nmap fingerprint scan thinks there is a Linux OS inside the D Series:
root# nmap -O v 192.168.1.68
Starting Nmap 5.51 ( http://nmap.org
) at 2011-05-05 21:25 IST
Failed to resolve given hostname/IP: v. Note that you can't use '/mask' AND '1-4,7,100-' style IP ranges
Nmap scan report for 192.168.1.68
Host is up (0.0072s latency).
Not shown: 999 closed ports
PORT STATE SERVICE
50000/tcp open ibm-db2
Device type: general purpose
Running: Linux 2.6.X
OS details: Linux 2.6.13 - 2.6.31
Network Distance: 0 hops
OS detection performed. Please report any incorrect results at http://nmap.org/submit/
Nmap done: 1 IP address (1 host up) scanned in 11.19 seconds
I tried to telnet in to port 50000, but the connection got dropped when I typed "?" or "help", I guess the iphone remote uses this port to control the TV, not sure how useful sniffing this is.
Looked at the 1007.2 software update USB files, there is a big fat file in the update (exe.img.sec) which starts off with "Salted__" so this is encrypted.
Has anyone made any progress on decrypting the system images? How were the Samsung A/B/C version keys obtained?
I can put the TV into service mode (TV off, hit INFO MENU MUTE POWER keys in this order.) And here it's possible to change the serial port (RS232) from UART to either logic or debug modes. Does anyone have any idea on how to physically access the serial port, as the 3.5mm jacks are labled up as audio & video?
It's also possible in the service mode to clone the TV to USB, switch to hotel mode and other stuff, which all looks similar to the earlier models.
Very much feel like I'm digging in the dark here, any ideas gratefully received!