Logging on to Compuserve
————————
In order to create a Ziff Account on CompuServe you need …
1) A Telenet, Tymnet, Or CIS Port
2) A Credit Card
3) Above the IQ of a houseplant

That is all you need, I know for some of you the 3rd one is
tough, but try. Ok, you have all this, call your local port, logon to
CIS, then you should get a [User ID:] Prompt, type [177000,5000], this
is the Ziff PCMagnet User Id. Now, if you entered it correctly, then you
should get the [Password:] Prompt, at This type [Pc*Magnet]. You will
next be givena Welcome Message, then, you will get yet another Prompt. It
should ask you for your Agreement Number, type [Z10D8810]. That is the
end of the prompts. Here’s where the IQ of above a houseplant comes into
play.You now have to think. It will ask you various questions,
ranging from your country to your Social Security number. Answer them
however you want, but I wouldn’t use your real info. If you want the
second password (Needed to access some things), you will have to give an
address where you can drop by and pick it up. Some ideas are sending to
your neighbors,but use your last name, it will end up at your house. That
isn’t the safest thing. Or you can rent a Post Office box for about 6
months. Once you have done all this, and answer the questions, and
read the propoganda, you will see [Entering PCMagnet]. You are done.

So what do I do Now?
——————–
Ok, if you get this far, you have the IQ of above your fern.
You can go one of two places, CIS or PCMagnet (Where you are now).
You can stay in PCMagnet, but there isn’t much there. So, I would
type [Go Cis] This will bring you to Compuserve. Once on CIS, you can do
many thing, ranging from downloading files, to real time chat on forums
to online games.

Project Numbers
—————
Some times I will refer to the word Project Number, that is
the same thing as a User ID. Excluding the digits after the comma. If
you see an ID that is [72311,27] then the that User ID’s Project
Number is[72311]. Simple Eh?

[70000,xxx] – Security Personel or Important Employes
[70003,xxx] – Complementary Account
[70004,xxx] – CompuServe Employe
[70005,xxx] – Radio Shack *Demo* Account. (R Flagged)
[70006,xxx] – Normal Compuserve Employe (Sometimes Wizards)
[70007,xxx] – Complementary Account

[70000,753] – Dan’l, Ghost, or Dan Piskur
[70006,522] – LooLoo, Myrtl, or Patrica Phelps

The [70000] Projects are very interesting accounts, they have
very high powered Flags. (Incedently, a Flag is an option set on
the user account) These accounts have the capability to ‘Hang you up’
from the system. These are the only such account that can do so.
But as you will see, they can make things very difficult without
hanging you up. A non [70000] project can get you ‘Hung up’, they
have to call Customer Service and tell them to Initilize your Port.
Thus hanging you up. But only the [70000] project can suspend your
account. The main person to look out for is [70000,753 - Dan Piskur]
he is the Head of Security. His job is to find you and suspend your
account. He does not hesitate to do this.

The [70006] is also another intersting Project. These
accounts are USUALLY ‘Wizards’ (A Wizard is a user with very high access
Flags) That does not mean all [70006,xxx] are Wizards, but most are.
So if you see the ID [70006,522] that is a very high accessed
Wizard, she usually uses the name [*LooLoo*] she has Sysop Flags on
all forums, where most Sysops only have it on their specific
forum. She also has the job of finding you , but she must report to
Dan’l to get you suspended. But don’t take her for granted, she has
the C Flag, she can stop you from talking, you can function
normally,but you can not talk in whatever Confrence Area she has
/gag’ed you on. (/gag is the Command to stop you from talking) She then
reports the User ID to Dan’l. He suspends you. Case Closed.

Invisable Sysops
—————-
Sysops with the C Flag can make them selves invisable while
in Confrence. But this has one bug in it. If you do a [/ust]
while in Confrence, the Inviso sysop will not appear, but if you
exit [/ex] and do a [ust] at the ! Prompt, they will appear.
Another way is to count the members it say are in CO at the Forum Top
menu [4. Confrencing (9 Participating)] and you go into CO,
and do a ust, count the people, in all channels and Tlk, if there
is an Inviso, there will be one less person when you count the
Ust.Maybe more if there are more Inviso’s.

Glossary
——–

Flags : Specific Options on your account.
-C Flag : Specific Account Option – Gives the use of the
/wi commands at CO. (Syntax [/wi ?])
Free Flag : Specific Account Option – Makes time in a
specific
forum free. (Ususally 70003 and 70007)
-L Flag : Specific Account Option – Locks a your account
out of a forum.
-R Flag : Specific Account Option – Read Only, means that
the account can not write to the system, read
and download only. (See also Radio Shack Demo)
Gag’ed : An account flag, if you have this flag, you can
not speak while you are in CO or CB. You can not
be seen in the User Listing, except by yourself.
A quick test for this flags is Paging yourself.
If you are gag’ed, there are three ways of
getting
rid of this flag, but you have no control over
them
– 1 – Have the Sysop who gag’ed you ungag you.
Only the sysop who gag’ed you can Ungag
you!
– 2 – Wait till 5am, when the system resets and
it will clear the flag. (Useful only on
CB)
– 3 – The best. When everyone leaves the CO you
were in, your flag will automaticly clear.
[Note. When you are gag'ed, you are only gag'ed
in that specific Forum/Co]
Inviso : When a Sysop is Invisable to all others, but
other
sysops. (See also Invisable Sysops)
Project No: The Prefix of the User ID is sometimes called
a Project Number.
Wizard : An Account with capabilites of incredible
capacity.
[Usually 70000 or 70006] (Not always)

Credits
——-
Some of this information was taken from a Phrack File, but
98% of it is mine. So please keep it as it is. I would like to thank
the following people for help.
Rigor Mortis : For his help with Compuserve when I started
out.
Matt E. : (A CIS Forum Sysop) for his explaination of
the
project numbers, and security flags.

