Slashdot Mirror

The sad state of affairs is that there aren't that many good hacks anymore. The people who break into computers nowadays tend to be too stupid to realize what a good hack would be. Creativity and the script kid tend to be an Xor situation.

If you take a look at Attrition.org's mirror of web page defacements you'll notice that both the Senate's Teleconferencing Server( Mirror ) and Michigan Public Sexual Offender Query ( Mirror )were broken into in the past week or so. Imagine the fun that could be had with the two servers. Imagine the damage. But these geniuses (rackmount and ieet respectivly) decided the best use of access to these systems was to replace the homepages.

I hope that there will be hacks worth hearing about, instead of what seems to be the standard defacement. I guess actually programming is too hard for these script kids.

--

The sad state of affairs is that there aren't that many good hacks anymore. The people who break into computers nowadays tend to be too stupid to realize what a good hack would be. Creativity and the script kid tend to be an Xor situation.

If you take a look at Attrition.org's mirror of web page defacements you'll notice that both the Senate's Teleconferencing Server( Mirror ) and Michigan Public Sexual Offender Query ( Mirror )were broken into in the past week or so. Imagine the fun that could be had with the two servers. Imagine the damage. But these geniuses (rackmount and ieet respectivly) decided the best use of access to these systems was to replace the homepages.

I hope that there will be hacks worth hearing about, instead of what seems to be the standard defacement. I guess actually programming is too hard for these script kids.

--

Maybe I'm having an off day, but is this funny?
-
auto accident;
register voters;
static electricity;
struct by_lightning;
-
hahah, my sides...help
Sure I've seen most of this before....and it was just as stale then... I mean come on, a page of smileys?!

The GPL'd human code - muhaha, sedate me.
Anagrams...jesus, I need to sit down...

This is funny. So is this. In fact, most of attrition's gallery is.

But the GNU humour page?! Come on... I laughed harder when I rm -rf'd /usr/lib.

Maybe I'm having an off day, but is this funny?
-
auto accident;
register voters;
static electricity;
struct by_lightning;
-
hahah, my sides...help
Sure I've seen most of this before....and it was just as stale then... I mean come on, a page of smileys?!

The GPL'd human code - muhaha, sedate me.
Anagrams...jesus, I need to sit down...

This is funny. So is this. In fact, most of attrition's gallery is.

But the GNU humour page?! Come on... I laughed harder when I rm -rf'd /usr/lib.

This comment first appeared here...

Now as I've publicly said before, I will always back jericho on the facts about AntiOnline, but one thing JP said was interesting...

The fact that nearly every malicious hacker (or cracker if you prefer the term) dislikes AntiOnline is actually good for us, and is the exact position I want to be in. Some people even "joke" that I intentionally try to "piss off large groups of people at a time". Well, it's not just a joke, it's the truth. I think I'm pretty good at doing it too. We average between 200-500 intrusion attempts against one of our systems AN HOUR, and every time I piss another segment of the cyber-population off, that number skyrockets. We probably have one of the most targeted networks on the internet today, and we take full advantage of that. Do you think that we let the type of data that we're able to collect and log just go to waste? I don't ;-)

It's pretty simple to see through JP's claims here as to what is really making him money. He has purposely set up AntiOnline to be a target for hackers. It's a smart move, albeit probably not one he actually thought up but received, ironically, as a gift from the hacking community.

Say you've got a security product and you want to know how secure it really is. You want to test it in the wild. Well, you can't really do it thoroughly by yourself. You have to attack it in as many ways as you can think of, but you're just one person or group of people so you're not going to think of everything. So, what better than contacting JP and having him run your product as his site's protection and then seeing if it can hold up. That way you get many random attacks from anti-JP people and if you're really lucky some of those attacks will be very sophisticated and you will learn, before you go to market, how secure your security really is...

It is important to realize that by attempting to attack JP's site, you do, in effect allow him and whomever has paid him for his attack details, to better his reputation as THE place to go if you really want to test the security of your product.

