The Wiert Corner – irregular stream of stuff

Jeroen W. Pluimers on .NET, C#, Delphi, databases, and personal interests

  • My badges

  • Twitter Updates

  • My Flickr Stream

  • Pages

  • All categories

  • Enter your email address to subscribe to this blog and receive notifications of new posts by email.

    Join 2,522 other followers

Archive for October 27th, 2021

M.2 SSD PCIe 3.0×4 vs 2.0×4 | Tom’s Hardware Forum

Posted by jpluimers on 2021/10/27

I wanted to know the influence of PCIe versions to NVMe support, and found [Archive.is] M.2 SSD PCIE 3.0×4 vs 2.0×4 | Tom’s Hardware Forum answering:

You already know that the Z97 motherboard has one M.2 port. The problem is there are several M.2 variations. Here are the current possibilities:

M.2 3.0 x4 – State of the art M.2 SSD that uses 4 PCIe 3.0 channels for proper operation. The M.2 port on the motherboard is sometimes referred to as an Ultra M.2 port. It is the appropriate port for the Samsung 950 Pro SSD.

There are other M.2 SSDs that either use PCIe 2.0 or use fewer PCIe channels:

  • M.2 2.0 x4
  • M.2 2.0 x2
  • M.2 SATA 3

You will need to check your motherboard manual or the company web site to determine if the M.2 port can support an M.2 3.0 x4 SSD like the 950 Pro. A lot of the Z87 and Z97 motherboards had M.2 ports for M.2 2.0 x2 SSDs that would not fully support an M.2 3.0 x4 SSD. With the exception of ASRock, the other motherboard manufacturers did not do a very good job of fully identifying the M.2 ports. You will have to find a little more information about the M.2 port on your motherboard. Hopefully the information is in the owner’s manual or the manufacturer’s web site.

The addition of M.2 ports on the the motherboard required the use of additional PCIe channels. Unfortunately Intel resisted adding chipset support for additional PCIe channels until recently. The lack of a sufficient number of PCIe channels resulted in some awkward solutions:

  • Some motherboards reduced the number of channels available to graphic cards. The cards might be reduced from PCIe 3.0 x16 down to PCIe 3.0 x8. Graphic card performance is reduced by about 5%. That is not a terrible hit in performance.
  • Some motherboards reduce the number of SATA 3 ports that are available. For example,the MSI Z107 Titanium motherboard has two M.2 3.0 x4 ports. If I install a 950 Pro in each port, then all of the standard SATA ports are disabled except for two ports. The M.2 ports do not reduce the performance of graphic cards
  • Some high end motherboards add an expensive PLX chip to handle M.2 SSDs. An example would be the ASRock Z97 Extreme9 motherboard. The PLX provides direct data transmission between the M.2 SSDs and the cpu. It is actually possible to run two graphic cards in SLI at PCIe 3.0 x16 each and still be able to run two M.2 SSDs.

The Samsung 950 Pro uses the new NVMe protocol instead of AHCI. A motherboard would have to have a UEFI BIOS, an Intel chipset, and a Microsoft Windows operating system that support the NVMe protocol. You would have to do the following:

  • Check for any BIOS updates. Sometimes the updates include new and improved support for the NVMe protocol.
  • Check for any Intel chipset updates. Sometimes the updates include new and improved support for the NVMe protocol.
  • Windows 7, 8, and 10 can support the NVMe protocol. Again you will have to check for updates or fixes that can improve NVMe support. NVMe is new so things could get a little complicated.
  • Finally Samsung has issued their own NVMe driver for the 950 Pro. Reviews and articles indicate the Samsung NVMe driver is better than the Windows NVme drivers.

Some modern motherboards still provide a PCIe 2.0 slot. That does not mean you should purchase a PCIE 2.0 SSD or an M.2 SSD with an adapter card. M.2 3.0 x4 SSDs are backwards compatible.

It might be confusing but for all practical purposes it is just a matter of checking requirements and specifications.

Note I have bulleted some entries for readability and bolded some text relevant to some motherboards I still have running and fixed some typos.

