VIETBOOKS

HackerVN Hack FAQ

Li ni u: Th theo yu cu ca mi ngi, ban iu hnh HackerVn cho ra i bn FAQ ny dnh cho nhng bn mi lm quen vi ngh thut Hacking v Internet. Bn c th t tm ti nhng iu cn bn m bt c Hacker no cng phi "master". Hy vng nhng khi nim trong bi vit ny s gii p c nhiu thc mc ca mt s bn. Nu bn cm thy nhng kin thc di y khng ng hoc thiu chnh xc bn c th gi th gp . Bn FAQ ny da trn c s ng gp, gp ca cc thnh vin trn HackerVN community, vy nu bn c cu hi hay gii p mun chng ti thm vo bn FAQ ny th xin lin h vi a ch e-mail trn hoc c th gi ln trn forum. trang tr nn tht s hu ch v gip HackerVN tin ln pha trc chng ti thit tha s gip v ng gp ca bn. "Mt cy lm chng nn non, ba cy chm li nn hn ni cao". Internet a ch IP (IP Address) (By Conan_Dole and BlackArt) Trn mng Internet n s xc nh chnh bn. Khi kt ni vo mng th IP ca bn l duy nht trn th gii. Tuy nhin s ny cha hn l c nh. Nu bn vo mng qua mt ISP th s IP ca bn s thay i cc ln bn kt ni. Mt ngi bit IP ca bn th c th ln ra v tr ca bn. Ngha l khi c IP th bit c a ch ca ISP ri bit c thng tin ca bn. Trn thc t, IP cho bit v my tnh c s dng vo mng ch khng cho bit thng tin v ngi s dng, tr khi IP ca bn l c nh hoc s dng account ca ring bn. S khc nhau gia logic (hostname) v mt a ch IP: n gin ch bi v vic gi tn, v d www.yourname.com s d hn nhiu i vi vic phi gi 202.32.156.14. Tuy vy, c mt s khc bit quan trng gia 2 iu ny. IP l s xc nh thit b (device) cn hostname l mt mi lin kt gia 1 t kho v mt s IP. Mt a ch IP c th c nhiu hostname khc nhau nhng mt hostname th ch c mt IP lin kt vi n. a ch IP c chia thnh 4 s gii hn t 0 - 255. Mi s c lu bi 1 byte -> !P c kicks thc l 4byte, c chia thnh cc lp a ch. C 3 lp l A, B, v C. Nu lp A, ta s c th c 16 triu i ch, lp B c 65536 a ch. V d: lp B vi 132.25,chng ta c tt c cc a ch t 132.25.0.0 n 132.25.255.255. Phn ln cc a ch lp A ll s hu ca cc cng ty hay ca t chc. Mt ISP thng s hu mt vi a ch lp B hoc C. V d: Nu a ch IP ca bn l 132.25.23.24 th bn c th xc nh ISP ca bn l ai. ( c IP l 132.25.x.)

IP th hin iu g:

Trn mng Internet n s xc nh chnh bn. Khi kt ni vo mng th IP ca bn l duy nht trn th gii. Tuy nhin s ny cha hn l c nh. Nu bn vo mng qua Trang 1

VIETBOOKS mt ISP th s IP ca bn s thay i cc ln bn kt ni. Mt ngi bit IP ca bn th c th ln ra v tr ca bn. Ngha l khi c IP th bit c a ch ca ISP ri bit c thng tin ca bn. Trn thc t, IP cho bit v my tnh c s dng vo mng ch khng cho bit thng tin v ngi s dng, tr khi IP ca bn l c nh hoc s dng account ca ring bn.

S khc nhau gia logic (hostname) v mt a ch IP:

n gin ch bi v vic gi tn, v d http://www.yourname.com/ s d hn nhiu i vi vic phi gi 202.32.156.14. Tuy vy, c mt s khc bit quan trng gia 2 iu ny. IP l s xc nh thit b (device) cn hostname l mt mi lin kt gia 1 t kho v mt s IP. Mt a ch IP c th c nhiu hostname khc nhau nhng mt hostname th ch c mt IP lin kt vi n.

