Nanti aku akan share ke kalian kalau aku sukses dengan metode baru ini dengan memakai salah satu operator CDMA sehingga aku isa pake internet gratis dengan kecepatan melebihi warnet hehe dan kalian semua juga

Tetap liat postingan ini yaa incase gue isa sukses hack sehingga dapet internet gratis 153Kbps

]]> http://simontonekham.wordpress.com/?p=172 Fri, 16 May 2008 21:30:13 +0000 Simon Tonekham http://simontonekham.wordpress.com/?p=172

Well guys,

I stumbled upon the latest posting on Dabbler.ca about what Phreak615 is - it turns out to be a lousy contest dubbed, "Phind the Phreak" (or in my editorial opinion, Obay 2.0). This is what the contest page down at MuchMusic.com states:

"First, we want to assure our viewing public that the MMVAs have not been hacked. Nor is this a virus campaign. All employees have received a clean bill of health. We are just hip to the Interweb."

The contest's goal is to find the real phreak615. This contest fueled with my "Most Wanted" posting on phreak615's capture has making leads. But at Dabbler.ca, a totally different story has announced:

"This must be the most ill conceived advertising campaign in modern history. For one, it backfired almost immediately as our posting about how it had to be an ad campaign got more views and a higher Google ranking than the actual phreak615 blog. And from all the flack people have been shooting out in comments on this blog and many others, it’s pretty clear that the viewing public find the campaign both annoying, insulting and stupid at the same time. It’ll be interesting to see if anyone actually enters the contest.

Considering that the Dabbler team and our many commenters pretty much solved the riddle before it was even announced, I think it would only be fair that the prizes are handed to us. But that would be admitting that their half-assed scheme really was a bad idea and that they have lost touch with their own target audience."

This has got to be the most highest hits on the internet than my blog posting about Obay. To view the contest page, click here.

As for the MuchMusic Video Awards as far as I am concerned, phreak615 could strike out at any time.

La Intel PRO/Wireless 3945ABG è una della schede wireless integrate più diffuse. La maggior parte delle distribuzioni la riconosce senza problemi, ma come accade con Ubuntu, non è possibile metterla in "mode monitor", e quindi usarla con Aircrack- ng. Per chi ancora non lo conoscesse, Aircrack è una suite di strumenti per testare la sicurezza delle reti wireless, sviluppato da Christophe Devine. In Ubuntu è possibile installarlo con un semplice:

sudo apt-get install aircrack-ng

Come appunto stavo dicendo, i driver forniti con la distribuzione, che siano ipw3945 o iwl3945, non funzionano con aicrack, in particolare non consentono l'iniezione (injection). Dobbiamo quindi sostituirli manualmente con i driver alternativi, ipwraw-ng, che troviamo sul sito di aircrack-ng.

Installazione

Innanzitutto soddisfiamo queste dipendenze:

sudo apt-get install linux-headers-`uname -r` build-essential libssl-dev

Poi scarichiamo ipwraw-ng, installiamo i moduli e blacklistiamo ipwraw (in modo che non venga lanciato automaticamente all'avvio della macchina):

wget http://dl.aircrack-ng.org/drivers/ipwraw-ng-2.3.4-04022008.tar.bz2
tar -xjf ipwraw-ng*
cd ipwraw-ng
make
sudo make install
sudo make install_ucode
echo "blacklist ipwraw" | sudo tee /etc/modprobe.d/ipwraw
sudo depmod -ae

Ora non ci resta che sostituire temporaneamente i driver ufficiali con quelli appena installati. Dico temporaneamente perché i driver ipwraw-ng, servono solo per aircrack, quando abbiamo finito di usarlo, per navigare, dobbiamo ricaricare i driver ufficiali (iwl3945 o ipw3945).

sudo modprobe -r ipw3945
o
sudo modprobe -r iwl3945

sudo modprobe ipwraw

Così dovreste trovarvi con un dispositivo per l'iniezione chiamato wifi0 e un interfaccia in mode monitor, rtap0; controllate con iwconfig. Dovreste ottenere qualcosa del genere:

lo        no wireless extensions.

eth0      no wireless extensions.

wifi0     unassociated  ESSID:off/any
Mode:Monitor  Channel=1  Bit Rate=54 Mb/s

rtap0     no wireless extensions.

Bene ora potrete usare aircrack-ng senza problemi. Al termine del lavoro dovrete ricaricare i moduli ufficiali:

sudo modprobe -r ipwraw

sudo modprobe iwl3945
o
sudo modprobe ipw3945

Con questo articolo, tratto dal sito ufficiale di aircrack-ng, volevo solo spiegare come utilizzare Aircrack con una scheda Intel PRO/Wireless 3945 ABG. Se cercate delle istruzioni per il WEP e WPA cracking, alla sezione tutorial del sito di aircrack-ng, c'è l'imbarazzo della scelta.

