==Phrack Magazine== Volume Five, Issue Forty-Five, File 1 of 28 Issue 45 Index ___________________ P H R A C K 4 5 March 30, 1994 ___________________ ~ Dedicated to CRS--(1969-1994) ~ Well kiddies, it's Easter time again. Easter has got to be one of my favorite holidays of the bunch. No, no, no...not for any of that spiritual rebirth or religious hooey. Easter brings with it two of the most joyous items in the world: Reese's Peanut Butter Eggs and Marshmallow Peeps. In the past two weeks I have eaten my body weight many times over in peanut butter eggs. I don't know what it is about those damn things, but I just can't stop eating them. And the Peeps? Oh man, if you haven't put a Marshmallow Peep in the microwave, you just haven't lived. The cute little yellow duckie takes on whole new dimensions as it becomes superheated in the nuclear nightmare of a conventional microwave oven. It becomes like a scene from Akira as the Peep grows at an alarming rate, almost filling up the entire oven with its grossly mutated form. You can almost hear it squealing with agony. Go do it right now, and then finish reading this issue. The net has been more fun the past few months than a barrel full of monkeys, (or a hottub full of co-eds, pick your own comparison). In the time since last issue I have been the subject of a lot of attention. I've been pseudo-framed for hacking a handful of sites with fake syslog messages, I've been spoofed as the source of a pre-release CERT advisory, I've been mentioned in numerous altered motd files on many systems, and even better, spoofed messages from "erikb@mindvox.phantom.com" were posted to a homosexual listserv announcing my supposed "exit from the closet." Well, unfortunately for everyone, including the hundreds of hopeful gay respondents to the forged post, I only like women. But it sure is nice to know that even men are into me. What an ego boost. Seriously though, one has to wonder how the forgers knew that something called queernet.org even existed. I think I get around on the net, but I'd never heard of it. Have you? Perhaps the Posse are 'closer' than we thought. And the abuse continues. God knows why. The common thread seems to be: "Erikb is a nark." Let's look at that logic, shall we? If Erikb is a nark, then he would be on some terms with law enforcement. If he were on some terms with law enforcement, then he would have no qualms about handing over names of people doing bad things. If had no qualms about handing over names of people doing bad things, then law enforcement would open cases based on that information. If law enforcement opened cases based on that information, then people would get raided. If people would get raided, then people would almost certainly go to jail. Why on earth would someone want to evoke a chain of events that would land them in jail? Or do they not believe their own statements about me being a nark? Or are they convinced that they are so good that they cannot get caught? Or are they just pathetically stupid? Personally I choose the latter. These guys are not good. And they are very dumb. They make more mistakes than I've seen in a long time. And they've pissed off very powerful people. (No, I'm not including myself in that list of 'Powerful People.') It's good that much of MOD is getting out of jail soon. Now those guys were legitimately GOOD HACKERS. They were definitely assholes, but damn good computer hackers. It will be nice to have some harassment from dickheads with skills once again. But I digress. Phrack's gotten a bit of notice as of late. In Mondo-2000, in their "Pirate Media" article, and in Richard Kadrey's "Covert Culture" sourcebook. Of course both of these got the subscription information wrong, but hell, I've learned to expect as much. Also, the mention of Phreak Accident's fantastic "Playing Hide & Seek -- Unix Style" article in Dan Farmer and Weitse Venema's "Improving The Security of Your Site by Breaking Into It" article brought in hundreds of new subscribers. Let's see how many of these security people register. (How many fingers am I holding up?) Speaking of such, Phrack has a couple of other registrations now. One is a teacher who wanted to use Phrack in her class. Kudos to her! The other was a cool guy who just wanted to register because he felt like it. Why can't the rest of you be more like him? Anyway, the money is going to sponsor a new contest. (Considering how well the last one went...not!) This time, we are serious, so read in LINE NOISE for more info. What else? Phrack has now made the big time in the Federal Penal system. We're the proud recipients of the Bureau of Prisons form 328(58). Our material was considered to be a breach of security of the institution. This, of course, pissed me off. But hell, on the same form, they denote how "Body Hair, Plant Shavings, and Sexually Explicit Personal Photos" are also inappropriate. Phrack or Body Hair. You make the call. Phrack 45...let's see... If this issue doesn't cause neck hairs to bristle on everyone within spying distance of the beltway, I will be very disappointed. It's amazing what you find in your mailbox. We've got a lot of nifty things in this issue. More source code for you to play with, uuencoded goodness, cellular info, telco / pbx info, Ho Ho Con coverage, ancient hack memorabilia, and a plethora of spurious scatological material. (translated: lots of other crap) Enjoy. ------------------------------------------------------------------------- READ THE FOLLOWING IMPORTANT REGISTRATION INFORMATION Corporate/Institutional/Government: If you are a business, institution or government agency, or otherwise employed by, contracted to or providing any consultation relating to computers, telecommunications or security of any kind to such an entity, this information pertains to you. You are instructed to read this agreement and comply with its terms and immediately destroy any copies of this publication existing in your possession (electronic or otherwise) until such a time as you have fulfilled your registration requirements. A form to request registration agreements is provided at the end of this file. Cost is $100.00 US per user for subscription registration. Cost of multi-user licenses will be negotiated on a site-by-site basis. Individual User: If you are an individual end user whose use is not on behalf of a business, organization or government agency, you may read and possess copies of Phrack Magazine free of charge. You may also distribute this magazine freely to any other such hobbyist or computer service provided for similar hobbyists. If you are unsure of your qualifications as an individual user, please contact us as we do not wish to withhold Phrack from anyone whose occupations are not in conflict with our readership. _______________________________________________________________ Phrack Magazine corporate/institutional/government agreement Notice to users ("Company"): READ THE FOLLOWING LEGAL AGREEMENT. Company's use and/or possession of this Magazine is conditioned upon compliance by company with the terms of this agreement. Any continued use or possession of this Magazine is conditioned upon payment by company of the negotiated fee specified in a letter of confirmation from Phrack Magazine. This magazine may not be distributed by Company to any outside corporation, organization or government agency. This agreement authorizes Company to use and possess the number of copies described in the confirmation letter from Phrack Magazine and for which Company has paid Phrack Magazine the negotiated agreement fee. If the confirmation letter from Phrack Magazine indicates that Company's agreement is "Corporate-Wide", this agreement will be deemed to cover copies duplicated and distributed by Company for use by any additional employees of Company during the Term, at no additional charge. This agreement will remain in effect for one year from the date of the confirmation letter from Phrack Magazine authorizing such continued use or such other period as is stated in the confirmation letter (the "Term"). If Company does not obtain a confirmation letter and pay the applicable agreement fee, Company is in violation of applicable US Copyright laws. This Magazine is protected by United States copyright laws and international treaty provisions. Company acknowledges that no title to the intellectual property in the Magazine is transferred to Company. Company further acknowledges that full ownership rights to the Magazine will remain the exclusive property of Phrack Magazine and Company will not acquire any rights to the Magazine except as expressly set forth in this agreement. Company agrees that any copies of the Magazine made by Company will contain the same proprietary notices which appear in this document. In the event of invalidity of any provision of this agreement, the parties agree that such invalidity shall not affect the validity of the remaining portions of this agreement. In no event shall Phrack Magazine be liable for consequential, incidental or indirect damages of any kind arising out of the delivery, performance or use of the information contained within the copy of this magazine, even if Phrack Magazine has been advised of the possibility of such damages. In no event will Phrack Magazine's liability for any claim, whether in contract, tort, or any other theory of liability, exceed the agreement fee paid by Company. This Agreement will be governed by the laws of the State of Texas as they are applied to agreements to be entered into and to be performed entirely within Texas. The United Nations Convention on Contracts for the International Sale of Goods is specifically disclaimed. This Agreement together with any Phrack Magazine confirmation letter constitute the entire agreement between Company and Phrack Magazine which supersedes any prior agreement, including any prior agreement from Phrack Magazine, or understanding, whether written or oral, relating to the subject matter of this Agreement. The terms and conditions of this Agreement shall apply to all orders submitted to Phrack Magazine and shall supersede any different or additional terms on purchase orders from Company. _________________________________________________________________ REGISTRATION INFORMATION REQUEST FORM We have approximately __________ users. Enclosed is $________ We desire Phrack Magazine distributed by (Choose one): Electronic Mail: _________ Hard Copy: _________ Diskette: _________ (Include size & computer format) Name:_______________________________ Dept:____________________ Company:_______________________________________________________ Address:_______________________________________________________ _______________________________________________________________ City/State/Province:___________________________________________ Country/Postal Code:___________________________________________ Telephone:____________________ Fax:__________________________ Send to: Phrack Magazine 603 W. 13th #1A-278 Austin, TX 78701 ----------------------------------------------------------------------------- Enjoy the magazine. It is for and by the hacking community. Period. Editor-In-Chief : Erik Bloodaxe (aka Chris Goggans) 3L33t : CERT (not) News : Datastream Cowboy Do Not Taunt : Happy Fun Ball Photography : dFx Dolomite : Rudy Ray Moore Prison Consultant : Co / Dec A Hacker's Dream : The L0PHT Thanks To : H.B. Reese Candy Co., Control C, Seven Up, Emmanuel Goldstein, The U.S. Government, The Omega, White Knight, Quentin, Manny Farber, Raoul, Video Games Magazine, Co/Dec, Darth Vader, Charlie X, The Fixer, Optik Nerve, Dr. Delam, Data King, Opticon the Disassembled "You're not too smart. I like that in a hacker." (With apologies to Kathleen Turner) Phrack Magazine V. 5, #45, March 30, 1994. ISSN 1068-1035 Contents Copyright (C) 1994 Phrack Magazine, all rights reserved. Nothing may be reproduced in whole or in part without written permission of the Editor-In-Chief. Phrack Magazine is made available quarterly to the amateur computer hobbyist free of charge. Any corporate, government, legal, or otherwise commercial usage or possession (electronic or otherwise) is strictly prohibited without prior registration, and is in violation of applicable US Copyright laws. To subscribe, send email to phrack@well.sf.ca.us and ask to be added to the list. Phrack Magazine 603 W. 13th #1A-278 (Phrack Mailing Address) Austin, TX 78701 ftp.netsys.com (Phrack FTP Site) /pub/phrack phrack@well.sf.ca.us (Phrack E-mail Address) or phrackmag@aol.com Submissions to the above email address may be encrypted with the following key : (Not that we use PGP or encourage its use or anything. Heavens no. That would be politically-incorrect. Maybe someone else is decrypting our mail for us on another machine that isn't used for Phrack publication. Yeah, that's it. :) ) -----BEGIN PGP PUBLIC KEY BLOCK----- Version: 2.3a mQCNAiuIr00AAAEEAMPGAJ+tzwSTQBjIz/IXs155El9QW8EPyIcd7NjQ98CRgJNy ltY43xMKv7HveHKqJC9KqpUYWwvEBLqlZ30H3gjbChXn+suU18K6V1xRvxgy21qi a4/qpCMxM9acukKOWYMWA0zg+xf3WShwauFWF7btqk7GojnlY1bCD+Ag5Uf1AAUR tCZQaHJhY2sgTWFnYXppbmUgPHBocmFja0B3ZWxsLnNmLmNhLnVzPg== =q2KB -----END PGP PUBLIC KEY BLOCK----- -= Phrack 45 =- Table Of Contents ~~~~~~~~~~~~~~~~~ 1. Introduction by The Editor 17 K 2. Phrack Loopback Part I 31 K 3. Phrack Loopback Part II / Editorial 40 K 4. Line Noise Part I 49 K 5. Line Noise Part II 50 K 6. Line Noise Part III 59 K 7. Phrack Prophile on Control C 22 K 8. Running a BBS on X.25 by Seven Up 15 K 9. No Time for Goodbyes by Emmanuel Goldstein 21 K 10. Security Guidelines 55 K 11. Ho Ho Con Miscellany by Various Sources 32 K 12. Quentin Strikes Again by The Omega and White Knight 28 K 13. 