Types of Network

Below is a list of the most common types of computer networks in order of scale.

Personal Area Network (PAN)

A personal area network (PAN) is a computer network used for communication among computer devices close to one person. Some examples of devices that may be used in a PAN are printers, fax machines, telephones, PDAs, or scanners. The reach of a PAN is typically within about 20-30 feet (approximately 4-6 Meters). PANs can be used for communication among the individual devices (intrapersonal communication), or for connecting to a higher level network and the Internet (an uplink).

Personal area networks may be wired with computer buses such as USB and FireWire. A wireless personal area network (WPAN) can also be made possible with network technologies such as IrDA and Bluetooth.

Local Area Network (LAN)

A network covering a small geographic area, like a home, office, or building. Current LANs are most likely to be based on Ethernet technology. For example, a library will have a LAN for users to connect to the internet. All of the computers in the library are connected through a system of hubs and eventually connect to the internet. The hub is just like what it sounds. A bicycle wheel uses a hub and spokes - all the spokes connect to a central point - the hub.

LANs use different technologies to link computers together. Depending on the circumstance, the computers in the network might be connected using cables and hubs. Other networks might be connected strictly wirelessly. It depends on the number of PCs that you are trying to connect, the physical layout of your workspace, and the various needs that you have as you develop your network.

The defining characteristics of LANs, in contrast to WANs (wide area networks), include their much higher data transfer rates, smaller geographic range, and lack of a need for leased telecommunication lines. Current LAN technologies generally operate at speeds up to 10 Gbit/s. This is the data transfer rate. IEEE has projects investigating the standardization of 100 Gbit/s, and possibly 40 Gbit/s. Inverse multiplexing is commonly used to build a faster aggregate from slower physical streams, such as bringing 4 Gbit/s aggregate stream into a computer or network element with four 1 Gbit/s interfaces.

Campus Area Network (CAN)

A network that connects two or more LANs but that is limited to a specific and contiguous geographical area such as a college campus, industrial complex, or a military base. A CAN, may be considered a type of MAN (metropolitan area network), but is generally limited to an area that is smaller than a typical MAN.

This term is most often used to discuss the implementation of networks for a contiguous area. In the past, when layer 2 switching (i.e., bridging (networking) was cheaper than routing, campuses were good candidates for layer 2 networks, until they grew to very large size. Today, a campus may use a mixture of routing and bridging. The network elements used, called "campus switches", tend to be optimized to have many Ethernet interfaces rather than an arbitrary mixture of Ethernet and WAN interfaces.

Metropolitan Area Network (MAN)

A Metropolitan Area Network is a network that connects two or more Local Area Networks or Campus Area Networks together but does not extend beyond the boundaries of the immediate town, city, or metropolitan area. Multiple routers, switches & hubs are connected to create a MAN.

Wide Area Network (WAN)

A WAN is a data communications network that covers a relatively broad geographic area (i.e. one country to another and one continent to another continent) and that often uses transmission facilities provided by common carriers, such as telephone companies. WAN technologies generally function at the lower three layers of the OSI reference model: the physical layer, the data link layer, and the network layer.

The highest data rate commercially available, as a single bitstream, on WANs is 40 Gbit/s, principally used between large service providers. Wavelength Division Multiplexing, however, can put multiple 10 or 40 Gbyte/s streams onto the same optical fiber.

Global Area Network (GAN)

Global area networks (GAN) specifications are in development by several groups, and there is no common definition. In general, however, a GAN is a model for supporting mobile communications across an arbitrary number of wireless LANs, satellite coverage areas, etc. The key challenge in mobile communications is "handing off" the user communications from one local coverage area to the next.

In addition to these types, the following characteristics are also used to categorize different types of networks:

Topology

The geometric arrangement of a computer system. Common topologies include a bus, star, and ring.

Protocol

The protocol defines a common set of rules and signals that computers on the network use to communicate. One of the most popular protocols for LANs is called Ethernet. Another popular LAN protocol for PCs is the IBM token-ring network .

Architecture

Networks can be broadly classified as using either a peer-to-peer or client/server architecture.

Traffic Filtering

Traffic Filtering

Traffic filtering is a method used to enhance network security by filtering network traffic based on many types of criteria. 
Packet Filtering

Packet filtering is a method of enhancing network security by examining network packets as they pass through routers or a firewall and determining whether to pass them on or what else to do with them. Packets may be filtered based on their protocol, sending or receiving port, sending or receiving IP address, or the value of some status bits in the packet. There are two types of packet filtering. One is static and the other is dynamic. Dynamic is more flexible and secure as stated below. 
Static Packet Filtering

Does not track the state of network packets and does not know whether a packet is the first, a middle packet or the last packet. It does not know if the traffic is associated with a response to a request or is the start of a request. 
Dynamic Packet Filtering

Tracks the state of connections to tell if someone is trying to fool the firewall or router. Dynamic filtering is especially important when UDP traffic is allowed to be passed. It can tell if traffic is associated with a response or request. This type of filtering is much more secure than static packet filtering. 
Source Routing

In source routing, packets contain header information describing the route they are to take to the destination. Source routing is a security concern when an attacker may gain access to a network that has access to yours without going through your firewall. 

Source routing should be disabled on network routers, especially at the network perimeters. Hackers may be able to break through other friendly but less secure networks and get access to your network using this method.

Setting Up A FTP connection

Setting Up A Ftp:


Well, since many of us have always wondered this, here it is. Long and drawn out. Also, before attempting this, realize one thing; You will have to give up your time, effort, bandwidth, and security to have a quality ftp server.
That being said, here it goes. First of all, find out if your IP (Internet Protocol) is static (not changing) or dynamic (changes everytime you log on). To do this, first consider the fact if you have a dial up modem. If you do, chances are about 999 999 out of 1 000 000 that your IP is dynamic. To make it static, just go to a place like h*tp://www.myftp.org/ to register for a static ip address.

You'll then need to get your IP. This can be done by doing this:
Going to Start -> Run -> winipcfg or www.ask.com and asking 'What is my IP?'

After doing so, you'll need to download an FTP server client. Personally, I'd recommend G6 FTP Server, Serv-U FTPor Bullitproof v2.15 all three of which are extremely reliable, and the norm of the ftp world.
You can download them on this site: h*tp://www.liaokai.com/softw_en/d_index.htm

First, you'll have to set up your ftp. For this guide, I will use step-by-step instructions for G6. First, you'll have to go into 'Setup -> General'. From here, type in your port # (default is 21). I recommend something unique, or something a bit larger (ex: 3069). If you want to, check the number of max users (this sets the amount of simultaneous maximum users on your server at once performing actions - The more on at once, the slower the connection and vice versa).

The below options are then chooseable:
-Launch with windows
-Activate FTP Server on Start-up
-Put into tray on startup
-Allow multiple instances
-Show "Loading..." status at startup
-Scan drive(s) at startup
-Confirm exit

You can do what you want with these, as they are pretty self explanatory. The scan drive feature is nice, as is the 2nd and the last option. From here, click the 'options' text on the left column.

To protect your server, you should check 'login check' and 'password check', 'Show relative path (a must!)', and any other options you feel you'll need. After doing so, click the 'advanced' text in the left column. You should then leave the buffer size on the default (unless of course you know what you're doing ), and then allow the type of ftp you want.

Uploading and downloading is usually good, but it's up to you if you want to allow uploads and/or downloads. For the server priority, that will determine how much conventional memory will be used and how much 'effort' will go into making your server run smoothly.

Anti-hammering is also good, as it prevents people from slowing down your speed. From here, click 'Log Options' from the left column. If you would like to see and record every single command and clutter up your screen, leave the defaults.

But, if you would like to see what is going on with the lowest possible space taken, click 'Screen' in the top column. You should then check off 'Log successful logins', and all of the options in the client directry, except 'Log directory changes'. After doing so, click 'Ok' in the bottom left corner.

You will then have to go into 'Setup -> User Accounts' (or ctrl & u). From here, you should click on the right most column, and right click. Choose 'Add', and choose the username(s) you would like people to have access to.

After giving a name (ex: themoonlanding), you will have to give them a set password in the bottom column (ex: wasfaked). For the 'Home IP' directory, (if you registered with a static server, check 'All IP Homes'. If your IP is static by default, choose your IP from the list. You will then have to right click in the very center column, and choose 'Add'.

From here, you will have to set the directory you want the people to have access to. After choosing the directory, I suggest you choose the options 'Read', 'List', and 'Subdirs', unless of course you know what you're doing . After doing so, make an 'upload' folder in the directory, and choose to 'add' this folder seperately to the center column. Choose 'write', 'append', 'make', 'list', and 'subdirs'. This will allow them to upload only to specific folders (your upload folder).

Now click on 'Miscellaneous' from the left column. Choose 'enable account', your time-out (how long it takes for people to remain idle before you automatically kick them off), the maximum number of users for this name, the maximum number of connections allowed simultaneously for one ip address, show relative path (a must!), and any other things at the bottom you'd like to have. Now click 'Ok'.
**Requested**


From this main menu, click the little boxing glove icon in the top corner, and right click and unchoose the hit-o-meter for both uploads and downloads (with this you can monitor IP activity). Now click the lightning bolt, and your server is now up and running.

Post your ftp info, like this:

213.10.93.141 (or something else, such as: 'f*p://example.getmyip.com')

User: *** (The username of the client)

Pass: *** (The password)

Port: *** (The port number you chose)

So make a FTP and join the FTP section


Listing The Contents Of A Ftp:

Listing the content of a FTP is very simple.
You will need FTP Content Maker, which can be downloaded from here:
ht*p://www.etplanet.com/download/application/FTP%20Content%20Maker%201.02.zip

1. Put in the IP of the server. Do not put "ftp://" or a "/" because it will not work if you do so.
2. Put in the port. If the port is the default number, 21, you do not have to enter it.
3. Put in the username and password in the appropriate fields. If the login is anonymous, you do not have to enter it.
4. If you want to list a specific directory of the FTP, place it in the directory field. Otherwise, do not enter anything in the directory field.
5. Click "Take the List!"
6. After the list has been taken, click the UBB output tab, and copy and paste to wherever you want it.


If FTP Content Maker is not working, it is probably because the server does not utilize Serv-U Software.

If you get this error message:
StatusCode = 550
LastResponse was : 'Unable to open local file test-ftp'
Error = 550 (Unable to open local file test-ftp)
Error = Unable to open local file test-ftp = 550
Close and restart FTP Content Maker, then try again.




error messages:

110 Restart marker reply. In this case, the text is exact and not left to the particular implementation; it must read: MARK yyyy = mmmm Where yyyy is User-process data stream marker, and mmmm server's equivalent marker (note the spaces between markers and "=").
120 Service ready in nnn minutes.
125 Data connection already open; transfer starting.
150 File status okay; about to open data connection.
200 Command okay.
202 Command not implemented, superfluous at this site.
211 System status, or system help reply.
212 Directory status.
213 File status.
214 Help message. On how to use the server or the meaning of a particular non-standard command. This reply is useful only to the human user.
215 NAME system type. Where NAME is an official system name from the list in the Assigned Numbers document.
220 Service ready for new user.
221 Service closing control connection. Logged out if appropriate.
225 Data connection open; no transfer in progress.
226 Closing data connection. Requested file action successful (for example, file transfer or file abort).
227 Entering Passive Mode (h1,h2,h3,h4,p1,p2).
230 User logged in, proceed.
250 Requested file action okay, completed.
257 "PATHNAME" created.
331 User name okay, need password.
332 Need account for login.
350 Requested file action pending further information.
421 Too many users logged to the same account
425 Can't open data connection.
426 Connection closed; transfer aborted.
450 Requested file action not taken. File unavailable (e.g., file busy).
451 Requested action aborted: local error in processing.
452 Requested action not taken. Insufficient storage space in system.
500 Syntax error, command unrecognized. This may include errors such as command line too long.
501 Syntax error in parameters or arguments.
502 Command not implemented.
503 Bad sequence of commands.
504 Command not implemented for that parameter.
530 Not logged in.
532 Need account for storing files.
550 Requested action not taken. File unavailable (e.g., file not found, no access).
551 Requested action aborted: page type unknown.
552 Requested file action aborted. Exceeded storage allocation (for current directory or dataset).
553 Requested action not taken. File name not allowed.


Active FTP vs. Passive FTP, a Definitive Explanation

Introduction
One of the most commonly seen questions when dealing with firewalls and other Internet connectivity issues is the difference between active and passive FTP and how best to support either or both of them. Hopefully the following text will help to clear up some of the confusion over how to support FTP in a firewalled environment.

This may not be the definitive explanation, as the title claims, however, I've heard enough good feedback and seen this document linked in enough places to know that quite a few people have found it to be useful. I am always looking for ways to improve things though, and if you find something that is not quite clear or needs more explanation, please let me know! Recent additions to this document include the examples of both active and passive command line FTP sessions. These session examples should help make things a bit clearer. They also provide a nice picture into what goes on behind the scenes during an FTP session. Now, on to the information...



The Basics
FTP is a TCP based service exclusively. There is no UDP component to FTP. FTP is an unusual service in that it utilizes two ports, a 'data' port and a 'command' port (also known as the control port). Traditionally these are port 21 for the command port and port 20 for the data port. The confusion begins however, when we find that depending on the mode, the data port is not always on port 20.



Active FTP
In active mode FTP the client connects from a random unprivileged port (N > 1024) to the FTP server's command port, port 21. Then, the client starts listening to port N+1 and sends the FTP command PORT N+1 to the FTP server. The server will then connect back to the client's specified data port from its local data port, which is port 20.

From the server-side firewall's standpoint, to support active mode FTP the following communication channels need to be opened:

FTP server's port 21 from anywhere (Client initiates connection)
FTP server's port 21 to ports > 1024 (Server responds to client's control port)
FTP server's port 20 to ports > 1024 (Server initiates data connection to client's data port)
FTP server's port 20 from ports > 1024 (Client sends ACKs to server's data port)


In step 1, the client's command port contacts the server's command port and sends the command PORT 1027. The server then sends an ACK back to the client's command port in step 2. In step 3 the server initiates a connection on its local data port to the data port the client specified earlier. Finally, the client sends an ACK back as shown in step 4.

The main problem with active mode FTP actually falls on the client side. The FTP client doesn't make the actual connection to the data port of the server--it simply tells the server what port it is listening on and the server connects back to the specified port on the client. From the client side firewall this appears to be an outside system initiating a connection to an internal client--something that is usually blocked.



Active FTP Example
Below is an actual example of an active FTP session. The only things that have been changed are the server names, IP addresses, and user names. In this example an FTP session is initiated from testbox1.slacksite.com (192.168.150.80), a linux box running the standard FTP command line client, to testbox2.slacksite.com (192.168.150.90), a linux box running ProFTPd 1.2.2RC2. The debugging (-d) flag is used with the FTP client to show what is going on behind the scenes. Everything in red is the debugging output which shows the actual FTP commands being sent to the server and the responses generated from those commands. Normal server output is shown in black, and user input is in bold.

There are a few interesting things to consider about this dialog. Notice that when the PORT command is issued, it specifies a port on the client (192.168.150.80) system, rather than the server. We will see the opposite behavior when we use passive FTP. While we are on the subject, a quick note about the format of the PORT command. As you can see in the example below it is formatted as a series of six numbers separated by commas. The first four octets are the IP address while the second two octets comprise the port that will be used for the data connection. To find the actual port multiply the fifth octet by 256 and then add the sixth octet to the total. Thus in the example below the port number is ( (14*256) + 178), or 3762. A quick check with netstat should confirm this information.

testbox1: {/home/p-t/slacker/public_html} % ftp -d testbox2
Connected to testbox2.slacksite.com.
220 testbox2.slacksite.com FTP server ready.
Name (testbox2:slacker): slacker
---> USER slacker
331 Password required for slacker.
Password: TmpPass
---> PASS XXXX
230 User slacker logged in.
---> SYST
215 UNIX Type: L8
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls
ftp: setsockopt (ignored): Permission denied
---> PORT 192,168,150,80,14,178
200 PORT command successful.
---> LIST
150 Opening ASCII mode data connection for file list.
drwx------ 3 slacker users 104 Jul 27 01:45 public_html
226 Transfer complete.
ftp> quit
---> QUIT
221 Goodbye.


Passive FTP
In order to resolve the issue of the server initiating the connection to the client a different method for FTP connections was developed. This was known as passive mode, or PASV, after the command used by the client to tell the server it is in passive mode.

In passive mode FTP the client initiates both connections to the server, solving the problem of firewalls filtering the incoming data port connection to the client from the server. When opening an FTP connection, the client opens two random unprivileged ports locally (N > 1024 and N+1). The first port contacts the server on port 21, but instead of then issuing a PORT command and allowing the server to connect back to its data port, the client will issue the PASV command. The result of this is that the server then opens a random unprivileged port (P > 1024) and sends the PORT P command back to the client. The client then initiates the connection from port N+1 to port P on the server to transfer data.

From the server-side firewall's standpoint, to support passive mode FTP the following communication channels need to be opened:

FTP server's port 21 from anywhere (Client initiates connection)
FTP server's port 21 to ports > 1024 (Server responds to client's control port)
FTP server's ports > 1024 from anywhere (Client initiates data connection to random port specified by server)
FTP server's ports > 1024 to remote ports > 1024 (Server sends ACKs (and data) to client's data port)



In step 1, the client contacts the server on the command port and issues the PASV command. The server then replies in step 2 with PORT 2024, telling the client which port it is listening to for the data connection. In step 3 the client then initiates the data connection from its data port to the specified server data port. Finally, the server sends back an ACK in step 4 to the client's data port.

While passive mode FTP solves many of the problems from the client side, it opens up a whole range of problems on the server side. The biggest issue is the need to allow any remote connection to high numbered ports on the server. Fortunately, many FTP daemons, including the popular WU-FTPD allow the administrator to specify a range of ports which the FTP server will use. See Appendix 1 for more information.

The second issue involves supporting and troubleshooting clients which do (or do not) support passive mode. As an example, the command line FTP utility provided with Solaris does not support passive mode, necessitating a third-party FTP client, such as ncftp.

With the massive popularity of the World Wide Web, many people prefer to use their web browser as an FTP client. Most browsers only support passive mode when accessing ftp:// URLs. This can either be good or bad depending on what the servers and firewalls are configured to support.



Passive FTP Example
Below is an actual example of a passive FTP session. The only things that have been changed are the server names, IP addresses, and user names. In this example an FTP session is initiated from testbox1.slacksite.com (192.168.150.80), a linux box running the standard FTP command line client, to testbox2.slacksite.com (192.168.150.90), a linux box running ProFTPd 1.2.2RC2. The debugging (-d) flag is used with the FTP client to show what is going on behind the scenes. Everything in red is the debugging output which shows the actual FTP commands being sent to the server and the responses generated from those commands. Normal server output is shown in black, and user input is in bold.

Notice the difference in the PORT command in this example as opposed to the active FTP example. Here, we see a port being opened on the server (192.168.150.90) system, rather than the client. See the discussion about the format of the PORT command above, in the Active FTP Example section.

testbox1: {/home/p-t/slacker/public_html} % ftp -d testbox2
Connected to testbox2.slacksite.com.
220 testbox2.slacksite.com FTP server ready.
Name (testbox2:slacker): slacker
---> USER slacker
331 Password required for slacker.
Password: TmpPass
---> PASS XXXX
230 User slacker logged in.
---> SYST
215 UNIX Type: L8
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> passive
Passive mode on.
ftp> ls
ftp: setsockopt (ignored): Permission denied
---> PASV
227 Entering Passive Mode (192,168,150,90,195,149).
---> LIST
150 Opening ASCII mode data connection for file list
drwx------ 3 slacker users 104 Jul 27 01:45 public_html
226 Transfer complete.
ftp> quit
---> QUIT
221 Goodbye.


Summary
The following chart should help admins remember how each FTP mode works:

Active FTP :
command : client >1024 -> server 21
data : client >1024 <- server 20

Passive FTP :
command : client >1024 -> server 21
data : client >1024 -> server >1024

A quick summary of the pros and cons of active vs. passive FTP is also in order:

Active FTP is beneficial to the FTP server admin, but detrimental to the client side admin. The FTP server attempts to make connections to random high ports on the client, which would almost certainly be blocked by a firewall on the client side. Passive FTP is beneficial to the client, but detrimental to the FTP server admin. The client will make both connections to the server, but one of them will be to a random high port, which would almost certainly be blocked by a firewall on the server side.

Luckily, there is somewhat of a compromise. Since admins running FTP servers will need to make their servers accessible to the greatest number of clients, they will almost certainly need to support passive FTP. The exposure of high level ports on the server can be minimized by specifying a limited port range for the FTP server to use. Thus, everything except for this range of ports can be firewalled on the server side. While this doesn't eliminate all risk to the server, it decreases it tremendously.

Modulation Techniques for Wireless

Introduction
The purpose of analog modulation is to impress an
information-bearing analog waveform onto a carrier for
transmission.
The purpose of digital modulation is to convert an
information-bearing discrete-time symbol sequence into a
continuous-time waveform (perhaps impressed on a carrier).
Key concerns | bandwidth eciency and implementation
complexity. These are aected by:
 baseband pulse shape
 phase transition characteristics
 envelope 
uctuations (channel non-linearities?)

Hacking And Phreaking

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ +
+ THE ULTIMATE BEGINNER'S GUIDE TO HACKING AND PHREAKING 
+ +
+ +
+ +
+ +
+ BY +
+ REVELATION +
+ LOA--ASH +
+ +
+ +
+ +
+ +
+ +
+ Written: 08/4/96 Volume: 1 +
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


This document was written in Windows 95 Word Pad. The title 
above, and some of the text looks a little screwed up when read in 
anything else, so read it in Word Pad.
Anyway, for those of you who are wondering "what do the letters 
"LOA" under his handle stand for?" Well, LOA stands for Legion Of the 
Apocalypse, which is a group of elite hackers and phreakers in my area. 
The current members of LOA are:

Revelation, Phreaked Out, Hack Attack, Electric Jaguar, and 
Phreak Show

I started LOA when I discovered that there were many good 
hackers and phreakers in my area. I thought that an organized group of
hackers and phreakers would accomplish much more than an individual
could by himself. Thus the Legion Of the Apocalypse was formed and has 
been around for a while since. Our main goal is to show the public 
what hacking and phreaking is all about and to reveal confidential 
information to the hacking/phreaking community so that we can learn 
more about computers, telephones, electronics, etc. We are hoping to 
get our own World Wide Web page soon, so keep an eye out for it. It 
will contain all of the hacking, phreaking, computer, telephone,
security, electronics, virus, and carding information that you could 
possibly want.
Also, if some of you are wondering why I chose the word 
Revelation as my handle, well, Revelation means revealing or 
unveiling, which is exactly what I intend to do as a hacker/phreaker.
I intend to reveal all the information that I can gather while
hacking and phreaking.
Anyway, I wrote this document because I have read all the files
that I could get my hands on and noticed that there has never been a
really good file written that guided beginning hackers and phreakers
step by step.
When I began hacking and started reading all of the beginner
files, I still had many un-answered questions. My questions were 
eventually answered, but only through LOTS of reading and practice. 
In this file, I hope to give basic step by step instructions that will 
help beginning hackers and phreakers get started. But, DO NOT think 
that this will save you from having to read alot. If you want to be a 
hacker/phreaker, reading is the most important thing you can do. You 
will have to do ALOT of reading no matter what.
This document was intended for beginners, but it can also be used
as a reference tool for advanced hackers and phreakers.
Please distribute this document freely. Give it to anyone that 
you know who is interested in hacking and/or phreaking. Post it on your 
World Wide Web page, Ftp sites, and BBS's. Do whatever you want with it 
as long as it stays UNCHANGED.
As far as I know, this is the most complete and in depth beginners
guide available, that is why I wrote it. Also, I plan to have new 
volumes come out whenever there has been a significant change in the 
material provided, so keep an eye out for them. LOA is planning on
starting an on-line magazine, so look for that too. And we are also starting a hacking business. Owners of businesses can hire us to hack into their systems to find the security faults. The name of this company is A.S.H. (American Security Hackers), and it is run by LOA. If you have any questions about this company, or would like to hire us, or just want security advice, please E-Mail A.S.H. at "an641839@anon.penet.fi". 
This document is divided into three main sections with many
different sub-sections in them. The Table Of Contents is below:


Table Of Contents:


I. HACKING

A. What is hacking?
B. Why hack?
C. Hacking rules
D. Getting started
E. Where and how to start hacking
F. Telenet commands
G. Telenet dialups
H. Telenet DNIC's
I. Telenet NUA's
J. Basic UNIX hacking
K. Basic VAX/VMS hacking
L. Basic PRIME hacking
M. Password list
N. Connecting modems to different phone lines
O. Viruses, Trojans, and Worms

II. PHREAKING

A. What is phreaking?
B. Why phreak? 
C. Phreaking rules
D. Where and how to start phreaking
E. Boxes and what they do
F. Red Box plans
G. Free calling from COCOT's
H. ANAC numbers

III. REFERENCE

A. Hacking and phreaking W.W.W. pages
B. Good hacking and phreaking text files
C. Hacking and phreaking Newsgroups
D. Rainbow Books
E. Hacking and phreaking magazines
F. Hacking and phreaking movies
G. Hacking and phreaking Gopher sites
H. Hacking and phreaking Ftp sites
I. Hacking and phreaking BBS's
J. Cool hackers and phreakers
K. Hacker's Manifesto
L. Happy hacking!


* DISCLAIMER *

"Use this information at your own risk. I Revelation, nor any
other member of LOA, nor the persons providing this file, will NOT 
assume ANY responsibility for the use, misuse, or abuse, of the 
information provided herein. The following information is provided for 
educational purposes ONLY. The informaion is NOT to be used for illegal 
purposes. By reading this file you ARE AGREEING to the following terms:
I understand that using this information is illegal. I agree to, and 
understand, that I am responsible for my own actions. If I get into 
trouble using this information for the wrong reasons, I promise not
to place the blame on Revelation, LOA, or anyone that provided this 
file. I understand that this information is for educational purposes only. This file may be used to check your security systems and if you would like a thorough check contact A.S.H.
This file is basically a compilation of known hacking and
phreaking information and some information gathered from my own 
experience as a hacker/phreaker. I have tried to make sure that 
everything excerpted from other documents was put in quotes and labeled 
with the documents name, and if known, who wrote it. I am sorry if any 
mistakes were made with quoted information."

*-Revelation-*
LOA


I. HACKING


A. What is hacking?


Hacking is the act of penetrating computer systems to gain
knowledge about the system and how it works.
Hacking is illegal because we demand free access to ALL data, and 
we get it. This pisses people off and we are outcasted from society, and 
in order to stay out of prison, we must keep our status of being a 
hacker/phreaker a secret. We can't discuss our findings with anyone but
other members of the hacking/phreaking community for fear of being
punished. We are punished for wanting to learn. Why is the government
spending huge amounts of time and money to arrest hackers when there are
other much more dangerous people out there. It is the murderers,
rapists, terrorists, kidnappers, and burglers who should be punished for what they have done, not hackers. We do NOT pose a threat to anyone. We are NOT out to hurt people or there computers. I admit that there are some people out there who call themselves hackers and who deliberately damage computers. But these people are criminals, NOT hackers. I don't care what the government says, we are NOT criminals. We are NOT trying to alter or damage any system. This is widely misunderstood. Maybe one day people will believe us when we say that all we want is to learn.
There are only two ways to get rid of hackers and phreakers. 
One is to get rid of computers and telephones, in which case we would 
find other means of getting what we want.(Like that is really going to 
happen.) The other way is to give us what we want, which is free access 
to ALL information. Until one of those two things happen, we are not 
going anywhere.


B. Why hack?


As said above, we hack to gain knowledge about systems and the
way they work. We do NOT want to damage systems in any way. If you do
damage a system, you WILL get caught. But, if you don't damage 
anything, it is very unlikely that you will be noticed, let alone be 
tracked down and arrested, which costs a considerable amount of time 
and money.
Beginners should read all the files that they can get their
hands on about anything even remotely related to hacking and phreaking,
BEFORE they start hacking. I know it sounds stupid and boring but it
will definetly pay off in the future. The more you read about hacking
and phreaking, the more unlikely it is that you will get caught. Some
of the most useless pieces of information that you read could turn out
to be the most helpful. That is why you need to read everything 
possible.


C. Hacking rules


1. Never damage any system. This will only get you into trouble.

2. Never alter any of the systems files, except for those needed to
insure that you are not detected, and those to insure that you have
access into that computer in the future.

3. Do not share any information about your hacking projects with
anyone but those you'd trust with your life.

4. When posting on BBS's (Bulletin Board Systems) be as vague as
possible when describing your current hacking projects. BBS's CAN
be monitered by law enforcement.

5. Never use anyone's real name or real phone number when posting
on a BBS. 

6. Never leave your handle on any systems that you hack in to.

7. DO NOT hack government computers.

8. Never speak about hacking projects over your home telephone line.

9. Be paranoid. Keep all of your hacking materials in a safe place.

10. To become a real hacker, you have to hack. You can't just sit
around reading text files and hanging out on BBS's. This is not what
hacking is all about.


D. Getting started


The very first thing you need to do is get a copy of PKZIP 
or some other file unzipping utility. Nearly everything that you
download from the Internet or from a BBS will be zipped. A zipped file is a file that has been compressed. Zipped files end with the extension ".zip".
Then you need to get yourself a good prefix scanner.(also known
as a War Dialer) This is a program that automatically dials phone 
numbers beginning with the three numbers (prefix) that you specify. It 
checks to see if the number dialed has a carrier.(series of beeps that 
tells you that you have dialed a computer) Try and find a large 
business area prefix to scan. It is these businesses that have 
interesting computers. There are many good scanners out there, but I 
would recommend Autoscan or A-Dial. These are very easy to use and get 
the job done quickly and efficiently.


E. Where and how to start hacking


After you get yourself a good scanner, scan some prefixes and
find some cool dialups, then do the following: From your terminal,
dial the number you found. Then you should hear a series of beeps
(carrier) which tells you that you are connecting to a remote computer.
It should then say something like "CONNECT 9600" and then identify the
system that you are on. If nothing happens after it says "CONNECT 9600"
try hitting enter a few times. If you get a bunch of garbage adjust your
parity, data bits, stop bits, baud rate, etc., until it becomes clear.
That is one way of connecting to a remote computer. Another way is
through Telenet or some other large network.
Telenet is a very large network that has many other networks and 
remote computers connected to it.
Ok, here is how you would connect to a remote computer through
Telenet:
First, you get your local dialup(phone number) from the list that
I have provided in Section G. Then you dial the number from your 
terminal and connect.(If you get a bunch of garbage try changing your 
parity to odd and your data bits to 7, this should clear it up.) If 
it just sits there hit enter and wait a few seconds, then hit enter 
again. Then it will say "TERMINAL=" and you type in your terminal
emulation. If you don't know what it is just hit enter. Then it will
give you a prompt that looks like "@". From there you type "c" and then
the NUA (Network User Address) that you want to connect to. After you
connect to the NUA, the first thing you need to do is find out what type
of system you are on.(i.e. UNIX, VAX/VMS, PRIME, etc.)
There are other things that you can do on Telenet besides 
connecting to an NUA. Some of these commands and functions are listed in 
the next section.
You can only connect to computers which accept reverse charging.
The only way you can connect to computers that don't accept reverse charging is if you have a Telenet account. You can try hacking these. To do this, at the "@" prompt type "access". It will then ask you for your Telenet ID and password.
Telenet is probably the safest place to start hacking because of
the large numbers of calls that they get. Make sure you call during
business hours (late morning or early afternoon) so there are many
other people on-line.


F. Telenet commands


Here is a list of some Telenet commands and their functions. This
is only a partial list. Beginners probably won't use these commands,
but I put them here for reference anyway.

COMMAND FUNCTION

c Connect to a host.
stat Shows network port.
full Network echo.
half Terminal echo.
telemail Mail.(need ID and password)
mail Mail.(need ID and password)
set Select PAD parameters
cont Continue.
d Disconnect.
hangup Hangs up.
access Telenet account.(ID and password)


G. Telenet dialups


Here is the list of all the Telenet dialups that I know of in 
the U.S.A., including the city, state, and area code:

STATE,CITY: AREA CODE: NUMBER:

AL, Anniston 205 236-9711
AL, Birmingham 205 328-2310
AL, Decatur 205 355-0206
AL, Dothan 205 793-5034
AL, Florence 205 767-7960
AL, Huntsville 205 539-2281
AL, Mobile 205 432-1680
AL, Montgomery 205 269-0090
AL, Tuscaloosa 205 752-1472
AZ, Phoenix 602 254-0244
AZ, Tucson 602 747-0107
AR, Ft.Smith 501 782-2852
AR, Little Rock 501 327-4616 
CA, Bakersfield 805 327-8146
CA, Chico 916 894-6882
CA, Colton 714 824-9000
CA, Compton 213 516-1007
CA, Concord 415 827-3960
CA, Escondido 619 741-7756
CA, Eureka 707 444-3091
CA, Fresno 209 233-0961
CA, Garden Grove 714 898-9820
CA, Glendale 818 507-0909
CA, Hayward 415 881-1382
CA, Los Angeles 213 624-2251
CA, Marina Del Rey 213 306-2984
CA, Merced 209 383-2557
CA, Modesto 209 576-2852
CA, Montery 408 646-9092
CA, Norwalk 213 404-2237
CA, Oakland 415 836-4911
CA, Oceanside 619 430-0613
CA, Palo Alto 415 856-9995
CA, Pomona 714 626-1284
CA, Sacramento 916 448-6262
CA, Salinas 408 443-4940
CA, San Carlos 415 591-0726
CA, San Diego 619 233-0233
CA, San Francisco 415 956-5777
CA, San Jose 408 294-9119
CA, San Pedro 213 548-6141
CA, San Rafael 415 472-5360
CA, San Ramon 415 829-6705
CA, Santa Ana 714 558-7078
CA, Santa Barbara 805 682-5361
CA, Santa Cruz 408 429-6937
CA, Santa Rosa 707 656-6760
CA, Stockton 209 957-7610
CA, Thousand Oaks 805 495-3588
CA, Vallejo 415 724-4200
CA, Ventura 805 656-6760
CA, Visalia 209 627-1201
CA, West Covina 818 915-5151
CA, Woodland Hills 818 887-3160
C0, Colorado 719 635-5361
CO, Denver 303 337-6060
CO, Ft. Collins 303 493-9131
CO, Grand Junction 303 241-3004
CO, Greeley 303 352-8563
CO, Pueblo 719 542-4053
CT, Bridgeport 203 335-5055
CT, Danbury 203 794-9075
CT, Hartford 203 247-9479
CT, Middletown 203 344-8217
CT, New Britain 203 225-7027
CT, New Haven 203 624-5954
CT, New London 203 447-8455
CT, Norwalk 203 866-7404
CT, Stamford 203 348-0787
CT, Waterbury 203 753-4512
DE, Dover 302 678-8328
DE, Newark 302 454-7710
DC, Washington 202 429-7896
DC, Washington 202 429-7800
FL, Boca Raton 407 338-3701
FL, Cape Coral 813 275-7924
FL, Cocoa Beach 407 267-0800
FL, Daytona Beach 904 255-2629
FL, Ft. Lauderdale 305 764-4505
FL, Gainsville 904 338-0220
FL, Jacksonville 904 353-1818
FL, Lakeland 813 683-5461
FL, Melbourne 407 242-8247
FL, Miami 305 372-0230
FL, Naples 813 263-3033
FL, Ocala 904 351-3790
FL, Orlando 407 422-4099
FL, Pensacola 904 432-1335
FL, Pompano Beach 305 941-5445
FL, St. Petersburg 813 323-4026
FL, Sarasota 813 923-4563
FL, Tallahassee 904 681-1902
FL, Tampa 813 224-9920
FL, West Palm Beach 407 833-6691
GA, Albany 912 888-3011
GA, Athens 404 548-5590
GA, Atlanta 404 523-0834
GA, Augusta 404 724-2752
GA, Colombus 404 571-0556
GA, Macon 912 743-8844
GA, Rome 404 234-1428
GA, Savannah 912 236-2605
HI, Oahu 808 528-0200
ID, Boise 208 343-0611
ID, Idaho Falls 208 529-0406
ID, Lewiston 208 743-0099
ID, Pocatella 208 232-1764
IL, Aurora 312 896-0620
IL, Bloomington 309 827-7000
IL, Chicago 312 938-0600
IL, Decatur 217 429-0235
IL, Dekalb 815 758-2623
IL, Joliet 815 726-0070
IL, Peoria 309 637-8570
IL, Rockford 815 965-0400
IL, Springfield 217 753-1373
IL, Urbana 217 384-6428
IN, Bloomington 812 332-1344
IN, Evansville 812 424-7693
IN, Ft. Wayne 219 426-2268
IN, Gary 219 882-8800
IN, Indianapolis 317 299-0024
IN, Kokomo 317 455-2460
IN, Lafayette 317 742-6000
IN, Muncie 317 282-6418
IN, South Bend 219 233-7104
IN, Terre Haute 812 232-5329
IA, Ames 515 233-6300
IA, Cedar Rapids 319 364-0911
IA, Davenport 319 324-2445
IA, Des Moines 515 288-4403
IA, Dubuque 319 556-0783
IA, Iowa City 319 351-1421
IA, Sioux City 712 255-1545
IA, Waterloo 319 232-5441
KS, Lawrence 913 843-8124
KS, Manhattan 913 537-0948
KS, Salina 913 825-7900
KS, Topeka 913 233-9880
KS, Wichita 316 262-5669
KY, Bowling Green 502 782-7941
KY, Frankfort 502 875-4654
KY, Lexington 606 233-0312
KY, Louisville 502 589-5580 
KY, Owensboro 502 686-8107 
LA, Alexandria 318 445-1053 
LA, Baton Rouge 504 343-0753 
LA, Lafayette 318 233-0002 
LA, Lake Charles 318 436-0518 
LA, Monroe 318 387-6330
LA, New Orleans 504 524-4094
LA, Shreveport 318 221-5833
ME, Augusta 207 622-3123
ME, Brewer 207 989-3081
ME, Lewiston 207 784-0105
ME, Portland 207 761-4000
MD, Annapolis 301 224-8550
MD, Baltimore 301 727-6060
MD, Frederick 301 293-9596
MA, Boston 617 292-0662
MA, Brockton 508 580-0721
MA, Fall River 508 677-4477
MA, Framingham 508 879-6798
MA, Lawrence 508 975-2273
MA, Lexington 617 863-1550
MA, Lowell 508 937-5214
MA, New Bedford 508 999-2915
MA, Northampton 413 586-0510
MA, Pittsfield 413 499-7741
MA, Salem 508 744-1559
MA, Springfield 413 781-3811
MA, Woods Hole 508 540-7500
MA, Worcester 508 755-4740
MI, Ann Arbor 313 996-5995
MI, Battle Creek 616 968-0929
MI, Detroit 313 964-2988
MI, Flint 313 235-8517
MI, Grand Rapids 616 774-0966 
MI, Jackson 517 782-8111 
MI, Kalamazoo 616 345-3088
MI, Lansing 517 484-0062
MI, Midland 517 832-7068
MI, Muskegon 616 726-5723
MI, Pontiac 313 332-5120
MI, Port Huron 313 982-8364
MI, Saginaw 517 790-5166
MI, Southfield 313 827-4710
MI, Traverse City 616 946-2121
MI, Warren 313 575-9152
MN, Duluth 218 722-1719
MN, Mankato 517 388-3780
MN, Minneapolis 612 341-2459
MN, Rochester 507 282-5917
MN, St. Cloud 612 253-2064
MS, Gulfport 601 863-0024
MS, Jackson 601 969-0036
MS, Meridian 601 482-2210
MS, Starkville 601 324-2155
MO, Columbia 314 449-4404
MO, Jefferson City 314 634-5178
MO, Kansas City 816 221-9900
MO, St. Joseph 816 279-4797
MO, St. Louis 314 421-4990
MO, Springfield 417 864-4814
MT, Billings 406 245-7649
MT, Great Falls 406 771-0067
MT, Helena 406 443-0000
MT, Missoula 406 721-5900
NE, Lincoln 402 475-4964
NE, Omaha 402 341-7733
NV, Las Vegas 702 737-6861
NV, Reno 702 827-6900
NH, Concord 603 224-1024
NH, Durham 603 868-2924
NH, Manchester 603 627-8725
NH, Nashua 603 880-6241
NH, Portsmouth 603 431-2302
NJ, Atlantic City 609 348-0561
NJ, Freehold 201 780-5030
NJ, Hackensack 201 488-6567
NJ, Marlton 609 596-1500
NJ, Merchantville 609 663-9297
NJ, Morristown 201 455-0275
NJ, New Brunswick 201 745-2900
NJ, Newark 201 623-0469
NJ, Passaic 201 778-5600
NJ, Paterson 201 684-7560
NJ, Princeton 609 799-5587
NJ, Rahway 201 815-1885
NJ, Redbank 201 571-0003
NJ, Roseland 201 227-5277
NJ, Sayreville 201 525-9507
NJ, Trenton 609 989-8847
NM, Albuquerque 505 243-4479
NM, Las Cruces 505 526-9191
NM, Santa Fe 505 473-3403
NY, Albany 518 465-8444
NY, Binghampton 607 772-6642
NY, Buffalo 716 847-1440
NY, Dear Park 516 667-5566
NY, Hempstead 516 292-3800
NY, Ithaca 607 277-2142
NY, New York City 212 741-8100
NY, New York City 212 620-6000
NY, Plattsburgh 518 562-1890
NY, Poughkeepsie 914 473-2240
NY, Rochester 716 454-1020
NY, Syracuse 315 472-5583
NY, Utica 315 797-0920
NY, Whit Plains 914 328-9199
NC, Asheville 704 252-9134
NC, Charlotte 704 332-3131
NC, Fayetteville 919 323-8165
NC, Gastonia 704 865-4708
NC, Greensboro 919 273-2851
NC, High Point 919 889-7494
NC, North Wilkesboro 919 838-9034
NC, Raleigh 919 834-8254
NC, Res Tri Park 919 549-8139
NC, Tarboro 919 823-0579
NC, Wilmington 919 763-8313
NC, Winston-Salem 919 725-2126 
ND, Fargo 701 235-7717
ND, Grand Forks 701 775-7813
ND, Mandan 701 663-2256
OH, Canton 216 452-0903
OH, Cincinnati 513 579-0390
OH, Cleveland 216 575-1658
OH, Colombus 614 463-9340
OH, Dayton 513 461-5254
OH, Elyria 216 323-5059
OH, Hamilton 513 863-4116
OH, Kent 216 678-5115
OH, Lorain 216 960-1170
OH, Mansfield 419 526-0686
OH, Sandusky 419 627-0050
OH, Springfield 513 324-1520
OH, Toledo 419 255-7881
OH, Warren 216 394-0041
OH, Wooster 216 264-8920
OH, Youngstown 216 743-1296
OK, Bartlesville 918 336-3675
OK, Lawton 405 353-0333
OK, Oklahoma City 405 232-4546
OK, Stillwater 405 624-1113
OK, Tulsa 918 584-3247
OR, Corvallis 503 754-9273
OR, Eugena 503 683-1460
OR, Hood River 503 386-4405
OR, Klamath Falls 503 882-6282
OR, Medford 503 779-6343
OR, Portland 503 295-3028
OR, Salem 503 378-7712
PA, Allentown 215 435-3330
PA, Altoona 814 949-0310
PA, Carlisle 717 249-9311
PA, Danville 717 271-0102
PA, Erie 814 899-2241
PA, Harrisburg 717 236-6882
PA, Johnstown 814 535-7576
PA, King Of Prussia 215 337-4300
PA, Lancaster 717 295-5405
PA, Philadelphia 215 574-9462
PA, Pittsburgh 412 288-9950
PA, Reading 215 376-8750
PA, Scranton 717 961-5321
PA, State College 814 231-1510
PA, Wilkes-Barre 717 829-3108
PA, Williamsport 717 494-1796
PA, York 717 846-6550
RI, Providence 401 751-7910
SC, Charleston 803 722-4303
SC, Columbia 803 254-0695
SC, Greenville 803 233-3486
SC, Spartenburg 803 585-1637
SC, Pierre 605 224-0481
SC, Rapid City 605 348-2621
SC, Sioux Falls 605 336-8593
TN, Bristol 615 968-1130
TN, Chattanooga 615 756-1161
TN, Clarksville 615 552-0032
TN, Johnson City 615 282-6645
TN, Knoxville 615 525-5500
TN, Memphis 901 521-0215
TN, Nashville 615 244-3702
TN, Oak Ridge 615 481-3590
TX, Abilene 915 676-9151
TX, Amarillo 806 373-0458
TX, Athens 214 677-1712
TX, Austin 512 928-1130
TX, Brownsville 512 542-0367
TX, Bryan 409 822-0159
TX, Corpus Christi 512 884-9030
TX, Dallas 214 748-6371
TX, El Paso 915 532-7907
TX, Ft. Worth 817 332-4307
TX, Galveston 409 762-4382
TX, Houston 713 227-1018
TX, Laredo 512 724-1791
TX, Longview 214 236-4205
TX, Lubbock 806 747-4121
TX, Mcallen 512 686-5360
TX, Midland 915 561-9811
TX, Nederland 409 722-3720
TX, San Angelo 915 944-7612
TX, San Antonio 512 225-8004
TX, Sherman 214 893-4995
TX, Temple 817 773-9723
TX, Tyler 214 597-8925
TX, Waco 817 752-9743
TX, Wichita Falls 817 322-3774
UT, Ogden 801 627-1630
UT, Provo 801 373-0542
UT, Salt Lake City 801 359-0149
VT, Burlington 802 864-0808
VT, Montpelier 802 229-4966
VT, Rutland 802 775-1676
VT, White River Jct. 802 295-7631 
VA, Blacksburg 703 552-9181 
VA, Charlottesville 804 977-5330 
VA, Covington 703 962-2217 
VA, Fredericksburg 703 371-0188 
VA, Harrisonburg 703 434-7121
VA, Herndon 703 435-1800
VA, Lynchburg 804 845-0010
VA, Newport News 804 596-6600
VA, Norfolk 804 625-1186
VA, Richmond 804 788-9902
VA, Roanoke 703 344-2036
WA, Auburn 206 939-9982
WA, Bellingham 206 733-2720
WA, Everett 206 775-9929
WA, Longview 206 577-5835
WA, Olympia 206 754-0460
WA, Richland 509 943-0649
WA, Seattle 206 625-9612
WA, Spokane 509 455-4071
WA, Tacoma 206 627-1791
WA, Vancouver 206 693-6914
WA, Wenatchee 509 663-6227
WA, Yakima 509 575-1060
WV, Charleston 304 343-6471
WV, Huntington 304 523-2802
WV, Morgantown 304 292-0104
WV, Wheeling 304 233-7732
WI, Beloit 608 362-5287
WI, Eau Claire 715 836-9295 
WI, Green Bay 414 432-2815 
WI, Kenosha 414 552-9242
WI, La Crosse 608 784-0560 
WI, Madison 608 257-5010 
WI, Milwaukee 414 271-3914
WI, Neenah 414 722-7636
WI, Racine 414 632-6166
WI, Sheboygan 414 452-3995
WI, Wausau 715 845-9584
WI, West Bend 414 334-2206
WY, Casper 307 265-5167
WY, Cheyenne 307 638-4421
WY, Laramie 307 721-5878 
H. Telenet DNIC's


Here is the list of all the Telenet DNIC's. These 
will be defined and explained in the next section:

DNIC: NETWORK: 

02041 Datanet-1
02062 DCS
02080 Transpac
02284 Telepac (Switzerland)
02322 Datex-P (Austria)
02392 Radaus
02342 PSS
02382 Datapak (Denmark)
02402 Datapak (Sweden)
02405 Telepak
02442 Finpak
02624 Datex-P (West Germany)
02704 Luxpac
02724 Eirpak
03020 Datapac
03028 Infogram
03103 ITT/UDTS (U.S.A.)
03106 Tymnet
03110 Telenet
03340 Telepac (Mexico)
03400 UDTS (Curacau)
04251 Isranet
04401 DDX-P
04408 Venus-P
04501 Dacom-Net
04542 Intelpak
05052 Austpac
05053 Midas
05252 Telepac (Hong Kong)
05301 Pacnet
06550 Saponet
07240 Interdata
07241 Renpac
07421 Dompac
09000 Dialnet


I. Telenet NUA's


Here is a list of a few Telenet NUA's and what type of system
they are. But first, this is how an NUA is put together:

031106170023700
\ /\ / \ /
| | | 
DNIC Area NUA
Code 

The DNIC says which network connected to Telenet you are using.
The area code is the area code for the area that the NUA is in. And
the NUA is the address of the computer on Telenet. Please note that
an NUA does NOT have to be in your area code for you to connect to it.
There are two ways of finding useful NUA's. The first way is to
get or write an NUA scanning program. The second way is to get a copy 
of the Legion Of Doom's Telenet Directory.( Volume 4 of the LOD 
Technical Journals)
Now, here is the list. Remember that these are only a few NUA's.
These are NOT all of the Telenet NUA's. All of these NUA's DO accept
reverse charging. Also, please note that all of these may not be 
working by the time you read this and that network congestion
frequently makes an NUA inaccessible for a short period of time.

NUA: SYSTEM TYPE:

031102010022500 VAX
031102010015600 UNIX
031102010022000 VAX
031102010025900 UNIX
031102010046100 VAX
031102010025200 PRIME
031102010046100 VAX
031102010052200 VAX
031102020001000 PRIME
031102020013200 VAX
031102020014100 PRIME
031102020014200 PRIME
031102020015000 VAX
031102020016100 UNIX
031102020021400 PRIME
031102020024500 AOS
031102020030800 PRIME
031102020030900 PRIME
031102020031200 PRIME
031102020033600 VAX
031102020033700 VAX
031102020034300 PRIME
031102020036000 HP-3000 
031102030007500 VAX
031102030002200 VM/370
031102030013600 PRIME
031102060003200 HP-3000
031102060044000 VAX
031102060044900 NOS
031102060044700 VM/370
031102120003900 NOS
031102120015200 PRIME
031102120026600 VAX
031102120026300 VAX
031102120026700 UNIX
031102120044900 UNIX
031102120053900 VOS
031102140024000 VAX


J. Basic UNIX hacking

UNIX is probably the most commonly used operating system on Telenet, and is the easiest to hack since it doesn't record bad login attempts. You know you've found a UNIX system when it gives you a "Login" prompt, and then a "Password" prompt. To get in you should first try the default logins.(Listed below.) If these don't work try some of the passwords listed in Section M. If these don't work try to find backdoors. These are passwords that may have been put in to allow the programmer (or someone else who could be in a position to make a backdoor) to get access into the system. These are usually not known about by anyone but the individual who made it. Try doing some research on the programmer and other people who helped to make the system. And, if these don't work, just try guessing them. The Login (usually the account holders name) has 1-8 characters and the Password is 6-8 characters. Both can be either letters or numbers, or a combination of the two.
Once you get in, you should get a "$" prompt, or some other special character like it. You should only use lower case letters when hacking UNIX, this seems to be standard format. If you type "man [command]" at the prompt, it should list all of the commands for that system. Anyway, here are the default Logins and Passwords:


Login: Password:

root root
root system
sys sys
sys system
daemon daemon
uucp uucp
tty tty
test test
unix unix
unix test
bin bin
adm adm
adm admin
admin adm
admin admin
sysman sysman
sysman sys
sysman system
sysadmin sysadmin
sysadmin sys
sysadmin system
sysadmin admin
sysadmin adm
who who
learn learn
uuhost uuhost
guest guest
host host
nuucp nuucp
rje rje
games games
games player
sysop sysop
root sysop
demo demo


Once you are in, the first thing that you need to do is save the password file to your hard drive or to a disk. The password file contains the Logins and Passwords. The passwords are encoded. To get the UNIX password file, depending on what type of UNIX you are in, you can type one of the following things:

/etc/passwd
or
cat /etc/passwd 

The first one is the standard command, but there are other commands as well, like the second one. Once you get the password file, it should look like this:


john:234abc56:9999:13:John Johnson:/home/dir/john:/bin/john


Broken down, this is what the above password file states:


Username: john
Encrypted Password: 234abc56
User Number: 9999
Group Number: 13
Other Information: John Johnson
Home Directory: /home/dir/john
Shell: /bin/john


If the password file does not show up under one of the above two commands, then it is probably shadowed.
The following definition of password shadowing was taken from the alt.2600 hack faq:
"Password shadowing is a security system where the encrypted password field is replaced with a special token and the encrypted password is stored in a seperate file which is not readable by normal system users."
If the password file is shadowed, you can find it in one of the following places, depending on the type of UNIX you are using:


UNIX System Type: Path: Token:

AIX 3 /etc/security/passwd ! 
or /tcb/auth/files/ username>/

A/UX 3.Os /tcb/files/auth/*

BSD4.3-Reno /etc/master.passwd *

ConvexOS 10 /etc/shadpw *

Convex0S 11 /etc/shadow *

DG/UX /etc/tcb/aa/user *

EP/IX /etc/shadow x

HP-UX /.secure/etc/passwd *

IRIX 5 /etc/shadow x

Linux 1.1 /etc/shadow *

OSF/1 /etc/passwd[.dir|.pag] *

SCO UNIX #.2.x /tcb/auth/files/ username>/

SunOS 4.1+c2 /etc/security/passwd.adjunct ##

SunOS 5.0 /etc/shadow 

System V 4.0 /etc/shadow x

System V 4.2 /etc/security/* database 

Ultrix 4 /etc/auth[.dir|.pag] *

UNICOS /etc/udb *


Some passwords can only be used for a certain amount of time without having to be changed, this is called password aging. In the password file example below, the "C.a4" is the password aging data:


bob:123456,C.a4:6348:45:Bob Wilson:/home/dir/bob:/bin/bob


The characters in the password aging data stand for the following:


1. Maximum number of weeks a password can be used without changing.
2. Minimum number of weeks a password must be used before being changed.
3&4. Last time password was changed, in number of weeks since 1970.


The password aging data can be decoded using the chart below:

Character: Number:

. 0
/ 1
0 2
1 3
2 4
3 5
4 6
5 7
6 8
7 9
8 10
9 11
A 12
B 13
C 14
D 15 
E 16
F 17
G 18
H 19 
I 20
J 21
K 22
L 23
M 24
N 25
O 26
P 27
Q 28
R 29
S 30
T 31
U 32
V 33
W 34
X 35
Y 36
Z 37
a 38
b 39
c 40
d 41
e 42
f 43
g 44
h 45
i 46
j 47
k 48
l 49
m 50
n 51
o 52
p 53
q 54
r 55
s 56
t 57
u 58
v 59
w 60
x 61
y 62
z 63


Now, explore the system freely, be careful, and have fun!


K. Basic VAX/VMS hacking


The VAX system runs the VMS (Virtual Memory System) operating system. You know that you have a VAX system when you get a "username" prompt. Type in capital letters, this seems to be standard on VAX's. Type "HELP" and it gives you all of the help that you could possibly want. Here are the default usernames and passwords for VAX's:

Username: Password:

SYSTEM OPERATOR
SYSTEM MANAGER
SYSTEM SYSTEM
SYSTEM SYSLIB
OPERATOR OPERATOR
SYSTEST UETP
SYSTEST SYSTEST
SYSTEST TEST
SYSMAINT SYSMAINT
SYSMAINT SERVICE
SYSMAINT DIGITAL
FIELD FIELD
FIELD SERVICE
GUEST GUEST
GUEST unpassworded
DEMO DEMO
DEMO unpassworded
TEST TEST
DECNET DECNET



Here are some of the VAX/VMS commands:


Command: Function:

HELP (H) Gives help and list of commands.
TYPE (T) View contents of a file.
RENAME (REN) Change name of a file.
PURGE (PU) Deletes old versions of a file.
PRINT (PR) Prints a file.
DIRECTORY (DIR) Shows list of files.
DIFFERENCES (DIF) Shows differences between files.
CREATE (CR) Creates a file.
DELETE (DEL) Deletes a file.
COPY (COP) Copy a file to another.
CONTINUE (C) Continues session.



The password file on VAX's are available when you type in the command:

SYS$SYSTEM:SYSUAF.DAT

The password file on most VAX's are usually not available to normal system users, but try it anyway. If the default logins don't work, use the same means of finding one as stated in Section J.
Be VERY careful when hacking VAX's becuase they record every bad login attempt. They are sometimes considered one of the most secure systems. Because of this, I advise not to try hacking these until you are more advanced.
But, when you are an advanced hacker, or if you are already an advanced hacker, I advise that you try a few passwords at a time and then wait and try a few more the next day and so on, because when the real user logs on it displays all of the bad login attempts.


L. Basic PRIME hacking


PRIME computer systems greet you with "Primecon 18.23.05", or something like it, when you connect. You should type in capital letters on this system, too. Once you connect, it will usually just sit there. If this happens, type "LOGIN ". It should then ask you for your username and password. The default usernames and passwords are listed below:

Username: Password:

PRIME PRIME
PRIME PRIMOS
PRIMOS PRIMOS
PRIMOS PRIME
PRIMOS_CS PRIME
PRIMOS_CS PRIMOS
PRIMENET PRIMENET
SYSTEM SYSTEM
SYSTEM PRIME
SYSTEM PRIMOS
NETLINK NETLINK
TEST TEST
GUEST GUEST
GUEST1 GUEST


When you are inside the system, type "NETLINK" and it ahould give you alot of help. This system uses NUA's, too. I might print these in the next volume.


M. Password List


The password list was taken from A Novice's Guide To Hacking, by The Legion Of Doom, and from some of my own discoveries. Here is the list of commonly used passwords:

Password:

aaa
academia
ada
adrian
aerobics
airplane
albany
albatross
albert
alex
alexander
algebra
alias
alisa
alpha
alphabet
ama
amy
analog
anchor
andy
andrea
animal
answer
anything
arrow
arthur
ass
asshole
athena
atmosphere
bacchus
badass
bailey
banana
bandit
banks
bass
batman
beautiful
beauty
beaver
daniel
danny
dave
deb
debbie
deborah
december
desire
desperate
develop
diet
digital
discovery
disney
dog
drought
duncan
easy
eatme
edges
edwin
egghead
eileen
einstein
elephant
elizabeth
ellen
emerald
engine
engineer
enterprise
enzyme
euclid
evelyn
extension
fairway
felicia
fender
finite
format
god
hello
idiot
jester
john
johnny
joseph
joshua
judith
juggle
julia
kathleen
kermit
kernel
knight
lambda
larry
lazarus
lee
leroy
lewis
light
lisa
louis
love
lynne
mac
macintosh
mack
maggot
magic
malcolm
mark
markus
martin
marty
marvin
matt
master
maurice
maximum
merlin
mets
michael
michelle
mike
minimum
nicki
nicole
rascal
really
rebecca
remote
rick
reagan
robot
robotics
rolex
ronald
rose
rosebud
rosemary
roses
ruben
rules
ruth
sal
saxon
scheme
scott
secret
sensor
serenity
sex
shark
sharon
shit
shiva
shuttle
simon
simple
singer
single
singing
smile
smooch
smother
snatch
snoopy
soap
socrates
spit
spring
subway
success
summer
super
support
surfer
suzanne
tangerine
tape
target
taylor
telephone
temptation
tiger
tigger
toggle
tomato
toyota
trivial
unhappy
unicorn
unknown
urchin
utility
vicki
virgin
virginia
warren
water
weenie
whatnot
whitney
will
william
winston
willie
wizard
wonbat
yosemite
zap


N. Connecting modems to different phone lines 


Ok, if you are really paranoid (or smart) and you don't want to hack from your house for fear of getting caught, you can hook up your modem to other peoples phone lines or to payphones.
If you want to hook your modem to a payphone, do it late at night and at a very secluded payphone. Look along either side of the phone. You should see a small metal tube (which contains the telephone wires) running along the wall. Somewhere along the tube it should widen out into a small box. Pop off the boxes lid and there is a nice little phone jack for ya'. Taking off the lid may be difficult because they are usually pretty secure, but nothing is impossible, so keep trying. Of course, you can only do this with a lap-top computer.
Now, if you want to hook up the modem to someone's house or appartment phone line, you need to get a pair of red and green alligator clips, and an extra modem cord for your lap-top.
After you get those parts, cut the plastic end off of your modem cord and you will see a red wire, a green wire, and two other wires, but you can ignore those. Attach the red alligator clip to the red wire, and attach the green alligator clip to the green wire and you're all set. Now all you need to do is go find a telephone pole or one of those small green boxes that stick out of the ground.(They should have a Bell Systems logo on them.)
On a telephone pole open the little box that has a bunch of wires going to and from it. On the right side of the box you should see what look like two large screws.(These are called "terminals".) One should have a red wire wrapped around it and the other should have a green wire wrapped around it. Attach the red alligator clip the the red wire and the green alligator clip to the green wire, and you're all set. This should get you a dial tone. If it doesn't, make sure that the alligator clips are not touching each other, and that the alligator clips are attached to the exposed end of the wire.
Now, on those green boxes you need to undo all of the screws and shit holding the lid on, and open it up. Then you should find basically the same setup as in the telephone pole. Attach the appropriate wires to the appropriate terminals and you are all set. 
This process can also be used to hook up a Beige Box (Lineman's Handset.) when phreaking.


O. Viruses, Trojans, and Worms


Just in case some of you are interested, here are the definitions for Viruses, Trojans, and Worms. These definitions were taken from the alt.2600 hack faq.