Articoli correlati:

Consumo energetico nei sistemi Gnu/Linux. PowerTop è una possibile soluzione

Modprobe. Ecco a che cosa serve

1 - PREMESSA

* Le origini della Certificazione
A causa della sempre piu' elevata diffusione di virus/worms/trojan per cellulare si e' resa necessaria l'introduzione di qualche meccanismo per proteggere l'utente contro questi spiacevoli imprevisti che a volte possono comportare anche la perdita, o peggio, la divulgazione, dei propri dati contenuti nel cellulare.
Per far fronte a questa situazione Symbian ha introdotto la cosiddetta Certificazione nei cellulari Symbian 9.1 e successivi

* Che cos'e'
E' possibile pensare alla Certificazione, come ad un marchio che garantisce la qualita' di una determinata applicazione, in modo analogo con cui il marchio "IMQ" apposto su determinati elettrodomestici ne garantisce la conformità ai requisiti di legge e di sicurezza.

* In che modo influisce
Dipende dall'applicazione: a questo proposito bisogna ricordare che dal punto di vista del cellulare un virus/worm/trojan non e' altro che una applicazione come tante altre.
Esistono alcune applicazioni (poche) che non fanno "nulla di particolare" e che non necessitano di alcuna certificazione, mentre risulta invece indispensabile per quelle applicazioni (la maggior parte) che tentano di fare delle operazioni "delicate" sul cellulare (quindi hanno bisogno del marchio di qualita' per poter funzionare)
Per operazioni "delicate" si intende, ad esempio:
- accedere ad un qualsiasi dato dell'utente (sms, rubrica, agenda ecc...)
- accedere ad un qualsiasi dato del cellulare (codice imei, impostazioni ecc..)
- accedere ai dati memorizzati sulla sim
- utilizzo di bluetooth e Wi-Fi
- qualsiasi operazione che causi un addebito all'utente (accesso a internet, invio di sms, telefonata ecc...)
- e molto altro ancora...
Il marchio di qualità (alias la certificazione) viene apposto da Symbian, oppure direttamente dall'utente utilizzando il cosiddetto DevCert.

* Utilità del DevCert
Il DevCert non e' altro lo "stampino" che si utilizza per apporre il marchio, ogni cellulare deve avere un proprio stampino e lo stampino di un cellulare non potraà essere utilizzato per marchiare applicazioni che saranno installate su di un altro cellulare.

Queste guide servono per tutti i programmi che necessitano di essere certificati.

OS Symbian 9.1 = 3250 -5500 - 6110 Navigator - 6290 - E50 - E60 - E61 - E61i - E62 - E65 - E70 - N71 - N73 - N75 - N77 - N80 - N91 - N92 - N93 - N93i ;

OS Symbian 9.2 = 5700 - 6110 - 6120 - 6121 - 6290 - E51 - E90 - N76 - N81 - N81 8Gb - N82 - N95 - N95 8Gb ;

Per cominciare bisogna scaricare il file ActivePython da QUI e poi installarlo sul PC

Ora scaricate ed installate sul PC il file PySerial da QUI :

Scaricate ed installate sul telefono il file AppTRK :

da QUI se avete un telefono con OS Symbian 9.1 ;

da QUI se avete un telefono con OS Symbian 9.2 ;

Scaricate e salvate sul Desktop il file Hack Perms ;

da QUI se avete un telefono con OS Symbian 9.1 ;

da QUI se avete un telefono con OS Symbian 9.2 ;

Ora, una volta installati tutti questi files, connettete via cavo USB il vostro telefono al PC, usando la modalità PCSuite:

Una volta connesso il telefono, andate nel pannello di controllo del pc e verificate quale sia il numero di porta COM associato al vostro telefono (su XP: Start - Risorse del Computer - Proprietà - Hardware - Gestione Periferiche; su Vista: Pannello di Controllo - Hardware e Suoni - Porte):

Prendete nota del numero di porta associato al vostro telefono (nel mio caso 15), vi servirà a breve.

