Welcome to Scribd, the world's digital library. Read, publish, and share books and documents. See more ➡
Download
Standard view
Full view
of .
Add note
Save to My Library
Sync to mobile
Look up keyword
Like this
1Activity
×
0 of .
Results for:
No results containing your search query
P. 1
An Indepth Guide in Hacking UNIX and the Concept of Basic Net

An Indepth Guide in Hacking UNIX and the Concept of Basic Net

Ratings: (0)|Views: 297|Likes:
Published by naveenmalik
An Indepth Guide in Hacking UNIX an
An Indepth Guide in Hacking UNIX an

More info:

Published by: naveenmalik on Aug 17, 2009
Copyright:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See More
See less

08/17/2009

pdf

text

original

 
]*> Press [X] to Abort / [CR] to Continue: []*> Title: Hacking UNIX*> Date:6/10/89*> Time: 12:20 pm /|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\/|\ \|/ \|/ /|\ /|\ \|/ AnIndepth Guide in Hacking UNIX and the \|/ /|\ concept of BasicNetworking Utility /|\ \|/---------------------------------------- \|/ /|\ By:RedKnight /|\ \|/ Phreakers/Hackers UndergroundNetwork \|/ /|\/|\ \|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/\|/Brief historyon UNIX----------------------Its because of Ken Tompson that today were able toHack Unix.He used to workfor Bell Labs in the 60s.Tompson started out using theMULTICS OS which waslater eliminated and Tompson was left without an operatingsystem to work with.Tompson had to come up with something real quick.He did someresearch andand in 1969 UNIX came out,which was a single user and it didn't havemany capabilities.A combined effort with others he rewrote the versionin C andadded some good features.This version was out in 1973 and wasavailable to thepublic.This was the first begining of UNIX as its known presently.The morerefined version of UNIX,today know as UNIX system V developed by BerkleyUniversity has unique capabilities.Various types of UNIXes are CPIX,Berkeley Ver4.1,Berkeley 4.2,FOS,Genix,HP-UX,IS/I,OSx,PC-IX,PERPOS,Sys3,Ultrix,Zeus,Xenix,UNITY,VENIX,UTS,Unisys,Uniplus+,UNOS,Idris,QNIX,Coherent,Cromix,System III,System 7,Sixth edition.The article itself:--------------------I believe that hacking into any system requires knowledgeof the Operatingsystem itself.Basically what I will try to do is make you morefamiliar withUNIX operation ,its usefull commands that will be advantageous toyou as a hacker.This article contains in depth explainations.Error Messages that one may came across:[UNIX system V]----------------------------------------Login incorrect - An ivalid ID and/or pwwas entered.This means nothing. In UNIX there is no way guessingvalid user IDs.You may come across this one when trying toget in.No more logins - will happens when the system wont accept anymore loginscould be going down Unknown Id - will happen if an ivalid id is enteredusing (su) commandUnexpected eof in file - The file being stripped file has beendamagedYour password has expired - This is quiet rare although there have beencases where it happened.Reading the etc/passwd willshow you at how many intervals it changes.You may not change the password - Thepassword has not yet aged enough.TheAdministrator set the quotas for the usersUnknown group [groups name] - occurswhen chgrp is executed ,group doesn't existSorry -Indicated that you have typed in an invalid super user password(execu- tionof the su)Permission denied!- Indicated you must be the owner or a super user tochange password.Sorry <[# of weeks] since last change - Thiswill happen when password has has notaged enough and you tried to changeit(passwd)[directory name]:no permission - You are trying to remove a directorywhich you have no permission to.[file name] notremoved - trying to delete a file owned by another userthat you dont have write pemision for. [dirname] not removed - ownership of thedir is not your that your trying to delete. [dirname] notempty - the directory contains files so you must have to deletethe files before executing the rmdir [command] not found - you have entered anivalid command not know to UNIXcant execute pwd - some thing wrong with the systemcant execute pwd commandcannot chdir to .. - (.. one level up) permision isrequired to execute pwd above the current directorycant open[file name] - defined wrong path,file name or you have no readpermissioncp:[file name] and [file name] are identical - self explanatory cannotlocate parent directory - occurs when using mv[file name] not found - file which
 