Call
—-
P-80 Systems – [304/744-2253]
RipCo – [312/528-5020]

Related posts

• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking on XP (0)
• Hackers Who Break into Computer Systems (0)
• Hackers A-Z (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)
• Hacking password protected site (0)

This file explains the basics of hacking the Bank of America Home Banking
System. The information you can get from this system is great, but there are
limitations. Don’t expect to be able to find a certain persons information,
when hacking on this system you go for anyones account you can find, there is
NO WAY you can find a certain persons account. The reason being, one the person
must have requested to have the Home Banking service. The second being you have
to have that persons last 9 digits on their versatel card. So as you can see
the chances are against you finding a certian person. The uses of this system
are still many if you are a carder. You can get a persons Visa and Master Card
numbers. Once you have these you may card an Item and then pay it off. I will
go into further details following the intro.

Connecting With the System
————————–

To connect with the Bank’s computer call your local Tymnet service and type
the following:

PLEASE ENTER YOUR TERMINAL IDENTIFIER: A
PLEASE LOGIN: HOMEBANKLA
HOMEBANKSF

For a little information about the login, as far as I have done is checked my
area and in California the two biggest closest cities to where I live is
San Francisco & Los Angeles. Which is the ending SF & LA. Listed below are a
FEW of the other abreviations for the other states.
-
Alaska-AN-Anchorage                  :   Maryland-BM-Baltamore
Alabama-MT-Montgomery                :   Maine-PT-Portland
Arkansas-LR-Little Rock              :   Michigan-AA-Ann Arbor
Arizona-PH-Phoenix                   :            BC-Battle Creek
British Columbia-PG-Prince George    :   Minnesota-MN-Minneapolis
Califonia-LA-Los Angeles             :   Missouri-CB-Columbia
SF-San Francisco           :   Mississippi-JK-Jackson
LB-Long Beach              :   Montana-BL-Billings
Colorado-DN-Denver                   :   North Carolina-HP-High Point
Connecticut-BP-Bridgeport            :   North Dakota-GF-Grand Forks
District of Columbia-WA-Washington   :   Nebraska-GI-Grand Island
Delaware-NW-NewarkWilming            :   New Hampshire-CN-Concord
Florida-BR-Boca Raton                :   New Jersey-AC-Atlantic City
Hawaii-HN-Honolulu                   :   New Mexico-AB-Albuquerque
Iowa-DM-Des Moines                   :   Nevada-LV-Las Vegas
Idaho-BO-Boise                       :   New York-DP-Deer Park
Illinois-CH-Chicago                  :   Oklahoma-OC-Oklahoma City
Indiana-FW-Ft. Wayne                 :   Pennsylvania-PI-Pitsburgh
Kansas-KC-Kansas City                :   Texas-DL-Dallas
Kentucky-BG-Bowling Green            :   Virginia-FF-Fairfax
Massachusetts-BT-Boston              :   Washington-SE-Seatle
-

Connection Established
———————-

After you have connected with the system you will get the following prompts:

HOST CONNECTED:
ID#:

The Identification number is a “)” followed by the last nine digits of someones
versatel card. The first two digits in a zone are ALWAYS the same. These first
two digits are like the area codes for a Versatel Card. The easiest way to find
out what the two numbers for your area are is look at your parents or your card.
After you have gotten the first two digits least that lower the nine digit code
down to seven. The ID# is what I have found the hardest to get a hold of. So
once you have that all your troubles are over!

PASSCODE:

This is alot easier to get than the ID# like on most systems that have users
that are not aware of the dangers of having a code that is obvious, this system
also has unskilled people using it. The passwords are VERY easy to guess. The
only thing that makes it a little harder for hacking is they do not echo the
characre is one quick way around that, HALF DUPLEX.

Here are two ID#’s and Passcodes that I have hacked, please use them sparingly
and dont do any major damage.

ID#   :     PASSCODE
)694532344: VERTELL
)692313425: MAXCREDIT

Benifits of B of A Over TRW
—————————

On this system not only can you cedit their credit information after you have
it and card an Item you can scramble their funds around and they will NEVER
know what hit them. The best thing to do is wait for three days after you have
carded the item, then call the system and pay the item off and then trnasfer
their funds from their checking to their Credit Card and vise versa and then
go into the savings and throw that money were ever. It works great because
after they get everything straight agian they will notice some money gone,
blame it on the bank and never think of out side “help”.

Main Menu Commands
——————

Here is what you can expect to find once you login to the system:

COMMAND LIST
————
1-MAIN MENU
2-PAY BILLS
3-TRANSFER FUNDS
4-BALANCE INQUIRY
5-REVIEW OR CANCLE
6-ELECTRONIC STATEMENT
7-ELECTRONIC MAIL
8-LOG OFF

The Following commands can be entered at any “?” prompt and do the following:

?-COMMAND LIST
Q-RETURN TO THE MAIN MENU
B-BEGIN FUNCTION AGIAN
P-NEXT PAGE

DOWNLOADED FROM P-80 SYSTEMS……

Related posts

• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking on XP (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers A-Z (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Telnet: the Number One Hacker Tool (0)
• How to Repair a Slow Computer? (0)

Concerning Hackers Who Break into Computer Systems

Dorothy E. Denning
Digital Equipment Corp., Systems Research Center
130 Lytton Ave., Palo Alto, CA 94301
415-853-2252, denning@src.dec.com