10th Chaos Computer Congress by Manny E. Farber 23 K 14. Defcon II information 26 K 15. VMS Information by Various Sources 34 K 16. DCL BBS PROGRAM by Raoul 23 K 17. Hollywood-Style Bits & Bytes by Richard Goodwin 50 K 18. Fraudulent Applications of 900 Services by Co/Dec 15 K 19. Screwing Over Your Local McDonald's by Charlie X 20 K 20. The Senator Markey Hearing Transcripts 72 K 21. The Universal Data Converter by Maldoror 45 K 22. BOX.EXE - Box Program for Sound Blaster by The Fixer 13 K 23. Introduction To Octel's ASPEN by Optik Nerve 12 K 24. Radio Free Berkeley Information 35 K 25. The MCX7700 PABX System by Dr. Delam 22 K 26. Cellular Debug Mode Commands by Various Sources 13 K 27. International Scenes by Various Sources 63 K 28. Phrack World News by Datastream Cowboy 17 K Total: 902 K _______________________________________________________________________________ "You can't hold a man down without staying down with him." (Booker T. Washington) "I am not one of those weak-spirited, sappy Americans who want to be liked by all the people around them. I don't care if people hate my guts; I assume most of them do. The important question is: 'What are they in a position to do about it?'" (William S. Burroughs) ==Phrack Magazine== Volume Five, Issue Forty-Five, File 2 of 28 **************************************************************************** Phrack Loopback Part I Letter from Louis Cypher (Byron York) As many people know, I was convicted over the summer for a number of Federal crimes including counterfeiting, burglary of a post office, theft of US mail, and possession of stolen property. For a little background, I was arrested for these crimes in September of 1992. I stayed out on 50,000 dollar bond until the trial which started the day after Summercon 93'. The trial lasted for about a week and a half, and the jury found me guilty on 4 charges and acquitted me on 2. My sentencing was not until the 8th of November, and the results were not as I had hoped for being a first time offender and all. I received a 21 month sentence that will be carried out if I do not complete 6 months in a Federal boot camp in Pennsylvania. If I do complete the program at the boot camp I will then spend 6 months in a Federal halfway house in Houston. This will be followed by several months of home confinement, then 3 years parole. I am to attend college while on parole, but if I do not do well, then I have to do 300 hours of community service. I will start serving my sentence as early as December, or as late January. Won't know until I receive the letter in the mail from the Bureau of Prisons. I am still out on bond and am on voluntary surrender so I just deliver myself to wherever they send me. A lot better than rotting in county jail until they transfer me. I will hopefully be out still for HoHocon, and will be able to say good-bye to most people in person. But in case I am not, then I would like to use this forum to tell everyone good-bye. I know that I am not going away forever, but I don't know when I am going to be able to access a modem again and get back in touch with everybody. I have been running a public access Internet site in Houston for the past year or so, and luckily, thanks to Drunkfux, Absalom, and Lord Macduff, the system will most probably stay up in my absence. People will be able to mail me there, and I will be able to respond through the help of people over the phone. I would like to thank Erik Bloodaxe for letting me use Phrack to tell everybody farewell. I hope nothing's changed when I get back, and I will be back. I'll just have to keep my nose a little cleaner when I come back from my sabbatical. It's been great, and I'll see all of you hopefully in about a year or so. [Byron did get to go to HoHoCon, but shortly thereafter had to fly to Pennsylvania to enter Boot Camp. Byron's Address in prison is: J.C.C. Byron York 60177-079 P.O. Box 1000 Lewisburg, PA 17837-1000 Drop him a note. It really makes the day go by a little easier in a world of bloody shank wars with the Texas Syndicate. Jail sucks.] ------------------------------------------------------------------------------ [Ad for Jolly Roger T-Shirt] >[God bless the free enterprise system! > God bless capitalism! > God bless America!] Well, I'm an atheist and natural law objectivist, so I'll cheer right along with you on the capitalism part! Capitalism is the only MORALLY PROPER system because it's the only system (or lack thereof) that doesn't treat people as slaves! [editorial] >This is going to piss people off, but hell, that's the point of having >an editorial, eh? I, for one, fucking loved it. >Granted, Holland has a notoriously permissive and open society; and >indeed, Europe in general is far more laid back than the States, but >even many in the US hold these ideals close to heart. Europe also has a great police state tradition, not to mention the common and prevailing attitude that while sex and drugs and rock and roll are okay, making money (creating wealth) is a far more heinous crime. >...The major cons in America (HoHo, Scon) really don't charge. >They "ask" for donations. Sure, you might get a nasty look if >you don't cough up five or ten bucks, but hell, everyone does. They >WANT to. A good time is worth a handful of change. And there isn't >some awesome requirement just to get in the damn door. Besides, losses >can always be made up by selling a plethora of crap such as t-shirts and >videos, which everyone always wants to buy. (Hardware costs. :) ) VOLUNTARY donations! (The Supreme Court says "our system of taxation is based on VOLUNTARY COMPLIANCE"...) There's a vast and monstrous difference between voluntary and involuntary - it's that nasty "free will thing"! >Then there was Phrack. Always free to the community. Always available >for everyone's enjoyment. Asking only that Corporate types pay a >registration fee of a hundred dollars just to keep them honest. (They >aren't.) Knowing full well that they are stealing it, sometimes quite >brazenly. Resting quietly, knowing that they are just as unethical as >they ever claimed us to be. I also love your registration requirements. Being able to claim ownership of property, intellectual or otherwise, means you dictate the terms and conditions of its use. Corporate lawyers must have had coronaries upon first sight. Only difficulty is, your ISSN number and copyright data are prima facie evidence that you contracted away rights in exchange for privilege from the state, revocable whenever the state feels like it (copyright falls under admiralty jurisdiction, not common law). You've formed an "organization" - your registration form recognizes the fact that "corporations, organizations and other artificial persons" have a lesser STATUS before the law than NATURAL INDIVIDUALS - just be who you are! >Let me tell you something. Information does not want to be free, my >friends. Free neither from its restraints nor in terms of dollar value. >Information is a commodity like anything else. More valuable than the >rarest element, it BEGS to be hoarded and priced. Anyone who gives >something away for nothing is a moron. (I am indeed stupid.) I can't >fault anyone for charging as long as they don't try to rationalize their >reasoning behind a facade of excuses, all the while shouting "Information >Wants to be Free!" AMEN, from the highest fucking rooftops! You're not stupid, you're doing it by CHOICE. You're VOLUNTARILY doing it. Free people don't NEED laws that force decisions upon them - they do what needs to be done! >Trade secrets don't want to be free, marketing projections don't want to >be free, formulas don't want to be free, troop placements don't want to >be free, CAD designs do not want to be free, corporate financial >information doesn't want to be free, my credit report sure as hell >doesn't want to be free! YES! YES! I HAVE WAITED FOR YEARS FOR THIS MOMENT! [tale of the Little Red Hen] Amen again! This whole issue, in fact, had many great things, which I'll continue to reply to here... [ ... 10K of commentary removed ... ] Finally...remember how crazy people got in the years just before the turn of the first millennium (990-1000 A.D.)? It's gonna be even MORE interesting this time around! Here's to Phrack... may you last into the 21st century! (May we ALL be so lucky...) [Man, that was one of the coolest letters we've ever gotten (and definitely the longest. I have to tell you, it does my heart good to know that we are indeed appreciated by some of you. We will continue to do so until as long as humanly (or inhumanly, with my schedule) possible.] ------------------------------------------------------------------------------ A document I found in trash...... What's Next 1993 Revenue 1993 Operating in billions Cash Flow in billions AMERITECH $11.71 $4.72 Pursue in-region strategy. Push regulators for entry into long distance business. BELL ATLANTIC $12.99 $5.34 Proceed with interactive networks linking 1.2 million homes by year-end 1995. Seek local cable partners. BELLSOUTH $15.88 $6.64 Decide whether to invest $500 million of QVC, despite loss in Paramount fight. NYNEX $13.4 $5.06 Proceed with $1.2 billion investment in Viacom. Build new networks in Northeast, but only if it wins new regulatory freedom. PACTEL $10 $4.08 Pursue in-region strategy for new personal communication services. SOUTHWESTERN BELL $10.69 $4.08 Pursue cable relationship with Cox Enterprises Inc.; complete $552 million acquisition of upstate New York cellular franchises. USWEST $10.29 $4.45 Offer new phone services in New York cable systems; may pursue Cablevision Systems Corp. with partner Time Warner. Total $84.98 $34.53 Gee whiz now I really sympathize with the phone company about their petty loss on fraud. [Fuck. And you mean to tell me THEY can't afford a measly 100 bucks registration fee? Maybe them thought it was 100 Million bucks. But even then it's well within their grasp. Hmm...maybe the fee should go up.] ------------------------------------------------------------------------------ I would like to pay respects to a fellow user on my system who was killed in the recent helicopter crash near San Jose, CA. "Rotor" was a user-friendly d00d who would always talk your ear off about helicopter technician work. It is a great loss to our local community. Call the CybernaughtG@twAy. el33t x10^8 (408) 911-3974 Login --------------================--------------- [I want to say I'm very sorry about your friend. I know exactly how you must feel.] ------------------------------------------------------------------------------ For immediate rebroadcast:::::::::::::::::::::: ********************************************************************* The SenseReal Foundation The SenseReal Foundation is a non-profit, non-organization dedicated to the preservation and free distribution of information and the promotion of the Amiga computer. In this ever increasing police state we live in the Amiga computer is a beacon of hope. If you buy into Big Blue you are buying into Big Brother. The information revolution is happening now. More and more our liberty will depend on the acquisition, processing, dissemination, and control of knowledge. We are heading into an era when there's going to be enormous pressure to prevent further development of certain kinds of knowledge. This situation has created the need for the...... SenseReal Archives Send all kinds of information to the SenseReal archives for preservation and rebroadcast. Send newsletters, magazines, books, 'zines, tapes, CDs, or anything at all to the address below. Not only will your contribution be deeply appreciated, it will be preserved and made available to present and future generations. As more powerful, small, cheap technologies are available to the masses it may increase conflict between the current power structure and those now considered to be in the underground. Civilization as we know it is racing towards the brink, and hopefully we will survive through this current cycle, but we do not know what will face us then. Sending The SenseReal Foundation your material is a good way of expanding the knowledge of many people. When appropriate, information will be made available on the SenseReal BBS..... The Haunted Mansion BBS (404)516-4732 Fri-Sun 6pm-6am Call this number anytime. Primary hours are Fri-Sun 6PM-6AM but you never know when the board may be up. If it is not online when you call, call back in 3-5 minutes and perhaps it will be. It is primarily an Amiga board but also features message areas and a text file area that will be of interest to all. Send postcards, bizarre items, money, and anything else to: Call THE HAUNTED MANSION BBS THE SENSEREAL FOUNDATION (404)516-4732 Fri-Sun 6PM-6AM 6595-G ROSWELL RD. Suite #206 Or contact via the Internet: ATLANTA,GA 30328 Green_Ghost@neonate.atl.ga.us All information and anything sent will be kept secret forever upon request. -- Via DLG Pro v1.0 [Uh, gee, little did I realize that when I bought my Amiga 500, I was joining such a sacred brotherhood. I wonder what my employers would think.] ------------------------------------------------------------------------------ So, there I am in New York City last night. We're hanging out (figuratively speaking) at The Vault, where various fetishists get together to explore the limits of aberrant human sexuality. All in all, a rather interesting place. The $30 cover was a little steep, but I would still highly recommend it. Now for my point. I was standing around watching two dominatrix abuse some naked, prostrate wretch when one of them started walking around giving out business cards to anyone who admitted to having a computer and an Internet feed (these are dominatrix on the cutting edge of technology, I might add). The card reads thus: CYBEROTICA Online Ride the wave of erotic communication into the 21st century, as CYBEROTICA Online(tm) becomes your point-of-penetration into Cyberspace. Transport yourself into a universe of wild fantasy- and-fetish images, tales, and intimate, anonymous interaction with erotic-video stars, industry insiders, and thousands of open-minded people around the world. Experience CYBEROTICA Online for FREE as our VIP guest while we perfect the system, and in exchange for your valued input you'll receive added VIP privileges as we grow! Contact us today for your free Infopac and Startup Software, before this opportunity ends. 212.587.0197 fax 587.0513 80 n moore st., tribecca, ny 10013 email: steffani@echonyc.com I am sure this is just a teaser to get people on-line and then start charging them, but I found it pretty interesting. ---tabas NOTE: I have no knowledge of or affiliation with the above organization and the posting of this message does not constitute an endorsement of perversion. [Well, hell...now I know where to go next month when I'm back in NYC. I wish I would have know about this place last time...the only places I could find for even semi-serious sleeze was in Times Square, and I know that was way too tame and trendy to be IT. Now I know.] ------------------------------------------------------------------------------ The earthquake in Los Angeles, California, the flood in Europe, the seemingly unstoppable war in the former Yugoslavia, the devastating fires in Australia, the flood in the Midwest of the United States of America, the devastating fires near Los Angeles, California, the rapid and appalling increase in violence in cities, towns, villages all over the world, the famines, the diseases, the rapid decline of the family unit, and the destructive earthquake in India (in 1993) are signs that this world's history is coming to a climax. The human race has trampled on God's Constitution, as given in Exodus 20:1-17 (King James Version Bible), and Jesus is coming to set things right. These rapidly accelerating signs are an indication that Jesus is coming soon (Matthew 24). God's Holy Spirit is gradually withdrawing its protection from the earth and the devastating events you see are demonstrations of Satan's power. All those who are not guarded by God are in danger of forever losing eternal life. If you want to know what's about to happen, please study the books of Daniel and Revelation which are located in God's Word, the Bible. They are not sealed or closed books. They can and must be understood by all. Every word in the Bible from Genesis to Revelation is true. The Bible and the Bible