On connectors and B/M keying:

Read the rest of this entry »

Posted in Hardware, NVMe, Power User, SSD | Leave a Comment »

Some bash parameter propagation links that hopefully will work with ash/dash too

Posted by jpluimers on 2021/10/27

For my link archive; I started with [Wayback] dash get all parameters quoted – Google Search:

–jeroen

Posted in *nix, *nix-tools, ash/dash, ash/dash development, bash, bash, Development, ESXi6, ESXi6.5, ESXi6.7, ESXi7, Power User, Scripting, Software Development, Virtualization, VMware, VMware ESXi | Leave a Comment »

Shodan (via SCADA systems accessible through the internet)

Posted by jpluimers on 2021/10/27

Just 2 years ago I bumped into shodan.io through [Wayback] Onderzoekers: zestig slecht beveiligde Nederlandse scada-systemen op internet – Computer – Nieuws – Tweakers and saved the entry [Wayback] Shodan (website) – Wikipedia:

Shodan is a search engine that lets the user find specific types of computers (webcamsroutersservers, etc.) connected to the internet using a variety of filters. Some have also described it as a search engine of service banners, which are metadata that the server sends back to the client.[1] This can be information about the server software, what options the service supports, a welcome message or anything else that the client can find out before interacting with the server.

Shodan collects data mostly on web servers (HTTP/HTTPS – ports 80, 8080, 443, 8443), as well as FTP (port 21), SSH (port 22), Telnet (port 23), SNMP (port 161), IMAP (ports 143, or (encrypted) 993), SMTP (port 25), SIP (port 5060),[2] and Real Time Streaming Protocol (RTSP, port 554). The latter can be used to access webcams and their video stream.[3]

It was launched in 2009 by computer programmer John Matherly, who, in 2003,[4] conceived the idea of searching devices linked to the Internet.

It looked promising, but I was really pressed for time (having impromptu arrange all care for my mom, and became even more so when I got diagnosed with rectum cancer later that year), so did not pay much attention apart from registering.

Last year in the midst of my chemos I noted [Archive.is] Nate Warfield on Twitter: “https://t.co/16969jRfuL The latest Citrix vulnerability looks bad but there might be time to fix them before PoC comes out. The @shodanhq query above might help. (support.citrix.com/article/CTX269106 has more details)… “ (I think via @jilles_com) , so put it on my list of things to look into a bit further.

Since then, I found out a lot of people dislike Shodan and want to blacklist it because they see it as a threat. It feels like people think the internet is like the [Wayback] Ravenous Bugblatter Beast of Traal | Hitchhikers | Fandom

The Ravenous Bugblatter Beast of Traal is a vicious wild animal from the planet of [Wayback] Traal, known for its never-ending hunger and its mind-boggling stupidity. One of the main features of the Beast is that if you can’t see it, it assumes it can’t see you.

(This by the way is one of the reasons for Towel Day – Wikipedia)

Anyway: a few lists of Shodan IPv4 addresses and hostnames, and means to maintain them for the ones interested:

Reality is that the internet is much smarter, so if you block Shodan from seeing you, others from the internet still will and if you have vulnerable services, one day they will be abused. For instance, this personal anecdote:

I forgot I had a port redirection on my router for RDP access a non longer existing Windows system any more. I forgot that this Windows machine had no fixed DHCP-lease while in use (it kept it’s lease as it was always on).

When that machine was long gone, another temporary Windows machine obtained the same internal machine (the router had been rebooted and after reboot hands out previously handed out IP address), and boom: the new Windows machine was bombarded with RDP logon requests.

In the end, the new Windows machine was not compromised, so I was lucky as it could have been.

Back when registering, shodan.io sent SMTP mail via sky.census.shodan.io, so you might want to not blacklist it if you blacklist at all (incidentally, when writing the IP address  servicing that hostname was hosted in The Netherlands: [Wayback] 80.82.77.33 – sky.census.shodan.io – Netherlands – IP Volume inc – IP address geolocation).

It is good to think of you use Shodan, as not all usage might be legal where you live or where you travel to.

Some discussion in Dutch on the risks of using Shodan are in the above Tweakers.net link. It boils down to:

  • Searching should be OK
  • Accessing the devices found can be totally illegal

That’s basically with anything you find on the internet, for instance by Googling, so nothing new here.

I mainly use Shodan to see if I have any known vulnerabilities exposed. There are not that many ports open, but given the anecdote above, I might screw up again and not be so lucky.

This article has a balanced explanation of Shodan, how you use it, and how to stay safe: [Wayback] How to remove your device from the Shodan IoT search engine.

jeroen

 

Posted in Development, IoT Internet of Things, Network-and-equipment, Power User, Security, Software Development, Web Development | Leave a Comment »

 
%d bloggers like this: