_____________________________________________ / \ | ___________________________________ | | | | | | | | | | | | | | | | | | | | | _________| | | | | | / \ | | | | / \ | | | | / \ | | | |__________/ \__________| | | / | \ | | / | \ | | / | \ | | /______________|______________\ | | | | Computer Academic Underground | | | | Electronic Magazine | | #0012 | | 1015.97 | \ _____________________________________________ / ############################################################################## %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% ============================================================================== ------------------------------------------------------------------------------ .............................................................................. Table of Contents Foreward I)ruid General Member Listing 817 2600 Meeting I)ruid The Hatters Manifesto MrMadness Modular Website Design I)ruid How Big Brother Watches Us broken- Hacking GTE CyberCenters I)ruid Phreaking Tricking SprintConf I)ruid Closing I)ruid ############################################################################## Foreward Kinda ironic, in last zine's Forward, I stated that we weren't one of those groups that puts out a few zines and then gives up. And then we didn't put out an issue for a couple months and it seemed as if we had given up. No, we did not give up, the hard drive on the CAU server crashed and burned. I lost the entire website, which I am now rebuilding from scratch, all the previous zines (which I was happy to find out that yes, people actually read them and had them on their personal machines so I could get them back), and a LOT of my own source code. Don't worry, it set us back a bit, but i'm planning a BIG release of some high-tech security tools and applicatons soon, such as a unix port of PageIt! (the old app i wrote for the DOS platform) and a few others which I will not mention here. Also, CAU has a new domain: caughq.org. Our website can be found at www.caughq.org. I will be re-designing the CAU local area network to allow us to code/test our applications before release and make a better general learning area for us as well as our associates. We also now control cau.net, which I am using basically for the CAU Global Network, by assigning hostnames in the cau.net domain to anyone that has a static IP and wants to join the CAU Network. Resistance is futile, you will be assimilated... Check the website for infoz on how to join. Also in the news, a member of The CAU has been arrested and is being accused of a lot of bullshit. He was raided by local police, and a few people from the local scene have been interrigated, and a lot of shit has gone down since you have last heard from us. But no, a simple raid or arrest will not make the CAU disband, it will NOT shut us up, we are here to stay, and they will have to cut off all my fingers if they want me to stop producing this zine, for hackers, by hackers. And if they do (in their biggotist governmental way) find a way to cut off all my fingers, they will have to cut out my tounge because I can garuntee that I will NOT shut up about it. The Fort Worth Star Telegram has put out 5 articles so far on this case, as well as the Dallas Morning News. Hopefully it'll go national, although probably not, and we can open some people's eyes to the facts. Now that I've stated my opinion on the whole thing, here's what acually happened: Flash Net Internet Service Provider in Ft. Worth got hacked. No credit card files were taken, no login or password files were taken, the only thing changed was the web page. A hat was put on the flash net logo, a big, poofy, Dr. Seuss hat. That and the phraze "All we got to say is, We got HATS now!" No profanity. No sexually explicit graphics. The remainder of their main webpage was left untouched (you can view this without the niphty graphics at: http://www.flash.net/index2.html and if we can get ahold of the graphics again, a reproduction of the page will appear on the CAU website), and the person that did this is facing a possible 2 to 10 year prison sentence and a fine of up to $10,000. Now if YOU think that 2 to 10 is COMPLETELY AND OUTRAGIOUSLY ABSURD for putting a Hat on a logo on a webpage (misdemeanor graffiti), then you share the same opinion as a LOT of people, but not the same opinion as Flash Net and the Authorities. I urge EVERYONE to call The Fort Worth Star Telegram at 817.390.7400 and express your opinion and donate to the defense fund, or call Flash Net at 817.332.8883 or 817.332.8863 and tell them that they suck a big fatty. Anyway, that's all for this month, so I'll get off my soap box now and continue to compile this zine. I)ruid [ EDITOR'S NOTE: After writing the forward, I found out that the charge has been upped to a second degree felony at $35,000 and 10 to 20 years in prison. Now if you don't find that completely absurd, stop reading this and burn your computer right now, because you don't deserve one. ] ############################################################################## General %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% Member Listing Handle IRC Nick E-Mail -------------------------------------------------------------- I)ruid I}ruid druid@caughq.org uv uv_ uv_817@hotmail.com Crimson Assassin Crimson_A crimson@caughq.org Fizban Fizban^ fizban_cau@hotmail.com int3l int3l int3l@caughq.org Sublime sublime sublime@caughq.org -------------------------------------------------------------- %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% 817 2600 Meeting First Friday of Every Month 6:00pm until 9:00pm Cafe Cybre 481 Harwood Road Hurst, Texas Phone: METRO: 817.268.0060 So Be There!! I)ruid %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% The Hatters Manifesto Another hat got worn today, it's all over the papers. "Teenager Lives Life in a Fish Bowl", "Second Hacker Arrested in Hat Hacking".... damn kids. They're all alike. But did you, in yo' three piece suit, and $20.00 shoes, ever take a look at whats behind the hat? Did you ever wonder what made his ass tick? What hoes chapeau'd him, what molded him? I have a hat, enter my world... Mine is a world that begins with horton hears a who and the cat in the hat... I'm smarter than most of the other 5th graders, this niggah can read about hozzels and dweezits.... damn underacheiver, they're all alike. I'm either high or real high. I've listened to mo'fuqahs explain for the fifteenth time how to cut a crackrock. I understand it. "No Mr Smith, i didn't shoot it up, I ate it." Damn kid... probably snorted it. They're all alike. I made a discovery today: I got some hats now. Wait a second, this is cool. It does what I want it to. If it falls off, its because I fell, not because it doesn't like me, or feels sweated on by me, or thinks i'm a smart ass, or doesn't like preaching and shouldn't be here... damn