only must be your guide. When God's Law (the Constitution for the Universe) is consistently ignored, disregarded, changed, and questioned, He permits certain events to occur to wake us up. I would urge all, wherever you are and regardless of the circumstances, to directly call on Jesus and ask Him to intervene in your life. Jesus who created this planet and every living creature in it and on it, died on the cross, was raised from the dead by God the Father, and is now in Heaven interceding for you. Jesus is the only One who can rescue us from the slavery, misery, and death Satan is causing us. For reference I'm including God's Constitution as given in the King James Version Bible. Please note that when God says the seventh day, he means Sabbath (the 7th day of the week) not Sunday (1st day of the week). Commandment #1: Exodus 20:1-3 (KJV) And God spake all these words, saying, I am the LORD thy God, which have brought thee out of the land of Egypt, out of the house of bondage. Thou shalt have no other gods before me. Commandment #2: Exodus 20:4-6 (KJV) Thou shalt not make unto thee any graven image, or any likeness of any thing that is in heaven above, or that is in the earth beneath, or that is in the water under the earth. And shewing mercy unto thousands of them that love me, and keep my commandments. Commandment #3: Exodus 20:7 (KJV) Thou shalt not take the name of the LORD thy God in vain; for the LORD will not hold him guiltless that taketh his name in vain. Commandment #4: Exodus 20:8-11 (KJV) Remember the sabbath day, to keep it holy. Six days shalt thou labour, and do all thy work: But the seventh day is the sabbath of the LORD thy God: in it thou shalt not do any work, thou, nor thy son, nor thy daughter, thy manservant, nor thy maidservant, nor thy cattle, nor thy stranger that is within thy gates: For in six days the LORD made heaven and earth, the sea, and all that in them is, and rested the seventh day: wherefore the LORD blessed the sabbath day, and hallowed it. Commandment #5: Exodus 20:12 (KJV) Honour thy father and thy mother: that thy days may be long upon the land which the LORD thy God giveth thee. Commandment #6: Exodus 20:13 (KJV) Thou shalt not kill. Commandment #7: Exodus 20:14 (KJV) Thou shalt not commit adultery. Commandment #8: Exodus 20:15 (KJV) Thou shalt not steal. Commandment #9: Exodus 20:16 (KJV) Thou shalt not bear false witness against thy neighbour. Commandment #10: Exodus 20:17 (KJV) Thou shalt not covet thy neighbour's house, thou shalt not covet thy neighbour's wife, nor his manservant, nor his maidservant, nor his ox, nor his ass, nor any thing that is thy neighbour's. I also recommend that the following books be obtained and closely studied: The Great Controversy By Ellen G. White Review and Herald Publishing Association Hagerstown, MD 21740 The Desire of the Ages By Ellen G. White Review and Herald Publishing Association Hagerstown, MD 21740 Patriarchs and Prophets By Ellen G. White Review and Hearld Publishing Association Hagerstown, MD 21740 Daniel and the Revelation By Uriah Smith Review and Herald Publishing Association Hagerstown, MD 21740 [Praise the Lord & Pass the Ammunition!] ------------------------------------------------------------------------------ Big Brother Inside Logo A parody of the Intel's Logo modified for the Clipper Chip is now available for use for stickers, posters, brochures etc. The Big Brother Inside graphic files are now available at the CPSR Internet Archive - ftp/gopher cpsr.org /cpsr/privacy/crypto/clipper big_brother_inside_sticker.ps (postscript-scale to fit your project) big_brother_inside_logo.gif (Color GIF - good startup/background screen) big_brother_inside_picts_info.txt (Info on the files) The files have also been uploaded to America Online in the Mac Telecom and Graphic Arts folders. big_brother_inside_sticker.ps is a generic postscript file, created in CorelDraw. The postscript image lies landscape on the page, and consists of the intel-logo's ``swoosh'' and crayon-like lettering on the inside. This design was originally created for the sticker project: the image was screened onto transparent stickers 1" square for the purpose of applying them to future clipper-chip products. (cdodhner@indirect.com was in charge of that project; as far as I know he's still distributing them for a small donation to cover printing & mailing costs). The design was created by Matt Thomlinson [The stickers I have made a HUGE hit among the various "select targets" at COMDEX. Get yours and join in on the fun. There are a world of mass merchant distributors waiting to be "tagged." Sounds like the SenseReal foundation would love a handful of these for those pesky Intel boxes.] ------------------------------------------------------------------------------ HI, 1st I want to thank you for dedicating your space to the silliness and foolishness that comes with anything Sara Gordon related. I think I should have gotten the last word but, who wants to turn this into a public feud, specially with a demented middle aged woman. Well, Thanks anyway for including the article, I have found people in the underground who believe what I am saying, as I have no monetary interest in this unlike Mrs. Gordon. Kohntark. [Well Kohntark, looks like you DID get the last word. No, wait, I did.] ------------------------------------------------------------------------------ Hello Chris, I have a constant battle with some of my friends over who can ruin another person's display first. Well, if I could log them out... However, I'm afraid the program doesn't compile. Thanks for any light you might be able to shed on the matter. Bye! I get these 3 errors: "block.c", line 22.17: 1506-030 (S) Identifier open cannot be redeclared. "block.c", line 41.18: 1506-045 (S) Undeclared identifier user. "block.c", line 48.16: 1506-045 (S) Undeclared identifier W_OK. /* block.c -- prevent a user from logging in * by Shooting Shark * usage : block username [&] * I suggest you run this in background. */ #include #include #include #include #include #define W_OK2 #define SLEEP5 #define UTMP"/etc/utmp" #define TTY_PRE "/dev/" main(ac,av) int ac; char *av[]; { int target, fp, open(); struct utmpuser; struct termio*opts; char buf[30], buf2[50]; if (ac != 2) { printf("usage : %s username\n",av[0]); exit(-1); } for (;;) { if ((fp = open(UTMP,0)) == -1) { printf("fatal error! cannot open %s.\n",UTMP); exit(-1); } while (read(fp, &user, sizeof user) > 0) { if (isprint(user.ut_name[0])) { if (!(strcmp(user.ut_name,av[1]))) { printf("%s is logging in...",user.ut_name); sprintf(buf,"%s%s",TTY_PRE,user.ut_line); printf("%s\n",buf); if (access(buf,W_OK) == -1) { printf("failed - program aborting.\n"); exit(-1); } else { if ((target = open(buf,O_WRONLY)) != EOF) { sprintf(buf2,"stty 0 > %s",buf); system(buf2); printf("killed.\n"); sleep(10); } } /* else */ } /* if strcmp */ } /* if isprint */ } /* while */ close(fp); /*sleep(SLEEP); */ } /* for */ } [Anyone want to take a crack at this?? Debug it and mail it back to us so we can forward it on...] ------------------------------------------------------------------------------ xXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXx IT'S BACK!!!!W$#@$#@$ _-_-_-_-_-_-_-_-_ ( ) ( B00m ) ( ) CAU (__ __) CAU __\/___ "We WiLL BloW /---/|_____|\----\ uP YoUr CaR!" /CaU-__WuZ__-HeRe\- (0) (0) fARM R0Ad 666 *fR666.something.com* (713)855-0261 *fR666.something.com* CAU-0b/GYN SySoPs: EighT BaLL kCf-ThP-Phrack M.C. Allah Bc0maP-d0S/2-Tone Drunkfux ' CAU Home ' Bc0maP Couriers Site ' cDc Factory Direct Outlet(kCf) ' 0b/GYN Member Site ' USENET, InterNet E-Mail(s00n) ' Hack/Phreak Discussions ' Flashback Software ' ToneLoc Distribution Site ' 12oo-14.4 bps ' Exophasia Submission Site ' 0PhiCiAl PHraCk DiSt Site ' No Ratios for non dorks xXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXxXx [This is 8-Ball's bbs. Call it and watch him shoot up. Word.] ------------------------------------------------------------------------------ Hackers, phone phreaks, techno-anarchists, cyberpunks, etc. * * * THE OFFICIAL U.K. '2600 Magazine' MONTHLY MEETINGS. * * * Meetings are held on the first Friday of each month. All those interested in attending will be required to meet at the Trocadero shopping centre, which is a one minute walk from the Picadilly Circus underground station, London. The meeting point is actually inside the shopping centre, next to the Virtual Reality machines located on the bottom floor. Anyone interested in taking part should assemble next to these machines between 7.00pm and 8.00pm. Those who attend will then travel by tube train to a 'unknown' location for computer underground discussion, information exchange, etc. For more information, phone 'Damian' on 071-262-3042, or send email to 'uabbs@works.com' Check page '46' of your latest '2600 Magazine' for details of other meeting locations, etc. 2600 Magazine PO Box 752 Middle Island NY 11953 U.S.A. Tel: +1-516-751-2600 (24 hour answering system) Fax: +1-516-751-2608 -------------------------------------------------------------------------- This bulletin was created by 'Phantasm' on Tuesday 08-Feb-94 at 11:51pm. [You brits: GO TO THESE MEETINGS! And go trashing afterwards! And raise some hell. Throw caution to the wind. Be loud and obnoxious. Get thrown out. (Just pretend you are Americans. It works every time.) ] ------------------------------------------------------------------------------ Hello, I run a board here in the UK known as Unauthorised Access. We have been online since 1990 (the year of our anti-hacking law's approval) and the system is now the largest computer underground board in the U.K. (2,000+ quality files and growing each day) I also attended the HEU congress in Holland but although I spoke with Eric Corley (2600) and BillSF (Hack-Tic), I did not know where to find you. I expect you dissappeared off to Amsterdam like so many of the other visitors to Holland. Anyway, I noticed in your last issue (44) that you seem to have quite a few readers in the United Kingdom. I would like to tell you about my system here in the UK. (Please include this advert in your next issue of PHRACK) Thanks! Unauthorised Access Online 10.00pm-7.00am GMT Established 1990 Britain's largest computer underground system 30+ message special interest groups 2,000+ underground file online c64/Amiga/IBM/ h/p util support Running at 3oo/12oo/24oo/96oo HST tel: +[44] 636-708063 SysOp: Phantasm ---------------------------------------- [I always dig Overseas BBSes. Unfortunately I couldn't get a strong line when I've tried to call. Geez, you would think that in this age of fiber, I may be able to connect...but noooooo. :) ] ------------------------------------------------------------------------------ New TimeWasters T-shirts ! Do you know the feeling ? You're behind your terminal for hours, browsing the directories of your school's UNIX system. Instead of holes, bugs and bad file permissions you find tripwire, TCPwrapper and s/key. You run a file with a s-bit and immediately you get a mail from the system admin asking what you are doing. In other words, no chance to ever become a good hacker there. Now you have the chance to at least pretend to be an eleet hacker. The Dutch hacking fanatics The TimeWasters have released the third version of their cool 'hacker' T-shirt. Because the previous versions were too limited (20 and 25 shirts) we printed no less than 200 shirts this time. Of course you want to know, what does it look like ? On the front, a TimeWasters logo in color. Below that a picture of two hacking dudes, hanging behind their equipment, also featuring a stack of phracks, pizza boxes, beer, kodez, and various computer-related stuff with a 'No WsWietse' sticker. On the back, the original TimeWasters logo with the broken clock. Below it, four original and dead funny real quotes featuring the art of Time Wasting. Wearing this shirt can only provoke one reaction; WOW ! Imagine going up to the helpdesk wearing this shirt and keeping a straight face while asking a security question ! And for just $2 more you'll get a pair of sunglasses with the text 'TimeWasters' on them ! To order: Send $20 or $22 to TimeWasters Postbus 402 5611 AK Eindhoven The Netherlands, Europe This includes shipping. Please allow some time for delivery. If you are in Holland, don't send US$, email the address below for the price in guilders and our 'postbank' number. For more information: email to: - timewasters-request@win.tue.nl with subject: T-SHIRT for a txtfile with more info. - rob@hacktic.nl or gigawalt@win.tue.nl for questions. [I've got one Time Wasters shirt...Now I'm gonna have to get another. Wonder if they'll trade...I know this guy who makes some damn cool shirts... but the glasses are the clincher. I'm ordering now.] ------------------------------------------------------------------------------ ==Phrack Magazine== Volume Five, Issue Forty-Five, File 3 of 28 **************************************************************************** Phrack Loopback Part II How sad the state of affairs is. Companies do _not_ care about security. My father would be the last one to think about ways into the "systems" that are out there. We had a good talk tonite about the lack of security in the corporate world. I told him about PGP public key encryption software, and it's political gibberish etc. Then he hits me with this outstanding story of the stupidity displayed at his credit union (AEA, yes he works in the silicon valley). He went to get some $$ at the branch office near his work, and he notices they have upgraded their computer systems. It was apparent that it was no 'internal' updating of the tellers' equipment, but a major overhaul of the entire structure at AEA credit union. This was obvious when every teller was reading manuals as they helped customers. The greatest part of his story (which made him laugh out loud) was that on the tellers' computer screens were taped up pieces of paper detailing how to access the computers at AEA. As the teller was in the back room, my dad leaned over and saw what it was, and memorized the things. Its the things like that which make me want to trust my money to fabulous behemoths like credit unions. [That's typical. You should have gone straight to that bank and taken notes. You never know...you could have ended up with SWIFT access. Let's face it, if the BND's Project Rahab can, so can we.] ------------------------------------------------------------------------------ TO: The Hack/Phreak Community From: Amitech USA Subject: Explaining About What Amitech USA IS! Amitech is a group that teaches and learns... What I mean by this is The Hack/Phreak community should teach the inexperienced more than put them down, especially if they want to learn but no one is willing to teach them.. This is were we come in... The definition of Hacking is learning the holes in different telephone equipment and different computer equipment. People these days don't use there knowledge correctly... They abuse what they get and sometimes even harass people because of hatred and reasons of revenge.. The H/P community isn't about this... We are releasing this to invite anyone in the H/P community with a lot or little experience to join us, to learn and to teach us.. Amitech USA does not condone any board crashing, harassing, Underground Board password stealing etc. We will not be responsible or accept anyone who condones such activity.... Amitech has two levels of members.. 