The NSA used to use multics for their mail server. till it got cracked. using old fashion proprietary systems with secure classifications is no justification of lax security.
I think just making a system with holes in it is not enough. If there is nothing to hack there , you won't get a chance to see any good skills.
The best way to make a honeypot is probably make it a nice machine in your network that somehow forgot to be put behind the firewall. Name it something nice too. Like secure.domainname.com or communications.domainname.com . Something more esoteric will do too. Something that will raise curiosity.
The machine should have obvious things blocked so you can see the real toys come out. The machine should also give a message on connect thats quite interesting and then disconnect
************************* * this system is for * * authorized users only * * super.domain.com * * cell phone database * *************************
guys will try all day long with the big guns! probably pass it to a dude who knows what he is doing.
remember.. this is entrapment. You wanna see the big guns though? do it right. You might get more than you bargained for.
I rememeber this time Southwestern bell made a honeypot to catch me. It was a VAX running VMS offa their x.25 subnetwork for their internals. They had noticed us because of a slip up of my friend in patching Sys V login that was already modified for special logins for CAT terms. They sweeted the pot by dumping a bunch of Bellcore Hacker warning digests. these digest basically outlined what attcks people were using and who the gonverment was monitoring and what hacker hang outs (chats and bbses) they were logging and stuff. It was VERY interesting. One problem was we had downloaded them all already (thanks ameritech!) , so it didn't work. Isn't it great that hackers don't have access to Telco internals anymore? The world is a better place!
i only know of one public access VAX/VMS machine. Were there any other OS? Maybe a public access Multics system? Sort of like how dockmaster was? Anyone here rememember Altos on x.25 in germany at 26245400080177. Who here was cool enuf to have a shell? PS: If i get my hands on one. I'll put up a public access VAX
They were often proving grounds for many a hacker in the pre-web days. When password files weren't shadowded and UUCP config files were great for finding other computers. When sex ruled USENET and people traded ASCII pictures of women. UUNET was the gateway for plenty of mail.Back when the whole host database for the internet could fit on a small HD. After a while , there were quite a few public access unix providers for a while before SLIP and the advent of the WEB. But none of them ever had 3 billion dollar market caps like free ISP's do nowadays. flash cartoons
yea. They left out kevin mitnick's medicore hacks. they never mentioned any really great hacks. What a frigging puff peice. There is AMAZING scary shit going on from hacking. You know what? It's probably better that you didnt know the truth in this case.
He charges for lame information in that magazine written by Pseudo-hackers.
Im glad the magazine exists. Your foolish if you don't think emmanuel goldstein doesn't make money off that magazine.. he easily makes $120,000 profit from selling that rag a year. (cept when his distrbution company went out of business! woop he lost quite a bit of bread that year.. we are watching Corley!)
Plus he cons dummies into thinking he is a consultant in security! he hasnt hacked anything since he still had Hair! back when he was in 414 area code. He makes some nice change doing this. I can't knock him for it at all.
Just realize , his profit motivation is strong. This is is livelyhood. He must pretend to know to hack to continue to survive and add gravity to his vauge comments about H/P
I agree with you , however: There is another age after the "hacker" mystique. There was an age where is was cool to have a blue box you built from scratch or use a whistle from captain crunch. Or reverse engineer "I took a lickin' from a chicken" or "Operation" from Milton Bradley. But then a new age dawned. The world of modems. The world of network computers. At first , people used it to do things like communicated between defense/miltary stuff with contractors and universities who interacted. People made cool tools and the network grew and was good. They made USENET and posted about being gay , swapping comics and flaming each other on alt.hitchhikers.guide.to.the.galaxy.fan way before Ebay and Amazon and were around. Then came the hackers. They had apple2's and commodore 64's and they had modems. with nothing to connect to other than Papa bears den. People started scanning and hacking and finding computers and breaking in. it was a wonderful time of new discovery. Most of these kids were middle class kids who might steal a candy bar , but wasnt going to sell miltary secrets. Maybe just change a MOTD on a unix box or something (Sort of like defacing a web page!) More and more computer got on the net. There was all kinds of nets.. LANS , WANS , VANS and all types of protocols for these nets and tons of different computers hooked up to them (yummy! Remember VMS? remember PrimeOs? remember Multics? hahah the NSA ran MULTICS at one time on dockmaster , their mail server! Security thru Obsucurity was