kid... all he does is want to wear pants... they're all alike. And then it happened... a door opened to a world... rushing to my head like heroin through an addict's veins, an electric pulse is sent out. A refuge from the day-to-day incompetencies is sought... A hat is found. This is it... this is where it belongs. I know everything here... even if i've never worn them, never played with them, may never wear them again... I know it all... Damn kid. Taking the hats again. They're all alike.. you bet yo mo'fuqn ass wez all alike... We've been spoon fed with baseball caps when we hungered for big hats... The bits of the hats you did let slip through were stanky and nasty. We've been dominated by anti-hatness, or ignored by the apathetic. The few that had something to wear found us wearing pupils, but those are few like hats on a sad sad day... This is my hat now... The hat with the stripes and the dots, the booty of the broad. We make use of apparrel already existing without paying for what could be dirt-cheap if it wasn't run by profiteering gluttons, and you call us niggahs. We explore... and you call us niggahs, we exist without skin color, without nationality, without religious bias... and you call us niggahs. You build atomic bombs, you wage wars, you murder, cheat, and lie to us and try to make us believe it's for our own good, yet we's niggahs. Yes, I am a niggah. My crime is that of being different. My crime is that of judging people by the kind of hat they wear, not what they act like. My crime is that of outsmarting you, something you will never forgive me for. We got some hats now, and that is something you will never forgive us for. You may get my hat, but you can't get them all... after all, theyz all alike... MrMadness %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% This is a reprint of an article from CScene #3 : http://www.ccs.neu.edu/home/cloder/cscene/ ------------------------------------------------------------------------------ Modular Website Design Using CGI First of all, i would like to state that this is more of a design article rather than an article about C, even though all code used in this website system was coded by myself in C. I won't necessarily go into code unless there is a specific reason, and if your not familiar with basic CGI, i would suggest reading the article "CGI Tutorial" by Brent York in Cscene #2, and also the book "CGI Programming on the world wide web" by O'Reilly & Associates, Inc. To start off, let me explain the theory behind this websystem. The general idea is to minimize the size of the entire website so that it takes up as little space as possible, while also making global changes to the entire website possible with minimal effort. I have seen some systems that were similar, but none really did exactly what I wanted to do. The way I designed this system was to have a central CGI that runs the entire site. What this CGI does is simply check to see what it's name is, then based on it's name, grab chunks of html from given directories. The directory structure I use is: /www/cgi-bin/headers/ /www/cgi-bin/breakers/ /www/cgi-bin/html/ /www/cgi-bin/footers/ In each of these directories there is a file simply named "default". Now I'm getting a little ahead of myself. First of all, we have the main CGI that grabs chunks of html, puts them together, and sends them via printf() to the webserver. I chose to name my engine "webit". Let's say that I want to create my main index page. I would create a link to webit called "index". Now for the main index page, you obviously have to set up your server to use the CGI as the default index and not look for index.html. My system only uses document root for such things as maybe an images directory or a files directory; ALL of the html is stored in chunks in the cgi-bin directory. If you do not know how to ScriptAlias your server to use a CGI as the default index page rather than index.html, I suggest you read the helpfile or FAQ for your webserver. Ok, so now we have our server pointing to /cgi-bin/index as the default index page. Let me explain what index is and does. /cgi-bin/index, as I have said before is a link to webit. When the server executes /cgi-bin/index, the first thing it does is check it's name ( argv[0] == "index" ). The first thing it outputs is the Content-Type line (once again, refer to CGI Tutorial in Cscene #2), and then looks at the /www/cgi-bin/headers/ directory. If there is a file that matches it's name (in this case, "index" ), the webit engine will grab that file and send it to stdout. If there is not a file that matches its name, it grabs the file called "default" and sends it to stdout. If "default" does not exist, a hardcoded version is sent to stdout. Here is a quick example of how to do this: sprintf( deffilename, "/www/cgi-bin/headers/default" ); sprintf( filename, "/www/cgi-bin/headers/%s", argv[0] ); spew_file( deffilename, filename ) Repeat the above for the headers dir, breakers, html, breakers again and then the footers dir. spew_file() consists of something like this: spew_file( char *def, char *filename ) { FILE *f1; char buffer[1024]; if( access( filename, 0 ) == 0 ) { f1 = fopen( filename, "r" ); while( fgets( buffer, sizeof(buffer), f1 ) != NULL ) printf( "%s", buffer ); fclose( f1 ); } else { if( access( deffilename, 0 ) == 0 ) { f1 = fopen( filename, "r" ); while( fgets( buffer, sizeof(buffer), f1 ) != NULL ) printf( "%s", buffer ); fclose( f1 ); } else { /* hardcode some html here... (: */ } } } You get the idea... This process is repeated for /www/cgi-bin/breakers/, then the /www/cgi-bin/html/ directory, then /www/cgi-bin/breakers/, and then the /www/cgi-bin/footers/ directory. By now you should be getting the general idea. Normally all pages on the site should use the default files in headers, breakers, and footers, unless you want that specific page to have it's own uniqe headers and footers, or for instance a page that is simply some frameset calls, in which you would want empty files for the headers, footers, etc. What this allows is on-the-fly building of each individual page as the user requests it. Let's say 40 people are accessing your website, and you decide you don't like the background color. Simply edit /www/cgi-bin/headers/default (where the
stuff would be), and change the background color. Instantly after saving the new version of that file, EVERYONE that accesses a page would recieve a page with the new background color. Also, this minimizes the size of the website, by eliminating the header and footer html from each individual page, and putting it in one place. Links to the engine cgi also allows for use of the same cgi engine over and over (saving space), yet having it react differently based on the link's name. Here's a quick breakdown of generally what I like to include in the default files: /www/cgi-bin/headers/default : The Open HTML tag