[ale] hackers and their methods

Greg runman at telocity.com
Tue Feb 19 19:54:03 EST 2002 

	Hi Stephen:

	You can get to a shell out of vi quite easily.  An exclamation mark (!)
tells ex to create a shell and to regard what follows as a UNIX command [1].
It needs to go.  You can put gedit/joe/pico or something on a floppy to use
as a text editor or just put everything you want to use but not install on a
CD and mount it when you have to. Of course, a hacker will put a "root kit"
on your box if he/she can and it will have the tools they need.  I saw in a
New Riders book on intrusion detection the complete typings of a hacker
going to work on Christmas Eve on a major system and it was quite
impressive, except the hacker couldn't remember where he put stuff and so he
had to re-download repeatedly.  They also couldn't type and had to re-type
stuff many times.  Was kinda funny the way the hacker kept making the same
mistakes over and over.

	Greg

[1] Learning the vi Editor - O'Reilly Lemur book

> -----Original Message-----
> From: Chris Fowler [mailto:cfowler at outpostsentinel.com]
> Sent: Tuesday, February 19, 2002 7:21 PM
> To: haswes at mindspring.com; ale at ale.org
> Subject: RE: [ale] hackers and thier methods
>
>
> You just explined.  I guess this is something like multiple
> partitions on a
> Mainframe.  You need a manager to mange the common resources
> shared by each instance of an OS.  You can write protect the drives.
> Utilities on the drives may still be used for a DOS attacke or anything
> else.
>
> Evey base has to be covered.
>
> cat < /dev/hda1 > /dev/null & cat < /dev/hda1 > /dev/null & cat <
> /dev/hda1
> > /dev/null
>
> Readonly did not protect you from me tkaing your load averges sky
> high.  DOS
>
> -----Original Message-----
> From: Adrin [mailto:haswes at mindspring.com]
> Sent: Tuesday, February 19, 2002 7:20 PM
> To: ale at ale.org
> Subject: RE: [ale] hackers and thier methods
>
>
> Why not just write protect the drive or drives.  Or better
> yet saw this on a $500,000.00 Machine.  The code was in
> Intel bus language, ( What ever that was/is).  It still
> loaded a OS on top though.  I just couldn't help but wonder
> why.  Course The machine having no less than 3 systems ( CPU
> with their own OS).
>
> -----Original Message-----
> From: Chris Fowler [mailto:cfowler at outpostsentinel.com]
> Sent: Tuesday, February 19, 2002 7:08 PM
> To: Tommie M. Jones; Stephen Turner
> Cc: ale at ale.org
> Subject: RE: [ale] hackers and thier methods
>
> Cat is not there.  Next.
>
> -----Original Message-----
> From: Tommie M. Jones [mailto:tj at atlantageek.com]
> Sent: Tuesday, February 19, 2002 7:01 PM
> To: Stephen Turner
> Cc: ale at ale.org
> Subject: Re: [ale] hackers and thier methods
>
>
> You can edit a file with 'cat'
>
> ---------------------------
> Get inside Atlanta's Tech Scene - http://www.atlantageek.com
> 'Business Intelligence' is not an Oxymoron -
> http://www.intelliforge.com
>
>
> On Tue, 19 Feb 2002, Stephen Turner wrote:
>
> > so i remove all these packages from my box, should i
> bother removing vi?
> it offers no hacks as i see it but i suppose my REAL
> question is, can a
> linux hacker or someone hacking linux run programs outside
> of your box that
> will configure, alter the box? or do you have to add
> programs such as a text
> editor in order to alter text? and what stops them from
> installing or
> "planting" them on my server?
> >
> >
> > ---------------------------------
> > Do You Yahoo!?
> > Yahoo! Sports - Coverage of the 2002 Olympic Games
>
>
> ---
> This message has been sent through the ALE general
> discussion list.
> See http://www.ale.org/mailing-lists.shtml for more info.
> Problems should be
> sent to listmaster at ale dot org.
>
>
>
>
> ---
> This message has been sent through the ALE general
> discussion list.
> See http://www.ale.org/mailing-lists.shtml for more info.
> Problems should be
> sent to listmaster at ale dot org.
>
>
> ---
> This message has been sent through the ALE general discussion list.
> See http://www.ale.org/mailing-lists.shtml for more info.
> Problems should be
> sent to listmaster at ale dot org.
>
>
>
>
> ---
> This message has been sent through the ALE general discussion list.
> See http://www.ale.org/mailing-lists.shtml for more info.
> Problems should be
> sent to listmaster at ale dot org.
>
>
>


---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be 
sent to listmaster at ale dot org.

More information about the Ale mailing list