On Tuesday 17 September 2002 17:31, Jon Biddell wrote:
I've been issued with a challenge.....
A friend has just put satellite internet access in, and is running a firewall called "ZoneAlarm" (or Zonealert, can't remember). He's got a fixed IP, and has challenged me to prove that Windows is less secure than Linux by breaking into his machine and leaving a non-destructive message in his AUTOEXEC.BAT file...:-)
Then I can talk to him about converting to Linux...:-)
Anyone have any clues about this program ? I've tried all the obvious telnet / ssh tricks, and no go.
Yes, you simply ride in on an app he already have running. ZoneAlarm is an application f/w which monitors access from applications. But like all other f/w's it will let some communication through. In this case you attach something to an email, and/or you can have him visit your server which has a offline page with your hack on it. In other words if the f/w allows email to go through you can ride on it. ZoneAlarm probably is set to let through Outlook so he can get his email. Messengers are also known for having a very insecure protocol. To find a good hacking pgm is not really what I like to offer but you can join a security list like bugtraq and discover the latest hacks. Beware that some pgms (like BackOrifice) can bite you too. There are a good number of tools used by scriptkiddies (people who don't know how but executs scripts that does the hacking for them, usually young.) Hacking computers is not something done lightly as consequences can be bad. The Fed's could get involved, the ISP could press charges... Never hack someone without a well written agreement. If your friend REALLY want to be hacked he could post a challenge, but it would be a dumb thing to do as he would be fried. Asking someone who does not know how, is a good way of ensuring you don't get the truth about the situation. Do some search for IE and Outlook hacks online and then direct your friend to them. This is much safer and if he does not bite he's either too ignorant or a fool. (Maybe both :) -- Steve _____________________________________________________________ HTML in e-mail is not safe. It let's spammers know to spam you more, and sets you up for online attack through IE 4.x and above. Using HTML in e-mail promotes it as safe to the uninitiated.