Abstract

A diffuse group of people often called “hackers” has been
characterized as unethical, irresponsible, and a serious danger to
society for actions related to breaking into computer systems.  This
paper attempts to construct a picture of hackers, their concerns,
and the discourse in which hacking takes place.  My initial findings
suggest that hackers are learners and explorers who want to help
rather than cause damage, and who often have very high standards
of behavior.  My findings also suggest that the discourse surrounding
hacking belongs at the very least to the gray areas between larger
conflicts that we are experiencing at every level of society and
business in an information age where many are not computer literate.
These conflicts are between the idea that information cannot be owned
and the idea that it can, and between law enforcement and the First
and Fourth Amendments.  Hackers have raised serious issues about
values and practices in an information society.  Based on my findings,
I recommend that we work closely with hackers, and suggest several
actions that might be taken.

1.  Introduction

The world is crisscrossed with many different networks that are used
to deliver essential services and basic necessities — electric power,
water, fuel, food, goods, to name a few.  These networks are all
publicly accessible and hence vulnerable to attacks, and yet virtually
no attacks or disruptions actually occur.

The world of computer networking seems to be an anomaly in the
firmament of networks.  Stories about attacks, breakins, disruptions,
theft of information, modification of files, and the like appear
frequently in the newspapers.  A diffuse group called “hackers”
is often the target of scorn and blame for these actions.  Why are
computer networks any different from other vulnerable public networks?
Is the difference the result of growing pains in a young field?
Or is it the reflection of deeper tensions in our emerging information
society?

There are no easy or immediate answers to these questions.  Yet it
is important to our future in a networked, information-dependent
world that we come to grips with them.  I am deeply interested in
them.  This paper is my report of what I have discovered in the early
stages of what promises to be a longer investigation.  I have
concentrated my attention in these early stages on the hackers
themselves.  Who are they?  What do they say?  What motivates them?
What are their values?  What do that have to say about public policies
regarding information and computers?  What do they have to say about
computer security?

From such a profile I expect to be able to construct a picture of
the discourses in which hacking takes place.  By a discourse I mean
the invisible background of assumptions that transcends individuals
and governs our ways of thinking, speaking, and acting.  My initial
findings lead me to conclude that this discourse belongs at the very
least to the gray areas between larger conflicts that we are
experiencing at every level of society and business, the conflict
between the idea that information cannot be owned and the idea that
it can, and the conflict between law enforcement and the First and
Fourth Amendments.

But, enough of the philosophy.  On with the story!

2.  Opening Moves

In late fall of 1989, Frank Drake (not his real name), Editor of
the now defunct cyberpunk magazine W.O.R.M., invited me to be
interviewed for the magazine.  In accepting the invitation, I hoped
that something I might say would discourage hackers from breaking
into systems.  I was also curious about the hacker culture.  This
seemed like a good opportunity to learn about it.

The interview was conducted electronically.  I quickly discovered
that I had much more to learn from Drake’s questions than to teach.
For example, he asked: “Is providing computer security for large
databases that collect information on us a real service?  How do
you balance the individual’s privacy vs. the corporations?”  This
question surprised me.  Nothing that I had read about hackers ever
suggested that they might care about privacy.  He also asked: “What
has [the DES] taught us about what the government’s (especially NSA’s)
role in cryptography should be?”  Again, I was surprised to discover
a concern for the role of the government in computer security.  I
did not know at the time that I would later discover considerable
overlap in the issues discussed by hackers and those of other computer
professionals.

I met with Drake to discuss his questions and views.  After our
meeting, we continued our dialog electronically with me interviewing
him.  This gave me the opportunity to explore his views in greater
depth.  Both interviews appear in “Computers Under Attack,”
edited by Peter Denning [DenningP90].

My dialog with Drake increased my curiosity about hackers.  I read
articles and books by or about hackers.  In addition, I had discussions
with nine hackers whom I will not mention by name.  Their ages ranged
from 17 to 28.

The word “hacker” has taken on many different meanings ranging
from 1) “a person who enjoys learning the details of computer systems
and how to stretch their capabilities” to 2) “a malicious or
inquisitive meddler who tries to discover information by poking around
.. possibly by deceptive or illegal means …” [Steele83]  The
hackers described in this paper satisfy both of these definitions,
although all of the hackers I spoke with said they did not engage
in or approve of malicious acts that damage systems or files.  Thus,
this paper is not about malicious hackers.  Indeed, my research so
far suggests that there are very few malicious hackers.   Neither
is this paper about career criminals who, for example, defraud
businesses, or about people who use stolen credit cards to purchase
goods.  The characteristics of many of the hackers I am writing about
are summed up in the words of one of the hackers: “A hacker is someone
that experiments with systems… [Hacking] is playing with systems
and making them do what they were never intended to do.  Breaking
in and making free calls is just a small part of that.  Hacking is
also about freedom of speech and free access to information — being
able to find out anything.  There is also the David and Goliath side
of it, the underdog vs. the system, and the ethic of being a folk
hero, albeit a minor one.”

Richard Stallman, founder of the Free Software Foundation who calls
himself a hacker according to the first sense of the word above,
recommends calling security-breaking hackers “crackers”
[Stallman84].  While this description may be more accurate, I shall
use the term “hacker” since the people I am writing about call
themselves hackers and all are interested in learning about computer
and communication systems.  However, there are many people like
Stallman who call themselves hackers and do not engage in illegal
or deceptive practices; this paper is also not about those hackers.