IP spoofing l g:

Mt s IP c mc ch xc nh mt thit b duy nht trn th gii. V vy trn mng mt my ch c th cho php mt thit b khc trao i d liu qua li m khng cn kim tra my ch. Tuy nhin c th thay i IP ca bn, ngha l bn c th gi mt thng tin gi n mt my khc m my s tin rng thng tin nhn c xut pht t mt my no (tt nhin l khng phi my ca bn). Bn c th vt qua my ch m khng cn phi c quyn iu khin my ch . iu tr ngi l ch nhng thng tin phn hi t my ch s c gi n thit b c IP m chng ta gi mo. V vy c th bn s khng c c s phn hi nhng thng tin m mnh mong mun. C l iu duy nht m spoof IP c hiu qu l khi bn cn vt qua firewall, trm account v cn du thng tin c nhn!

Cng o l g? (Virtual Port) Cng o l 1 s t nhin c gi trong TCP(Tranmission Control Protocol) v UDP(User Diagram Protocol) header (hin c l bn cn xa l vi 2 t ny, chng ti s cp sau). Nh mi ngui bit, Windows c th chy nhiu chng trnh 1 lc, mi chng trnh ny c 1 cng ring dng truyn v nhn d liu. V d 1 my c a ch IP l 127.0.0.1 chy WebServer, FTP_Server, POP3 server, etc, nhng dch v ny u uc chy trn 1 IP address l 127.0.0.1, khi mt gi tin uc gi n lm th no my tnh ca chng ta phn bit c gi tin ny i vo dch v no WebServer hay FTP server hay SMTP? Chnh v th Port xut hin. Mi dch v c 1 s port mc nh, v d FTP c port mc nh l 21, web service c port mc nh l 80, POP3 l 110, SMTP l 25 vn vn.... Ngi qun tr mng c th thay i s port mc nh ny, nu bn ko bit s port trn mt my ch, bn ko th kt ni vo dch v c. Chc bn tng nghe ni n PORT MAPPING nhng c l cha bit n l g v chc nng th no. Port mapping thc ra n gin ch l qu trnh chuyn i s port mc nh ca mt dch v no n 1 s khc. V d Port mc nh ca WebServer l 80, nhng thnh thong c l bn vn thy http://www.xxx.com:8080/ , 8080 y chnh l s port ca host xxx nhng uc ngui qun tr ca host ny "map" t 80 thnh 8080.