Ora andate sul telefono e avviate il programma AppTRK, andate su settings e impostate la connessione USB come predefinita, poi fate click su Connect senza cambiare il campo "porta" :

Ora che il telefono è connesso, tornate al PC e andate sul Desktop, cercate il file Hack Perm e apritelo col Blocco Note:

Ora premete Ctrl+T e inserite nel campo di ricerca il valore "ser =" (senza le "), troverete una stringa come quella indicata in figura, dovrete modificare il valore di "ser = serial.serial(X) inserendo il numero della porta del vostro telefono - 1.
Se come, nel mio caso, la porta è la numero 15, dovrete mettere 14, se il numero della porta è 3 dovrete mettere 2, se la porta è 7 dovrete mettere 6 e così via:

Dopo aver modificato fate File - Salva:

Bene, abbiamo quasi fatto, ora fate doppio click sul file appena salvato, dovrebbe aprirlo automaticamente in Python, se così non fosse, fate click sul tasto destro del mouse e scegliete "Open":

Verrà aperta una finestra DOS, verificate che nella parte bassa della finestra compaia la scritta "!!!!!!!!!!!candidate!!!!!!!!!!!". In questo caso, il gioco è fatto, altrimenti avete sbagliato qualche passaggio:

Ora, con un qualsiasi file browser (in questo caso ho usato X-Plore) sarà possibile spulciare tutte le cartelle e i i files del sistema operativo, anche quelli che fino a poco tempo prima erano nascosti:

Il procedimento è stato testato e funziona con N95, N95 8Gb, N80, N81, N82 N73, 6120c, 6290 ed E51, se riuscite a farlo andare anche su altri telefoni, fatelo sapere nei commenti. Ricordo che al riavvio del telefono tutto torna normale e per poter nuovamente avere un telefono "sbloccato" bisognerà fare partire nuovamente il file Hack Perm col telefono collegato via USB.

Con questo metodo si dovrebbe riuscire ad installare anche i files unsigned.
S60 3rd Edition Hack: Part#2
Produced by P@sco
Posted by Iulo

Con degli ulteriori sviluppi sull’Hack del nostro Symbian 3rd Edition ora si possono creare certificati direttamente sul telefono ed installare quindi tutte le applicazioni senza problemi.

Ora aprite PCSuite e inserite in una cartella della memoria esterna i seguenti files zip:

- 00000001.zip ;

- cert.zip ;

- CprofDriver per OS 9.2 (se avete un telefono con OS 9.2) ;

- CprofDriver per OS 9.1 (se avete un telefono con OS 9.1) ;

Per comodità io ho creato in Others una sottocartella Hack in cui ho inserito i files, vedete voi come vi viene più comodo fare:

Installate sulla memoria telefono il file Prof :

S60_3_1_Prof per i telefoni con OS 9.2 ;

S60_3_0_Prof per i telefoni con OS 9.1;

Installate sulla memoria telefono il file SingnSIS.

Bene, ora andiamo sul telefono ed iniziamo a lavorare.

Dopo aver installato tutti i programmi citati, andiamo su Profiler e selezioniamo Options / Settings / Output Settings ed impostiamo la cartella C come destinazione:

Ora facciamo Options - Profiler - Start

Quando in alto compare la scritta "Status: Sampling" facciamo Options - Profiler - Stop:

Aspettiamo uno o due secondi e comparirà la scritta "Status: finished", a questo punto possiamo uscire dal programma.

Ora apriamo X-Plore e posizioniamoci sulla cartella in cui abbiamo inserito i nostri files per l’hack:

Andiamo sul file CProfDriver_SISX.ldd e facciamo Menu / Modifica / Copia:

Ora andiamo su C:\sys\bin e incolliamo il file confermando la sovrascrittura dei files:

Questa procedura ci permetterà di sbloccare On Demand il nostro telefono, perciò basterà tenere installato Profiler sul telefono per
sbloccare dopo un riavvio il nostro Symbian.

Esiste un ulteriore metodo per poterlo fare senza dover usare il Profiler, grazie all’uso di due programmini molto semplici :

Personalmente non riesco a far funzionare la procedura con CapsON e CapsOFF, per cui per ora sto usando ancora il Profiler, sebbene la procedura con i due files renderebbe tutto molto più veloce.

Continuiamo con la procedura per i files unsigned:

Ora andiamo su cert.zip ed estraiamo i files in C:\Private\EC696702 confermando la sovrascrittura dei files:

Ora entriamo su 00000001.zip ed estraiamo il file in C\resource\swicertstore\dat. E’ possibile che questa cartella non esista, nel caso, createla .

Ci siamo quasi, la parte più complessa l’abbiamo fatta, ora andate nel menu applicazioni e aprite SignSIS MobileSigner:

Premete il tasto centrale del pad e andate a selezionare la vostra applicazione unsigned che avete precedentemente messo in una cartella a vostra scelta della memoria esterna:

Ora fate Opzioni / SelfSign:

Fatto! Ora potete andare a installare il vostro file firmato per il vostro telefono senza esser passati per SymbianSigned!

