_______________________________________________ / \ | ___________________________________ | | | | | | | | | | | | | | | | | | | | | _________| | | | | | / \ | | | | / \ | | | | / \ | | | |__________/ \__________| | | / \ | | / | \ | | / | \ | | /______________|______________\ | | | | Computer Anarchist Underground | | ZiNe #0004 | \ _______________________________________________ / oNe-ZeRo<>NiNe-SiX Editor: I)ruid -===================================- Table of Contents GENERAL SHIT A /msg From sk42b Big Brother and Radio Shack HACKING Hacking Domino's Pizza 8i7.633.XXXX PHREAKING How to Raid a Bell Truck CAU STUFFZ PaK CoNTeNTZ File Listing CAU BBS List & Memberz List -- GENERAL SHIT -- -=-=-=-=-=-=-=-=-=-=-=-=-=- Encryption and the Internet -=-=-=-=-=-=-=-=-=-=-=-=-=- At some point or another, we have all used a form of encryption for some purpose. I don't know about other people, but in general I don't like people snooping around my files so I usually have at least some form of protection going on. The thing is, when it comes to the open architecture of the inter- net, what am I supposed to do? When you realize the potential threat this architecture creates to sensi- tive data, you start to get paranoid. I am sometimes sending out various items of questionable content to different locations on the internet through my (now unmarked) e-mail account, and I don't want others to browse those letters. For years, there have been several different encryption programs developed in order to solve this problem. Some are better than others, but you can never really tell. That is, until I did a little research into some WWW sites (listed in the References at the end)... I was aware of programs that could crack the various "baby" encryption used by programs like Microsoft Word and Quicken, simple deturrants and nothing more. But I also found some interesting cracks for other encryption, such as the PKZIP 2.04g scrambler encryption (which I had always figured was at least semi-decent). Now my internet transactions have ground to a halt. I don't trust anything anymore to just any old encryption program. I don't even trust myself to try and write encryption software. The point is, somebody out there will break it. Period. Before, I just used the internet without care, I sent every- thing from my legal and quite traceable e-mail account. Now I hardly use my illegitimate and untraceable e-mail account. Nothing will keep my data safe. Nothing. I came to the point where, for a split second, I feared the internet. It was too open, too insecure. Then I came back to my senses. Public-key encryption was the answer. I find it relieving that in the era of "who watches the watchers," there is hope for some privacy on the internet and my e-mail will be safe. Personally I prefer PGP, but there are other public-key encryption schemes that will work too. You could even write your own and not worry too much about it. The problem with older, pass-key encryption is that one word will get you in. You don't even have to have sophisticated software if you're good at guessing passwords. Not to mention that if you needed to use pass-key encryption for transmission purposes, you needed a secure channel to transmit the password. But, if you already have a secure line to transmit the pass- word, why would you need to encrypt the data? Public-key encryption works directly because of its openness. You can give out your public key to anyone without worry. You can use your private key to encrypt and they your public to decrypt, or conversely they can use your public key to encrypt and you your private to decrypt (the latter is the more useful, I believe). You don't need a secure channel. You don't even need to have talked previous to the transaction. Plain. Simple. Secure. Although I harped on the internet being such a great tool for the masses in my previous column, we have to be aware of both its strengths and weak- nesses; otherwise we are asking for trouble. Be careful with your data and have fun. References: Access Data http://www.accessdata.com/ Archives http://www.primenet.com/~cracked/archives.html Beware of Snake Oil http://www.math.ucla.edu/pgp/volume1/BewareofSnakeOil.html Bokler's Guide to "CRACKER" Software http://www.bokler.com/bokler/bsw_crak.html Crak Software http://www.indirect.com/www/johnk/ Scion Kai [TTC] -===================================- Has Big Brother Wormed It's Way Into Radio Shack? About a year ago I was planning on putting a few boxes together since I was new to hack/phreak society. A friend and I were going to get some food when we passed by a Radio Shack. I told him to stop so I could pick up afew things. After I finished examining the place, I approached the register to ask for what I intended to get. He pulled both models of tone dialers they kept in stock out of the display case and put new batteries in them. As I was playing with them, he started a game of twenty questions. "Have you ever had one of these?" he asked. "Yes" I said so he wouldn't bother me. "What happened to it?" "It broke." "How did it break?" "I don't