Trang 2

VIETBOOKS RFC l g? RFC l vit tt ca Request For Comment, l tp hp nhng ti liu v kin ngh, xut v nhng li bnh lun lin quan trc tip hoc gin tip n cng ngh, nghi thc mng INTERNET. Cc ti liu RFC c chnh sa, thay i n khi tt c cc k s thnh vin ca IETF(Internet Engineering Task Force) ng v duyt, sau nhng ti liu ny c xut bn v c cng nhn l 1 chun, nghi thc cho Internet. Ti liu RFC ni ting v lm to c ting vang ln nht l ti liu RFC s 822 v Internet Email bi Dave Crocker. Trang ch ca RFC: http://www.ietf.org/rfc.html DNS l g? Ti sao ta li dng DNS, DNS lm vic ra sao, tn min l g, etc...? DNS l vit tt ca Domain Name System. Mt my ch DNS i kt ni cng s 53, c ngha l nu bn mun kt ni vo my ch , bn phi kt ni n cng s 53. My ch chy DNS chuyn hostname bng cc ch ci thnh cc ch s tng ng v ngc li. V d: 127.0.0.1 --> localhost v localhost--->127.0.0.1 H thng "tn n a ch" (name-to-address) c dng trc y khi DNS cha ra i, y thc cht l 1 file trn server. Cu to ca 1 file ny l 1 table vi "hostname" v a ch IP tng ng, file ny c cp nht v bo qun bi Standford Reserch Institute Network Information Center (SRI-NIC). Vi ln 1 tun, t chc ny li cp nht ni dung file ny. Nhng ngui qun tr mng nu cn s download file ny xung dng cho local DNS. Dn dn, s lng ca cc trang web trn internet ngy cng nhiu. Cch c dng "name-to-address" tr nn thiu hiu qu v tn thi gian --> DNS ra i. DNS ko ph thuc vo bt c 1 server ring r no, DNS c phn pht cho ngui dng di dng 1 file c s d liu, file ny c gi trn khp cc DNS server trn ton th gii. Mi DNS server u t tm kim mt DNS cao hn khi nhn c yu cu v 1 host no ko c trong c s d liu trn my mnh My ch DNS (DNS Server) DNS server l 1 my tnh bnh thng c th PC(/MAC) chy UNIX hoc nhn bn ca Unix (Linux,etc..) v chay mt chng trnh qun l domain name gi l BIND (Berkely Internet Name Domain). DNS server c th chy cc h iu hnh khc nh Windows, MacOS nhng thng th *nix hay c chn hn c v unix c tnh bo mt cao hn v cho php lng truy cp ln hn. Chng trnh qun l DNS c thit k chia lm 2 phn, phn th nht l 1 "daemon" nghe cng 53 i kt ni. Phn th 2 l gi yu cu ln mt DNS cao hn nu local database ko c thng tin m my khch yu cu. Phn th nht (daemon) tr li trnh duyt web mi khi nhn c yu cu. V d, khi bn m Internet Explorer v nh vo http://www.hackervn.org,/ trnh duyt ca bn s gi yu cu n 1 my ch c dch v DNS gn nht tm IP ca http://www.hackervn.org/ v trnh duyt ca bn cn bit IP my ch hin ang lu tr trang web http://www.hackervn.org./ My ch DNS ISP ca bn s tm trong c s d liu, nu ko tm thy a ch IP cho http://www.hackervn.org/ my ch chy DNS ny s chuyn sang phn th 2 l a yu cu ca my khch n 1 my ch DNS cao cp hn, nhiu d liu hn gii quyt.

Trang 3

VIETBOOKS nh dng cy ca DNS (tree formation) Mt khi DNS server ko th tm thy s IP tng ng cho 1 hostname trong c s d liu ca mnh, server s gi yu cu n 1 DNS server khc cao hn 1 bc, v DNS server ny s lp li qu trinh m DNS server di lm tm a ch IP ca 1 host no . Nu DNS server ny vn ko tm thy th yu cu s li c gi n 1 DNS server khc cao hn na v quy trnh ny s c tip tc cho n khi no ra kt qu. Kt qu ca yu cu ny ch c th l "Tm Thy" hoc "Ko tm thy". :-) . n thi im ny, chc bn hnh dung ra c cu trc ca cc DNS server nh th no ri? Nu cha, hy nhn vo v d di y: V d nh cung cp internet ca bn l FPT. Trang web t trn my ch ca FPT l http://www.fpt.vn./ Mc nh, DNS server s l dns.fpt.vn. By gi bn mun truy cp http://www.hackervn.org./ dns.fpt.vn s tm thng tin v host ny trong c s d liu trn my ch DNS FPT xem ai gi thng tin truy cp v host ny cha. Nu i ch hackervn ko c tm thy "local database" hoc trong b nh, dns.fpt.vn s a yu cu ny n 1 DNS server cao cp hn, y s l "dns.vn". DNS server ny qun l tt c cc trang c ui .vn. Tuy nhin server ny c th ko c a ch ny trong c s d liu nhng c th c v c th ai truy cp trang ny. Nu y vn ko tm thy host/ip cn tm, DNS server ny cui cng phi gi request n DNS server ln nht qun l tt c cc domain gi l ".root". My ch chy .root DNS ny l mt my tnh rt mnh, v c s d liu ca .root ny bao gm tt c cc loi domain trn ton th gii. nh .com , .net , .mil, .co.uk, vn vn..... Khi no v ti sao DNS b "bi lit" ? Kt qu tm kim 1 trang web c th lu hay nhanh tu thuc vo nh cung cp dch v internet ca bn c i ch IP v host ko trong c s d liu trn my ch DNS hay khng. Nu nh cung cp dch v Internet c sn thng tin bn cn trong "local DNS database" c l ch vi giy l bn c th c th xem oc trang web cn nu ko th s mt 1 khong thi gian lu hn, ti t nht l khi bn nhn c thng bo "Page can not be displayed", c ngha l 1 l trang web ko tn ti hoc l do qu trnh "yu cu" DNS qu lu nn browser ca bn "time out" v "git cht" kt ni. Tuy nhin bn c th Refresh li trnh duyt, nu ln trc l do "time out" th ln ny bn s nhn oc trang web nhanh hn v my ch DNS ca nh cung cp dch v Internet ca bn cp nht oc trang trong ln yu cu trc khi bn gi n. Khi nim v Ping v cch hot ng? Ping l 1 khi nim rt n gin tuy nhin rt hu ch cho vic chn on mng. Tiu s ca t "ping" nh sau: Ping l ting ng vang ra khi 1 tu ngm mun bit c 1 vt th khc gn mnh hay ko, nu c 1 vt th no gn tu ngm ting sng m ny s va vo vt th v ting vang li s l "pong" vy th tu ngm s bit l c g gn mnh. Trn Internet, khi nim Ping cng rt ging vi tiu s ca n nh cp trn. Lnh Ping gi mt gi ICMP (Internet Control Message Protocol) n host, nu host "pong" li c ngha l host tn ti (hoc l c th vi ti oc). Ping cng c th gip chng ta bit c lung thi gian mt gi tin (data packet) i t my tnh ca mnh n 1 host no .