In what follows I will report on what I have learned about hackers
from hackers.  I will organize the discussion around the principal
domains of concerns I observed.  I recommend Meyer’s thesis [Meyer89]
for a more detailed treatment of the hackers’ social culture and
networks, and Meyer and Thomas [MeyerThomas90] for an interesting
interpretation of the computer underground as a postmodernist rejection
of conventional culture that substitutes “rational technological
control of the present for an anarchic and playful future.”

I do not pretend to know all the concerns that hackers have, nor
do I claim to have conducted a scientific study.  Rather, I hope
that my own informal study motivates others to explore the area
further.  It is essential that we as computer security professionals
take into account hackers’ concerns in the design of our policies,
procedures, laws regulating computer and information access, and
educational programs.  Although I speak about security-breaking hackers
as a group, their competencies, actions, and views are not all the
same.  Thus, it is equally important that our policies and programs
take into account individual differences.

In focusing on what hackers say and do, I do not mean for a moment
to set aside the concerns of the owners and users of systems that
hackers break into, the concerns of law enforcement personnel, or
our own concerns as computer security professionals.  But I do
recommend that we work closely with hackers as well as these other
groups to design new approaches and programs for addressing the
concerns of all.   Like ham radio operators, hackers exist, and it
is in our best interest that we learn to communicate and work with
them rather than against them.

I will suggest some actions that we might consider taking, and I
invite others to reflect on these and suggest their own.  Many of
these suggestions are from the hackers themselves; others came from
the recommendations of the ACM Panel on Hacking [Lee86] and from
colleagues.

I grouped the hackers’ concerns into five categories: access to
computers and information for learning; thrill, excitement and
challenge; ethics and avoiding damage; public image and treatment;
and privacy and first amendment rights.  These are discussed in
the next five subsections.  I have made an effort to present my
findings as uncritical observations.  The reader should not infer
that I either approve or disapprove of actions hackers take.

3.  Access to Computers and Information for Learning

Although Levy’s book “Hackers” [Levy84] is not about today’s
security-breaking hackers, it articulates and interprets a “hacker
ethic” that is shared by many of these hackers.  The ethic includes
two key principles that were formulated in the early days of the
AI Lab at MIT: “Access to computers — and anything which might
teach you something about the way the world works — should be
unlimited and total,” and “All information should be free.”  In
the context in which these principles were formulated, the computers
of interest were research machines and the information was software
and systems information.

Since Stallman is a leading advocate of open systems and freedom
of information, especially software, I asked him what he means by
this.  He said: “I believe that all generally useful information
should be free. By `free’ I am not referring to price, but rather
to the freedom to copy the information and to adapt it to one’s own
uses.”  By “generally useful” he does not include confidential
information about individuals or credit card information, for example.
He further writes: “When information is generally useful,
redistributing it makes humanity wealthier no matter who is
distributing and no matter who is receiving.”  Stallman has argued
strongly against user interface copyright, claiming that it does
not serve the users or promote the evolutionary process [Stallman90].

I asked hackers whether all systems should be accessible and all
information should be free.  They said that it is OK if some systems
are closed and some information, mainly confidential information
about individuals, is not accessible.  They make a distinction between
information about security technology, e.g., the DES, and confidential
information protected by that technology, arguing that it is the
former that should be accessible.   They said that information hoarding
is inefficient and slows down evolution of technology.  They also
said that more systems should be open so that idle resources are
not wasted.  One hacker said that the high costs of communication
hurts the growth of the information economy.

These views of information sharing seem to go back at least as far
as the 17th and 18th Centuries.  Samuelson [Samuelson89] notes that
“The drafters of the Constitution, educated in the Enlightenment
tradition, shared that era’s legacy of faith in the enabling powers
of knowledge for society as well as the individual.”  She writes
that our current copyright laws, which protect the expression of
information, but not the information itself, are based on the belief
that unfettered and widespread dissemination of information promotes
technological progress. (Similarly for patent laws which protect
devices and processes, not the information about them.)  She cites
two recent court cases where courts reversed the historical trend
and treated information as ownable property.  She raises questions
about whether in entering the Information Age where information is
the source of greatest wealth, we have outgrown the Enlightenment
tradition and are coming to treat information as property.

In a society where knowledge is said to be power, Drake expressed
particular concern about what he sees as a growing information gap
between the rich and poor.  He would like to see information that
is not about individuals be made public, although it could still
be owned.  He likes to think that companies would actually find it
to their advantage to share information.  He noted how IBM’s disclosure
of the PC allowed developers to make more products for the computers,
and how Adobe’s disclosure of their fonts helped them compete against
the Apple-Microsoft deal.  He recognizes that in our current political
framework, it is difficult to make all information public, because
complicated structures have been built on top of an assumption that
certain information will be kept secret.  He cites our defense policy,
which is founded on secrecy for military information, as an example.

Hackers say they want access to information and computing and network
resources in order to learn.  Both Levy [Levy84] and Landreth
[Landreth89] note that hackers have an intense, compelling interest
in computers and learning, and many go into computers as a profession.
Some hackers break into systems in order to learn more about how
the systems work.  Landreth says these hackers want to remain
undiscovered so that they can stay on the system as long as possible.
Some of them devote most of their time to learning how to break the
locks and other security mechanisms on systems; their background
in systems and programming varies considerably.  One hacker wrote
“A hacker sees a security hole and takes advantage of it because
it is there, not to destroy information or steal.  I think our
activities would be analogous to someone discovering methods of
acquiring information in a library and becoming excited and perhaps
engrossed.”

