|
features post Articles
(Articles)
online chat server:
irc.xor.cx
channel:
#neworderrandom article
quotable quotes "Man is born free;
and everywhere he is in chains.
One thinks himself the master of others,
and still remains a greater slave than they." Jean Jacques Rousseau
|
Neworder Newsletter #6
@ New Order Newsletter
Nov 10 2001, 16:56 (UTC+0) | cd writes:  newOrder newsletter > 0110 [thats 6]
contents
--------
0x00 wtf happened to #5?
0x01 introduction to issue 6
0x02 news excerpts
0x03 neworders latest articles
0x04 neworder and snp defacement
0x05 hacking and electronics
0x06 exploit review and summary
0x0? contacts and conclusion
.wtf happened to #5?
some of you may not have got issue 5 which was released around the 18th of october. why was this? well basically it was a big mix up, and we're all laughing about it now...honest. anyhowz, what happened was that i was completing the newsletter at various stages and sent cube a draft copy to give him an idea of what stage it was at. cube sent this copy out though so about 40,000 or so people got my draft copy which contained such irregularities as 'senator [GET NAME] has said' and so on.
to remedy this, i said that id get the information updated and complete the newsletter but this didnt happen in the time frame i would have liked it to [being a student is so tough ;)], so cube and myself came to the decision to drop number 5 and concentrate on number 6, hence this introduction. thanx again to all the guys that said number 5 was great despite all the rubbish in it. i know its complete lies but made me feel better in the end anyway :) so now, without further ado, here's [PUT IN FULL NAME] number 6...
.introduction to number 6
hey everyone and welcome to this session's newsletter. if this is your first time reading this, then let me take this time to welcome you to one of the largest yet close knit websites/networks in the world. neworder itself is regarded as one of the most respected resources in the security field and any book that doesnt mention it, probably isnt worth reading. best of all, this resource is free for all people and all cultures (although the primary langauge on site is english)...
if you dont know what i mean by close knit, basically i mean that the entire neworder site is a very friendly place. the message board has its flamers, but they are not encouraged on the site by the more serious and regular members and as long as your question isnt totally obvious or 'stupid' your likely to get a good reply from at least one person, or at least a pointer. you can also freely talk to the moderators and admins and more than likely you'll get a reply. there isnt one 'mod' that views his status on the site as some sort of ticket to eliteness, we are all friendly and helpful people, at least i like to think we are [:)] and there arent too many sites where people are so willing to help others.
to the regulars and the previous casusal readers of this newsletter as well as vistors to the site, your probably thinking why have i threw in this introduction to newcomers at such a late stage. well, the reason is simple. neworder's registered members are increasing at a fast rate. when issue one was released we had maybe 20,000 users, in the space of a couple of months this figure has risen to more than 80,000! now is a better time than ever to extend a welcome to those who maybe have not read about neworder or even vistited it at all in the past month.
i was going to put in an article on 'assembly -a dead langauge' but with the edge engines facility to post articles to the site directly i thought it more appropiate to put it there. so now-a-days it would seem that the newsletter is more of a 'whats happening on neworder' than it was initially :) ahh, how times change ;)
thanx and enjoy the issue,
jaymz
.the big news stories
much has happened lately, as always, so its hard to keep fully up to date and to reiterate all the news stories would be a bit of a waste. instead, here are some excepts and appropiate links to some of the most interesting articles of this past while...
Linux security self-censorship ominous
October was a bad month for proponents of full disclosure. First, Microsoft's Scott Culp argued in an essay that security researchers shouldn't reveal the nature of security holes in software. Then Culp may have found an unexpected ally in his war against full disclosure: Linux's second-in-command, Alan Cox. Cox's decision to delete security-related material from the Linux kernel changelog seems almost to honor Culp's request that we suppress information useful to attackers.
http://www.theregister.co.uk/content/4/22712.html
Bugging your keyboard
You don't need to be a brilliant spy to access the secret information people type into their computers. The ability to be a hacker is now being mass-marketed in a product called Keykatcher. It is a small, cream-coloured tubular device that tracks and stores all the keystrokes a person enters into KeyKatcher's memory chip.