Spero che ora sia più facile per tutti installare i programmi unsigned, la situazione è in continua evoluzione e quindi potrebbero esserci ulteriori novità, l’unica cosa che sembra certa è che un Hack permanente che permetta di installare gli unsigned per come sono non ci potrà essere, ma per chi non ha un certificato credo che questa di oggi sia la soluzione migliore in assoluto…

A presto!

Kasihan gak nemuin link download-nya... klik DISINI kalo pengen tau caranya.

I wish that more of the talking heads on cable news would do just what Chris Matthews did today (watch video). Granted, he challenged a Republican talk show host, Kevin James, that I had never heard of, but at least it's a start.

Maybe next time he'll challenge sitting senators or spokesmen from both sides of the aisle. I don't think this is a partisan issue. Both sides go on T.V. and talk a lot of B.S. This was low-hanging fruit for Matthews, we'll see where he goes from here. Let him be an example to other talking heads, don't play the game.

The FBI announced Friday that an investigation into counterfeit network components made in China and sold to the U.S. government has recovered about 3,500 fake devices with a value of $3.5 million. The criminal probe, code-named Operation Cisco Raider, was prompted by concerns that counterfeit network components could give hackers access to government databases. But one U.S. official told Reuters that the components discovered by the FBI are not believed to have made government computer systems more vulnerable. The existence of the probe came to light after an unclassified FBI PowerPoint presentation in January on the agency’s efforts to counter the production and distribution of counterfeit network hardware showed up on Abovetopsecret.com.

“This unclassified briefing was never intended for broad distribution or posting to the Internet,” James Finch, assistant director of the FBI’s Cyber Division, said in a statement. Operation Cisco Raider involved 15 investigations at nine FBI field offices and the execution of 39 search warrants, the bureau said. The FBI release did not mention if any arrests had been made. Components included pirated versions of Cisco Systems routers as well as switches, interface converters and wide area network interface cards, Reuters reported. The People’s Republic of China has not been accused of orchestrating the counterfeit sales, but for several years, U.S. officials have been investigating a wave of government computer breaches thought to have originated in China.

Source: ABC, Cnet, Martin

I checked the message, and the message ended up being:

Found some super potent legal bud at http://www.bobblak.com !!

www.bobblak.com

http://www.bobblak.com

how do these wallposts spread on facebook? is there any security measure we can take not to have such messages being sent from our account? and how can we know that such msgs were actually sent on our behalf?

Está no ar a House of Hackers, uma rede social online para que hackers se encontrem, formem grupos e debatam assuntos de segurança.

De acordo com o blog da GNUCITIZEN, a rede é exclusiva e apoiará a cultura e o modo de vida hacker, com suas ideologias e visões políticas, se voltando principalmente para a formação de opinião na esfera de segurança.

Além de criar grupos, os especialistas da House of Hackers terão chance de prestar serviço a empresas, que poderão recrutar testadores de segurança ou analistas diretamente pela rede social, inserindo em um mural a descrição do trabalho e qualificações necessárias, e podendo ser contatadas diretamente.

Através de taxas aceitas durante a inserção de novas vagas, os responsáveis pela rede social patrocinarão programas de pesquisa que devem ser iniciados em breve, mesmo que o programa esteja em seus estágios iniciais de desenvolvimento.

O site heise Security acredita que o site pode ser visto com maus olhos por autoridades, temendo que o fácil acesso a informações possa ser usado para o mal, promovendo invasões, por exemplo.

O House of Hackers pode ser acessado em houseofhackers.ning.com.

Fonte: Geek

unduh file

This is a the new SuperScan 4 port scanner and network utility collection
from Foundstone.

dunlut

Hadirnya tekhnologi bluetooth melahirkan cara baru yang memungkinkan ponsel berkomunikasi secara nirkabel dengan cara lebih efisien.........

selengkapnya.......

keren dapat dari sebelah.........sumber : http://spyrozone.net/

Note that these are in no way official or supported by Microsoft. Microsoft is working on official version of .NET and PowerShell for Server Core installations, so eventually you will be able to get this fully supported. Until then below are the instructions you can use at your own risk, etc., etc.

Quick Introduction

Windows Server 2008 has a command-line installation option - Server Core - which significantly reduces the attack surface and patch requirements by the virtue of not having Explorer and other UI components not needed in datacenter.

The problem is that it only ships with traditional cmd.exe and not PowerShell. To make things worse neither PowerShell nor .NET as they are today can be installed on such systems.

Below are the steps you can take to create packages of these tools which can be installed. Basically the whole procedure consists of just four main steps:

1. Installing Visual C++ Redistributable Packages (required for .NET).
2. Installing .NET 2.0 SP1
3. Installing PowerShell.
4. Jumping around the computer and shouting "I've got it!"