remember." "Did you drop it?" "Yeah." "What did you use it for?" "They're just convienient." After I was finished I asked about 6.5536Mhz crystals. He started to check the computer then asked "What do you need it for?" "I don't know." "Are you going to put it in the dialer?" "I don't know, if I need to." "What's it do?" "I don't know I guess it makes it sound better." "Yeah, we've got them bu I'll have to check with the manager first." He took me to the back room where the manager was and asked about the crystal. "What's he need it for?" the manager asked. "It's supposed to make the tone dialer clearer, isn't that right?" the other guy asked. "Yeah I guess, I'm not good at this technical stuff." I said The manager stared at me for a while then said "Okay let me check on it." He went over to the big fat radio shack unlimited catalog set and looked through them one by one. "Nope we don't have them." "Well the computer said you can order them." I said. "If its not in the catalog we don't sell it." He said sounding kind of angry. "It is in the catalog, I've got a copy at home and my friends said I could get them here." I said. "We can't sell you one because we don't carry them." He sounded madder this time. "I know you don't carry them, but you can order them." I said. "Now we don't, I'm sorry we can't sell you one." He sounded really mad this time. I sat the tone dialer on the counter and said "Fuck you, I'll do my shopping at a store were the employees aren't ass-holes." and walked out. A few weeks later I went to a different Radio Shack and asked about the crystal. "We don't have them, but we can order them." the salesperson said. "Cool." "What do you need it for?" "They're just good to have around." He picked up the phone and started to dial. "What's your name and phone number?" "I'd prefer not to give out that information." "Then I can't help you, sorry." I left Radio Shack in a bad mood once again. The point is somewhere, someone got a hold of some information, and is watching for would be law breakers. Big Brother is watching us and keeps getting smarter anb more aware of what's going on. At least we still have the right to think freely. Canteen Boy -- HACKING -- Hacking Domino's Pizza Well, first I must give credit to Crimson Assassin for first finding the dial-up to a Domino's branch store in the first place, therefore starting my entire facination with the way Domino's Pizza handles it's computers and routes it's orders. First I would like to explain for those that don't know about Domino's Pizza (we are distributing world-wide now) just what exactly Domino's Pizza is. It's a pizza place that delivers. The beauty of the Domino's system versus other systems is that Domino's is more like a network, whereas other stores you have to call the indivdual store for your area. Not with the Domino's system. With the Domino's system, they have a main dial in phone number for taking orders. I'm not sure how big of an area each main dial in covers, but it's not big enough to be regional, but it's not small enough to be for a single city. That is irrellovent right now, as we will be talking about the Dallas/Ft. Worth Metroplex Domino's Pizza System (DFWMDPS). The way Domino's is set up, is that when you want to order a pizza, you simply call their one phone number. This number is the same for the entire area that the dial-in covers. Once an operator at the Calling Center (undone used to be a Domino's Operator (DO) that worked at our area's Calling Center) takes your call from the queue of calls that come into their mass of telephone lines that all ring down from the main line, the DO simply asks for your phone number. You tell him or her, and the DO keys your information into their terminal. Bingo. They (if you are already on file) have your address, name, and all other neat information on your "Domino's History." What does this tell us? It tells us that they have a main database of customers at the DO's disposal. (mental note) What then happens is the DO procedes to take your order. But wait you say... this DO is simply one person in an office building of DO's taking calls from a queue of calls. If you've ever driven by a Domino's Pizza, it is obvious that there is no room in the store for a bunch of DO's to answer the phone, yet the store closest to you is the store that actually brings the pizza to your doorstep. How does this branch store know that you ordered a pizza? Bingo: we have a network in action. What happens is the main computer at the Calling Center queue's orders outbound for a single store. At regular intervals, the Calling Center dials up to the local store, and transfers the order information. Now the branch store knows that you ordered a pizza, procedes to make the pizza, and delivers the pizza, provided you have the ammount of money that is required. But how does the branch store know what you are being charged, since you talked to a DO at the Calling Center, and possibly informed them that you had a coupon, account credit or other balance due modifier? That information is also transfered with your