We should not underestimate the effectiveness of the networks in
which hackers learn their craft.  They do research, learn about
systems, work in groups, write, and teach others.  One hacker said
that he belongs to a study group with the mission of churning out
files of information and learning as much as possible.  Within the
group, people specialize, collaborate on research project, share
information and news, write articles, and teach other about their
areas of specialization.  Hackers have set up a private system of
education that engages them, teaches them to think, and allows them
to apply their knowledge in purposeful, if not always legal,
activity.   Ironically, many of our nation’s classrooms have been
criticized for providing a poor learning environment that seems to
emphasize memorization rather than thinking and reasoning.  One hacker
reported that through volunteer work with a local high school, he
was trying to get students turned on to learning.

Many hackers say that the legitimate computer access they have through
their home and school computers do not meet their needs.  One student
told me that his high school did not offer anything beyond elementary
courses in BASIC and PASCAL, and that he was bored by these.  Hans
Huebner, a hacker in Germany who goes by the name Pengo, wrote in
a note to the RISKS Forum [Huebner89] : “I was just interested in
computers, not in the data which has been kept on their disks. As
I was going to school at that time, I didn’t even have the money
to buy [my] own computer.  Since CP/M (which was the most sophisticated
OS I could use on machines which I had legal access to) didn’t turn
me on anymore, I enjoyed the lax security of the systems I had access
to by using X.25 networks.  You might point out that I should have
been patient and wait[ed] until I could go to the university and
use their machines.  Some of you might understand that waiting was
just not the thing I was keen on in those days.”

Brian Harvey, in his position paper [Harvey86] for the ACM Panel on
Hacking, claims that the computer medium available to students, e.g.,
BASIC and floppy disks, is inadequate for challenging intellectual
work.  His recommendation is that students be given access to real
computing power, and that they be taught how to use that power
responsibly.  He describes a program he created at a public high school
in Massachusetts during the period 1979-1982.  They installed a
PDP-11/70 and let students and teachers carry out the administration
of the system.  Harvey assessed that putting the burden of dealing
with the problems of malicious users on the students themselves was
a powerful educational force.  He also noted that the students who
had the skill and interest to be password hackers were discouraged
from this activity because they also wanted to keep the trust of
their colleagues in order that they could acquire “superuser” status
on the system.

Harvey also makes an interesting analogy between teaching computing
and teaching karate.  In karate instruction, students are introduced
to the real, adult community.  They are given access to a powerful,
deadly weapon, and at the same time are taught discipline and to
not abuse the art.  Harvey speculates that the reason that students
do not misuse their power is that they know they are being trusted
with something important, and they want to live up to that trust.
Harvey applied this principle when he set up the school system.

The ACM panel endorsed Harvey’s recommendation, proposing a
three-tiered computing environment with local, district-wide, and
nation-wide networks.  They recommended that computer professionals
participate in this effort as mentors and role models.   They also
recommended that outside of schools, government and industry be
encouraged to establish regional computing centers using donated
or re-cycled equipment; that students be apprenticed to local companies
either part-time on a continuing basis or on a periodic basis; and,
following a suggestion from Felsenstein [Felsenstein86] for a
“Hacker’s League,” that a league analogous to the Amateur Radio
Relay League be established to make contributed resources available
for educational purposes.

Related posts

• Telnet: the Number One Hacker Tool (0)
• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking on XP (0)
• Hacking Bank Of America’s Home Banking System (0)
• Hackers Who Break into Computer Systems (0)
• Hack Passwords (0)
• What To Look For In A Code Hacking Program (0)
• Hacking password protected site (0)

Note: All images are hosted with ImageShack.

• This guide will allow you to sucsessfully install Service Pack 2 on the original (gold) code of Microsoft Windows XP.
• The version of Windows you have purchased/downloaded does not matter as far as slipstreaming (they’re all the same anyway).

Things you need:
• Microsoft Windows XP (duh )
• Service Pack 2:

URL http://download.microsoft.com/download/1/6/5/165b076b-aaa9-443d-84f0-73cf11fdcdf8/WindowsXP-KB835935-SP2-ENU.exe

• Windows XP Boot sector:

http://www.neowin.net/downloads/xpboot.bin

• Nero Burning Rom (find it on SoD)

Step One

Insert the Microsoft Windows XP CD into your CD-ROM drive, and create a new folder on your hard-drive labelled “CD”.

Copy all of the files from the Windows XP CD to the “CD” folder.

Step Two

Download Service Pack 2 and place it within the root of your hard-drive.
Ex: C:\ D:\ etc..

Step Three

Go to Start -> Run and type in “F:\WindowsXP-KB835935-SP2-ENU.exe -s:F:\CD” (depending on where you put the folder)

The actual command is -s:drive:\folder

Step Four

The Service Pack 2 updater will automatically slipstream Service Pack 2 into your “CD” folder.

Step Five

If you browse back to the CD folder, you’ll notice that new folders and files appeared from the SP2 update. At this point, you can include any software you wish onto this CD, but make sure that the size of the folder does not exceed the media you are burning on. If you’re not sure, a regular CD is 700 megabytes.

Step Six

Go to Start and Search for files and folders. Go to all files and folders, and type in “wpa.dbl”. This is the activation file for your current installed version of XP. Make a copy of the file and paste it into your CD folder.

Step Seven

Open up Nero Smartstart, and click on the icon that looks like two people. This turns the program into “professional mode”. Search for create a bootable CD. Click on it, and make sure that your settings agree with the following picture; also make sure that you downloaded the Windows XP boot sector.

Step Eight

Continue onto the next tab, and make sure that your settings agree with the picture:

Step Nine

In this step, you can label your CD whatever the hell you want. I recommend WXPSP2_EN.