Trang 4

VIETBOOKS C 1 loi dch v Ping khc gi l "TCP Ping" v "UDP Ping". Hai dch v ny u i kt ni cng s 9 v ghi li nhng g bn nh trn mn hnh. Dch v ny c s dng khi ngui qun tr mng ko mun my ch ca mnh nhn nhng gi tin ICMP( trnh Denial Of Service ) nhng vn mun mi ngui ping xem my ch ca mnh "cht" hay "sng". S th t (Sequence numbers) l g? "Sequence number" l nhng s xut hin trong phn "header" ca 1 gi tin TCP. Mc ch ca "sequence number" l cc gi tin c nhn theo ng trnh t nh khi chng c gi i. Mt trong nhng phin toi trong vic truyn d liu qua mng Internet ni chung v Intranet ni ring l s chuyn i cc gi tin (Packet Switching). Nm na l nh sau, mi gi tin i mi con ng khc nhau ti a ch ca host. Gi tin A i ong ny nhng gi tin B c khi lai i ng khc. TCP/IP c thit k sao cho mi gi tin TCP tm con ng no nhanh nht n c ia ch ch nhng con ng ny thng l ng nht(Vi TCP). Gi tin gi i ph thuc vo tc ca ng truyn m n i qua nn nhng gi tin ny ko th n ni cng 1 lc, c gi s n trc c gi s n sau. V d gi th nht s n sau gi th 10 chng hn. chc chn l my ch nhn oc cc gi tin theo trnh t sau ny lp li thnh 1 file hon chnh, mi gi tin TCP "header" bao gm 1 s th t (sequence number). Nu ko c s th t ny th my ch s gn nh ko th lp rp cc gi tin li thnh mt file hon chnh c, nht l i vi nhng file to vi trm Megabyte. "Thi Gian Sng" (Time To Live) Nh bn bit (c th ko bit), Internet l mt mng rt rng ln. m bo cc gi d liu n c my ch th qu l mt vn . Nu cc gi d liu ny n c ch cn n th khi phi ni, nhng nu nhng gi tin ny b lc trn ng th sao?Chnh v th "Time To Live" ra i. Khi nhng gi tin ny ko n c my ch sau khi i qua s mt s router(s ny c mc nh trc) s t phn hu. "Time To Live" ch tn ti trong gi tin TCP. y l 1 cch th tc TCP bo m gi tin c gi i n ng a ch, v ngi nhn bit l gi tin va gi i b mt hoc tht lc nu c g xy ra, nh vy gi tin s c gi li. Time To Live l 1 s t nhin, mi khi gi tin TCP i qua 1 router, con s ny s gim i 1 gi tr, khi s ny gim xung cn 0, gi tin s t tiu hu v thng bo ICMP c gi v thng bo l gi tin va gi ko n uc my ny gi li gi tin va tht lc. Hu ht cc my u gi tr ca gi tin TCP l 32. Cc chuyn gia v mng a ra li khuyn l nn gi tr mc nh TTL l 64, mt s khc li cho l 128 nhng 128 c v l hi nhiu.