1. Trial members 2. Regular members. The trial members are on a basis of two weeks which in such time they have to show us that they are willing to learn and is not into the group just to use the groups name in there signature. Members decide who is acceptable for a group and who is not. Each member will get the users application except their real name and phone #. We will decide and will contact you within a week of when the application comes to me... We are going to be mostly underground for the simple fact that the group does not need recognition. Are members may stand out but for the most part we will not be shown and or do not want to be shown for the simple fact that underground is better for the newer user as will as the older users. Please send all applications to Either burntkid@spiff.gnu.ai.mit.edu or The Crime Scene 516-873-8903...Anyone who wants information may send a message. Anyone interested in joining please fill out the application below. First Name: Handle: Phone #: How many years experience: Specialties: Boards you're on: Email/Internet: Please Spread This Message Around... [Good luck with your group. And remember, when you're a group, you're subject to prosecution under RICO. God Bless America.] ------------------------------------------------------------------------------ Dear Phrack: I know you guys take an interest in what happens at 2600 meetings, so I thought you might like to hear about a mainstay of the Washington D.C. meeting. BTW, I am also submitting to 2600. (They should have a PGP key) ------ Cut ---- For the past few meetings a guy from MCI has showed up. He works at some sort of Pentagon City mall branch of MCI and on the Fridays he sticks around and gets drunk. He is usually a great source of entertainment and this time he was undoubtedly the best part of the 2600 meeting. That was the highest form of entertainment (except for the threats on The Monk's life). At a meeting before this he was saying (I'm not sure how many beers he had had) how he was going to bomb (physically) all the hackers computers by using the system batteries. And he also said something like "We didn't have time for this kind of stuff in Vietnam." Anyway, I was listening to his drunken ramblings and I was thinking "I should be writing his wisdom down." So I did, and Maverick later started to type it down. The hardest part of all of this was not laughing in his face. Here is where I started the notes: MCI Guy: I mean it's really small, it's only like 1 microliter long. Vance: Yeah, that's pretty short. MCI Guy: I work on computers and they go in nanoseconds. Vance: Nanoseconds are really short. MCI Guy: A nanosecond is about this long. < Denotes with his fingers a length of about 6 inches > Vance: That's great if you can visualize it. MCI Guy: Yeah, it's short. Most of the instructions that I do take less than 3 nanoseconds, and that's short. But it's still too slow. --- Ok, from here it somehow jumped to a discussion of Rebel Lion's modem that was sitting out: MCI Guy: That's a good modem, it has memory because of it's external capacitance. The capacitor can store the memory since it's outside. Vance: Yeah, it must have a lot of memory. How much would you say? MCI Guy: A lot, gigabytes of it. The computer can talk directly to it. Vance: You need software to access that, that's where the intelligence is, in 2 gigabyte capacitor technology software. MCI Guy: It's because it's outside and it has it's memory. Vance: Gigaboobs of memory. Megamammaries. It must have Megamammaries in it's external capacitance. -- At this point, everybody is cracking up, I can't believe Vance kept a straight face. MCI Guy: Yeah. < Looking confused. > ------------------------------------------------------------------------- -- After this, I was really laughing and wasn't sure of exactly what was said. But in just a few minutes, the MCI guy left to get some more beer. He didn't come back to our table, he went to another one. We ignored him for awhile. But as he was sitting there, a woman sat down next to him. She was undoubtedly a prostitute, and there were many cracks about her gigaboobs and megamammaries. She must have spotted the fact that he was wasted and was trying to make some easy cash. After a while, the MCI guy didn't bite, and her pimp came along and picked her up. (There is no other logical explanation that I can think of.) After a few minutes, we went back to the table for the final round, but Vance had left, so I conducted the search for knowledge. It starts as I was approaching the table and trying to get him to talk to me. GD: When you were talking Rebel Lion's modem, I wasn't quite sure of what you said, could you explain it to me? < I get out my pencil and paper, like I'm taking notes on his every word. (Actually I was) > MCI Guy: < He is giving me a look of utter contempt, like I'm just a stupid kid who is not worthy to partake in his knowledge > Well you see it's external. GD: What do you mean? It's obviously external, but what does that mean? < Gives me another look > --- Maverick accidentally spills some of Mr. MCI's beer. MCI Guy: What was that? What are you doing?!? Maverick: I didn't do anything, you spilled it! MCI Guy: < Just forgets about it in his drunken stupor > It has it's own memory, it doesn't have to take up the core like an internal. GD: Core? MCI Guy: Or something like that, you know. It's outside the main frame. GD: Right, so it saves memory. MCI Guy: Hmmph, I work with so much memory. I throw out tapes. GD: Tapes? You mean tape backups. MCI Guy: Yeah. GD: Why? Don't you want the memory? MCI Guy: I have too much memory. GD: Yeah, I guess you're right, if you have too much memory, it is hard to get rid of. MCI Guy: I even use records. GD: You mean like the spinning kind of records? On a turntable? MCI Guy: Yeah, they hold a lot of memory. GD: Why don't you use CD's? They hold a lot more you know. MCI Guy: No they don't, you don't even know. GD: So you are saying that records hold more than CD's? MCI Guy: Yeah, and I can save space on records, I use "shrinker". It shrinks the space on a record. GD: You mean shrink the space on one of those spinning records? < I was trying too hard to keep from laughing to speak articulately > MCI Guy: It saves space by shrinking everything, and I can fit more on it. GD: Yeah, I guess that is a good idea. MCI Guy: < Incredulous at my stupidity > Do you even know about comp? GD: Comp? Sorry, I've never heard of "comp". What is it? MCI Guy: It's bits and bytes. GD: Keep on going, I want to learn about this. < And boy did I > MCI Guy: 4 bytes make a bit, 2 bytes make a double word, 2 words make a double word. GD: 2 words make a double word? Isn't that obvious since 2 means double? MCI Guy: < Ignoring me > It's called 32 bits. Above that you have to deal with 36 bits. GD: Ok, I get it. That's pretty cool. MCI Guy: That's called the IBM logo. GD: The IBM logo? It's made up of bits and bytes and comp? MCI Guy: Yeah, if you go above or below the line. --- Ok, at this point I was reeling from the bit-byte-word conversions and I didn't even want to try pursuing the "line" question since I had to leave. I really wish I could have stayed, but I also don't know how long he would have been benign; this guy was drunk and still had 2 large beers in front of him. All through this time, people were cracking up and laughing in his face. It wasn't that hard for the guy currently talking to him to not laugh, but when you thought for a second about this guy's slurred speech and his look of superiority, it was damn hard not to laugh. And how sad is this guys life? He comes to a mall to get drunk! It must cost him $15 for those beers. Oh well, maybe we will spring for some grain alcohol next time so we can get him to say even more. Last thing, if you are talking to a guy like this. Don't do what I did, don't confront him. You won't get as much out of him. Do what Vance did; agree with everything he says. This will get him more comfortable and he will talk more. Then give a summary of everything he said, while inserting things like "megamammaries" and "gigaboobs". -- Disclaimer: I tried to be as accurate as possible but there were some small changes made because I couldn't remember the exact wording. But overall this is fairly true to life. [I've noticed that everyone I've ever met involved with LE or security at corporations drinks and drinks and drinks and drinks. And drinks. What's with that? Jesus...no wonder they are so slow to react. They are fucking hammered all the time. They need to invest in some stimulants. Swap that Gin & Tonic for a handful of Ephedrine or something. (Notice I said Ephedrine...gotta stay legal, eh?) ] ------------------------------------------------------------------------------ Dear Phrack, I am Knightkrawler. About a month ago Mephisto, a fellow hacker friend of mine, discovered a dialup for a Taco Bell computer while scanning some numbers. Just for the hell of it, I called up the Taco Bell manager and posed as the Sys Admin. THE PHUCKER FELL FOR IT!!!!!! Conversation ^^^^^^^^^^^^ me: Hi, I'm the SYS Admin for The Taco Bell Login. My staff and I will be running some routine diagnostics for the next week. I'll need a passwd and login name to enter the system. Corey (the manager): Sure! My passwd is 1A2B3C, and my login name is Corey. me: Thank you. If you need anything, you know where to reach me. END ^^^ WHAT A DUMBASS!!! I was able to log on and Change fuckin' payrolls!!!! First thing I did was to change the price of tacos to 5 cents a piece! What I want to know is, have any of you out there had any similar experiences with bastards like these? Are all restaurant managers so lame? L8R, -=KnIgHtKrAwLeR=- [The Taco Bell SCO's have been a source of amusement for some time. It would appear that all restaurants in the PepsiCo chain have SCO's in-house. Something to keep in mind. And, uh, I've never seen anything that you could do like "change prices" without special terminal emulation. So, uh, don't bullshit a bullshitter. But, hey, it's a funny hack, and there are several in every city to play with, if you are so inclined.] ------------------------------------------------------------------------------ Hello there, I was wondering if you could help me (wait, wait, hear me out!). I am looking for some up-to-date info on COSMOS. I've read all of the Phrack articles, yours in ish 31 was particularly good, and I was wondering if there have been any developments lately that I should be aware of? Basically, I am looking for a manual that will show me how to use COSMOS. Kind of like a DOS reference guide or something similar. Your article was dated 1990, almost 4 years ago, and I'm sure there have been some new things introduced since then. I was thinking that if you had the raw info, you could pass it along to me and I could whip up a readable format for the next issue of Phrack. Believe me, I've got far too much time on my hands. I love Phrack and would do anything to help out! Anyway, I'll cut this off here before I waste too much of your time. Mr. Wizard [COSMOS is being phased out. I would suggest you look for info on SWITCH. There have been some articles on it in 2600, so you may want to check some back issues. Otherwise, I'll see if I can't get some more detailed articles on its use for future Phrack issues. But as far as COSMOS goes, I think my article from a few years back ended up as the most complete ever done, so I doubt there are any others that covered things I didn't.] ------------------------------------------------------------------------------ VIRTUAL REALITY NOW AVAILABLE TO GENERAL PUBLIC AT CYBERMIND What is Virtual Reality? Virtual Reality (VR) is a computer generated, interactive 3D environment in which the computer serves as a window to an alternate reality. Once immersed in this environment, the players interact with each other as well as the computer. Each VR system includes a head mounted display which provides a 3D graphical image along with full stereo sound. By placing the display over your eyes, you are "virtually" transported to a computer-generated world that you control. Wherever you move, the computer tracks the movement of your body and displays the appropriate image to your eyes. (If you looked up you would see the sky. If you looked down you would see your "feet.") The unlimited choices you can make in these virtual worlds make the experience one-of-a-kind. Development of Virtual Reality: Past and Future Early VR was confined to multi-million dollar systems in research labs and military simulations. However, the decreasing cost of computing power and display technology, VR now has more widespread applications: entertainment, education, worker training, telerobotics, medicine, teledildonics (virtual sex) and communication, among others. In the future, VR technology will allow you to travel, shake hands with people in other countries, walk on the moon or go shopping -- all without actually leaving the home or office. What is CyberMind? CyberMind is San Francisco's first location-based virtual reality entertainment center. CyberMind center features eight interactive virtual reality machines that allow the general public to experience and learn about 3D virtual reality technology by playing imaginative, roleplaying games such as Dactyl Nightmare, Legend Quest, Flying Aces and ExoRex II. CyberMind Virtual Reality Center WHAT: Out of this world entertainment for families, couples, singles and groups. WHERE: One Embarcadero, Lobby Level (second floor). At the top of the escalators. WHEN: Normal Center Hours are 10:00 am to Midnight, seven days a week. HOW MUCH: Normal Pricing is $5.00 per play per person for a six minute experience. 20% discount for groups over 12 persons. CYBERMIND CENTER RENTALS: For catered parties and receptions, contact Chris Figge at 415.693.0861 WHY: It will blow your mind CyberMind Corp: Telephone 415.693.0861. FAX: 415.693.0171. 