there motto. Know what I say about those AF generals logging in everyday? I say haha Mr. Man! Somebody read your mail at one point!) It seems liked the hardware hacker was lost. In came the "cracker". All these cool computers with tons of resources. It was cool breaking in and learning new stuff. looking at cool databases and getting a sense of how the world really worked. All while sitting at your desk at home! There weren't web pages then. There wasnt a CNN/FN or history channel to learn about the world. All there was was reruns of Gilligans Island and What's Happening Now. Forget that. We wanted to LEARN man. just as much as those who came before us. The rules were different now though. you were playing with someone elses data.. someone else resources. Big Business didnt like it. The Government didnt like it. The media fell in love with it. From movies to failed Tv shows like the one with the guy from barney Miller or Three (anyone remember the lost episode of Fat Albert where they talked about hacking? Whats a modem Russell asks!) I think this generation that birthed Phrack and MOD or LOD or any OD is just as valid as those who came before and blue boxed or hacked cigarette machines or started Zines like 2600 (which i loathe but I am glad it is here to inspire) or TAP. I think the guys that do it now are pushing the envelope again. There is lots of cool stuff. I mean. We can look down on Defacing web pages. But today's Web Defacers maybe tommorrow's Kevin Mitnick! (even thought he is lame too)
i agree with you blue boxing.. isnt that from like the 70's? seizing frigging analog trunks in the phone company? Key Pulse Forward? lame. Besides. Taking over digital switches. now that is impressive. Dropping in on a DMS-100.. oh yeah.. DMERT! Checkout those AMA logs.. Bring up a remote headsetand monitor lines. dissemble SS7 packets! post a trunk up a trunk in realtime! Add CLASS features to lines.. play with the CLID. To a debug dump to a file and get all the secret goings on.. and I aint just talking about CLLI codes either.. Im talking about the GOOD shit. Northern Telecom.. hmmm you guys can keep those GTE joints.
area code 414.. he was in the 414's. A small typo that hardly jeprodizes the legitamacy of what I am saying. Blah. anyone who thinks Eric Corley (emmanuel goldstein) is a hacker or knows anything about hacking wouldnt understand what I've said. They would think I'm just bashing him. I know eric corley.. PS: watch your kids around him
that you dont know shite. Why don't you go hack Janet or something lame like that? if you think emmanuel goldstein is cool. We know you are *NOT* cool. btw: i was in 8lgm! 8lgm! The best this in your liphe!
I don't believe this. Everyone knows Emmanuel Goldstien doesn't know jack about hacking. He is just a frigging talking head who exploits the hacking community for his own personal gain. He used to be in a group called the 411's years ago.. (ingeniously named after the area code they lived in.. how frigging cool.) They like got into trouble for messing around with Telenet (remember that x.25 network before Sprint purchased it?) They messed with Telemail , and did stupid stuff like set up a Bulletin board where they posted information about their hacks! This system was used for copanies to set up global bulletin boards for corporations. They had an admin account made their own BBS. They got caught rather quickly as one could imagine. The bottom line was Eric Corely (Emmanuel Goldstein to the "hackers") was only mariginally involved in this hack. He was busy hand dialing for LD codes so he could connect to warez boards. blah.
They were to close to pure gold though! They could have read the messages there and gleaned the power of x.25 networks. They didnt even harness the power of monitoring x.75 gateways by connecting to debug ports on the mighty Tp3000 packet switches! Nothing like a hex dump of transactions from EDS!
He had a nice big of change from his parents and started this rag called 2600. He never knew how to actually hack. He is what we call a social hacker. He talks about stuff but has no idea how any of it is done. When confronted about his own skills , he talks vaguely about stuff that makes it seem like he is in the know.
He doesn't really *get* it. He only knows the most superficial public domain type of things that can be done thru hacking and only a vague notion how anything is done.
Kids think he is cool cuz he wears a ratty communist jacket and has a 2600 van painted to look like a old Nynex van (which is outdated cuz Bell Atlantic absorbed Nynex). He talks about hacking. He is like a rebellion figure to them.
Not that this is important , but Emmanuel also has serious issues of a Nambla type nature. So please advaise your kids before they get into that van or go to his house in L.I. for that yearly "halloween" party.
next you guys will be telling me Kevin Mitnick is a frigging superstar hacker. Go Kevin Poulsen! tell this guys what hacking is really about!
Slashdot Mirror
The NSA used to use multics for their mail server. till it got cracked. using old fashion proprietary systems with secure classifications is no justification of lax security.
http://www.iretro.com
I think just making a system with holes in it is not enough. If there is nothing to hack there , you won't get a chance to see any good skills.