So the best thing the hacker communtiy could do is NOT to attack his site. Because that's how he's making his money off of you.

This really is not a new idea. Government and military sites of a certain nature have spent countless hours attacking their own boxes. The only difference is that you, the hacker, are allowing JP's site to be even more successful off of the labor of the creative hacks that you have designed. Your work makes him money, not you.

Just a thought...

1) This whole dispute centers around something that was tangental to packetstorm's overall thrust. This was a site that published the newest texts and tools for security, updating that info every day.

2) The contents of that directory were not public. There was no link to that directory from any of the other pages at packetstorm. I used to read packetstorm everyday (now I get the same info from securityfocus.com) and had no idea that the directory existed. As far as I know, the only people who were aware of the existance of that directory were:

• a)Ken
• b)JP
• c)the people who's pages were archived in that directory.

3) THAT DIRECTORY WAS AN ARCHIVE OF SITES CRITICIZING JP'S LACK OF SKILLS. THESE SITES WERE ARCHIVED BECAUSE JP WAS THREATENING TO SUE THE MAINTAINERS. (HE DOES THAT TO *ANYONE* WHO RAISES QUESTIONS ABOUT HIS SKILLS.) THE ARCHIVE WAS AN ATTEMPT TO MAKE SURE THAT THE INFORMATION WOULD BE AVAILABLE EVEN IF THE OTHER SITES WERE SHUT DOWN. (Obviously, that backfired, and packetstorm got shut down, too.)

4) The reason harvard saw fit to take it down was that some of the archived sites contained photos similar to the palm pilot photos found at http://www.attrition.org/gallery/. It actually had some racier stuff, too, some with captions criticizing JP. Bad taste? Certainly. A threat to his family? No. So why complain to Harvard? He doesn't want to have people make fun of his skills.

5) The picture and information about JP's sister were information taken from the on-line edition of her school's yearbook. They were not offensive. If they were, he would have had grounds to sue the school, too. He didn't, and didn't threaten to, either. Why? The picture/info of his sister was not of consequence. JP only mentioned it in this interview (an others) in an attempt to disparage Ken's character.

Then let's take a look at the facts... Ken Williams posted a photo of his younger sister, along with her address. In response, JP wrote a letter to Harvard suggesting they take a look Ken's sight to make sure it met their acceptable use policy. The sight was removed. If I remember correctly, the only person claiming this is JohnV. everyone else involved is saying something else. I think you can get a better idea by going to attrition.org Disclaimer: This is true based on my memeory which may be faulty. As my wife will attest, I often start to leave the hose with out wallet, hat, shirt, pants, etc so don't take me at my word, check it out.....

Hacking for Girlies (some topless models were the pattern fill for the letters of their logo). Their most infamous action was taking down the new york times on 9-13-98. (a mirror of the defacement is here) Note the comments in the source code about Carolyn Meinel, one of JP's few advocates....her ethics are, um, questionable, too.

I love JP for his hard work and dedication to suing everyone who mentions his lame websites, http://www.anti*.com. I have been active in the shun antionline project and an avid reader of attrition.org. I went so far as to post a contest on my website (which isnt always up) to see who can get the most docs on JP. I now have his phone number and various other fun information. Id just like to ask JP why he lies, cheats, writes malicious stories, and blames most of the "evil hacker attacks" on actually decent innocent people. As for his shit filled Granny Hacker from heck business, its a load too if you couldnt figure it out. Someone broke into her computer and got her bash log and amazingly enough, she used DOS commands, but instead of stopping to see why they didnt work, she kept on using them over and over. She couldnt hack her way out of a wet, soggy paper bag if she had a chainsaw. JP is just a fraud. When he would chill on IRC in the utterly "3l33t" #hackphreak channel everyone would love to kick him out and ban him. JP has committed fraud numerous times, and I am dead serious. He steals content for his website and his "hacked archive" mirrors etc. He lied about tons of things, from "evil hackers" to source code. I remember one incident from a site that like segfault.org, mocked everything that is life, although it seemed a little closer to reality. They posted a story about some made up hacking group cracking into 30 consecutive top secret military servers, but put a comment in the HTML file that said "This is all bogus! -the management" and when lo and behold antionline had a news article about that group, they actually had cut the complete article (in the source), from the timestamp at the top to the last sentence, including the comment. You can see pictures and copies of the file on various sites. I dont have any serious questions because there are none to be asked. All I want to know is why he says he runs unix... when I have seen pictures of his shitty apartment which is filled with iMacs. I love you JP... you goat-fiending fag.