So let's get started!

1. Visual C++ Redistributable Packages

This is the easiest one. All you need to do is download the packages you need:

• Microsoft Visual C++ 2005 SP1 Redistributable Package (x64)
• Microsoft Visual C++ 2005 SP1 Redistributable Package (x86)

After that, copy these files to your Server Core computer (e.g. using Robocopy) and simply run them there.

If your Server Core is 32-bit - just run vcredist_x86.exe.
If it is 64-bit, you need to install both x86 and x64 versions (vcredist_x86.exe and vcredist_x64.exe).

2. .NET Framework

This is the most tricky part. PowerShell needs .NET 2.0 and .NET 2.0 is supposed to be a component of Windows Server 2008 so we will have to get a package of the framework which can get installed on such a system. To accomplish that we will:

1. Download .NET Framework 3.5.
2. Unpack the setup to get access to the .NET 2.0 Service Pack 1 installation files.
3. Download and install the Orca MSI editor.
4. Use Orca to remove the Windows version check.
5. Run the updated MSI.

2.1. Download .NET: Go to Microsoft's web site and download full redistributable package of .NET 3.5.

2.2. Unpack the file:
a. Create a folder c:\deploy
b. Save the downloaded .NET framework package to this folder.
c. Download the wonderful deploy.cmd script which Artem has posted and put it into the same folder.
d. Run the script.

After the script executes, the C:\Deploy\AIP folder will have both NetFx20_x64 and NetFx20_x86 folders with .NET 2.0 framework files you need.

2.3. Install Orca:

This is great but unfortunately you cannot just install the files because the MSIs are specifically checking for Windows version. So now we need to disable this check. To do this we will use Microsoft's Orca MSI editor.

If you don't have Orca, follow these steps to download it:
a. Download the Windows SDK for Windows Server 2008 and .NET Framework 3.5 installer.
b. Run the installer and deselect everything except Win32 Developer Tools (this will make sure that you only download the few megs you need.)

c. After the installation completes, go to C:\Program Files\Microsoft SDKs\Windows\v6.1\Bin and install Orca.msi.

2.4. Tweak the setup:

Now its time to do some patching.
a. Start Orca and open the MSI you need (C:\Deploy\AIP\NetFx20_x86\NetFx20a_x86.msi for 32-bit version or C:\Deploy\AIP\NetFx20_x64\NetFx20a_x64.msi for x64).
b. Click Component.
c. In x86 locate: Regtlib.exe_Tool_____X86.3643236F_FC70_11D3_A536_0090278A1BB8
In x64 locate that one and Regtlib.exe_Tool_____A64.3643236F_FC70_11D3_A536_0090278A1BB8
d. Change the Condition from (VersionNT < 600) or Version9X to just VersionNT or Version9X.

e. Save changes (either to that same MSI or a transform file.)

2.5. Install .NET

Copy the files (the whole folder) to your core machine and start the MSI via this command line (note that you need to use msiexec in order to pass the vsextui=1 parameter):

If you saved a transformed file and are running 64-bit version you will probably run:
%SystemRoot%\system32\msiexec.exe /package "NetFx20_x64\NetFx20a_x64.msi" vsextui=1 transforms="ServerCore.mst"

On x86 without a transform that would be:

%SystemRoot%\system32\msiexec.exe /package "NetFx20_x86\NetFx20a_x86.msi" vsextui=1

That's it. Now we have .NET installed and can go to the final step - PowerShell installation!

3. Windows PowerShell

There is no PowerShell v1 setup for Windows 2008 (again, because it is supposed to be a component) but you can actually download and install the CTP (note: this is a pre-beta code - not for production use). PowerShell v2 CTP2 is available from Microsoft's downloads page.

Download the version you need, copy the msi over to the Server Core box and simply run the msi.

4. Enjoy!

Now you can start PowerShell!

Just run:
c:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe

And you will see the prompt change to: PS C:>

That's it. Now you are among the first geeks in the Universe to have PowerShell on Server Core!

Acknowledgments: I could only have this all accomplished thanks to the help I got from Alex Kibkalo and a great post by Artem Pronichkin on installing .NET on Server Core.

Tags: PowerShell, PowerShell v2, Server Core, Windows Server 2008, hack
Add to: | Technorati | Digg | del.icio.us | Yahoo | BlinkList | Spurl | reddit | Furl |

Exposes complete methodologies showing the actual techniques and attacks. Shows countermeasures, tools, and eye-opening case studies. Covers the web commerce playground, describing web languages and protocols, web and database servers, and payment systems. Softcover.