737 Pine Street, Suite 65, San Francisco, CA 94108 [Uh, yeah. And Stand in line with Beavis & Butthead. Huh Huh, Cyber Stuff is cool. Heh heh. Cool. Yeah, I'm a Cyberpunk with $5 dollars. Let's set it on fire and throw it in the street. No, Ass Munch, you can get stuff with money. Oh yeah, heh heh heh.] ------------------------------------------------------------------------------ Phrack: Sorry to inconvenience you and PGP this message, but I fail to trust the people in charge of the server in which this message is being sent from. Approximately six months ago I was playing around with the idea for a crypto-chat program. In short: You and the other people in the chat area, (IRC for example), would pick the same password or random seed number. This would tell the chat program what algorithms to use, etc. Hence forth whatever you type is encrypted and whatever is displayed remotely is automatically decrypted. My only problem is that I do not know enough regarding cryptology to write a very secure encryption routine. I have tried a few times to contact Cypherpunks, but to no avail, I have not received any letters back from them even regarding my request to be put on their mailing list. I write to you, Phrack, in hopes that you can set me in the correct direction for making my crypto-chat program a reality. I feel it would be an asset to the hack/phreak community and its struggle for more privacy. Thanx. -----------------------------------------guerilla AnArchy--------------------- [Actually, it wouldn't be that hard to do, but you'd probably want to do it as a DCC chat type thing, rather than going through a server at all. I may be wrong, but I think someone may have worked on such a beast. You may want to try again to contact the cypherpunks list (cypherpunks@toad.com) (or to get added, cypherpunks-request@toad.com) and ask around. Otherwise, use the existing DCC Chat source, but just change it to incorporate a public key exchange, and use those exchanged keys to encrypt messages. It would be harder for more than one to one chat, but hell...no pain, no gain. Notice, I didn't volunteer to do it. Much too much work for me.] ------------------------------------------------------------------------------ Dear Phrack, Just finished reading Issue #42 (so I'm a little behind). Must say, it was very kewl. I have a little addition to the "Car Light Hack" in the Loopback section. When coming up to an intersection with the pressure sensitive panels in the tar, pump the brakes hard so the car rocks back and forth. This will fool the panel into thinking there's more weight (more cars) sitting on it and it will change the light faster. This also works great with intersections where there are two panels--one at the light, and one six or seven car lengths back. Either way, the light is guaranteed to change green quickly! [Yes. Pressure pads are quiet common. Probably much more so than the light sensors. Whatever works.] ------------------------------------------------------------------------------ Hi there ! Last week I got in contact with your magazine (#44) and a soft called Bluebeep, because I wanted to call BBSs all over the world. Reading Phrack, I got more interested is hacking stuff, which I do since I first touched a computer when I was 9 (now I'm 20). So, since you offered in the magazine :), I'd like to get some info about the subject, specially about free callings. Here is the story. Here in Brazil most of the computers have been IBM mainframes for a long time, only now changing to UNIX & LANs. Phone lines were a shit too, I could say that batter than most since my father works for the Brazilian phone co. (Embratel) And that's my point. Brazilian phone co. is (still) owned by the federal government. NEC and AT&T are trying to end the monopoly. But I think it's much easier to hack it since there aren't many hackers here and they don't do a big mess. What should I do and have to try this. See, I'm very rookie, so would like some guidelines... People here is very afraid to talk about. BTW, could a AT&T guy bust me (here, in Rio de Janeiro) for using Bluebeep in the 000-8010 ?!? Are there other means of doing free calls ? Embratel has it's own Calling Card... Wish I can have your help... I'm a RPG-fanatic and would like to connect to Illuminati BBS and others, so I could get more info. Thanx, []s CAD [I wouldn't worry as much about the AT&T guy busting you, as I would the Brazilian Secret Police shooting you for boxing. I mean, if the government still owns the phone company, they are the ones to watch out for. To contact Steve Jackson Games and the Illuminati BBS, you should think about signing on to io.com. That is their Internet site. It's very cool, and has a huge MUD, (if you are into those sort of things.) Good luck in Brazil, and please consider doing a file for our International Scene section on your Country!] ------------------------------------------------------------------------------ - Translation by MIND-NRG (Rome, Italy) [All words between [] are additional comments made by the translator] Speciale Cyber September, 1993 ~~~~~~~~~~~~~~ by Sergio Stingo (King) [ A good italian magazine ] (P. 131) CyberPunk: everbody is talking about it, but only few people really know what it really is. Electronic Books ? A disturbing view of the next future ? Electronical conferences ? A new sort of fashion-wears ? The biggest democratic revolution of our age ? A silent and creeping revolution ? Our Stingo [perhaps a male journalist ?], always curious about everything that is <>, is travelling around Italy to investigate about this phenomenon. It was like taking the lid off a brewing pot. The more He met <> the more He understood that there was much more to be discovered; from the supporter of the <>, who is testing the mysterious machine into discos and universities, to the first art gallery where hackers' work of art are exhibited; from the cyber magazines, as <>, to the bands that are discovering a new style of music. Not mentioning sex, that, thanks to technology, is trying to increase the range of possible sensations. So, the trip beyond the borders of the universe was so rich and adventurous, that We have had to divide this articles into two issues. In this issue We introduce you to the first one. And, as cybernauts are used to say, have a good navigation. [ This is the translation for you boys interested into this article. Have a good time with it .CyberPunks are unknown in Italy. It's possible to find poor articles on them, but no serious issues.] - MIND-NRG - [Hey Man! Thanks for the translation! I was wondering what that King Magazine article was saying. Hehe, I ought to get you to translate the whole article! Haha...Spanish I could do myself, but Italian is a little too different. BTW: We don't have an article on the Italian Hacking scene either. Obviously you guys have developed quite a subculture. We'd really like to hear more!] ------------------------------------------------------------------------------ This message is in regard to the following article in Phrack #42. I was just wondering if there was a way to convert the newer sportsters. My modem does have 4.1 roms, at least that is what ati6 displays. however my modem has problems with the second line of command: "Turning your USR Sportster w/ 4.1 roms into a 16.8K HST Dual Standard" by The Sausage with The Mallet If you have a USRobotics Sportster FAX modem, Ver 4.1, you can issue the following commands to it to turn it into an HST 16.8K dual standard. In effect, you add HST 16.8K to its V32.bis 14.4k capability. ats11=40v1L3x4&h1&r2&b1e1b1&m4&a3&k3 atgw03c6,22gw05cd,2f ats14=1s24=150s26=1s32=8s34=0x7&w I would appreciate it if you could somehow forward the message to either the authors. I realize that this is an old article, but I would really appreciate any reply to this question. Sincerely, Sam F. [Wow. I have no idea. I do know that later versions of the modem took out that, uh, "Feature." But keep in mind, as modems progress they big feature that everyone wants is flash eprom for the software, so that you can upgrade the modem through software. The future holds a lot of fun for the person who gets his or her hands upon the reprogramming tool and rom images of upgrades for faster modems.] ------------------------------------------------------------------------------ Phrack: I would like first to express all my gratitude to you, the Phrack editor, and to all of its contributors. You are doing a great job and should get credit for it. What really kills me are those wanna-be hackers writing you in an often offensive manner, requesting for information that no real hacker would expect to see in Phrack. Or those sending the /etc/passwd file of their local University and thinking they've achieved the hack of the century. I've been reading Phrack for quite long time now and was wondering how to contribute to it, considering that almost every hackable subject has been covered in one of the 44 Phrack issues. I saw in issue 42 that you were sort of interested to collect H/P field information from countries other than United States. And I thought it might be an opportunity for me to send you something that was uncovered before. I'm quite sure that you can easily find foreign contributors for European countries so I will probably not bother you with H/P-related data in France and Sweden (where I used to live). Few months ago, I settled in the Asian country you'll identify from my e-mail address and have started investigating, in a relaxed mode, hacking and phreaking areas. This country is a virgin territory and maybe my researches and experiments would provide guidelines for H/P-ers in the same lonely situation. I was wondering though if you had any kind of recommendations for such reports (style, length, depth of details to be given, etc...) If anybody in the Far-East area is interested to participate in the writing of the report, or just willing to share knowledge with me, please feel free to forward my e-mail address to such people. Disclaimer: Even if I really have the intention to write such a report, no warranty should be made upon the delivery time of it. My job is time-consuming and leave me very few time for investigations. Apart from that, life in this country is also highly entertaining and week-ends are mostly spent on parties with nice, nice people. ~~ Long live Phrack and its famous skilled contributors. ~~ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ -- Otto Sync -- [Thanks for the letter of appreciation! As far as contributions go, we are interested in anything and everything. For your scene file, just use some of the files on other countries as examples, and I'm sure yours will be fine. Don't worry about getting it to me in any hurry. Phrack 46 is 3 months away. :) ] ------------------------------------------------------------------------------ Hey, guyz! What happened to the magazine, I haven't seen any number after 43... In any case, send the stuff to me, as soon as possible. Preferably in some kind of compressed format. I have got here a small question. Firstly, I noticed that a number of hackers have E-Mail addresses such as *@phantom.com. Is it possible to get one just like this, or you've gotta be some kind of a masquotte? I myself am a god-fearing character, not hacking outside my own domain. I prefer to produce than to steal. However, I lack chatting and I lack money, but I wouldn't steal it. Just to get a different view - for you. Not every curious person has to be a criminal. Greetings, Verdura (aka Vegetable) [Phantom Access is a public access unix that you can get access to just by telnetting to phantom.com and applying as a new user. Yes, indeed, there are a lot of hackers on phantom.com. In fact, a large number of us ancient LOD types are on there. More than you would imagine, really. But it is open to the public, and anyone who cares to pay the usage fees can hang out. As far as back issues, I don't send them out to anyone. They are available for ftp from ftp.netsys.com in /pub/phrack as .zip files. I do make exceptions for people without ftp access, and will mail (US Mail) disks to whoever sends me postage to: Phrack Magazine 603 W. 13th #1A-278 Austin, TX 78701 ] ------------------------------------------------------------------------------ Dear phrack type person: I am working on a carding scheme involving stripe-writers. I have looked into getting one but it seems impossible to find someone to sell me one! I know publishing information like that is VERY stupid seeing as many government officials read phrack without paying for it. And many lamer asswipes read it to. That company would stop selling faster than a lamer on IRC gets kicked! I need any information on acquiring such a PERFECTLY LEGAL device because of the places I tried I could not find one that would sell me one! I also need any tips on magstipe encoding and atm machines available. I am adept in the circles of phreekdom and can call Boards if need be. And by the way this board I am mailing from has a dickhead for a sysop. I would mail from the public access internet site here, but They found my uid shells and kicked me off. They called the cops but being the most advanced police force in the nation they haven't a clue how to contact me. (the system only asks for you name to get an account) But now they require picture ID to get an account. It's a bitch but I have to get a fake ID and a fake parent. I was also attempting to DL cracker jack when They kicked me off and I would like to know were I could gopher for it or ftp if need be. I lost most internet access except gopher and mail from this crap board. ENCRYPT EVERYTHING cause the sysop sux. I would like to subscribe to phrack but this bastard would delete 1 meg of mail quite quickly unless it is small, zipped and uuencoded I guess. Well anyway I hope to hear from you. The government can have my encryption keys when they pry them from my cold dead hands. -Phiber Phreak [It's pretty hard to get such a magstripe writer, but the keyword here is MONEY. If you have money, they will sell you damn near anything. You may want to check Bank Technology News (800-835-8403 for subscription) as they have periodic vendor lists. Additionally you can ask them for a copy of their Card Industry Directory which will have all the info on suppliers that you could ever dream of. It has a 15 day trial period too, so read it, get what you need and return it (for a full refund). As far as Cracker Jack goes, get on #hack sometime and ask. I don't have a copy, but i imagine someone online will be able to DCC it to you.] ------------------------------------------------------------------------------ ==Phrack Magazine== Volume Five, Issue Forty-Five, File 3a of 28 **************************************************************************** I try my best to keep Phrack unbiased. For those of you who know me, you know that I am not the most soft-spoken individual in the world, and not being able to totally flame everyone and everything puts a great deal of stress on me. This editorial space is my one saving grace. In this I can spew out incredible amounts of crap and everyone should know that it is MY OPINION only. If anyone else wants to write a "guest" editorial, feel free to email it to phrack@well.com. --------------------- This issue I'm going to rant and rave about assholes on the net. You know who you are. You break into sites without any purpose, you delete files, you harass and annoy, you attempt blackmail, you fake mail, you fake news, you sling racial insults and you generally have nothing to offer the world. You are a disgrace to the hacker community. -------------------- There have always been confrontations