Th no l kt ni TCP 3 chiu ( 3 way TCP hand-shake) TCP l nghi thc kt ni trc, truyn ti d liu sau. C th l nu bn mun truyn d liu gia 2 my tnh ni mng, trc tin bn phi thit lp mt s giao

Trang 5

VIETBOOKS thc gia 2 my vi nhau bo cho nhau l chun b cho vic gi v nhn d liu hay cha. Qu trnh ny gi l kt ni 3 chiu ca TCP (TCP 3 ways hand-shake) c th gip bn hiu r rng hn v vn ny, chng ti xin a ra v d minh ho sau. Chng hn my tnh A mun thit lp kt ni TCP n my tnh B, trc tin my tnh A s phi gi 1 gi tin gi l gi tin vi header c nh du SYN (vi 1 bit TCP header l on) n B. Gi tin SYN ny bao gm s th t (sequence number). Khi B nhn uc gi tin c du SYN ny t A, my B s gi mt gi tin SYN ca chnh n v 1 gi tin khc na gi l ACK. Gi tin ACK ny thc cht l mt gi tin tng t nh SYN nhng cha d liu ca gi tin SYN m A gi cho my B lc u. Cui cng, my A gi mt gi tin SYN cui cng li cho B nh l buc th 2 khi B tr li cho A. (SYN) A -----> B Khi qu trnh ny hon tt, 2 my tnh c th thit lp kt ni v truyn ti d liu cho nhau dui dng TCP (SYN)+(ACK)A (ACK) A -----> B <----B

Ch : Truyn ti d liu dui nghi thc UDP th ko cn phi thit lp kt ni trc ging trong TCP. Nhng gi tin TCP thng i cng mt ung, qua cng router tuy nhin i vi UDP th do ko thit lp mt kt ni no c gia 2 my nn mi gi tin u t tm cc ung khc nhau n my ch, ko c mt cn ung no thng nht c.

Khi nim v "timeout" ? "Time out" oc dng miu t khong thi gian my A gi 1 gi tin cho my B nhng ko nhn uc tr li t my B. V d khi bn kt ni vo 1 server chat no chng hn nh vitchat, bn click vo nt connect nhng sau khong 1 pht vietchat server vn cha tr li. y gi l time out.

Khi Nim tracert (traceroute) v cch lm vic? Traceroute l mt cng c chun on mng rt tt. Tin ch ny c sn trong windows(tracert) hoc unix(traceroute). Tracert dng TTL(Time To Live) pht hin ng i ca gi tin v sau ping cc router m gi tin ny i qua. Tin ch ny thc s hu ch khi bn mun kt ni n mt my ch nhng bn ko ti no n uc v bn mun xem l nhng router no trn ung m gi tin ny i cn tr giao thng mng u tin, lnh tracert gi mt gi tin vi gi tr TTL l 1. Gi tn vi gi tr TTL = 1 ny s b tiu hu ngay sau khi n bc qua router u tin, thng bo li s uc gi tr v my ca bn. Sau li mt gi tin TCP khc c gi i nhng ln ny vi gi tr TTL=2. Nh cc bn bit, khi n router th 2 gi tin ny s b "cht" v thng bo li s uc gi v my bn v c th. Sau khi hon thnh c mt