The best way to make a honeypot is probably make it a nice machine in your network that somehow forgot to be put behind the firewall. Name it something nice too. Like secure.domainname.com
or communications.domainname.com . Something more esoteric will do too. Something that will raise curiosity.
The machine should have obvious things blocked so you can see the real toys come out. The machine should also give a message on connect thats quite interesting and then disconnect
*************************
* this system is for *
* authorized users only *
* super.domain.com *
* cell phone database *
*************************
guys will try all day long with the big guns! probably pass it to a dude who knows what he is doing.
remember.. this is entrapment. You wanna see the big guns though? do it right. You might get more than you bargained for.
http://www.iretro.com
I rememeber this time Southwestern bell made a honeypot to catch me. It was a VAX running VMS offa their x.25 subnetwork for their internals. They had noticed us because of a slip up of my friend in patching Sys V login that was already modified for special logins for CAT terms. They sweeted the pot by dumping a bunch of Bellcore Hacker warning digests. these digest basically outlined what attcks people were using and who the gonverment was monitoring and what hacker hang outs (chats and bbses) they were logging and stuff. It was VERY interesting. One problem was we had downloaded them all already (thanks ameritech!) , so it didn't work. Isn't it great that hackers don't have access to Telco internals anymore? The world is a better place!
http://www.iretro.com
i only know of one public access VAX/VMS machine. Were there any other OS? Maybe a public access Multics system? Sort of like how dockmaster was? Anyone here rememember Altos on x.25 in germany at 26245400080177. Who here was cool enuf to have a shell? PS: If i get my hands on one. I'll put up a public access VAX
http://www.iretro.com
They were often proving grounds for many a hacker in the pre-web days. When password files weren't shadowded and UUCP config files were great for finding other computers. When sex ruled USENET and people traded ASCII pictures of women. UUNET was the gateway for plenty of mail.Back when the whole host database for the internet could fit on a small HD. After a while , there were quite a few public access unix providers for a while before SLIP and the advent of the WEB. But none of them ever had 3 billion dollar market caps like free ISP's do nowadays. flash cartoons
http://www.iretro.com
yea. They left out kevin mitnick's medicore hacks. they never mentioned any really great hacks. What a frigging puff peice. There is AMAZING scary shit going on from hacking. You know what? It's probably better that you didnt know the truth in this case.
The media does define what hacking is.
they are the voice of the national conscience. or at least they shape it.
they say hacking is cool , hacking is cool.
i think you slept with Emmanuel Goldstein
umm.. i dont see them rushing out to make movies and write books about dudes who take apart RCX modules of Lego mindstorms.
I see women who love hackers.. why power. intoxicating.
its romantic
its adventure
its exciting.
it makes me piss my frigging pants!
He charges for lame information in that magazine written by Pseudo-hackers.
Im glad the magazine exists. Your foolish if you don't think emmanuel goldstein doesn't make money off that magazine.. he easily makes $120,000 profit from selling that rag a year. (cept when his distrbution company went out of business! woop he lost quite a bit of bread that year.. we are watching Corley!)
Plus he cons dummies into thinking he is a consultant in security! he hasnt hacked anything since he still had Hair! back when he was in 414 area code. He makes some nice change doing this. I can't knock him for it at all.