order information. Now, for a brief recap. We know that the Calling Center has the main computer. We know that it calls other computers at the individual branch stores, which tells us that WE can also dial up these stores. The account information goes both ways, (logicly, if the pizza delivery was late they can only put this information into their local computer, and thus it would have to send the information BACK to the Calling Center computer) so either it recieves information via dialup at the Calling Center or simply transfers it when the Calling Center calls the Branch. How it sends the information back is irrelevant, all we care right now is that it sends the information back. SO. If we can dial the local store, change information, and the local store will send our modified information back to the Calling Center to update their database, what does this tell us? This tells us that if we can get inside their system, we can give ourselves credit, and there- fore we can order pizza and have it paid for by imaginary credit. The fact that at this time we do not know HOW the branch sends information back to the calling center means that we do not know WHEN the branch sends the information back... It may be once a day via dialup, or every time it connects. We don't know. Since we don't know this, we must allow plenty of time for our changes to be transfered and spread throughout the Domino's Customer Database (DCD). Now that we know all this, one problem remains: We don't have any of the phone numbers for the branches yet. One way to overcome this is to simply scan (via ToneLoc, THC Scan, or whatever) the prefix closest to you. During my scans of the 817 area code, so far I have found one Domino's Branch dialup per major prefix, and all the logins are the same. I will leave finding your local store's dialup and it's logins to you. (: Okay. Let's say you found your dialup and miraculously hacked your way in. The Domino's Branch dialups in my area run SCO Unix V/386 Version 3.2... BUT they have a handy-dandy user-friendly menu interface. This made navigating their system extremely easy, especially when one of the main menu choices is Customer Maintainance. Simply go to Customer Maintainence and create a new account, modify an old one, or delete an account if you wish. Now, how do we get free pizza out of this? EASY! First, we go into the Customer Maintainance menu, find our account (you will only have an account if you have ordered Domino's Pizza before and this REALLY IS the store that the Calling Center routes your orders to) and modify our account. You can find out exactly which store you are dialing into by going to the Store Information selection from the main menu, NOT the Store Activity selection. What I like to do is (only ONCE per account, mind you) edit the late and bad order fields. I give myself two late orders and 1 bad order, and then give myself $20 credit or so. This is much more convincing if you call and ask how much a Large Pizza costs with tax and everything, and then give yourself that much credit. It's more convincing because of what we do next. Next, we call the Calling Center (after giving our changes ample time to take effect by spreading throughout the DCD) and proceed to order say, a single large pizza (or whatever you gave yourself credit for). Proceed to order your pizza normally, but near the end, start talking to the DO. Tell him or her how you were'nt planning on ordering from Domino's again, because of what happened last time. Tell them what happened last time: your pizza was late, AND IT WAS THE WRONG PIZZA!!! And on top of that, the pizza you ordered the time before that was late also! The DO may be wondering by this time that if that much went wrong, why you ARE ordering from them again? This is where the credit comes in. Tell him or her that the only reason you are ordering from them again is because you are really hungry and that when you called their complaint line (it helps to actually /HAVE/ their complaint line phone number handy) they said that they would credit your account for the order that was wrong last time (one large pizza or so) and that your next order will be free. The DO, not believing this at first, will then check his or her terminal to bring up the status on your account. Now, if you have given your changes enough time to take effect, your story will match the DO's information: 1 bad order, 2 late orders, and credit for whatever "they messed up on" last time. If it's one thing Domino's dosn't like, it's not being up to the customer's expectations. The DO will be happy to apply your credit to this order, and your order will arrive around 30-45 minutes later, free of charge. Like I said before, using that method to gain free pizza usually only works once per account, and you can only have one account per phone number. So, I'll leave it up to you to come up with new and inventive ways to gain free pizza through the Domino's Customer Database. Another method is to bypass the Calling Center alltogether and make the Branch think that the Calling Center has sent it an