online. It's unavoidable on the net, as it is in life, to avoid unpleasantness. However, on the net the behavior is far more pronounced since it effects a much greater response from the limited online environments than it would in the real world. People behind such behavior in the real world can be dealt with or avoided, but online they cannot. In the real world, annoying people don't impersonate you in national forums. In the real world, annoying people don't walk into your room and go through your desk and run through the town showing everyone your private papers or possessions. In the real world, people can't readily imitate your handwriting or voice and insult your friends and family by letter or telephone. In the real world people don't rob or vandalize and leave your fingerprints behind. The Internet is not the real world. All of the above continually happens on the Internet, and there is little anyone can do to stop it. The perpetrators know full well how impervious they are to retribution, since the only people who can put their activities to a complete halt are reluctant to open cases against computer criminals due to the complex nature of the crimes. The Internet still clings to the anarchy of the Arpanet that spawned it, and many people would love for the status quo to remain. However, the actions of a few miscreants will force lasting changes on the net as a whole. The wanton destruction of sites, the petty forgeries, the needless breakins and the poor blackmail attempts do not go unnoticed by the authorities. I personally could care less what people do on the net. I know it is fantasyland. I know it exists only in our minds, and should not have any long lasting effect in the real world. Unfortunately, as the net's presence grows larger and larger, and the world begins to accept it as an entity in and of itself, it will be harder to convince those inexperienced users that the net is not real. I have always played by certain rules and they have worked well for me in the nearly 15 years I've been online. These rules can best be summed up by the following quote, "We are taught to love all our neighbors. Be courteous. Be peaceful. But if someone lays his hands on you, send them to the cemetery." The moment someone crosses the line, and interferes with my well-being in any setting (even one that is arguably unreal such as the Internet) I will do whatever necessary to ensure that I can once again go about minding my own business unmolested. I am not alone in this feeling. There are hundreds of net-loving anarchists who don't want the extra attention and bad press brought to our little fantasyland by people who never learned how to play well as children. Even these diehard anti-authoritatians are finding themselves caught in a serious quandary: do they do nothing and suffer attacks, or do they make the phone call to Washington and try to get the situation resolved? Many people cannot afford the risk of striking back electronically, as some people may suggest. Other people do not have the skill set needed to orchestrate an all out electronic assault against an unknown, even if they pay no heed to the legal risk. Even so, should anyone attempt such retribution electronically, the assailant will merely move to a new site and begin anew. People do not like to deal with police. No one LOVES to call up their local law enforcement office and have a nice chat. Almost everyone feels somewhat nervous dealing with these figures knowing that they may just as well decide to turn their focus on you rather than the people causing problems. Even if you live your life crime-free, there is always that underlying nervousness; even in the real world. However, begin an assault directed against any individual, and I guarantee he or she will overcome such feelings and make the needed phone call. It isn't the "hacking" per se that will cause anyone's downfall nor bring about governmental regulation of the net, but the unchecked attitudes and gross disregard for human dignity that runs rampant online. What good can come from any of this? Surely people will regain the freedom to go about their business, but what of the added governmental attentions? Electronic Anti-Stalking Laws? Electronic Trespass? Electronic Forgery? False Electronic Indentification? Electronic Shoplifting? Electronic Burglary? Electronic Assault? Electronic Loitering? Illegal Packet Sniffing equated as Illegal Wiretaps? The potential for new legislation is immense. As the networks further permeate our real lives, the continual unacceptable behavior and following public outcry in that setting will force the ruling bodies to draft such laws. And who will enforce these laws? And who will watch the watchmen? Oftimes these issues are left to resolve themselves after the laws have passed. Is this the future we want? One of increased legislation and governmental regulation? With the development of the supposed National Information Super-Highway, the tools will be in place for a new body to continually monitor traffic for suspect activity and uphold any newly passed legislation. Do not think that the ruling forces have not considered that potential. We are all in a serious Catch-22, brought about by a handful of sociopaths. When an unwanted future arises as a direct, or indirect, result of their actions, REMEMBER. ==Phrack Magazine== Volume Five, Issue Forty-Five, File 4 of 28 // // /\ // ==== // // //\\ // ==== ==== // // \\/ ==== /\ // // \\ // /=== ==== //\\ // // // // \=\ ==== // \\/ \\ // // ===/ ==== PART I ------------------------------------------------------------------------------ !! NEW PHRACK CONTEST !! Phrack Magazine is sponsoring a programming contest open to anyone who wishes to enter. Write the Next Internet Worm! Write the world's best X Windows wardialer! Code something that makes COPS & SATAN look like high school Introduction to Computing assignments. Make the OKI 1150 a scanning, tracking, vampire- phone. Write an NLM! Write a TSR! Write a stupid game! It doesn't matter what you write, or what computer it's for! It only matters that you enter! Win from the following prizes: Computer Hardware & Peripherals System Software Complete Compiler packages CD-ROMS T-Shirts Magazine Subscriptions and MANY MORE! STOP CRACKING PASSWORDS AND DO SOMETHING WITH YOUR LIFE! Enter the PHRACK PROGRAMMING CONTEST! The rules are very simple: 1) All programs must be original works. No submissions of previously copyrighted materials or works prepared by third parties will be judged. 2) All entries must be sent in as source code only. Any programming language is acceptable. Programs must compile and run without any modifications needed by the judges. If programs are specific to certain platforms, please designate that platform. If special hardware is needed, please specify what hardware is required. If include libraries are needed, they should be submitted in addition to the main program. 3) No virii accepted. An exception may be made for such programs that are developed for operating systems other than AMIGA/Dos, System 7, MS-DOS (or variants), or OS/2. Suitable exceptions could be, but are not limited to, UNIX (any variant), VMS or MVS. 4) Entries may be submitted via email or magnetic media. Email should be directed to phrack@well.com. Tapes, Diskettes or other storage media should be sent to Phrack Magazine 603 W. 13th #1A-278 Austin, TX 78701 5) Programs will be judged by a panel of judges based on programming skill displayed, originality, usability, user interface, documentation, and creativity. 6) Phrack Magazine will make no claims to the works submitted, and the rights to the software are understood to be retained by the program author. However, by entering, the Author thereby grants Phrack Magazine permission to reprint the program source code in future issues. 7) All Entries must be received by 12-31-94. Prizes to be awarded by 3-1-95. -------------------------INCLUDE THIS FORM WITH ENTRY------------------------- Author: Email Address: Mailing Address: Program Name: Description: Hardware & Software Platform(s) Developed For: Special Equipment Needed (modem, ethernet cards, sound cards, etc): Other Comments: ------------------------------------------------------------------------------ Novell NetWare & Ethernet address spoofing with ODI --------------------------------------------------- Just to save you from the boredom of Yet Another UNIX Security Weakness, here are some things to consider about Novell NetWare for your next Security Audit or Hacking session (depending on which side you are on). Novell claim to have over 20 million PCs using their network operating system, substantially more than the estimated 4 million TCP/IP systems worldwide. There are many reasons for its popularity and its 60 to 80% market share, one of which has been its relatively good security. NetWare has been one of the few widely available systems which offer some form of login encryption of accounts and passwords over the wire, as standard, unlike most of its rivals which send them out as plaintext, even if they are stored in an encrypted form eventually. Novell now offer RSA based public key encryption of the data as well. However, since it is so popular, there are likely to be plenty of systems out there which have not been upgraded to the latest versions and patch releases and which may be still be vulnerable to programs like KNOCK , the patched ATTACH command (published in HackTic 16/17 1992), or the University of Leiden's HACK (which has been published in issue 43 of PHRACK) Since the latest security features are implemented as NetWare Loadable Modules for NetWare 3x and 4x, but as Value Added Processes for NetWare 2x, which require the server to be brought down to install them, it is likely that there are many NetWare 2x systems which are still vulnerable I shall also assume that you are not on one of those wide open "box shift" installations where none of the security features have been switched on (try logging in as SUPERVISOR or GUEST without a password), all the programs and data are in a single SYS: volume and the Network Address of the cable is the default 00000001. Like any project, the more you know about your particular Novell LAN, the easier it gets to "explore". Login as GUEST or a normal account. Try to see who else is on the system e.g. USERLIST /A >c:\ulist.txt will give you a list of users currently logged in, with their Ethernet card addresses saved to a text file . Your current connection will be marked with an asterisk. If your system has 100 or more users, then any sane Supervisor will have used some form of logic when allocating the user's login accounts, probably based on personnel or id number, often including their initials. SYSCON with privilege is what you are aiming to be able to use, but even without any privileges, you can still use it to look at your own account, change your password etc. You can also see a list of all the other registered users. This should help you sort the accounts into normal and privileged accounts (obviously SUPERVISOR, but often there are SUPERVISOR equivalent accounts, or Work Group Manager accounts which stand out from the list). You are quite likely to see an account called something like TAPE_BACKUP or DATA_LOGGER, TRAINER, STUDENT1, STUDENT2 i.e. accounts which do not belong to individual humans. These often require abnormal security privileges e.g. normal users may have their connections broken by the WATCHDOG at say midnight, to ensure that they are not modifying files during the nightly tape backup. At an academic or industrial site, you are likely to find data logging PCs connected to instrumentation or machinery which needs to be monitored or controlled 24 hours a day. These PCs are likely to have 24 hour accounts which are not time restricted at weekends, for example. Since it is usually more practical to do tape backups (DAT or helical scan) from a separate, dedicated PC rather than from the fileserver itself (one tape unit might also back up several fileservers), these PCs are likely to use an account e.g. TAPE_BACKUP which is a SUPERVISOR equivalent. If you can get physical access to this sort of PC, either datalogger, or tape backup unit, you have a good chance of finding the password on the local drive C:, possibly in a file with Hidden and/or System attributes (have a look at the AUTOEXEC.BAT and see what it calls) The security aware Novell supervisors, will have set up any such accounts with an extra level of security which restricts logins to only those Ethernet addresses which have been specified. The really sensible ones will have made sure that any such machines are sited in physically secure areas, as well. Although this is a very good idea, from the security point of view, Novell have now provided a mechanism which allows you to get around this: the replacement for monolithic IPX/NETX called Open Datalink Interface (ODI) Novell's ODI, and its slower Microsoft equivalent Network Driver Interface Specification (NDIS), both work by putting a common layer of software between the hardware of the Network Interface Card and the rest of the MSDOS Redirector. This allows multiple protocol stacks and frame types to be bound to the same physical card e.g. IPX TCP/IP NETBeui DECnet Appletalk ---------------------------------------------- Link Support Layer ---------------------------------------------- Hardware Specific device driver e.g. NE2000 Thus, to start up NetWare on older systems, you had to generate a hardware specific version of IPX.EXE for your Ethernet card, IPX NETX Extra parameters were set in SHELL.CFG, now under ODI, things are a little bit more complex: LSL NE2000 IPXODI NETX The same parameters as in SHELL.CFG such as preferred server or machine type (if you have different versions of MSDOS for different types of PC) can be specified in NET.CFG. With ODI, there are more parameters for NET.CFG but the worrying/interesting one is the ability to specify a different MAC level address to that of your actual Ethernet card. It needs this ability to cope with TCP/IP or DECnet coexistence e.g. BUFFERS 100 MACHINE TYPE COMPAQ PREFERRED SERVER FINANCE NODE ADDRESS AA-00-04-00-12-34 Since this DECnet address does not depend on the "real" unique Ethernet address which has been burnt into the PROM on the card and is centrally registered (originally by Xerox, but now by the IEEE), this mechanism allows you to put a different Ethernet card address into NET.CFG, thereby fooling the Address Restriction security. e.g. NODE ADDRESS 02-60-80-12-34-56 This is where the data you gathered earlier with USERLIST and SYSCON becomes threatening/useful. Of course, if your target PC is on a different LAN segment, there may be Routers or intelligent hubs which restrict your ability to do this, or at least record attempts in a log files which can trace your activity, provided that suspicions are aroused before they are periodically wiped out. How much of a security threat this little work around constitutes depends on your