though. Just look at marriage. Scenario #1 Some idiot wants to poke around inside a projector, either for the "cool factor" to try and see how it works, or he is an evildoer and is trying to figure out how to copy the movie. Without him knowing the marriage password, he simply breaks the machine from being able to play back. At the end of the day, this idiot wouldn't have the technical knowledge on how to tap into the system anyway! Scenario #2 A highly experienced technician who just can't wait for the latest Madea movie to hit bluray cracks the system open to tie in for a copy. Ummmm, duh...anyone with this level of knowledge knows the damn marriage password anyway! Scenario #3 Whoever (idiot or technician) just points a friggin' camera at the screen. Since there is no mechanical shutter in a DLP projector, flicker isn't even a concern. Now how did DCI security actually make ANY difference in the above?  |  IP: Logged John Thomas Film Handler Posts: 75 From: Boston, MA Registered: Sep 2011 posted 07-04-2012 02:32 AM                     Cristian, the root password is most likely the same root password that Doremi uses for many other (if not all) of their products, which is available in publicly downloadable field installer manuals.  |  IP: Logged Dave Macaulay Film God Posts: 2321 From: Toronto, Canada Registered: Apr 2001 posted 07-04-2012 06:05 AM                     I believe searching for the server root password in downloaded manuals will be fruitless, but I'm not about to waste my day looking. The server password different from the other Linux based Doremi device I'm familiar with, the TMS. The only worthwhile proposal is to call Doremi tech support and ask them. Presumably you have a good reason to want it: there are some basic settings that require it. Doremi isn't hyper secretive about this, but they do not publicize it. If you have a valid reason to need it, they'll provide it.  |  IP: Logged Rick Raskin Phenomenal Film Handler Posts: 1100 From: Manassas Virginia Registered: Jan 2003 posted 07-04-2012 04:35 PM                     I believe the manufacturer would want to be involved in any fix that requires a root password. After all, allowing someone to poke around unsupervised could ultimately cause them bigger headaches.  |  IP: Logged Dave Macaulay Film God Posts: 2321 From: Toronto, Canada Registered: Apr 2001 posted 07-05-2012 10:30 AM                     You can't "steal" a movie even with root access so the security isn't super tight and there are documents floating around that list the su password. There are several server settings like network setup that require it, and copying anything to a USB stick requires SU access to remount it as read/write. Doremi gives you an open terminal shell, and you can easily destroy the system with a few characters mistyped as root. Dolby lets you have a restricted terminal for routine tasks as "technician" and as far as getting the Dolby root password... not easy. GDC, I can't find a terminal shell. Haven't really tried hard though.  |  IP: Logged Frank Cox Film God Posts: 2234 From: Melville Saskatchewan Canada Registered: Apr 2011 posted 07-05-2012 12:49 PM                        I have a GDC server and its obvious that it runs on Fedora Core 5. Depending on exactly how they set it up to boot, Fedora usually provides a number of virtual terminals. Ctrl-alt-F(something) gets you to each one. Ctrl-alt-f1, ctrl-alt-f2, and so on. I don't know if GDC actually does it this way, but since a lot of the boot sequence of the server appears to a stock Fedora Core 5 setup, I wouldn't be surprised.  |  IP: Logged Olivier Lemaire Expert Film Handler Posts: 118 From: Paris, Ile de France, France Registered: Jan 2010 posted 07-05-2012 02:46 PM                        Dave, Rick: On a DCI machine, having the "root" password (or "Administrator" if running MS Windows), should not lead to the capability of deciphering encrypted assets -> the Security Manager is FIPSed and the machine must prevents this kind of trick. Even physical access to the machine should not lead to such a security breakage. If you can demonstrate that with the root password, you can decipher an encrypted essence, you should report it to the manufacturer and/or the company that did certified this machine as DCI... they will probably recruit you pretty quickly (and have this kind of security flaw fixed urgently...). Dave: Getting the root password (or "Administrator") of a given machine you've got physical access in is pretty piece of cake for any geek out there - no matter the brand. At maximum, it will require time for a password cracker... not that much considering GPU power of a 300 USD video card nowadays. This is anyway not the point of DCI security: the point is to protect the asset, not the machine. All that said, having the "root" (or "Administrator") access, anyone can wreak the machine pretty easily - that could be posing an issue for maintenance contracts with integrators. But, it is needed for some specific operations (mostly maintenance). If you are in charge of such operations, you should ask for it at support@doremicinema.com Surely it's not a good idea, regarding general susceptibility, to publish the default password on a public forum, but one must admit that it is already done on some other countries... And some others will add that there is no security thru obscurity anyway On some manufacturer documentations, the default root password still exist: just forage docs publicly available at manufacturer website and in less than 30mn. On these docs, you'll see too that they recommend to change this password if you want to be the only guy to be able to take care of the unit maintenance.  |  IP: Logged William F Green Film Handler Posts: 84 From: Brighton, East Sussex, UK Registered: Jun 2005 posted 08-14-2012 09:31 AM                     quote: Brad Miller I don't know Cristian's level of experience or what his need for the root password is, but he should be able to email Doremi, identify himself, explain why he needs it and receive the root password from them if there is a reason for him to have it. Brad it should work that way but in practice it does not seem to. It took over a week for one of the digital cinema guy from CRU to get a reply from Doremi on our behalf. Due to the delay in getting a reply we emailed Doremi directly ouselves, explaining who we were and why we needed the info - and got no reply at all. We were not even asking for a password - just some basic info of the Doremi's support for port-multipliers.  |  IP: Logged

All times are Central (GMT -6:00)

Printer-friendly view of this topic

Hop To: Select a Forum: Category: Operations -------------------- Digital Cinema Forum Film Handlers' Forum Large Format Forum Ground Level Feature Info, Trailer Attachments & REAL Credit Offsets Category: Community -------------------- Film-Yak Film Handlers' Movie Reviews The Afterlife Bob Maar's Joke-A-Thon Category: Classified -------------------- Equipment and Supplies Wanted/For Sale Help Wanted/Seeking Employment Category: System -------------------- Software Beta Testing Forum

The Film-Tech Forums are designed for various members related to the cinema industry to express their opinions, viewpoints and testimonials on various products, services and events based upon speculation, personal knowledge and factual information through use, therefore all views represented here allow no liability upon the publishers of this web site and the owners of said views assume no liability for any ill will resulting from these postings. The posts made here are for educational as well as entertainment purposes and as such anyone viewing this portion of the website must accept these views as statements of the author of that opinion and agrees to release the authors from any and all liability.