Features include:
* Overview of the Web and what hackers go after
* Complete Web application security methodologies
* Detailed analysis of hack techniques
* Countermeasures
* What to do at development time to eliminate vulnerabilities
* New case studies and eye-opening attack scenarios
* Advanced Web hacking concepts, methodologies, and tools

"How Do They Do It?" sections show how and why different attacks succeed, including:
* Cyber graffiti and Web site defacements
* e-Shoplifting
* Database access and Web applications
* Java™ application servers; how to harden your Java™ Web Server
* Impersonation and session hijacking
* Buffer overflows, the most wicked of attacks
* Automated attack tools and worms

Download Here

Lo primero que necesitamos es una Fonera que funcione (no como la de Jose). La Fonera que se vende actualmente (version 2200a) es mucho más facil de juankear que la anterior. Así que el metodo que os explico es para la versión nueva.

Necesitamos tambien un servidor TFTP y los archivos correspondientes al firmware para flashearla. Le pondremos Kamikaze, que es la version 7.09 de open-wrt.

1. En el servidor TFTP metemos estos dos archivos:
openwrt-atheros-2.6-vmlinux.lzma
openwrt-atheros-2.6-root.squashfs

2. En nuestro servidor nos ponemos una IP en el mismo rango que la Fonera, lo que viene más o menos a ser:

 ip add add 192.168.1.2/24 dev eth0

3. Dejamos haciendo un ping a la Fonera:

 ping 192.168.1.1

4. Enchufamos la Fonera y comprobamos que se le hace ping ¡¡OJO!! no la dejes mucho tiempo enchufada, lo justito para que te devuelta un par de pinges (¿se dice pinges?)

5. Dejando el ping en marcha preparamos nuestro fantastico Putty (David no me pegues) configurado. La conexion es a la ip 192.168.1.1 y al puerto 9000.

6. Conectamos la Fonera y cuando se devuelvan los 3~4 primero pinges le damos a "Conectar" en el putty, le damos un par de veces al intro y veremos un promt como este:

RedBoot>_

Eso que vemos es la bios de nuestra fonera ¿a que mola?

7. Ahora picamos un poco:

RedBoot> ip_address -h 192.168.1.2
 IP: 192.168.1.2/255.255.255.0, Gateway: 0.0.0.0
 Default server: 192.168.1.2
 RedBoot> load -r -b %{FREEMEMLO} openwrt-atheros-2.6-vmlinux.lzma
 Using default protocol (TFTP)
 Raw file loaded 0x80041000-0x800f0fff, assumed entry at 0x80041000
 RedBoot> fis init

(pulsamos 'y' y le damos al intro)

 RedBoot> fis create -e 0x80041000 -r 0x80041000 vmlinux.bin.l7
 An image named 'vmlinux.bin.l7' exists - continue (y/n)? y
 ... Erase from 0xa8730000-0xa87e0000: ...........
 ... Program from 0x80041000-0x800f1000 at 0xa8730000: ...........
 ... Erase from 0xa87e0000-0xa87f0000: .
 ... Program from 0x80ff0000-0x81000000 at 0xa87e0000: .
 RedBoot> load -r -b %{FREEMEMLO} openwrt-atheros-2.6-root.squashfs
 Using default protocol (TFTP)
 |
 Raw file loaded 0x80041000-0x80200fff, assumed entry at 0x80041000
 RedBoot> fis create -l 0x006F0000 rootfs
 An image named 'rootfs' exists - continue (y/n)? y
 ... Erase from 0xa8030000-0xa8730000: ................................................................................................................
 ... Program from 0x80041000-0x80741000 at 0xa8030000: ..............................................................................................................
 ... Erase from 0xa87e0000-0xa87f0000: .
 ... Program from 0x80ff0000-0x81000000 at 0xa87e0000: .
 RedBoot> reset

Y ya está, facil facil facil. Aviso que alguno de los pasos puede tardar hasta 20 minutos, da la impresion de que os la habeis cargado, pero al final funciona.

Ahora le ponemos una clave al root. Para ello nos conectamos por telnet a la fonera, esta vez al puerto 23, lo que viene más o menos a ser:

telnet 192.168.1.1

y estaremos dentro, sale algo parecido a esto:
 KAMIKAZE (7.09) -----------------------------------
 * 10 oz Vodka       Shake well with ice and strain
 * 10 oz Triple sec  mixture into 10 shot glasses.
 * 10 oz lime juice  Salute!
 ---------------------------------------------------
 root@OpenWrt:/#

ooooooooh, que bonita es la Fonera. Tecleamos:

 root@OpenWrt:/# passwd

y le metemos una clave. Ahora esperamos unos 5 minutos a que se active el ssh, se generen las claves y esas cosas y entramos por ssh a la Fonera.
Una vez dentro editamos el archivo /etc/config/network y le ponemos una IP de nuestra lan, gateway y DNS, normalmente suele quedar mas o menos 'asín':

config interface loopback
 option ifname    lo
 option proto    static
 option ipaddr    127.0.0.1
 option netmask    255.0.0.0

config interface lan
 option ifname    eth0
 option type     bridge
 option proto    static
 option ipaddr    192.168.1.135
 option netmask    255.255.255.0
 option gateway    192.168.1.1
 option dns    192.168.1.1