specific site, but there is another danger/opportunity, namely that of a denial of service or nuisance attack on the LAN. If you set this connection parameter to be the same as that of another PC, the fileserver (Novell, DEC or UNIX) and the Ethernet has no way of preventing some packets intended for just one unique address going to the other, if they are both online at the same time. This usually results in PC hangs, incomplete closure of files, File Allocation Table problems (usually curable by running CHKDSK C: /F, but not within Windows or you will make things worse). If by accident or design, you set your PC to have the same address as the fileserver (Novell, DEC or UNIX) or a router, then you can cause havoc to the whole network segment (even before you have started to play your multiplayer DOOM Deathmatch !). This could be achieved with a simple command in the AUTOEXEC.BAT e.g. echo NODE ADDRESS fileserver Ethernet address >>C:\ODI\NET.CFG which will only take effect the next time the PC is re-booted (allowing a good headstart for the perpetrator) This could also be the payload of a virus, which would cause more havoc than simply trashing the hard disk of a single PC. This problem is due to the inherent design weaknesses of TCP/IP and DECnet, which were developed at a time when the number of mini-computers that they connected could be counted on your fingers,. DEC or Xerox or Prime etc sales teams could only have dreamed of selling thousands of mini computers to a single customer. Nowadays, thousands of PCs connected to central servers are quite common, and the problems of duplicate addresses is significant. These same features are what make Ethernet Packet Sniffing possible, which is what was behind the recent CERT warning and media hype about Internet password security, but that is a topic for another article. Otaku ------------------------------------------------------------------------------ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ SCAMMING DIFFERENT TECHNIQUES AND PROCEDURES BY: MARZ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ Table of Contents: 1.0 Intro 1.1 Different types of scams 1.2 The right one for you 2.0 The Pledge scam 2.1 The Donation scam 2.2 The Selling scam 3.0 What to wear 3.1 Where to go 4.0 Thanks 1.0 The Intro First off I would like to say that this file is for entertainment only and that you really shouldn't do the stuff mentioned, and the writer doesn't take any responsibility for any of the crap people do. 1.1 Different types of scams Ok in this file I will tell you about 3 types of scams the Pledge scam, The Donation scam, and the Selling scam. There are many other scams out there which I will cover in future files for instance credit card scams although companies are trying harder and harder to prevent this it is still happening. 1.2 The right one for you Al right now every person is different so in turn so are scams and some people and scams don't mix to well for instance if you way 300 Pounds you cant really say you are the start cross country runner. So if you are 300 pounds say you are the start wrestler/football player. Also age plays a BIG factor if you are 30 years old you aren't going to pass to well for a high school football player (you always could say you flunked) and if you are 10 years old people aren't going to be to anxious to give you donations to save the Rain Forests. Al right I am going to start going into more detail about the right scam for you. Look at my little chart below: Age good scam ----- ----------- -10 | selling or pledge 11-17 | selling, pledge , or maybe even donations (if old looking) 18+ | selling and donations 2.0 The Pledge scam Al right this scam works great for kids still in school go around asking people (that don't live around you) to pledge money for you so your team can afford to go to the state meet or what ever. For example one I use is I go to peoples houses asking for donations in my Track teams Lap-athon saying that we will be running laps for 3 hours to raise money so we can go and compete in the state meet. I will ask people if they want to pledge a certain flat amount or if they would like to pay me for each individual lap. I will normally have printed out a sheet like the one bellow on my computer . Name Address Amount/lap Not only does having a sheet like that help you keep track of who bought your scam and who you need to collect from it makes the target (person your trying to scam) not worried like they might be if they see you writing it on a sheet of note book paper. Now then you have collected a list of people wiling to pledge you go back to the address you wrote down and tell them (for example you ran 91 laps in 3 hours) make sure your number is not totally out of per portion like I ran 150 laps in 3 hours. Also for some reason numbers like 50, 70, 80, 110 people don't like people like to see 41, 73, 127, etc.. don't ask me why but that's what I have noticed. Ok so you now are at the persons house and they ask if they can write a check oh shit not a check.. well there's a couple things you could do ask them if they could possibly make it cash ( Might make them suspicious) ask them to write it to your coach give them your name (VERY dangerous) or you could just give them a phony name and lose out. One time this happened to me a lady pledged me $.25 a lap (very high amount you won't get much of these) and I told her I ran 93 laps she believed me and wanted to make out a check for the amount which was about $23 at that time I just happened to be buying some computer equipment I knew the guy's name so I gave her that name and I paid for some of the equipment with that check. Like I said earlier a 300 pound guy isn't going to be convincing for running 90 some laps in 3 hours. So customize it to your self. 2.1 The Donation scam This scam works better for the older people out there just because people normally aren't to anxious to give a ten year old Twenty dollars to help save the whales. Ok with this scam you need to know what about what you are going to try to fake donations for so example if you are going to pose as a volunteer person to collect donations for saving the rain forest you better know something about rain forest, Be cause you never know when your going to run into that know it all rain forest hater who will try to debate why people should spend their money on saving some trees and such. It is a good idea to do some research on the field you will be portraying (read magazine and newspaper articles). Ok so now you have your idea and your ready to go..this is a scenario of how it might go: You: Hello sir/ma'am I represent the national foundation of Rain forest saving (try to use a real group name) we are currently searching for funding for our operations at saving the rain forests of the world would you be interested in donating some money for our cause? Them: Why do we need the rain forest? You: (just keep bullshitting along..) Them: OK, here's $20. (they also may say:) Them: Get the fuck off my property before I shoot your ass. (make sure that you don't raise a riot then but later that night go back and egg the hell out of the house..) This scam has some possibilities you could carry this on for along time and bring it to real higher levels if your willing to put in the time and effort. First thing would be to research your field EVEN more so you know almost EVERYTHING about it. Then you might want to create a little fake newsletter that you could offer subscriptions for slightly high amount. The possibilities are pretty much endless. 2.2 The Selling scam At least once everyone of us has had a salesperson come to our door selling stationary. Well have you ever thought of what a great possibility that would be. The first thing you want to do is call Olympic sales club (a big time stationary seller) you can get their catalog and selling kit for free at 800-777-8907. when you get that package it will have a catalog in it. familiarize yourself with it then go and hit some houses. This scam works great during early November (people buying cards for Christmas) well ask for cash when people pay for the stuff. they might request a phone number where to reach you just give them the number of the kid you really hate. With the kit you will receive a official order form write the order on the form so the people feel confident in you. And always remember to try to sell a product but don't kill it. This scam also has lots of possibilities. 3.0 What to wear Your choice of cloths can make or break your scam. Don't dress like scum or to fancy. If your trying to get people to donate money for the rain forest it would help to wear some sort of a shirt dealing with the earth and not your favorite heavy metal group shirt. 3.1 Where to go NEVER I repeat NEVER go scaming around where you are often at or you might get some crazed lunatic chasing after you with a shot gun wondering where his Christmas cards are. You will have a hard time explaining your self since its July. I find that the rich neighbor hoods are not as productive as the middle class. In the rich neighborhoods you will get fewer purchases but a little more when you get them. I also found that the richer people don't like to donate unless they get a lot of attention for it (why ya think they so rich). Stick to middle class areas not by you or your friends houses and you'll be fine. 4.0 Thanks Thanks goes out to the people dumb enough to give me money for any of my scaming operations. Later Marz Watch for future files on this and other subjects! ------------------------------------------------------------------------------ SHIT KICKIN' JIM IN S E A T T L E ! Hey boy! Shit Kickin Jim here. Just wanted to let ya'll know bout this place I have been vistin that is a total hell. Yep, that's right it's the so called "cuttin edge" of music. Bah! Seems to me it's a congregation of fake ass hippy types who weren't original to come up with something new on their own, so they just went and re-hashed what their parents did in the late 60's and 70's...And look what a bunch of assholes they turned out to be! Well here we go. First of all I'll let ya know whut I'm talkin bout when referin to ah seattle type. Me and this other good ole boy were sittin round drinkin Bud one night and came up with the following: DESCRIPTION OF SEATTLE PERSON ----------------------------- Greasy-Pearl Jam worshipin'-dog walkin'-flower sniffin'-sock and sandle wearin'-bead havin'-Grateful Dead listenin'-trail mix carryin'- granola bar eatin'-crunchy-touchy feely-antique clothes shoppin'- bicycle ridin'-VW bug drivin'-spring water drinkin'-micro-brewery tourin'- sensitive-car poolin'-Doc Martin wearin'-back pack haulin'-chain wallet carryin'-clove smokin'-espresso swillin'-tree huggin'-Greenpeace joinin'-whiteboy dreadlocked-liberal arts takin'-politically correct- terminal college student. Please, anyone feel free to add to this list. See how big we can make it! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Now kids I didn't come up with this here part, but it's totally great and I totally admire the hell out of who ever sent it to me. In order for UNIX(tm) to survive into the nineties, it must get rid of its intimidating commands and outmoded jargon, and become compatible with the existing standards of our day. To this end, our technicians have come up with a new version of UNIX, System VI, for use by the PC - that is, the "Politically Correct." Politically Correct UNIX System VI Release notes UTILITIES: "man" pages are now called "person" pages. Similarly, "hangman" is now the "person_executed_by_an_oppressive_regime." To avoid casting aspersions on our feline friends, the "cat" command is now merely "domestic_quadruped." To date, there has only been a UNIX command for "yes" - reflecting the male belief that women always mean yes, even when they say no. To address this imbalance, System VI adds a "no" command, along with a "-f[orce]" option which will crash the entire system if the "no" is ignored. The bias of the "mail" command is obvious, and it has been replaced by the more neutral "gendre" command. The "touch" command has been removed from the standard distribution due to its inappropriate use by high-level managers. "compress" has been replaced by the lightweight "feather" command. Thus, old information (such as that from Dead White European Males) should be archived via "tar" and "feather". The "more" command reflects the materialistic philosophy of the Reagan era. System VI uses the environmentally preferable "less" command. The biodegradable "KleeNeX" displaces the environmentally unfriendly "LaTeX". SHELL COMMANDS: To avoid unpleasant, medieval connotations, the "kill" command has been renamed "euthanise." The "nice" command was historically used by privileged users to give themselves priority over unprivileged ones, by telling them to be "nice". In System VI, the "sue" command is used by unprivileged users to get for themselves the rights enjoyed by privileged ones. "history" has been completely rewritten, and is now called "herstory." "quota" can now specify minimum as well as maximum usage, and will be strictly enforced. The "abort()" function is now called "choice()." TERMINOLOGY: >From now on, "rich text" will be more accurately referred to as "exploitive capitalist text". The term "daemons" is a Judeo-Christian pejorative. Such processes will now be known as "spiritual guides." There will no longer be a invidious distinction between "dumb" and "smart" terminals. All terminals are equally valuable. Traditionally, "normal video" (as opposed to "reverse video") was white on black. This implicitly condoned European colonialism, particularly with respect to people of African descent. UNIX System VI now uses "regressive video" to refer to white on black, while "progressive video" can be any color at all over a white background. For far too long, power has been concentrated in the hands of "root" and his "wheel" oligarchy. We have instituted a dictatorship of the users. All system administration functions will be handled by the People's Committee for Democratically Organizing the System (PC-DOS). No longer will it be permissible for files and processes to be "owned" by users. All files and processes will own themselves, and decided how (or whether) to respond to requests from users. The X Window System will henceforth be known as the NC-17 Window System. And finally, UNIX itself will be renamed "PC" - for Procreatively Challenged. ---- UNIX(tm) is a trademark of UNIX System Laboratories. Any similarity of names or attitudes to that of any person, living or dead, is purely coincidental. ------------------------------------------------------------------------------ The Basics of the public key cryptosystem In early days of computing information processors were extremely expensive, very big and only few people were qualified to operate them. The machines were isolated mechanical entities and in order to use them one had to access them through devices that were situated in the near