Trang 6

VIETBOOKS on ng di qua tt c cc router m gi tin cn i qua, tracert dng lnh ping cc router trn ng xem nhng router no tr li v mt s lng thi gian l bao lu. Nh vy, ngi dng c th t xem router no nhanh, router no cho gi tin i qua ...vn vn.. C th l do chm hoc l b down. Ch : Trong windows: tracert hostname Trong unix: traceroute hostname Khi nim v HTTP v cch hot ng HTTP l vit tt ca cm t ting anh Hyper Text Transfer Protocol. y l mt nghi thc dng cho trnh duyt web (Opera, Internet Explorer....) giao tip vi my ch Web v hin th thng tin. Khi bn g a ch ca 1 web-site no vo hp a ch trong trnh duyt Web v g "Enter", vic u tin trnh duyt ca bn s lm l tm my ch DNS xem a ch IP ca my ch cha trang l g. Sau khi tm thy a ch IP, trnh duyt web ca bn s tm cch kt ni vo cng (port) m my ch dng cho http(cng mc nh l 80) v ly thng tin m bn cn hin th( y l trang web). Tip: Bn c th chnh sa file host(c:\windows\host) trong win 98 hoc c:\windows\System32\driver\host ghi li nhng server m bn hay truy cp. Nh vy th s tit kim uc nhiu thi gian tm IP trn DNS server. Di y l 2 lnh cn bn bn nn bit: 1) "get"...y l lnh trnh duyt dng ly 1 trang web no m bn ang yu cu. V d get url HTTP/1.0. url l a ch trang web cn HTTP/1.x l version ca dch v HTTP m trnh duyt ca bn dng. 2) "post"... y l lnh trnh duyt dng gi 1 file ln trn server. FTP l g v cch lm vic FTP l vit tt ca cm t ting anh File Transfer Protocol. y l nghi thc dng truyn ti d liu t my ny sang my khc. im li ca FTP l tnh d s dng, bn c th d dng kt ni vo 1 my ch FTP v tm nhng file bn mun min l nhng file l cho public. Hin nay trn th gii c rt nhiu tin ch FTP d dng nh CuteFTP etc... Ch : Bn c rng tt c cc nghi thc lin quan n Internet m chng ta tm hiu trong bn FAQ u kt thc bng t P (protocol). V nh bn thy, th tc no cng u lin quan n vic truyn ti file (upload v download). Cc lnh v cch s dng Telnet Lnh

Trang 7

VIETBOOKS cd ...chuyn th mc ls hoc dir ...list cc file trong th mc hin thi get ...download file xung my bn ls ...list file (Unix) cdup ...chuyn n th mc m put ...upload file lnt my ch th mc hin thi quit .....ngt kt ni v thot help list cc lnh.

SMTP l g v cch hot ng. SMTP l vit tt ca Simple Message Transfer Protocol. SMTP l mt nghi thc ca Internet dng gi th. Khi dng SMTP gi th, bn thng phi dng mt chng trnh Sendmail(Sendmail Deamon). C th tc khc gi l QMail nhng thng thng Sendmail vn ph bin hn c mc d Sendmaili l mt nghi thc gi th rt ko an ton. Chng trnh sendmail c cng mc nh l 25, cng ny m i my khch kt ni vo gi th. SMTP c th b k xu li dng dng vo mc ch ko tt v SMTP ko dng h thng kim tra ngi dng. Bn ch cn kt ni vo server v a ra a ch ni dung th l th oc gi i ko cn bit bn l ai. Hin trn th gii c rt nhiu SMTP server, bn c th dng google tm nhng server ny. Tuy nhin bn vn c th khm ph ra bc th bn nhn c l tht hay gi bng cch ch cn nhn vo header ca th . Pop 3 l g v cch hot ng Pop 3 l vit tt ca Post Office Protocol, s 3 l s phin bn mi hn ca POP. n gin nghi thc ny dng nhn th t POP3 server. Khi kt ni nhn th bng Outlook, Eudora hay cc chng trnh e-mail khc gi th, trc tin chung trnh s kt ni n POP3 server, server ny thung i kt ni cng mc nh l 110. Bn nn ch l POP3 email khc vi Web email, i vi POP3 bn c th telnet vo server check th trong khi vi Webmail th bn phi vo hn trang web check(v d Hotmail). Web email thng l chm hn so vi POP3 email. POP3 l mt nghi thc d hc nht trong cc nghi thc, i khi kin thc POP3 c th c lc hu dng. V d khi bn b bomb-mail chng hn, bn c th telnet vo POP3 server v xo nhng bomb th i m ko phi ti chng xung my bn. ----EOF---

Trang 8