Y el archivo /etc/resolv.conf :

 nameserver 192.168.1.1
 nameserver 127.0.0.1

Ahora reiniciamos la red para que pille los cambios:

 /etc/init.d/network restart

Evidentemente perderemos la red. Volvemos a conectar por SSH ahora a la IP que le emos configurado y editamos el archivo /etc/ipkg.conf y lo demos 'asín':

src asterisk14 http://members.home.nl/hans.zandbelt/openwrt/kamikaze/7.09/atheros
 src release http://downloads.openwrt.org/kamikaze/7.09/atheros-2.6/packages
 src packages http://downloads.openwrt.org/kamikaze/packages/mips
 dest root /
 dest ram /tmp
 src X-Wrt http://downloads.x-wrt.org/xwrt/kamikaze/7.09/atheros-2.6/packages
 src X-Wrt http://downloads.x-wrt.org/xwrt/kamikaze/snapshots/atheros-2.6/packages

Ejecutamos:

ipkg update

Esto actualiza la lista de paquetes. Ahora instalamos:

ipkg install ip webif aircrack-ng libncurses

se lleva un buen rato y ya podremos manejar la fonera desde un navegador, accediendo a la direccion http://192.168.1.135 (el usuario es root y la clave es la de root).

Ahora instalamos Asterisk. Por algun malvado motivo esto me ha dado muchos problemas, al final lo conseguí bajando el paquete e instalando a pelo:

wget http://members.home.nl/hans.zandbelt/openwrt/kamikaze/7.09/atheros/asterisk14-mini_1.4.18-2_mips.ipk
 ipkg install asterisk14-mini_1.4.18-2_mips.ipk

Se puede llevar casi una hora y da la impresion de que la deja frita, pero poco a poco va reviviendo.

Y ya esta! 'asín' de facil, tenemos nuestro nuevo ruter wireless preparado para juankear redes wifi, para usalo de punto de acceso / cliente / repetidor, e incluso para usarlo de centralita con Asterisk.

¿A quedado todo claro?

Puto Psicopata.

sumber : http://wikihost.org/wikis/indonesiainternet/programm

Seorang manajer komunikasi pada Security Response Center Microsotf, Bill Sisk, mengatakan, "Penelusuran kami menunjukkan bahwa kelemahan-kelemahan baru atau yang tidak diketahui yang telah dimanfaatkan. Gangguan itu bukan lah dihasilkan dari sebuah kelemahan dalam internet information services atau microsoft SQL server."

Pernyataan Sisk dalam blog Microsoft, Senin (28/4), itu disampaikan terkait adanya spekulasi yang menyebut bahwa serangan terhadap lebih dari 500 ribu website belum lama ini terkait kelemahan-kelemahan dalam web dan SQL Server software Microsoft.

Awal minggu lalu, lebih dari 500 ribu situs internet, termasuk beberapa milik pemerintah AS dan Inggris, menghadapi serangan dan termodifikasi perintah untuk memasukkan software jahat ke komputer pengunjungnya, termasuk menyebabkan banyak situs pemerintah maupun komersil shut down (mati).

Peneliti pengamanan sistem internet mengatakan situs-situs itu terserang oleh serangan-serangan yang tertanam di SQL.

Semua komputer pengunjung akan terinfeksi file sejenis trojan apabila mengunjungi situs-situs yang terserang tersebut. Ketika halaman situs yang terserang dibuka, maka ad on javascript akan terisi dengan file bernama 1,js. File ini kemudian berusaha untuk mengeksekusi delapan serangan berbeda dengan target aplikasi Microsoft.

Sisk, sebagaimana dikutip Xinhua, mengingatkan para pembuat website untuk mengikuti petunjuk-petunjuk Microsoft untuk melindungi domain mereka dari serangan yang tertanam di SQL.