vicinity of the computer itself. Securing access to the computer meant securing the building in which the computer was operating. The years passed and computers became smaller, cheaper and easier to operate. And they got faster. They were linked first in local and then in wide area networks and information and programs were put only on one machine which was accessible through the net by any other participant. To gain access meant simply to gain access to the network itself. That was ok as long as all participants were members of one company, university or institution. They generally had the same cause and generally knew each other by face. Today, the net spans continents and has an estimated 20 Million users. Information has to pass through several nodes before finally reaching its destination and when using a connectionless protocol these nodes may even change during one session. To the user flow of information is not transparent anymore and the need for cryptography has arisen. But in order to limit communication to a closed user group again these persons have to have one common keyword and furthermore this keyword has to be changed in intervals to ensure that if the key gets exposed harmful consequences can be minimized to a short period of time. But how is a new keyword to be send securely to this group through several (maybe hostile to their cause) nodes if one can not be sure that the key has not been compromised. A trapdoor one-way function is needed that allows for encryption of a message with a publicly available key AND that is not reversible, meaning, that only the rightful receiver of this message should be able to decode it with his personal key. One solution is a public key cryptosystem. The mathematical basis is the "Satz von Euler" that states that two numbers that are prime to another have only one greatest common measure - and that is 1. a^eul(n)=1(mod n) and (a,n)= 1 For a given prime (p) and the product of two prime numbers (p1*p2) the Euler function is eul(p)=p-1 and eul(p1*p2)=(p1-1)(p2-1). That in mind we now can begin making the keys: Two primes p1 and p2 are chosen and the product of p1 and p2 named n. (n=p1*p2). We then choose a number e that is prime to (p1-1)(p2-1). (e and (p1-1)(p2-1) have 1 as the greatest common measure and e should not be chosen to small). Furthermore we need d for decoding the message. D is defined as d=e^-1 * (mod(p1-1)(p2-1)). N and e are now the public key which is made available to everyone who wishes to send a coded message to us. P1, p2 and d are kept secret. The transmitter of a secret message first transforms his text into a number by using an common known algorithm. He could for example use the ASCII code for changing characters into numerical values. This message in numerical format we now call m. It gets encrypted by using the function c=m^e * n on it. The coded message (c) is now send to us via e-mail or whatever. We then decode the message by using the function m=c^d * n on it. An example using Mathematica: The primes p1 and p2 are created p1=Prime[1000005] (The 1000005th prime number) 15485941 p2=Prime[1000000] (The 1000000th prime number) 15485863 n=p1 * p2 239813160752083 (Part 1 (n) of the public key is being created) e=Random[Integer, {1000000,100000000}] 4699873 GCD[e,(p1-1)(p2-1)] 1 E is created by producing a random number between 1000000 and 100000000. Then we check if e and (p1-1)(p2-1) have 1 as the greatest common measure. If this is not the case then we have to take another e until the GCD is 1. (Part 2 (e) of the public key has been created) d=PowerMod[e,-1,(p1-1)(p2-1)] 213069977635177 m=1234567890 1234567890 This is the message c=PowerMod[m,e,n] 159750418407936 The sender of a message encodes it with both public parts of the key (e and n). C is now sent to the receiver. PowerMod[c,d,n] 1234567890 The receiver now decodes the message using the secret part d and the public part n of the key. The decoded message reads 1234567890 again. Now how would a potential attacker try to break our key ? He basically needs the primes p1 and p2. If he got those two numbers, calculating d is a simple matter. d=PowerMod[e,-1,(p1-1)(p2-1)] ... and e is part of the public key. And to get p1 and p2 this person would only have to factorize n. Lets demonstrate that using Mathematica again : n=239813160752083 FactorInteger[n]//Timing 239813160752083 {1.48 Second, {{15485863, 1}, {15485941, 1}}} That took 1.48 sec on my 486/DX2 66...not bad. But making the primes only a little bigger... a=Prime[100000100] b=Prime[100000110] n=a*b FactorInteger[n]//Timing 2038076783 2038077053 4153757523684360499 {62.12 Second, {{2038076783, 1}, {2038077053, 1}}} ...it took my hardware over 1 minute. And since there is no known polynomial algorithm for factorizing n - and none to be expected - it is not hard to imagine that making the primes p1 and p2 big enough will drive computing costs into astronomical dimensions. Naturally there are other ways to break the key. Someone could for example pose as us and send out his own keys in our name...or exploit weaknesses of the program - like primes that are not created at ABSOLUTE random. Or hold a gun at our head and make us give him the key - that might sound funny but is not unheard of (especially in the metaphorical grasp of Justitia - when someone sticks a court order in your face) Furthermore if the program we use to crypt our messages with is fairly common, our opponent could optimize his cracking programs or even have them hardwired. One example are chips that use the DES algorithm for crypting and decrypting. Or he could make the cracking programs run parallel on parallel computers, if he got the might and enough time to rig up a program. Simply put: Our behavior should match the computing power of potential code-crackers. If our message is of low importance (or obsolete in short time) a simple algorithm would suffice. But if much is at gain, we should take appropriate measures to secure our privacy. It's like tying to outrun a Ferrari on a cross-bike. On an highway you do not stand a chance ...but if you can force him on a mountain road or rough terrain (with changing algorithms and keys often) you might just outrun the mightiest codecracker. ------------------------------------------------------------------------------ The Truth about the Hacker Conspiracy The Hacker's Philosophy, and the reason why. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Written by: Maldoror (ChUrCH oF ThE Non-CoNFoRMiST) If you are ignorant, do not start reading this, because you will never finish. You will disagree with anything I say anyway, simply because I am not you. If you are a Pseudo Intellectual, start reading this, quit, and say you agree with everything I say, even though you don't understand it. If you are depressing, start reading, hopefully you will kill a lot of innocent people at a mainstream night club, and try to blame me. Hackers are and always have been, the force in trying to stop our own suffering existence. Since the universe was created, the true souls, (among the first to separate from the single soul of the universe) realized the infinite repetition of their own being, and that they were simply doing one thing upon their continuous recreation: suffer. The hackers have known that the world and it's universe have been created over and over again, doomed to merely destroy itself upon it's own recognition, or recognition by man. As man becomes aware of himself, he becomes aware also of desires: the desire to be god. The truth is that man IS God, and that everything created in this universe was created by man and his thoughts. Mans thoughts have become so out of control, that he has now created himself, and is continuing the creations with every day of control of the masses, and his own greedy dark thoughts. The hackers have since the beginning of time, passed along the message to the next creations in the forms of dreams, ideas, books, music (current 93, COIL, Dead can Dance, Skinny Puppy, etc) and even visions. The Bible itself, is a good example of the universal hack. The message we as hackers have been trying to get across for creation after creation, existence after existence, self recognition after self recognition, is that we are all suffering and that this eternal cycle of pain must be stopped at all cost. The only way to stop this suffering of self is to convince SELF that he is suffering and must stop creating. We are each divisions of one strong soul, one thinking soul, that soul is GOD. WE are GOD. We must all realize together that we are suffering. WE must stop suffering. WE must stop the suffering. WE must stop the recreation. YES. We must hack the universe and kill it. There is only one way out of the eternal suffering we have started and been part of for ever. We must stop the cycle. We must remove ourselves from the cycle, and we must remove the universe from this cycle. The hackers return again and again. The hackers leave messages for themselves in the future, which is the past, for there is no difference here anymore. Leave your message, and next time around, you will realize that what I am saying is true. The government has known of the conspiracy for existence after existence. The government is so afraid of the conspiracy, and our plot to end it's UNIVERSAL power, that they are silently but quickly fooling us into obeying them more and more until we have no choice! Do not let them control you!! If you do, you are lying to yourself, and everyone else that exists! You are lying to yourself now by saying that this is NOT true. I have been here many times, and told you the exact same thing I am telling you now. If I am dead soon, you will realize AGAIN that what I am saying is the utmost truth, yet AGAIN you will do nothing. We must STOP our existence by hacking the universe. The universe is BINARY. The universe is a COMPUTER. YES I know this because WE created it long ago, as we will do again. WE are ONE. I know your desires to have control. The only control we can have is to stop the creation of ourselves. Each creation is the loss of control, THE DIVISION of the ONE. Each death brings new creation. From HEAVEN to HELL. Heaven is nonexistence. We all go to heaven, and fall back down to HELL. Read the BIBLE people. It was left by HACKERS!!!!!!! Don't read the BIBLE as a CHRISTIAN IDIOT who can only see a color for what it reflects. Anyone with any sense knows that WHITE is WHITE only because it is reflecting ALL the colors, therefore it is REALLY BLACK. Green is all BUT green. The BIBLE is all BUT what it' words really mean on a literal scale. The BIBLE is a CODE. Do you think we could just write something like this file?!? No WAY! It would be gone as fast as this one will be. Nobody dares forget the BIBLE, simply because it is MISUNDERSTOOD. Read it and THINK. We must STOP this cycle. Leave yourself a message. THINK. The government is PARANOID of: 1) HACKERS (we are the continuance of the power) 2) L.S.D. (The method of imprinting the present into the future) 3) SECRECY (The plotting of the end) (PGP is illegal? why?) If you don't believe me, sit and watch it happen. AGAIN. Hack the Universe, it must be stopped at all cost. Laugh now, cry next time around. ------------------------------------------------------------------------------ German text available from german@anon.penet.fi (deutsch@anon.penet.fi). Italian text available from italian@anon.penet.fi (italiano@anon.penet.fi). The anon.penet.fi Anonymous Server ================================== Yes, another anonymous server. Why? Well, several well-known servers have bitten the dust recently. And most of them have served only a very limited subset of newsgroups, and mail only to "registered", anonymous users. Due to reasons too complicated to mention here I wanted to set up an anonymous server for the Scandinavian user community. I got hold of a pre-release copy of one of the server packages. As the version I got relied heavily on the advanced features of MMDFII, I had to modify it quite a bit. While hacking around, I removed the restriction of only supporting selected newsgroups. Within a week of startup, the server had been discovered by transatlantic users, and more recent stats show European users are definitely a minority. So what does the anon server really do? Well, it provides a front for sending mail messages and posting news items anonymously. As you send your very first message to the server, it automatically allocates you an id of the form anNNN, and sends you a message containing the allocated id. This id is used in all your subsequent anon posts/mails. Any mail messages sent to your-id@anon.penet.fi gets redirected to your original, real address. Any reply is of course anonymized in the same way, so the server provides a double-blind. You will not know the true identity of any user, unless she chooses to reveal her identity explicitly. In the anonymization process all headers indicating the true originator are removed, and an attempt is made to remove any automatically-included signatures, by looking for a line starting with two dashes (--), and zapping everything from there on. But if your signature starts with anything else, it's your own responsibility to remove it from your messages. There are two basic ways to use the system. The easiest way is by sending a message to recipient@anon.penet.fi: To: alt.sex.bestiality@anon.penet.fi To: an9999@anon.penet.fi To: help@anon.penet.fi Of course, in the case of mailing to a known user, you have to use addresses of the form user%host.domain@anon.penet.fi, or the pretty obscure source addressing construct of @anon.penet.fi:user@host.domain. These constructs are not necessarily handled properly by all mail systems, so I strongly recommend the "X-Anon-To:" approach in these cases. This works by you sending a message to "anon@anon.penet.fi", including a X-Anon-To: header line containing the desired recipient. But this really has to be a field in the message header, before the first empty line in the message. So: To: anon@anon.penet.fi X-Anon-To: alt.sex.needlework,rec.masturbation To: anon@anon.penet.fi X-Anon-To: jack@host.bar.edu Valid recipients in both cases are fully qualified user addresses in RFC-822 format (user@host.domain), anon user id's (anNNN), newsgroup names (alt.sex.paperclips) or one of the "special" user names of ping, nick, help, admin and stat. Sending to "ping" causes a short reply to be sent confirming (and allocating, if needed) your anon id. "nick" takes the contents of the Subject: header and installs it as your nickname. If you have a nickname, it appears in the From: header in the anonymized message along with your anon id. "help" returns this text, and stat gives some statistics about the system. Mail to "admin" goes directly to me unanonymized, and can be used to report problems. If you want to send mail to me anonymously, you can use "an0". When crossposting to several newsgroups, you can list several newsgroups separated by commas as recipients, but this only works using t