-love wh0rde

...and yet you do nothing to investigate this perception.

OK, well take it from someone who has then. JP, and his friend Carolyn, are the definition of shady. They are shameless self promoters, public image spin doctors, and can only be trusted to do what is best for themselves.

The first thing I asked when I read this was "Why on earth is /. giving JP another forum in which to convince the gullible that his mightily-spun version of everything is true?" This is not going to be an informative interview in the normal sense of the term. For those who already know JP, it will be nothing but another among many exhibitions of his spin-doctor skills. For those who don't know him, some may actually be decieved.

Why is he seeking this much publicity? Probably because his site is going down the tubes. Updates are anything but regular, the information available is the same stuff you can get anywhere (and in many cases, it's exactly the same information), and his investors may be getting a little antsy at all the hatred he's attracted in the community that he's claimed to be such a part of.

Anyway, if this is going to be a real interview, I'll play Mike Wallace and ask the tough questions:

John, how do you respond to the allegations made and supported by pretty convincing evidence that you've violated the copyright of numerous web news organizations by copy-pasting nearly (or in some cases, fully) verbatim, especially the cases of Discovery On-line, Hacker News Network, and Attrition?

...and yet you do nothing to investigate this perception.

OK, well take it from someone who has then. JP, and his friend Carolyn, are the definition of shady. They are shameless self promoters, public image spin doctors, and can only be trusted to do what is best for themselves.

The first thing I asked when I read this was "Why on earth is /. giving JP another forum in which to convince the gullible that his mightily-spun version of everything is true?" This is not going to be an informative interview in the normal sense of the term. For those who already know JP, it will be nothing but another among many exhibitions of his spin-doctor skills. For those who don't know him, some may actually be decieved.

Why is he seeking this much publicity? Probably because his site is going down the tubes. Updates are anything but regular, the information available is the same stuff you can get anywhere (and in many cases, it's exactly the same information), and his investors may be getting a little antsy at all the hatred he's attracted in the community that he's claimed to be such a part of.

Anyway, if this is going to be a real interview, I'll play Mike Wallace and ask the tough questions:

John, how do you respond to the allegations made and supported by pretty convincing evidence that you've violated the copyright of numerous web news organizations by copy-pasting nearly (or in some cases, fully) verbatim, especially the cases of Discovery On-line, Hacker News Network, and Attrition?

-- Give him Head? Be a Beacon?

can be found at attrition.org 's page. this is the IIS page tht had been put up on slackware's page.

go here to see the mirror at attrition.org

Taking Down the Internet in 30 Minutes for Dummies
IP Spoofing for Dummies
World Domination for Dummies

Attrition.org Gallery

Credits: Attrition.org


--

Taking Down the Internet in 30 Minutes for Dummies
IP Spoofing for Dummies
World Domination for Dummies

Attrition.org Gallery

Credits: Attrition.org


--

Taking Down the Internet in 30 Minutes for Dummies
IP Spoofing for Dummies
World Domination for Dummies

Attrition.org Gallery

Credits: Attrition.org


--

Taking Down the Internet in 30 Minutes for Dummies
IP Spoofing for Dummies
World Domination for Dummies

Attrition.org Gallery

Credits: Attrition.org


--

Taking Down the Internet in 30 Minutes for Dummies
IP Spoofing for Dummies
World Domination for Dummies

Attrition.org Gallery

Credits: Attrition.org


--

Hell, I don't care whether MS had no important data where he cracked, but that so many of the government agencies he cracked might have. The DOE only forced the ational labs to put in firewalls after congress go on their backs, and LLNL *finally* did that. Those people running it are lazy, incompitent people who lie to cover theimselves and regular steal equipment. The stories I've heard that go on in LLNL.. it just isn't sane.