Sebuah solusi untuk masalah ini adalah dengan menggunakan browser Firefox, selain Internet Explorer. Dalam browser Firefox telah tersedia sebuah fitur add-on yang disebut noscript, yang tidak membiarkan pemanfaatan javascript bekerja secara otomatis, walaupun ketika serangan datang. (Ant/OL-01)

Sumber :Media Indonesia

Political correctness would never work because I find the philosophy offensive. Thats right, I honestly find it offensive. That goes to prove it would never work; if a philosophy, or practice's whole goal is to not offend anyone, at anytime, and that same practice offends some, then the whole idea is struck down completely. Not a very strong idea if you ask me. Is the practice of not offending people(when possible) good? Yes, its great, but when you go overboard with it, it becomes an obstacle of free speech. When I say free speech I don't mean you should be able to say anything you want without any consequences at all. I believe their should be freedom of speech as long as your not imposing on the rights of others. I.e say your at the local Mc donald's drive thru, and you take forever ordering while the driver behind you starts to get more, and more angry. If freedom of speech was absolute, then that driver could walk up to your window and tell you that since you pissed him off he's going to rape your child. As long as he never actually did that, it would be completely legal to express that thought(in a politically correct society). That's why there are boundaries to this freedom. When that driver told you that, he is imposing on your personal rights. Firstly he is communicating threats, and secondly he is using words that you find offensive in the order he placed them. If he came up to your window and said "my daughter was kidnapped and raped, keep a good eye on your child." You wouldn't find that offensive. Why? Because he wasn't directing a vulgar threat towards your child. Sentence structure alone can cause an offense.

Are there absolutes? Some would say "No, I decide what is right and wrong,according to what I believe." but many would say, "Yes, there have to be absolutes,otherwise anything goes." If you were among those that don't believe in absolutes maybe you should think again. Do you believe I should be allowed to kill you without any consequences? Well you must, because if there are no absolutes then everyone decides what is right and wrong according to their own beliefs. So it would be ok for the guy in the airplane to kill the pilot and fly the plane into a building because there are no absolutes, and he is doing what he feels is right. Who are you to tell him that your absolutes are right, and his are wrong? You would be suggesting that you are a more superior being, and that would certainly be politically incorrect, because if you are superior than that would mean someone else is inferior(obviously). When you really study "political correctness" you will find that it takes either a very ignorant, or naive individual to really believe it.

What is the unforgivable sin(uh-oh, i said sin, politically incorrect) of pious, politically correct individuals? Intolerance. You must be totally tolerant of anything, and everything, which is completely asinine. It is impossible to be totally tolerant of everything, it just doesn't make sense in any way, shape, or form. How could you be tolerant of everything if there are intolerant people? Are you supposed to do away with the intolerant people? Who's to say that's ok? The founder of the philosophy? That would mean he was some sort of god to be worshiped, and that once again goes against the entire idea. It's a major flaw in the "system". Looking at political correctness is like "The Butterfly Effect" the cover looks really cool, but when you watch the movie it's completely flawed, and riveted with plot holes. That doesn't mean it didn't have some cool ideas, or scenes but as a whole it just doesn't work.

-RhyeKno

You can open any firefox bookmark using a simple keyword attached with it. The keyword needs to be stored as a property for the bookmark. This hack is pretty useful when trying to open long URL's.

For example, lets assume you wish to save www.technofriends.in into your bookmarks folder as one of the favorite item and would like www.technofriends.in to open up anytime you enter TF and press enter in your firefox browser tab/window.

1.) Drag and drop the link to the page www.technofriends.in into your Link toolbar or click on the menu link Bookmarks --> Organize Bookmarks.

2.) Click on the menu link File --> New Bookmark or select the icon which says " New Bookmark"

3.) Enter the details for the bookmark like " Name" for the name of the bookmark, " Location" stores the URL of the webpage you wish to bookmark, in our case, www.technofriends.in and " Keyword" for the keyword you wish to use, in our case "tf". Enter "Description" if you wish to.

4.) Click on OK and close the Organize Bookmarks window.

5.) Now open a new browser tab/ window and key in tf and hit enter in the browser. Keywords are case-insensitive. Entering TF or tf shall render the same results.

6.) www.technofriends.in opens up. You just finished setting up and testing the keyword hack for opening bookmarks in browsers. This hack is pretty useful when trying to open long URL's like banking websites login page, your wordpress.com dashboard page etc.

For already existing bookmarks, click on the properties tab of the bookmark and enter the keyword, save the details by clicking OK and you are done.

Also read: Some quick Firefox Tips and Tricks

Be the BOT: Fool websites by changing your Header

Do you store your passwords using Firefox?

How-To: Set multiple homepages in Firefox.

You can also follow me on Twitter at http://twitter.com/vaibhav1981

Do stay tuned to Technofriends for more, one of the best ways of doing so is by subscribing to our feeds. You can subscribe to Technofriends feed by clicking here.

Cheers

Vaibhav