http://news.bbc.co.uk/hi/english/sci/tech/newsid_1638000/1638795.stm
Bin Laden hackers denounce founder
Leet German script k1dd13 and would-be investment guru Kim Schmitz aka Kimble, who recently promoted his YIHAT (Young Intelligent Hackers Against Terrorism) Ninja force with loose claims to have hacked a Sudanese bank with /bin/laden accounts, has been denounced by two people claiming to be members of his organization. We denounced him too a while back. Now two reputed compatriots have rounded on him as well, drawing heavily on an article published by The Standard in January 2001.
http://www.theregister.co.uk/content/55/22681.html
'White Hat' Hackers Threaten Information Anarchy
Responding to an effort by Microsoft to squelch the full disclosure of software vulnerabilities, a group of "white hat" hackers is putting out a call to other experts, asking them to deluge software vendors with bug reports. "Let's flood the security department of every vendor with new issues. Let's show the world what they would miss and what information could just as easily have stayed in the underground," wrote a security researcher who uses the nickname "HellNbak," in an announcement posted to several security mailing lists last week.
http://www.newsbytes.com/news/01/171900.html
literally hundereds more tidbits of news information are available in the SMS section of neworder (http://neworder.box.sk/subject.php?subject=SMS) with usually about 15 posts or so a day. News sites such as theregister.co.uk also provide a plethora of reports on various IT news happenings from around the world.
.neworders latest articles
neworder has been flooded with more and more articles as the weeks go by, so this is just a short summary of just some of the articles and texts released...
>boxers lifestyle
[recollections on life and general living by boxnetwork members]
two boxers lifestyle articles are of particular interest, one of which is Tuna's 'How others see us' and the 'Skilled Network Gurl in Male World' by linuxgurl [LG - sorry about the lack of captitalisation ;)]. Both articles are a look at how hackers and 'geeks' fit in todays society of increasingly prolifant but less technically aware computer users. I think the comment that says it all really is this:
'A bit puzzled as to why this was shocking, she proceeded to tell me it was because I didn't fit the profile of a "computer geek," as she eloquently put it.
"And why not?" I inquired.
"Because your not socially inept," she informed me. '
Boxers lifestlye back issues can be obtained from
http://neworder.box.sk/subject.php?subject=Boxster%27s%20Lifestyle
>articles
[various and new texts on a wide range of security issues]
a fantastic article was released by rattlesnake on the history of programming langauges, and people looking for a pointer on where to start should definitly read it as it contains a wealth of links to various resources. sticking with the programming theme, i wrote a short article on 'assembly - a dead langauge?', which gives my views on the use of the langauge today even in this era of higher and higher level object languages.
the launch of XP earlier in october has led to many an article on the impact and effect of microsoft, with mordain providing an excellent and refreshing alterntive to the usual microsoft bashing and instead looks at bill gates from the perspective of 'a pioneer of modern times but also as an exploiter of fragile economical and technological markets'.
in the wake of the recent anthrax laden emails, zerostealth wrote a commenty on the dependcy we have on email and 'snail'mail, which looks at what we can do about it and puts down the spate of fear inducing media.
another predominant topic was open source, and adminBR wrote a interesting article on 'Windows vs X @ Linux: the same history again?' which looks objectivly at the way linux may be turning into a brand new windows, and as tuna says, this is a must read for all open source supporters 'http://www.microsoft.com/msft/speech/smeet/shareholdermeeting01.htm'.
there are lots more articles available to read on neworder (with usually a new one each day)
and you can obtain 'back issues' of the recent articles from this url:
http://neworder.box.sk/subject.php?subject=Articles
>theme of the month
[in depth coverage of a certain topic]
Octobers theme of the month was on Denial of Service, the hugely popular amongst the s'kiddies and controversial attack which prevents users from using a service of some kind. The article looks at the various types of DoS, the prevention methods which can be implemented and a response methodolgy for admins with systems under attack. It also includes a short description of some of the most predominant attacks such as TearDrop and Boink as well as a number of resource links for further reading. This is a essential reading for those looking to learn more about DoS, especially admin's who need this sort of information more than ever.