It looks like that, since MS was compromised, that flipz has done a job on some other pages of note - many being military boxen, most on NT :) Here is attrition's "record" on flipz - it includes all the sites he(she?) has compromised and it also has what all of the pages look like. Neat stuff, imo ;)

This is from attrition.org's defacement mirror. I only listed the top 3 exploited OS's to save space:

-----
Note: Mass hacks involve defacing several domains, even though they are hosted by the same machine. This tends to obscure the actual counts of hacked systems. Take these numbers in stride..

08/1999

Win-NT - 106 - 35.93%
Solaris - 77 - 26.10%
Linux - 68 - 23.05%

09/1999

Win-NT - 82 - 32.54%
Linux - 72 - 28.57%
Solaris - 62 - 24.60%

-----

Interesting stuff for those looking for a secure webserver OS I guess. *shrug*

This is from attrition.org's defacement mirror. I only listed the top 3 exploited OS's to save space:

-----
Note: Mass hacks involve defacing several domains, even though they are hosted by the same machine. This tends to obscure the actual counts of hacked systems. Take these numbers in stride..

08/1999

Win-NT - 106 - 35.93%
Solaris - 77 - 26.10%
Linux - 68 - 23.05%

09/1999

Win-NT - 82 - 32.54%
Linux - 72 - 28.57%
Solaris - 62 - 24.60%

-----

Interesting stuff for those looking for a secure webserver OS I guess. *shrug*

Check out this altered page (used to be tuxedo.jpl.nasa.gov) - nice picture of Tux. Either it's a pun on the hostname (which would be much more creative than the 10 [cr|h]acks before it) or s/he's a Linux fan. Or both. :)

attrition.org, not someone else who normally got called by the media in the past.

I mean, Slashdot was cracked before. So that hardly proves anything.
"Knowledge = Power = Energy = Mass"

Looks like this guy(?) flipz has been pretty busy lately. He(?) got into the Department of Veterans Affairs (hack) site, the US Army Reserve Command (hack) and even the White Sands Missle Range (hack) site. They're all NT boxen. I'm no expert or nuthin, but I betcha there might be some common NT security flaw he(?)'s exploiting. All the sites mention his(?) love f0bic. I wonder how she(?) feels about this.

Attrition.org's mirrors

Looks like this guy(?) flipz has been pretty busy lately. He(?) got into the Department of Veterans Affairs (hack) site, the US Army Reserve Command (hack) and even the White Sands Missle Range (hack) site. They're all NT boxen. I'm no expert or nuthin, but I betcha there might be some common NT security flaw he(?)'s exploiting. All the sites mention his(?) love f0bic. I wonder how she(?) feels about this.

Attrition.org's mirrors

Looks like this guy(?) flipz has been pretty busy lately. He(?) got into the Department of Veterans Affairs (hack) site, the US Army Reserve Command (hack) and even the White Sands Missle Range (hack) site. They're all NT boxen. I'm no expert or nuthin, but I betcha there might be some common NT security flaw he(?)'s exploiting. All the sites mention his(?) love f0bic. I wonder how she(?) feels about this.

Attrition.org's mirrors

Looks like this guy(?) flipz has been pretty busy lately. He(?) got into the Department of Veterans Affairs (hack) site, the US Army Reserve Command (hack) and even the White Sands Missle Range (hack) site. They're all NT boxen. I'm no expert or nuthin, but I betcha there might be some common NT security flaw he(?)'s exploiting. All the sites mention his(?) love f0bic. I wonder how she(?) feels about this.