Step Ten

Go to “new” and locate your CD folder. Drag all of the files in the CD folder to the compilation window on the right, and nero will calculate how much disk space was used. If it exceeds 700 MB, get rid of some programs that you added to the CD. If you didn’t add anything; just push burn.

Step Eleven

Make sure that your settings check with the picture:

Step Twelve

Just push burn, and that’s it! Congradulations, you just made a bootable Win XP CD with SP2 slipstreamed!

Related posts

• Guide to Obtaining An IP Address (0)
• Guide to IIS Exploitation (0)
• A Basic Guide to the Internet (0)

/invite [buddys name] sends invitation request

/tell [user] [message] private messages a friend

/follow [user] follows a friend

/stopfollow [user] stop following someone

/stopfollow [yourname] to stop them from following you

/goto [user] enters the room the user is in

/away [off] turn your private messages back on

/think [message] (type this to think what you want

/ignore [list] list everyone who you are ignoring

/ignore add [user] add someone to your ignoring list

/ignore [add all] ignores everything going on

Related posts

• No related posts.

What is a Proxy Server?
A proxy server is a kind of buffer between your computer and the Internet resources you are accessing. The data you request come to the proxy first, and only then it transmits the data to you. I know many are looking for IP Maskers or Scramblers, but honestly, it aint real easy for the simple fact that any website that you visit needs your IP to send the info packets too. If its scrambled, you will get alot of errors and crazy redirects My solution? Read on……….. for a good list of Proxy servers try here>> http://www.multiproxy.org/

Why do I need to use proxy servers?
Transfer speed improvement. Proxy servers accumulate and save files that are most often requested by thousands of Internet users in a special database, called “cache”. Therefore, proxy servers are able to increase the speed of your connection to the Internet. The cache of a proxy server may already contain information you need by the time of your request, making it possible for the proxy to deliver it immediately.
Security and privacy. Anonymous proxy servers that hide your IP address thereby saving you from vulnerabilities concerned with it.
Sometimes you may encounter problems while accessing to web server when server administrator restricted access from your IP or even from wide IP range (for example restricting access from certain countries or geographical regions). So you try to access those pages using an anonymous proxy server.

What is a public proxy server?
It is a proxy server which is free and open for everybody on the Internet. Unfortunately most of them are not anonymous.
Free service trying to provide list of public HTTP proxy servers. Usually provide small list of proxies with low percent of functioning servers due to hosting restrictions on CPU time (they simply can’t allow themselves to check many proxies every second especially in parallel).

The Solution?
When using an anonymous proxy server you don’t give a anybody chance to find out your IP address to use it in their own interests. If there is a need to make an (inner) proxy connect to the outside world via another (outer) proxy server, you can use the same environment variables as are used to redirect clients to the proxy to make inner proxy use the outer one:
http_proxy
ftp_proxy
gopher_proxy
wais_proxy
E.g. your (inner) proxy server’s startup script could look like this:
#!/bin/sh
http_proxy=http://outer.proxy.server:8082/
export http_proxy
/usr/etc/httpd -r /etc/inner-proxy.conf -p 8081

This is a little ugly, so there are also the following directives in the configuration file:
http_proxy http://outer.proxy.server/
ftp_proxy http://outer.proxy.server/
gopher_proxy http://outer.proxy.server/
wais_proxy http://outer.proxy.server/

Related posts

• Anonymity of Proxy, Anonymity Of Proxy learn it insideout (0)

1. Getting your IP range – Getting information about your IP range is not difficult, I recommend using Neo Trace on your own IP. But for my test just look at your IP address, say it’s 24.193.110.13 you can definitely use the IP’s found between 24.193.110.1 < [new IP] < 24.193.110.255, don’t use x.x.x.1 or x.x.x.255. To find your IP simply open a dos/command prompt window and type ipconfig at the prompt, look for “IP Address. . . . . . . . . . . . : x.x.x.x”.

2. Subnet Mask, Default Gateway, DHCP Server – These are very easy to find, just open a dos/command prompt window and type ‘ipconfig /all’ without the ‘ ‘. You should see something like this:

Windows IP Configuration:

Host Name . . . . . . . . . . . . . . : My Computer Name Here
Primary Dns Suffix . . . . . . . . . :
Node Type . . . . . . . . . . . . . . .: Unknown
IP Routing Enabled. . . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . . . . . . .: xxxx.xx.x
Description . . . . . . . . . . . . . . . . . . . . : NETGEAR FA310TX Fast Ethernet Adapter (NGRPCI)
Physical Address. . . . . . . . . . . . . . . . . : XX-XX-XX-XX-XX-XX
Dhcp Enabled. . . . . . . . . . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . . . . . . : Yes
IP Address. . . . . . . . . . . . . . . . . . . . . : 24.xxx.xxx.xx
Subnet Mask . . . . . . . . . . . . . . . . . . . .: 255.255.240.0
Default Gateway . . . . . . . . . . . . . . . . . : 24.xxx.xxx.x
DHCP Server . . . . . . . . . . . . . . . . . . . .: 24.xx.xxx.xx
DNS Servers . . . . . . . . . . . . . . . . . . . . : 24.xx.xxx.xxx
24.xx.xxx.xx
24.xx.xxx.xxx
Lease Obtained. . . . . . . . . . . . . . . . . . .:Monday, January 20, 2003 4:44:08 PM
Lease Expires . . . . . . . . . . . . . . . . . . . .:Tuesday, January 21, 2003 3:43:16 AM

This is all the information you will need for now, I suggest you either keep your dos/command prompt window open or copy & paste the information somewhere, to copy right click the window and select text and click once.