order. You can do this by going into the main menu selection called Orders. This section will allow you to simply put in an order for the area covered by the Branch, just like the Calling Center would when it calls the Branch. This method is a little more risky, since it would offset the Branch's records and the Calling Center's records, therefore possibly making someone suspicous as to possible intruders in the system. This may cause your access to the Branch to be severed. I would also like to hear any methods you come up with to gain free pizza, and I am always open to comments and suggestions via e-mail. My e-mail address is: druid@micro.psyberlink.net or you can catch me on IRC on the EFnet in either #817 or CAU. I)ruid -===================================- 817.633.XXXX Scanned by: I)ruid 633-3943 633-6275 633-1300 633-4171 633-6278 633-4561 633-6690 633-2294 633-4742 633-6138 633-1789 633-2736 633-2765 633-4595 633-3161 633-6349 633-5090 633-3444 633-2780 633-1018 633-7727 633-4325 633-4392 633-1488 633-1072 633-4894 633-3324 633-7218 633-2174 633-6786 633-6903 633-7040 633-8899 633-4761 633-2316 633-2942 633-4020 633-7109 633-1643 633-1366 633-5094 633-1888 633-8083 633-7502 633-3971 633-5655 633-3792 633-6225 633-4042 633-4923 633-1627 633-1657 633-4792 633-3180 633-5277 633-5593 633-3126 633-3492 633-6542 633-4890 633-1352 633-5102 633-3256 633-5728 633-6936 633-8424 633-6802 633-7764 633-4184 633-2612 633-3236 633-1385 633-3495 633-3096 633-8221 633-8641 633-5687 633-4255 633-1453 633-7213 633-3224 633-1858 633-2563 633-4403 633-3262 633-2298 633-3512 633-1391 633-4932 633-4088 633-9297 633-3450 633-6312 633-6720 633-6504 633-4790 633-3425 633-3343 633-1308 633-0357 633-5741 633-7259 633-6203 633-5714 633-3932 633-4926 633-7122 633-3892 633-2315 633-3765 633-4134 633-5831 633-5201 633-1702 633-6276 633-3682 633-4523 633-8273 633-4058 633-5370 633-3023 633-3135 633-4351 633-3203 633-3284 633-1329 633-5276 633-6956 633-7039 633-4606 633-1570 633-9180 633-4089 633-4896 633-0325 633-6745 633-7521 633-1407 633-3693 633-5293 633-1071 633-3209 633-3312 633-6137 633-1151 633-6338 633-8045 633-6331 633-2233 633-8277 633-6258 633-2946 633-6277 633-1903 633-5382 633-5508 633-6624 633-7160 633-8536 633-7533 633-4219 633-1523 633-2025 633-1706 633-6844 633-4971 633-1819 633-3601 633-1330 633-1383 633-1889 633-4628 633-3449 633-6687 633-2409 633-2970 633-2524 633-7856 633-5659 633-4805 633-2295 633-7267 633-4672 633-3424 633-1823 633-4229 633-2308 633-7595 633-3655 633-4695 633-5361 633-5732 633-3319 633-4425 633-6813 633-2216 633-3277 633-5208 633-3886 633-3926 633-4937 633-7792 633-5964 633-1885 633-8569 633-4689 Sorry no descriptions this tyme, but I didn't have time to go through them all... - I)ruid -- PHREAKING -- How to Raid a Bell Truck So, who else here is tired of the limits of beige boxing(no stored numbers, no speakerphone(at least, not if you don't wanna carry around a HUGE phone), and, of course, that nasty little shock you get when you don't have insulated alligator clips.)? Who here wants more tools to add to their phreaker's bag/pack/case/whatever-you-carry-your-shit-in? Who here wants to have the perfect item for the phreak who has everything, a SWB Helment? Who here just has a pure hatred for Ol' Ma Bell and will do anything the fuck her over?(Well, maybe that's a little too much...) Well, if you answered "HELL YEA!" to any one of those questions, then this artical can help you out. It gives general advice for the novice and real important things even many experienced phreaks don't know. First let's examine the Bell truck(If your area has more Grey Whales, this section is not needed.) SWB Truck.. d""^"^"^b $ area x $ $ $---wheels d""^""$""^"^b $ 1a $ 1b $ $ $ $ $"^""^"$"^""^"$ $ $ $ $ 2a $ 2b $ $ $ $----wheels $"^"S^"^"^S"^"$ 3a---$ $ $ $---3b `"^""^|"^"^"' `--- 3c Now, a quick guide to what is generally is these areas... 1a. This is where the manuals are kept.. along with other papers and such... 1b. This is small parts, wall jacks, nothing really big.. 2a. This has become a question mark to us. What I saw was an area divided into 4 sections and each section holding diffrent parts, one held washers, one held modular jacks, one held screws, ect... Good if you are a lover of the hardware, but not worth much else. PS, Lots of wire... 2b. See 2a, only the 4 sections held different things. 