Just realize , his profit motivation is strong. This is is livelyhood. He must pretend to know to hack to continue to survive and add gravity to his vauge comments about H/P
I agree with you , however: There is another age after the "hacker" mystique. There was an age where is was cool to have a blue box you built from scratch or use a whistle from captain crunch. Or reverse engineer "I took a lickin' from a chicken" or "Operation" from Milton Bradley. But then a new age dawned. The world of modems. The world of network computers. At first , people used it to do things like communicated between defense/miltary stuff with contractors and universities who interacted. People made cool tools and the network grew and was good. They made USENET and posted about being gay , swapping comics and flaming each other on alt.hitchhikers.guide.to.the.galaxy.fan way before Ebay and Amazon and were around. Then came the hackers. They had apple2's and commodore 64's and they had modems. with nothing to connect to other than Papa bears den. People started scanning and hacking and finding computers and breaking in. it was a wonderful time of new discovery. Most of these kids were middle class kids who might steal a candy bar , but wasnt going to sell miltary secrets. Maybe just change a MOTD on a unix box or something (Sort of like defacing a web page!) More and more computer got on the net. There was all kinds of nets.. LANS , WANS , VANS and all types of protocols for these nets and tons of different computers hooked up to them (yummy! Remember VMS? remember PrimeOs? remember Multics? hahah the NSA ran MULTICS at one time on dockmaster , their mail server! Security thru Obsucurity was there motto. Know what I say about those AF generals logging in everyday? I say haha Mr. Man! Somebody read your mail at one point!) It seems liked the hardware hacker was lost. In came the "cracker". All these cool computers with tons of resources. It was cool breaking in and learning new stuff. looking at cool databases and getting a sense of how the world really worked. All while sitting at your desk at home! There weren't web pages then. There wasnt a CNN/FN or history channel to learn about the world. All there was was reruns of Gilligans Island and What's Happening Now. Forget that. We wanted to LEARN man. just as much as those who came before us. The rules were different now though. you were playing with someone elses data.. someone else resources. Big Business didnt like it. The Government didnt like it. The media fell in love with it. From movies to failed Tv shows like the one with the guy from barney Miller or Three (anyone remember the lost episode of Fat Albert where they talked about hacking? Whats a modem Russell asks!) I think this generation that birthed Phrack and MOD or LOD or any OD is just as valid as those who came before and blue boxed or hacked cigarette machines or started Zines like 2600 (which i loathe but I am glad it is here to inspire) or TAP. I think the guys that do it now are pushing the envelope again. There is lots of cool stuff. I mean. We can look down on Defacing web pages. But today's Web Defacers maybe tommorrow's Kevin Mitnick! (even thought he is lame too)
i agree with you blue boxing.. isnt that from like the 70's? seizing frigging analog trunks in the phone company? Key Pulse Forward? lame. Besides. Taking over digital switches. now that is impressive. Dropping in on a DMS-100.. oh yeah.. DMERT! Checkout those AMA logs.. Bring up a remote headsetand monitor lines. dissemble SS7 packets! post a trunk up a trunk in realtime! Add CLASS features to lines.. play with the CLID. To a debug dump to a file and get all the secret goings on.. and I aint just talking about CLLI codes either.. Im talking about the GOOD shit. Northern Telecom.. hmmm you guys can keep those GTE joints.
area code 414.. he was in the 414's. A small typo that hardly jeprodizes the legitamacy of what I am saying. Blah. anyone who thinks Eric Corley (emmanuel goldstein) is a hacker or knows anything about hacking wouldnt understand what I've said. They would think I'm just bashing him. I know eric corley.. PS: watch your kids around him
it is highly questionable wether it is even written by hackers..
Phrack sucks too
that you dont know shite. Why don't you go hack Janet or something lame like that? if you think emmanuel goldstein is cool. We know you are *NOT* cool. btw: i was in 8lgm! 8lgm! The best this in your liphe!
I don't believe this. Everyone knows Emmanuel Goldstien doesn't know jack about hacking. He is just a frigging talking head who exploits the hacking community for his own personal gain. He used to be in a group called the 411's years ago .. (ingeniously named after the area code they lived in.. how frigging cool.) They like got into trouble for messing around with Telenet (remember that x.25 network before Sprint purchased it?) They messed with Telemail , and did stupid stuff like set up a Bulletin board where they posted information about their hacks!
This system was used for copanies to set up global bulletin boards for corporations. They had an admin account made their own BBS. They got caught rather quickly as one could imagine. The bottom line was Eric Corely (Emmanuel Goldstein to the "hackers") was only mariginally involved in this hack. He was busy hand dialing for LD codes so he could connect to warez boards. blah.
They were to close to pure gold though! They could have read the messages there and gleaned the power of x.25 networks. They didnt even harness the power of monitoring x.75 gateways by connecting to debug ports on the mighty Tp3000 packet switches! Nothing like a hex dump of transactions from EDS!
He had a nice big of change from his parents and started this rag called 2600. He never knew how to actually hack. He is what we call a social hacker. He talks about stuff but has no idea how any of it is done. When confronted about his own skills , he talks vaguely about stuff that makes it seem like he is in the know.
He doesn't really *get* it. He only knows the most superficial public domain type of things that can be done thru hacking and only a vague notion how anything is done.
Kids think he is cool cuz he wears a ratty communist jacket and has a 2600 van painted to look like a old Nynex van (which is outdated cuz Bell Atlantic absorbed Nynex). He talks about hacking. He is like a rebellion figure to them.
Not that this is important , but Emmanuel also has serious issues of a Nambla type nature. So please advaise your kids before they get into that van or go to his house in L.I. for that yearly "halloween" party.
next you guys will be telling me Kevin Mitnick is a frigging superstar hacker. Go Kevin Poulsen! tell this guys what hacking is really about!