III. Changing your IP Address

To change your IP address first pick any IP you like out of your IP range and remember it or write it down. It is usualy a good idea to make sure the IP is dead (except for what we are going to do later on) so just ping it via “ping x.x.x.x” and if it times out then you can use it. Now go to My Computer, then Control Panel. In Control Panel select Network Connections and pick your active connection, probably Local Area Connection or your ISP name. Open that connection by double clicking on the icon in Network Connections, then select Properties under the General Tab. In the new window that pops up select Internet Protocol (TCP/IP) and click properties, it’s under the general tab. In this new window select the General tab and choose “Use the following IP address” and for the IP address enter the IP you would like to use (the one you picked from your subnet earlier) and for the Subnet Mask enter the subnet mask you got when your ran ipconfig /all, same goes for the Default Gateway. Now select “Use the following DNS server addresses” and enter the information you got earlier. Now just click OK. Test that it worked, try to refresh a website and if it works you know everything is okay and you are connected. To make sure the change worked type ipconfig again and the IP address should have changed to your new one.

IV. DDoS & DoS Protection

If your firewall shows that you are being DDoSed, this is usually when you are constantly getting attempted UDP connections several times a second from either the same IP address or multiple IP addresses (DDoS), you can protect your self by changing your IP address via the method I described above.

V. Web servers & Other Services

If you know someone on your IP range is running a web server and he or she has pissed you off or you just like messing around you can “steal” their IP address so any DNS going to that IP will show your site instead because you would be running a web server yourself.

To “steal” an IP is to basically use the changing IP address method above and picking an IP that someone that is running a web server has in use. Often you will be able to keep that IP at least for some time, other times you wont be able to use it so just keep trying until it works. You your self will need to have a web server on the same port with your message. You can do this with other services too. You can also DoS or DDoS the IP address you are trying to steal to kick him off the net, but I don’t recommend as its pretty illegal, an your ISP will get pissed

Related posts

• Change Your Ip In Less Then 1 Minute (0)

Removing Items

A lot of programs you install will add themselves to the right-click menu of your files and/or folders. And most times, you have no choice in the matter and, as a result, your right-click menu can get very long with added items you don’t even use. The last person I was helping with this had a right context menu so long that the Rename option was no longer visible!

Fortunately, you can easily remove those unwanted menu items, if you know the registry values to edit. And it’s not at all difficult once you know the keys responsible for the additions.

For Files, the secret lies in the “context menu handlers” under the shellex subkey for “All Files” which, in the registry, is nothing but an asterisk – like a dos wildcard, which means the values entered apply to all files. It is at the very top of the Root key, right here:

HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers

Click the the + sign next to the ContextMenuHandlers key, to expand it.
Now you will see some of the programs that have added items to your right-click menu. Simply delete the program keys you don’t want.
Yup! It’s that simple. If deleting makes you uneasy, just export the key before deleting it. Or, instead of deleting the values, disable them. Simply double click the default value for the program on the right hand pane and rename the clsid value by placing a period or dash in front of it.

ie; – {b5eedee0-c06e-11cf-8c56-444553540000}

Then exit the registry, refresh, and right click a file to see if the item was removed from the menu.
Some programs – like WinZip or WinRar – will add several items to your right click menu but all of them will be removed by deleting or disabling their one context menu handler.

Note that the above key only applies to the right click menu of files.
To remove entries from the right click context menu of folders, you need to navigate to the Folder and Drive keys:

HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers
HKEY_CLASSES_ROOT\Drive\shellex\ContextMenuHandlers

All you have to do is follow the same procedure as for Files – either disable or delete items you wish to remove.

Adding Items

Adding Items to the right click menu of Files and Folders is also fairly simple using the Registry. It just involves the creation of a few new keys for each item you wish to add. You edit the same keys used for removing items. Let’s use Notepad as an example of an item you’d like to add to the right click menu of all your files or folders.

For folders, go to this key:

HKEY_CLASSES_ROOT\Folder

Click the + sign next to Folder and expand it so that the Shell key is visible. Right click the Shell key and choose New>Key and name the key Notepad or whatever else you’d prefer (whatever the key is named is what will appear in the right-click menu). Now right click the new key you made and create another key named Command. Then, in the right hand pane, double click “Default” and enter Notepad.exe as the value.
Exit the registry, refresh, and right click any folder. Notepad should now be on the context menu.

For files, go here again:

HKEY_CLASSES_ROOT\*

Expand the * key and see if a Shell key exists. If it does exist, follow the same procedure as for folders. If it does not exist, you’ll have to create a new Shell first. Just right click the * key and choose New>Key and name it Shell. Then right click the Shell key and continue on the same way you did for adding items to the right click menu of folders.

Once done, Notepad should appear as an option in the right click menu of all your files.

Vic Ferri owns the very popular WinTips and Tricks <http://groups.yahoo.com/group/WinTips-Tricks> email group. He is also in charge of the Printing Tips <http://personal-computer-tutor.com/printing.htm> and Registry Tips <http://personal-computer-tutor.com/abc1/v4/vic4.htm> pages at Linda’s Computer Stop.

Related posts

• No related posts.

[I Want to Start at the Start]

[I Want to Go Straight to Hacking]

INTRODUCTION:

A little background is needed before we get into hacking techniques.

When we talk about ‘Hacking’, we are talking about getting some access on a server we shouldn’t have. Servers are set up so that many people can use them. These people each have different ‘accounts’ on the server – like different directories that belong just to them. If Fred has an account with the froggy.com.au ISP (Internet Service Provider), he will be given:

(1) a login name, which is like the name of your directory; and
(2) a password, which lets you get access to that directory.