3a. This is where actual tools, but not important tools, are kept. Can also be a personal compartment for the Lineman, depending on how strictly they stick to regulations. Sometimes, but only sometimes, can manuals be found in here. 3b. This is THE area for the first-timer. This is where the tool-belts with the real goodys are. This is where you will find the LineMans Buttset. Also, if you don't panic and run away yelling "START THE CAR!!" after you grab the first thing, people are more curious then. then other toys are there too. These include conductive pick-ups(The look like yellow dildos from hell), tone generators(2" x 2" while boxes with a ring & tip and what looks like a phono jack), and SideKicks(They are always in black pouches labeled SideKick) There should be at least one tool belt, unless the LineMan is currntly using it, but don't think it's a sting set for you if there are more. 3c. This is an area i've seen open a lot when there working on installing lines, this includes bulk wire and other shit that are in packages together.. this can vary alot from truck to truck X. If you get here, I congragulate you personally. This area has whatever the lineman hasn't put up from the day(so it's at it's ripest around 6 p.m.) Also, this has the SWB Helment, good for some social engineering, showing off to the other phreaks, and for your beer(wash it first). Also, be sure to check behind the seats, under the seats/floormats, and the sunvisors for keys. This is the most usually locked area, so this is how you can usually get in... First, the vent is usually left open, if you can stick your hand down through it(it's easy), then you should be able to lower the window until you can either manually unlock it or (if your nimble) climb in it. and it can contain a variation of personal info including address books, wallets, and test numbers. Now, for some technique. The first thing to remember is, DON'T PANIC! NEVER EVER PANIC! The second is, if you are actually going to the Bell station to raid the truck, park your car or have your driver stay away from veiw of all windows. I know from trashing that they have/are/will be setting up cameras to stop us. (Yea right!) So, just don't look up and you'll be fine. The next point to remember is, leave everything exactly as it was(unless you are stealing the truck!) Take what you want, and take the time to close every compartment. You see, if Ed(a LineMan) walks out and sees his truck has every compartment open, he will shit his pants and have the cops looking for suspicios people in no time flat. However, if everything appears to be just as it was, it may take him another 30 minute to an hour to realize what happened, meaning you can be long gone! Finally, the most important thing, do not abuse this. There is such a thing as raiding too much. There is a difference between Robin Hooding from Ma Bell and just being an ass. Raid until you have what you need, then stop. Or do what I do, I still raid, but I only look around and gather information(good for social engineering, "Umm, this is Ed, I need a new Sidekick unit, my serial number is xxxxx.") and just raid for freinds(a good way to gain favors from people). _ Finally, Happy Raiding! |O|.-----------. __//'|hi, my name| (x x) / was ed. /' \|/(_) `~~~~~~~~~~' `--+--. dead line | /|\ man with | handset _/^\_ buried in brain. eLeCTRiC aNGST tHE fLAMING cARROT -- CAU STUFFZ -- PaK CoNTeNTZ Um.... okay, well here's a list of the files that /SHOULD/ be included in this pak... -=-=-=-=-=-=-=-=-=-=- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Texts: CMAG .DAT This File that you're reading... it's a CMAG file so reading it with a plain text editor would be fatal... heh. CMAG .TXT The Zine in plain text format for those that cannot run DOS executables, such as the Linux platform. I-Candy:PARANOR .ANS The Ad for the Board... HACKER .JPG .JPG file of a scanned newspaper article... kinda interesting... DOSExec:CMAG .EXE The Reader used to view this file. PARANOR .EXE Another Ad for the Board... pretty kewl... can you say "Hex Editor?" I knew you could... Misc: 817-633 .LOG A scan of the 817 prefix 633... it's mostly business this tyme... change of pace n shyt... 817-633 .DAT Just in case ya wanna look at it with TONEMAP.EXE that comes with ToneLoc... this is the scan of 633's .DAT file for ToneLoc. FILE_ID .DIZ Dizcription for the original .ZIP file. START .BAT For those Win95 people... -=-=-=-=-=-=-=-=-=-=- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- -===================================- The Official CAU BBS List for This Release * All BBSs on this list are OFFICAL distro sites for CAU * Name: Number: Sys: Reason: --------------------------------------------------------------------------- Cyber Culture 8i7.367.2554 Phaze Shift H/P board... --------------------------------------------------------------------------- Fetish 8i7.246.8313 Agent Orange --------------------------------------------------------------------------- Paranor 8i7.577.9434 I)ruid Metro Line, CAU GLoBaL HeaDQuaRTeRS, we just plain rawk.. --------------------------------------------------------------------------- Red Dawg 2o7.324.o287 Simon Distro board for CAU Regional distro For the North East U. States (Maine) --------------------------------------------------------------------------- =========================================================================== CAU Members as of This Release El Prezedent un Foundrs I)ruid - 817 Current Members Crimson Assassian - 817 Ultra Violet - 817 Fizban - 806 Seven - 817 Jacknife - 817 Hawkhaven - 817 -- ,o0S$S0o, ,o0S$S0o, $, ,$ $$$'`$$' $$' `$$$ $$o o$$ $$$ $' `$ $$$ $$$ $$$ $$$ $$$ $$$ $$$ ,o0$0' $$$ ,o0S$0$$$ $$$ $$$ `0$0o, $$$ $, $$$' `$$$ $$$ $$$ $$$,,$$o, $$$, ,$$$ $$$,,$$$ `0S$S0' `0S$S0$$, `0SS0' -= Terr0rizing Da 817 =-