your trying to move doesn't exsistYou have mail - Self explanatoryBasic NetworkingUtility error messages---------------------------------------cu:not found -networking not installedlogin failed - invalid id/pw or wrong # specifieddialfailed - the systen never answered due to a wrong #uucp completely failed - didnot specify file after -swrong time to call - you called at the time at a time notspecified in the Systems filesystem not in systems - youcalled a remote not in the systems fileLogon format : first thing one must do isswitch to lower case--------------Identifing a UNIX.Here is what you'll see:Sometimes there will be no system identifer AT&T UNIXSysVR3.0 (eg of a system identifier)login: orLogin:Any of these is a UNIX.Here iswhere you will have to guess at a user validid.Here are some that I have comeacross eg( glr,glt,radgo,rml,chester,cat,lom,cora,hlto,hwill,edcasey and also somecontaining numbers smith1,mitu6 orspecial characters in it likebremer$,j#fox.Login names have to be 3 to 8chracters in lenght lowercase and muststart with a letter.In some XENIXsystems one may login as "guest"User levelaccounts:(lower case)-------------------- In Unix they have whats called accounts.Theseaccounts can be used at the "login:" prompt.Here is a list:sysbintroubledaemonuucpnuucp rjelpadmlisten - if starlan is installedSuper-user accounts:--------------------And then there are super-user login which make UNIX worthhacking. The accounts are used for a specific job. In large systems these loginsare assingned to users who have a responsibilty to maintain subsystems.They are asfollows :(all lower case)root - this is a must the system comes configuredwith it.It has no restriction.Has power over every other account.unmountsys - unmounts filessetup - system set upmakefsys - makes a newfilesysadm - allows useful S.A commands(doesn't need root login)powerdown -powering system downmountfsys - mounts filescheckfsys - checks fileTheseaccounts will definitly have passwords assigned to them.Theseaccounts are alsocommands used by the system administrator.Here are some examples of accounts Ihave seen:cron uuhelp usenetanonuccp news networkbellboylp vectorguest games ninjavote warble sysinfoAfterthe login prompt you will receive a password prompt:password: orPassword:Enter the password (it wont echo).The password rule is as follows:Each pwhas tocontain at least 6 characters and maximum has to be 8 .Two of which areto bealphabetic letters and at least one being a number or a special characterThealphabetic digits could be in upper case or lower case.Here are some of thepasswords that I have seen (eg.Ansuya1,PLAT00N6,uFo/78,ShAsHi..,Div417co)Thepasswords for the super user accounts will be difficult to hacktry the accountsinterchangebly eg.login:sysadm password:makefsys or rje1,sysop,sysop1,bin4 or theymight contain letter,numbers,special chracters inthem.It could be anything.Theuser passwords are changed by an aging proccessat successive intervals.The usersare forced to changed it.The super-userwill pick a password that wont needchanging for a long period of time.You have made it! ----------------- The hardpart is over and hopefully you have hacked a super-user account.Remember Control-dstops a process and also logs you off.The next thing you'll probably see is thesystem newseg.login:john password:hacker1 System news Therewill be no networking offered to the users tillaugust 15,due to hardware problems.(just an example)$$ is the Unix prompt -waiting for a command to be entered.I willuse this throught the article to show outouts etc..(Its notpart of the command)# - means your logged in as root(very good)A word about theXENIX System III:(run on the tandy 6000)---------------------------------The largest weakness in the XENIX System III occurs after the installationof theProfile-16 or more commonly know as the filepro-16.I have seen the filepro-16installed in many systems. The installation process creates an entry inthe password file for a user named \fBprofile\fR ,an account that who owns andadministors the database.The great thing about it is that when the account iscreated ,no password isassigned to it.The database contains executable to maintainit.The databasecreation programs perform a \fBsetuid\fR to boot up the \fBoot\fRthere by giving a person the whole C Shell to gain Super User privilege same as
 
root.Intresting huh! * Note: First the article will inform youof how the Unix is made upThe Unix is made if three components-The shell,thekernal,file system. The kernal:-----------You could say that the kernal is theheart of the Unix operating system.The kernal is a low level language lower thanthe shell which maintainsprocesses .The kernal handles memory usage ,maintainsfilesystemthe sofware and hardware devices. The shell:----------The shell a higherlevel language. The shell had two important uses,to act as command interpreturefor example using commands like cat,who, ls the the shell is at workfiguring out whether you have entered a commandcorrectly or not.The second mostimportant reason for the shell is its abilityto be used as programinglanguage.Suppose your performing some tasks repeatedly over and overagain,You can program the shell to do this for you. The file system:---------------The file system in Unix is divede into 3catagories:Directories,ordinary filesand special files.(d,-) Basicstucture: (/)-this is abreviation for the root dirctory. root levelroot (/) system-------------------------------------|----------------------------------level|| | | | | | |/unix /etc/dev /tmp /lib /usr /usr2 /bin |_____|_____login passwd | | |level/john /cathy ________________________|_______________ | | | | || .profile /mail /pers /games /bin /michelle*.profile - in case | __|______ | __|_______ youwich to change your enviroment capital | | data | |but afteryou log off.It sets to othello starwars letter letter1default.the /unix-is the kernal/etc - contains system administrators files,Most are notavailable to the regular user.(this directory contains the /passwd file)Here are some files under /etc directory: /etc/passwd /etc/utmp/etc/adm/sulog /etc/motd /etc/group /etc/conf /etc/profile /dev -contains files for physical devices such as printer and the disk drives/tmp -temporary file directory/lib - dirctory that contains programs for high levellanguages/usr - this directory contains dirctories for each user on the systemEg. of a list of files under /usr /usr/tmp /usr/lib /usr/docs/usr/news /usr/spool /usr/spool/lp /usr/lib/uucp/bin - containexecutable programs (commands)The root also contains:/bck - used to mount a back up file system./install - Used to install and removeutilities/lost+found - This is where all the removed files go,This dir is used byfsck (1M)/save -A utility used to save data/mnt - Used for temporarymounting**Now the fun part scouting around** Local commands(Explained in details) -------------------------------------At theunix prompt type the pwd command-it will show you the current workingdirectory youare in.$ pwd$ /usr/admin - assuming that you have hacked into a super user acccheckfsys$This gives you the full login directory.The / before tell you thelocationof the root directory or(REFER TO THE DIAGRAM ABOVE)$pwd$ /usr/john $Assuming you have hacked into johns acc.Now lets say you wantedto move down to the michelle directory( you own this)that contains letters.Youwould type in$ cd michelle or cd usr/john/michelle$ pwd$ /usr/john/michelle$Goingback one directory up type in:$ cd ..or going to your parent directory just typein "cd" Listing file directories assuming you are in the parent directory:$ls /usr/johnmailpersgames binmichelleThis wont give you the .profile file.To view it type$ cd$ ls -a::.profileTo list file names in michelles directorytype in:$ ls michelle (that if your in the johns directory)$ ls/usr/john/michelle(parent dir)ls -l ----- The ls -l is anan important command in unix.This command displays the wholedirectory in longformat :Run this in parent directory$ ls -ltotal 60-rwxr-x--- 5 johnbluebox 10 april 9 7:04 maildrwx------ 7 john bluebox 30 april 2

You're Reading a Free Preview

Download
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->