This login name and password will usually give you access to all of Fred’s services – his mail, news services and web pages. There is also the ‘root’ account, which has it’s own login and password. This gives super-user access to the entire server. We will focus on ‘getting root’, in this help file.

[Ok, I want to move to the 'anatomy of the hack']

[I know all this, let me move straight to hacking]

[I don't have a clue what you're on about, let me read some backgroundon this so called "Internet" you keep referring to <http://www.cyberarmy.com/tute/htext1.shtml>]

THE ANATOMY OF THE ‘HACK’:

There are two main ways to break into a system. Think of a server as a Swiss Bank Vault. There are two main ways to get in. You can try to get in by finding the combination of the vault. This is like finding the password. It’s how you are meant to get in. The second way is by using dynamite. You forget all about the ‘proper’ way to get in. This is like using ‘exploits’, or weaknesses in the servers operating system to gain access.

[Ok, Let's Go. Tell Me About Not Getting Caught]

[Stuff it, I know how to not get caught, on to the techniques!]

‘DON’T GET CAUGHT’:

Hacking is illegal, and it is very easy to trace you if froggy.com.au realizes you hacked them. Wherever you go,
your IP number (your computer’s unique identification) is left and often logged. Solutions:

1. When you set up your account with an ISP, give a false name and address.

[Nah, I can't be bothered, what other things can I do?]

[Ok, I used this trick. What else can I do?]

[Stuff it, I know how to not get caught, on to the techniques!]

DON’T GET CAUGHT’:

2. Hack using a filched account (stolen password, etc.). A tool called Dripper <http://www.cyberarmy.com/files/dripper.zip> can steal passwords for you from public net cafes and libraries.

[Nah, just tell me something easy I can do right now]

[Ok, done. Anything else I should do?]

DON’T GET CAUGHT’:

3. Port your connection through something else.

An easy way to do this is to change your proxy settings. By using the proxy settings meant for a different ISP, it can look like you are surfing from wherever that ISP is. A list of proxies you can use is here <http://www.cyberarmy.com/lists/proxy>.

You should also do any important info gathering through the IP Jamming Applet on the Cyberarmy.Com <http://www.cyberarmy.com> to hide your IP.

If you want super anonymity, you should be surfing in an account you set up under a false name, with your proxy settings changed, and also surfing through the IP Jamming applet! Be aware that some ISPs could use Caller ID to test the number of someone logging on. Dial the relevant code to disable Caller ID before calling your ISP.

[I don't understand about the proxy settings thing, let me read more <http://www.cyberarmy.com/tute/htext3.shtml>]

[Ok, I am wired for hyper stealth... Now, I want to HACK!]

INFO GATHERING:

To start off, you will probably need to gather information about www.froggy.com.au using internet tools.

[Ok, how?]

[Give me some reading to do about info gathering <http://www.cyberarmy.com/tute/htext2.shtml>]

[No, I've already got all the info, just tell me what to do]

DIRT DIGGING STAGE:

We are now taking the first steps of any hack… Info Gathering.

You should be set up for stealth mode. Get a notepad, and open a new browser window (through the IP Jammer). Bring the www.froggy.com.au ’s web page up in the IP Jammer’s window. You can load the IP Jamming applet on the Cyberarmy.Com <http://www.cyberarmy.com>.

[Ok, What Now?]

CASE THE JOINT:

1. First, check out the site. Take down any email addresses, copy down the HTML of important pages.

[Done... What Else?]

THE OLD BOUNCING MAIL TRICK:

2. Send a mail that will bounce to the site. If the site is www.froggy.com.au , send a mail to blahblahblah@froggy.com.au . It will bounce back to you and give you information in its header.

Copy the information from the headers down.

(To maintain anonymity, it might be a good idea to send and receive the mail from a free web based provider, such as hotmail.com. Use full stealth features when sending the bouncing mail. This will protect you when they check through the logs after they are hacked.)

[Done... What Else?]

Related posts

• Telnet: the Number One Hacker Tool (0)
• What To Look For In A Code Hacking Program (0)
• Telnet trick port 25 (0)
• How to use the Web to look up information on hacking (0)
• How to learn to hack in easy steps (0)
• Hacking Password Protected Website’s By Pinglocalhost (0)
• Hacking password protected site (0)
• Hacking on XP (0)
• Hacking For Newbies (0)
• Hacking for Dummies Volume 2 (0)

telnet whois.internic.net 43

It gives a blank page. Type in the domain name you want to check and hit enter. Voila! You get something like this:

Whois Server Version 1.3

Domain names in the .com and .net domains can now be registered with many different competing registrars. Go to http://www.internic.net for detailed information.

Domain Name: TECHBROKER.COM
Registrar: NETWORK SOLUTIONS, INC.
Whois Server: whois.networksolutions.com
Referral URL: http://www.networksolutions.com
Name Server: DNS1.WURLD.NET
Name Server: DNS2.WURLD.NET
Status: ACTIVE
Updated Date: 11-dec-2002
Creation Date: 13-feb-1996
Expiration Date: 14-feb-2006

>>> Last update of whois database: Fri, 14 Nov 2003 07:28:09 EST <<<

NOTICE: The expiration date displayed in this record is the date the registrar’s sponsorship of the domain name registration in the registry is currently set to expire. This date does not necessarily reflect the expiration date of the domain name registrant’s agreement with the sponsoring registrar. Users may consult the sponsoring registrar’s Whois database to view the registrar’s reported date of expiration for this registration.

Related posts

• Telnet: the Number One Hacker Tool (0)
• Hacking in telnet ftp (0)