Trojan:

"Remember the Trojan Horse? Bad guys hid inside it until they could get into the city to do their evil deed. A Trojan computer program is similiar. It is a program which does an unauthorized function, hidden inside an authorized program. It does something other than it claims to do, usually something malicious (although not necessarily!), and it is intended by the author to do whatever it does. If it is not intentional, it is called a bug or, in some cases, a feature :) Some Virus scanning programs detect some Trojans. Some scanning programs don't detect any Trojans. No Virus scanners detect all Trojans."

Virus:

"A Virus is an independent program which reproduces itself. It may attach itself to other programs, it may create copies of itself (as in companion Viruses). It may damage or corrupt data, change data, or degrade the performance of your system by utilizing resources such as memory or disk space. Some Viruse scanners detect some Viruses. No Virus scanners detect all Viruses. No Virus scanner can protect against any and all Viruses, known and unknown, now and forevermore."

Worm:

"Made famous by Robert Morris, Jr., Worms are programs which reproduce by copying themselves over and over, system to system, using up resources and sometimes slowing down the system. They are self contained and use the networks to spread, in much the same way that Viruses use files to spread. Some people say the solution to Viruses and worms is to just not have any files or networks. They are probably correct. We could include computers."


II. PHREAKING


A. What is phreaking


Phreaking is basically hacking with a telephone. Using different "boxes" and "tricks" to manipulate the phone companies and their phones, you gain many things, two of which are: knowledge about telephones and how they work, and free local and long distance phone calls. In the following sections, you will learn some about boxes, what they are, and how they work. You will also learn about the other forms of phreaking.


B. Why phreak?


Phreaking, like hacking, is used to gather information about telephones, telephone companies, and how they work. There are other benefits as well. As stated above, you also get free phone calls. But, these are used mainly to gather more information about the phones, and to allow us free access to all information.


C. Phreaking rules



Most of the same rules apply for hacking and phreaking, so I will only list a few here.


1. Never box over your home phone line.
2. You should never talk about phreaking projects over your home phone line.
3. Never use your real name when phreaking.
4. Be careful who you tell about your phreaking projects.
5. Never leave phreaking materials out in the open. Keep them in a safe place.
6. Don't get caught.


D. Where and how to start phreaking


Well, you can phreak on any telephone, but as stated above, it is very stupid to do so on your home phone line. 
First you need you need to construct the boxes needed for what you want to do. All of the boxes and their descriptions are listed in the next section. Most of the boxes are very easy to make, but if your not into making shit, there are usually alternative ways of making them.


E. Boxes and what they do


Box: Description:

Red Box generates tones for free phone calls

Black Box when called, caller pays nothing

Beige Box lineman's handset

Green Box generates coin return tones

Cheese Box turns your phone into a payphone

Acrylic Box steal 3-way calling and other services

Aqua Box stops F.B.I. lock-in-trace

Blast Box phone microphone amplifier

Blotto Box shorts out all phones in your area

Blue Box generates 2600hz tone

Brown Box creates party line

Bud Box tap neighbors phone 

Chatreuse Box use electricity from phone

Chrome Box manipulates traffic signals

Clear Box free calls

Color Box phone conversation recorder

Copper Box causes crosstalk interference

Crimson Box hold button

Dark Box re-route calls

Dayglo Box connect to neighbors phone line

Divertor Box re-route calls

DLOC Box create party line

Gold Box dialout router

Infinity Box remote activated phone tap

Jack Box touch-tone key pad

Light Box in-use light

Lunch Box AM transmitter

Magenta Box connect remote phone line to another

Mauve Box phone tap without cutting into the line

Neon Box external microphone

Noise Box creates line noise

Olive Box external ringer

Party Box creates party line

Pearl Box tone generator

Pink Box creates party line

Purple Box hold button

Rainbow Box kill trace

Razz Box tap neighbors phone

Rock Box add music to phone line

Scarlet Box causes interference

Silver Box create DTMF tones for A,B,C, and D

Static Box raises voltage on phone line

Switch Box add services 

Tan Box phone conversation recorder

TV Cable Box see sound waves on TV

Urine Box create disturbance on phone headset

Violet Box stop payphone from hanging up

White Box DTMF key pad 

Yellow Box add line extension 


F. Box Plans


The Red Box is the main tool that you will use so I have included the Red Box plans. The other box plans can be downloaded from the Internet.

Red Box:

There are two ways that you can make a Red Box:

One is to go to Radio Shack and buy a tone dialer and a 6.5536Mhz crystal.(If Radio Shack doesn't have the crystal, you can order them from the electronics companies that I have listed at the end of this section.) Open up the tone dialer and replace the existing crystal (big, shiny, metal thing labeled "3.579545Mhz") with the 6.5536Mhz crystal. Now, close it up. You have a red box. 
To use it for long distance calls play the tones that add up to the amount of money that the operator requests. For a 25 cents tone press 5 *'s. For a 10 cents tone press 3 *'s. For a 5 cents tone press 1 *.
And, the second way, which is a much easier method, is to get the Red Box tones from a phreaking program, such as: Omnibox, or Fear's Phreaker Tools. Play the tones as you hold a microcassette recorder about 1-inch away from your computer speakers, and record the tones.
The Red Box only works on public telephones, it does not work on COCOT's.(Defined in next section.) It makes the telephone think that you have put money in. Red Boxes do not work on local calls because the phone is not using ACTS (Automated Coin Toll System), unless you call the operator and have her place the call for you. You tell her the number that you want to dial and then when she asks you to put in your money, play the tones. If she asks you why you need her to place the call tell her that one of the buttons is smashed in or something like that. You now have and know how to use a Red Box!

Electronics Companies:

Alltronics
2300 Zanker Road
San Jose, CA 95131
(408)943-9774 -Voice-
(408)943-9776 -Fax-

Blue Saguaro
P.O. Box 37061
Tucson, AZ 85740

Mouser
(800)346-6873

Unicorn Electronics
10000 Canoga Ave. Unit C-2
Chatsworth, CA 91311
1-800-824-3432


G. Free calling from COCOT's


First of all, COCOT stands for "Customer Owned Customer Operated Telephone". These are most likely to be found at resteraunts, amusement parks, etc. 
All you have to do to make a free call from a COCOT is dial a 1-800 number (they let you do this for free), say some bullshit and get them to hang up on you. Stay on the line after they hang up, then dial the number that you want to call.
This may not work by the time you read this because COCOT owners are becoming more aware of us every day.


H. ANAC numbers


ANAC stands for "Automated Number Announcment Circuit". In other words, you call the ANAC number in your area and it tells you the number that you are calling from. This is useful when Beige Boxing, or hooking your modem up to other phone lines, to find out what number you are using. The "?" are substituted for unknown numbers. Do some scanning to find them out. Here are the ANAC numbers for the U.S.A. with their area code, and the only one I knew of in the U.K.:

U.S.A.:

Area Code: ANAC Number:

201 958
202 811
203 970
205 300-222-2222
205 300-555-5555
205 300-648-1111
205 300-765-4321
205 300-798-1111
205 300-833-3333
205 557-2311
205 811
205 841-1111
205 908-222-2222
206 411
207 958
209 830-2121
209 211-9779
210 830
212 958
213 114
213 1223
213 211-2345
213 211-2346
213 760-2???
213 61056
214 570
214 790
214 970-222-2222
214 970-611-1111
215 410-????
215 511
215 958
216 200-????
216 331
216 959-9968
217 200-???-????
219 550
219 559
301 958-9968
310 114
310 1223
310 211-2345
310 211-2346
312 200
312 290
312 1-200-8825
312 1-200-555-1212
313 200-200-2002
313 200-222-2222 
313 200-???-????
313 200200200200200
314 410-????
315 953
315 958
315 998
317 310-222-2222
317 559-222-2222
317 743-1218
334 5572411
334 5572311
401 200-200-4444
401 222-2222
402 311
404 311
404 940-???-????
404 940
405 890-7777777 
405 897
407 200-222-2222
408 300-???-????
408 760
408 940
409 951
409 970-????
410 200-6969
410 200-555-1212
410 811
412 711-6633
412 711-4411
412 999-????
413 958
413 200-555-5555
414 330-2234
415 200-555-1212
415 211-2111
415 2222
415 640
415 760-2878
415 7600-2222
419 311
502 200-2222222
502 997-555-1212
503 611
503 999
504 99882233
504 201-269-1111
504 998
504 99851-0000000000
508 958
508 200-222-1234
508 200-222-2222
508 26011
509 560
510 760-1111
512 830
512 970-????
515 5463
515 811
516 958
516 968
517 200-222-2222
517 200200200200200
518 511
518 997
518 998
603 200-222-2222 
606 997-555-1212
606 711
607 993
609 958
610 958
610 958-4100
612 511
614 200
614 517
615 200200200200200
615 2002222222
615 830
616 200-222-2222
617 200-222-1234
617 200-222-2222
617 200-444-4444
617 220-2622
617 958
618 200-???-????
618 930
619 211-2001
619 211-2121
703 811
704 311
707 211-2222
708 1-200-555-1212
708 1-200-8825
708 200-6153
708 724-9951
708 356-9646
713 380
713 970-????
713 811
714 114
714 211-2121
714 211-2222
716 511
716 990
717 958
718 958
802 2-222-222-2222
802 200-222-2222
802 1-700-222-2222
802 111-2222
805 114
805 211-2345
805 211-2346
805 830
806 970-????
810 200200200200200
812 410-555-1212
813 311
815 200-???-????
817 290
817 211
818 970-611-1111
818 1223
818 211-2345
903 211-2346
904 970-611-1111
906 200-222-222
907 1-200-222-2222
907 811
908 958
910 200
910 311
910 988
914 990-1111
915 970-????
916 211-2222
916 461
919 200
919 711

U.K.:

175


III. REFERENCE


A. Hacking and phreaking WWW. sites


Here is a list of some World Wide Web sites that contain hacking, phreaking, computer, virus, carding, security, etc. material:

Site Address:

http://www.outerlimits.net/lordsome/index.html (Hacker's Layer)
http://web2.airmail.net/km/hfiles/free.htm (Hacker's Hideout)
http://resudox.net/bio/novell.html
http://www.louisville.edu/wrbake01/hack2.html
http://www.intersurf.com/~materva/files.html
http://hightop.nrl.navy.mil/rainbow.html
http://www.rit.edu/~jmb8902/hacking.html
http://www.spatz.com/pecos/index.html
http://pages.prodigy.com/FL/dtgz94a/files2.html
http://www.2600.com (alt.2600)
http://att.net/dir800
http://draco.centerline.com:8080/~franl/crypto.html
http://everest.cs.ucdavis.edu/Security.html
http://ice-www.larc.nasa.gov/WWW/security.html
http://lOpht.com (lOpht)
http://lOpht.com/~oblivion/IIRG.html
http://underground.org
http://www.alw.nih.gov/WWW/security.html
http://www.aspentec.com/~frzmtdb/fun/hacker.html
http://www.cis.ohi-state.edu/hypertext/faq/usenet/alt-2600-faq/faq.html
http://www.cs.tufts.ed/~mcable/cypher/alerts/alerts.html
http://www.engin.umich.edu/~jgotts/underground/boxes.html
http://www.etext.org/Zines
http://www.inderect.com/www/johnk/
http://www.mgmua.com/hackers/index.html
http://www.paranoia.com/mthreat
http://www.paranoia.com/astrostar/fringe.html
http://www.umcc.umich.edu/~doug/virus-faq.html
http://www.wired.com


B. Good hacking and phreaking text files


All of these files are available by download from the Internet.