Attrition.org's mirrors

Actually, it looks to me as if this page was cracked or what you would call "hacked". The cracker that did this has been attributed to 11 security intrusions according to attrition.org. I don't know if these people all go by the same name, but if this is one person, he (or she, of course) certainly knows what he is doing.

Anyway, who really cares what word we use? I tell other computer people that I do a bit of hacking when I hack my kernel or write some perl. I don't say this to non-computer people that might take it the wrong way, though. Usually I just don't talk to these people about computers.

The hacker, who also altered a handful of government Web sites in recent days, says he expects to be arrested soon.

Yet it seems obvious to me from flipz's first crack on attrition.org that flipz is a woman.

Just another example of gender bias in the media. out

The defaced page is her e. It is a little boring.

Yes, passport is the reason for the hotmail security hole.

When passport was first announced more than a year ago looking for early implementers, the serious hackers targetted it with an intensity unseen in recent years. Imagine a service with all the quality of a M$ product, the track record of M$ for lax security, holding thousands or millions of credit card numbers.

This is an infocriminals dream, because just one copy of this database could be exploited for billions of $$$ of bogus charges. There are organized crime groups around the world already set up to rip off the credit card companies with thousands of electronic scams. All they need is a valid credit card number, expiration date, and the holders name.

So when the hotmail hack was discovered, it was by a group probing every aspect of the passport service, and all the connections MICROS~1.OFT was making into other web sites.

Now there are hundreds of sites with an end point leading into passport. What do you want to bet that one of them has some other security problems because they run IIS, and some crackers will be able to get thru the encrypted tunnel back into the passport service. Not likely they will get more than a handful of CC numbers before the hole gets closed. Crackers tend to be immature kiddies looking for some attention, so they will blab about their exploits. The serious infocriminals will milk any hole for all it is worth, and not make any announcements to HNN or attrition.

Microsloth's only publicly acknowledged security aspect of passport is they are going to seed the database with 'tripwire' records, which will trigger anti-fraud measures when someone tries to use them with the CC companies (oh, and they use encryption).

There are rumours it will be built into the desktop of millenium, so it will always be a click away, with annoying warnings to those lusers who are not using it. I doubt this service will become widespread, since it is bound to get abused at some point. Public confidence will go down when the press has a field day when the system is cracked once, even if it doesn't lead to the loss of any CC records.

the AC

year=month total Linux NT Solaris FreeBSD OpenBSD

1999-10 53 4 29 14 8 0
1999-09 259 72 82 62 12 0
1999-08 318 68 106 77 9 0
--- --- --- --- --- ---
total: 630 144 217 153 29 0

The Military? Bullshit..


The box the attack was launched from was probably cracked.. Military boxes aren't exactly secure..


If you look at
http://www.attrition.org/mirror/attrition/stats. html


Breakout Total
Government Systems 79
NASA Systems 27
ARMY Systems 19
Military Systems 47

.. and that counts only hacked boxes where the webpage was replaced..

Carolyn Meinel, a woman who *thinks* she knows a lot about network security, etc., but has consistently revealed herself to be a complete and utter fraud. Her "happy hacker" series contains mainly information that is for droolers, basically. The people at attrition *hate* her, and after reading her happy hacker garbage, I do, too. Reading her stuff is good for a laugh, but a textbook on security it does not make. If you go to attrition.org, you can read some excerpts from some email exchanges between her and people from attrition, and she truly reveals herself to be a complete charlatan.