.neworder and snp defacement
yes its true, neworder was defaced in october by someone calling themselves 'GOBBLES'. some comments where made about neworder and its exploitation of the hacking community which were promptly put down by zwanderer, a high up boxnetwork member and admin of black.box.sk. The full statement is at http://neworder.box.sk/newsread.php?newsid=502 and the mirror of the defacement with GOBBLES's text can be viewed at http://defaced.alldas.de/mirror/2001/10/20/neworder.box.sk/
Particulary annoying was the defacement and subsequent closure of securitynewsportal.com, the site that provided up to date security news and interviews and also powered all those newstickers that were present on so many sites on the net. It released a full statement as to why it has been shut down as well as rebuking the claims made only to be redefaced by supposedly YIHAT. Mirrors of the site can again be found at alldas.de
http://defaced.alldas.de/mirror/2001/10/26/www.securitynewsportal.com/ [GOBBLES]
http://defaced.alldas.de/mirror/2001/10/24/www.securitynewsportal.com/ [YIHAT]
.hacking and electronics
this was sent in by CyberWizard (cheers!)
At the begginings when hackers used c64 and ZX spectrums Hacking and electronics were very close and at least then i know that everybody was "Homebuilding" something for their computer if it was some kinda phreak box or an automatics for something and such things.. Today modern electronics is mostly from PC Pic-s, EEPROMS And such that are the base of todays automatization process. I think that this circle of hackers and electronics is "going down"... I dont think that todays hackers are found in arts of electronics and that "new" hackers dont even know what is a 7404...
~CyberW1z4rd
.exploit review and summary
it wouldnt be the neworder newsletter without this essential section :) heres a selection of just some of the exploits released in the past week or two to keep you up to date.
.info disclosure
name: Internet Explorer System Information Disclosure
summary: websites can discover software you have installed by passing a file:// request and monitoring the error code IE reports back
versions: 5
code: yes, 2 examples
get it at: http://neworder.box.sk/showme.php3?id=5801
name: Lotus Domino View ACL Bypass
summary: protected documents can be viewed by unauthentiacted users
versions: 5.x, !5.0.7
code: an example is shown
get it at: http://neworder.box.sk/showme.php3?id=5793
name: Hidden Files Disclosure and Access Vulnerability in MacAdmin
summary: programs that have been compiled/linked with different security and the like routines do not pay attention to MacAdmin's hidden file flags, allowing users to view hidden data
versions: 1.7, 2.0.4fc4
code: An exmaple Proof Of Concept is described
get it at: http://neworder.box.sk/showme.php3?id=5749
.code excution
name: Fuse Talk SQL Insertion
summary: due to the fact that the ';' is not parsed out, crafted data can cause SQL execution
versions: none stated, assume all
code: examples are here
get it at: http://neworder.box.sk/showme.php3?id=5796
name: Remote Exploit for versions of RWhoisd
summary: buffer overflow in this whois deamon leads to compromise
versions: 1.5.x
code: yes, Unix based C
get it at: http://neworder.box.sk/showme.php3?id=5790
name: MacIE 5.1 Application Execution
summary: on completion of download, macbinary and binhex file types can be automatically decompressed and excuted
versions: MacIE 5.1 on OS X
code: nope
get it at: http://neworder.box.sk/showme.php3?id=5786
name: JavaScript Insertion in phpBB & Ikonboard Bulletin Boards
summary: a cross site scripting vuln. exisits allowing users to place javascript into messages which should have been filtered
versions: IkonBoard 2.1.9, PhpBB 1.42, !IkonBoard 3.0B7
code: yes, an example is included
get it at: http://neworder.box.sk/showme.php3?id=5784
name: Samba prior to v2.0.8 local root
summary: exploit code to a previously found vulnerability in samba
versions: |
| Top of page
|