File Name:


A Novice's Guide To Hacking

Alt.2600 Hack Faq

The Hacker's Handbook

The Official Phreaker's Manual

Rainbow Books (Listed in Section D.)

The Hacker Crackdown

Computer Hackers: Rebels With A Cause

The Legion Of Doom Technical Journals

The Ultimate Beginner's Guide To Hacking And Phreaking (Of course!)


C. Hacking and phreaking Newsgroups


alt.2600
alt.2600.hope.tech
alt.cellular
alt.cellular-phone-tech
alt.comp.virus
alt.cracks
alt.cyberpunk
alt.cyberspace
alt.dcom.telecom
alt.fan.lewiz
alt.hackers
alt.hackintosh
alt.hackers.malicious
alt.security


D. Rainbow Books


The Rainbow Books are a series of government evaluations on various things related to computer system security. You can get all of the existing Rainbow Books free and if you ask to be put on their mailing list you will get each new one as it comes out. Just write to the address or call the number below:

Infosec Awareness Division
ATTN: x711/IAOC
Fort George G. Meade, MD 20755-6000

or call:
(410)766-8729


Here is the list of all the Rainbow Books and their descriptions:


Color: Description:

Orange 1 D.O.D. Trusted Computer Systems

Green D.O.D. Password Management

Yellow Computer Security Requirements

Yellow 2 Computer Security Requirements

Tan Understanding Audit In Trusted Systems

Bright Blue Trusted Product Evaluation

Neon Orange Understanding Discretionary Access

Teal Green Glossary Of Computer Terms

Orange 2 Understanding Configurations

Red Interpretation Of Evaluation

Burgundy Understanding Design Documentation

Dark Lavender Understanding Trusted Distrobution

Venice Blue Computer Security Sub-Systems

Aqua Understanding Security Modeling

Dark Red Interpretations Of Environments

Pink Rating Maintenence Phase

Purple Formal Verification Systems

Brown Understanding Trusted Facilities

Yellow-Green Writing Trusted Facility Manuals

Light Blue Understanding Identification And Authentication In Trusted Systems

Blue Product Evaluation Questionaire

Gray Selecting Access Control List

Lavander Data Base Management Interpretation

Yellow 3 Understanding Trusted Recovery

Bright Orange Understanding Security Testing

Purple 1 Guide To System Procurement

Purple 2 Guide To System Procurement

Purple 3 Guide To System Procurement

Purple 4 Guide To System Procurement

Green Understanding Data Remanence

Hot Peach Writing Security Features

Turquiose Understanding Information Security 

Violet Controlled Access Protection 

Light Pink Understanding Covert Channels 


E. Cool hacking and phreaking magazines


Phrack Magazine

2600 Magazine

Tap Magazine

Phantasy Magazine


F. Hacking and phreaking movies 


Movie:


Hackers

War Games


G. Hacking and phreaking Gopher sites


Address:

ba.com
csrc.ncsl.nist.gov
gopher.acm.org
gopher.cpsr.org
gopher.cs.uwm
gopher.eff.org
oss.net
spy.org
wiretap.spies.com


H. Hacking and phreaking Ftp sites


Address:

2600.com
agl.gatech.edu/pub
asylum.sf.ca.us
clark.net/pub/jcase
ftp.armory.com/pub/user/kmartind
ftp.armory.com/pub/user/swallow
ftp.fc.net/pub/defcon/BBEEP
ftp.fc.net/pub/phrack
ftp.giga.or.at/pub/hacker
ftp.lava.net/users/oracle
ftp.microserve.net/ppp-pop/strata/mac
ftp.near.net/security/archives/phrack
ftp.netcom.com/pub/br/bradelym
ftp.netcom.com/pub/daemon9
ftp.netcom.com/pub/zz/zzyzx
ftp.primenet.com/users/k/kludge


I. Hacking and phreaking BBS's


BBS's are Bulletin Board Systems on which hackers and phreakers can post messages to each other.
Here is a list of some BBS's that I know of. If you know of any other BBS's, please E-Mail me via the A.S.H. E-Mail address. Also, Please note that some of these may be old and not running.


Area Code: Phone Number: Name:

203 832-8441 Rune Stone
210 493-9975 The Truth Sayer's Domain
303 343-4053 Hacker's Haven
315 656-5135 Independent Nation
315 656-5135 UtOPiA 617 855-2923 Maas-Neotek
708 676-9855 Apocalypse 2000
713 579-2276 KOdE AbOdE
806 747-0802 Static Line
908 526-4384 Area 51
502 499-8933 Blitzkrieg
510 935-5845 ...Screaming Electron
408 747-0778 The Shrine
708 459-7267 The Hell Pit
415 345-2134 Castle Brass
415 697-1320 7 Gates Of Hell 

J. Cool hackers and phreakers


Yes there are many, many, cool hackers and phreakers out there, but these are some that 
helped me to get this file out on the Internet. I did not list a few people because I only
knew their real name, and I don't want to use their real name without their permission.

Handle: 


Silicon Toad

Logik Bomb/Net Assasin

oleBuzzard 

Lord Somer

Weezel


Thanks for your help guys.


K. Hacker's Manifesto


"This is our world now...the world of the electron and the switch, the beauty of the baud.
We make use of a service already existing without paying for what could be dirt cheep if it 
wasn't run by profiteering gluttons, and you call us criminals. We explore...and you call us 
criminals. We exist without skin color, without nationality, without religious bias...and you 
call us criminals. You build atomic bombs, wage wars, murder, cheat, and lie to us and try to 
make us believe it is for our own good, yet we're the criminals.
Yes, I am a criminal. My crime is that of curiosity. My crime is that of judging people by 
what they say and think, not what they look like. My crime is that of outsmarting you, something 
that you will never forgive me for. I am a hacker and this is my manifesto. You may stop this 
individual, but you can't stop us all...after all, we're all alike."

+++The Mentor+++


K. Happy hacking!


Be careful and have fun. Remember to keep your eye out for the next volume of 
The Ultimate Beginner's Guide To Hacking And Phreaking and the Legion Of the Apocalypse 
W.W.W. page. Oh, and keep looking for our on-line magazine, too, it should be coming out 
soon. Well, I hope you enjoyed the file and found it informative. I also hope that I 
helped get you started in hacking and phreaking.

"The Revelation is here."

*-Revelation-*
LOA--ASH


EOF

Bridge Protocol Data Units

The stable, active STP topology of a switched network is determined by these elements:
• The unique bridge ID (switch priority and MAC address) associated with each
VLAN on each switch
• The STP path cost to the root switch
• The port identifier (port priority and MAC address) associated with each interface
The BPDUs are transmitted in one direction from the root switch, and each switch sends
configuration BPDUs to communicate and to compute the STP topology. Each
configuration BPDU contains this information:
• The unique bridge ID of the switch that the transmitting switch identifies as the
root switch
• The STP path cost to the root
• The bridge ID of the transmitting switch
• Message age
• The identifier of the transmitting interface
• Values for the hello, forward delay, and max-age protocol timers
When a switch transmits a BPDU frame, all switches connected to the LAN on which the
frame is transmitted receive the BPDU. When a switch receives a BPDU, it does not
forward the frame but instead uses the information in the frame to calculate a BPDU, and,
if the topology changes, initiates a BPDU transmission.
A BPDU exchange results in these actions:
• One switch is elected as the root switch.
• The shortest distance to the root switch is calculated for each switch based on the
path cost.
• A designated switch for each LAN segment is selected. The designated switch is
the one closest to the root switch through which frames are forwarded to the root.
• A root port is selected. This port provides the best path from the switch to the root
switch.
• Interfaces included in the spanning-tree instance are selected.
• All interfaces not included in the spanning tree are blocked.

The CTDP Protocol Summary Version 0.6.0

Introduction:
This document is a summary of protocols that are used for networking, security, and other functions. This document only covers protocols. It does not cover services, network architecture, or media (method of hardware transport) associated with networking. The CTDP Networking Guide or Certification Guide is best used to learn about services or media. 

Protocols are sets of standards that define operations and how they will be done. Without protocols there would be much confusion and there would be no standard to allow computers to communicate. Protocols are a set of defined reactions to given events. When a traffic light turns red, the defined reaction should be to stop. This is a simple form of a protocol. 

Protocols are used for various purposes in the computer field. Protocols are mainly used to define networking standards although their application may extend beyond the scope of networking. Different uses of protocols include: 
Networking - There are different suites (or stacks) of networking protocols. The most popular include TCP/IP, IPX/XPX from Novell, NetBEUI/NetBIOS from Microsoft, AppleTalk, and SNA. Different protocols within each suite of protocols may perform different functions at different levels (see network levels in the next section). These protocols are listed by both layer and function in this documentation. The protocol stacks include: 
TCP/IP 
IPX/SPX 
Microsoft 
AppleTalk 
SNA 
Other - Includes OSI, DLC and SNAP. 
The function of the network protocols include: 
Packaging (IP) 
Transport (TCP,UDP) 
Network Management (ICMP, SNMP, ARP) 
Host Management (RARP, BOOTP, DHCP) 
Network Routing (BGP, EGP, IGP, RIP, OSPF) 
Mail (SMTP) 
Multicasting (IGMP) 
Application (FTP, TFTP, NFS) 
Security 
Authentication 
Encryption 
Tunneling 
Directory (LDAP)