Although it's a (relatively) biased view, you can check out attrition.org, specifically this for info on attrition's thoughts on JP & antionline. As far as the happy hacker series goes, check here. Over at attrition they really don't like JP & Carolyn Meinel, though, so take what you read with a grain of salt :)

-mike kania

Although it's a (relatively) biased view, you can check out attrition.org, specifically this for info on attrition's thoughts on JP & antionline. As far as the happy hacker series goes, check here. Over at attrition they really don't like JP & Carolyn Meinel, though, so take what you read with a grain of salt :)

-mike kania

Although it's a (relatively) biased view, you can check out attrition.org, specifically this for info on attrition's thoughts on JP & antionline. As far as the happy hacker series goes, check here. Over at attrition they really don't like JP & Carolyn Meinel, though, so take what you read with a grain of salt :)

-mike kania

NT's biggest problem isn't security (although that is a problem); it's stability.

Interesting that this comes out 2 days after the NAACP's website got hack ed.

Maybe they should be spending that money on someone who knows how to make their NT server secure first before someone starts broadcasting "hate speech" through their own domain.

Like I said, the DNS Con hackers are civic minded. They gave the web masters plenty of notice of the holes, with the exact details of what needed to be fixed, and plenty of time to do it in. The web masters did nothing until DNS Con made headlines, then applied ONE patch recommended by micros~1, and didn't go any further. Various security mailing lists in Europe have had fun picking apart the Scottish Executive's responce.

The crackers who later defaced the website put a lot of work into a careful spoof of the contents of the site. They even speled most wurds corectly :-) I would classify it as a harmless hack, since it was done with some foresight and planning and didn't really cost the SExec anything but a slightly redder face.

Check out the defaced page on http://www .attrition.org

But since I work in the security industry, I've noticed a lot of UK businesses are asking for fast and easy security for their websites, since web site cracks are happening almost all the time. For some reason telling them to hire a competent admin and install the latest patches falls on deaf ears. But tell them that for twice the price they can buy a handful of firewalls, and they hand us a blank cheque. :-)

the AC

http://www.attrition.org/mirror/a ttrition/gh.html

...

Didn't Antionline (John Vranesevich) behave in a very unpleasant manner recently (PacketStorm -- Harvard)? I thought that he was relegated to the "don't touch with a 10-foot pole" category.

Yes, he did, and yes, he pretty much is in that category, as is his friend Carolyn Meinel.

The whole reason they host this stuff is so they get to see the attacks people use. You think they're just putting this box on the net with nothing between it and the pipe? Hah. They're packet sniffing, monitoring everything.

Why?

Well, so that in the off chance someone either writes his own exploit or gets ahold of a non-public one, and that person is stupid or naive enough to use it on them, they get to break the news, and claim the glory for it and use it themselves. Or better yet, have Carolyn write a book about it or turn the guy in to the FBI (which jaypee has said he will do and already has done, in fact, he's got an entire section of his website that is accessable only to law enforcement).

They (antionline) been doing a "contest" like this already, called happy hacker, for a while now. Its a scam, just like this is. The only thing you do by breaking into their machine is to give carolyn and jaypee knowledge that they didn't earn, and can't be trusted to use wisely.

I can't help feeling that the linuxppc folks got scammed. They probably didn't know who they were really dealing with.

Antionline, and the people who run it, are not to be trusted, folks. Jaypee has just enough of a clue to be dangerous, and carolyn, well, everything that one can say about her already has been said better than I can. Check out attrition.org's negation site for a few examples.

Short recap for those who don't want to read the article; packetstorm posted some nice articles regarding JP's lack of ethics and JP making up most of his stories. JP wasn't pleased and threatened legal action.

Check here for some more info.

Possibly /slanted/ but worth the read.

http://www.attrition.org/negation

M.H.
Microsoft Zen - Become one with the blue screen.

This isn't how they gained access, but it is a link to the mirror (if you want to see it).

If anyone is harbouring any sympathy for JP in this affair, I would advise them to check out http://www.attrition.org/nega tion/special/report.html first.
Pretty good evidence and a pretty conclusive argument that JP is funding the very people he proports to help defend against.

Attrition also has one for Carolyn Meinel. Her's is pretty funny...i like the "su -username" myself. http://www.attrition.org/shame/www/tech-07.html