Re: [Ilugc] Breaking blocked access in my office
Friends, The OP wants a how-to document on cracking the corporate security systems. we are not going to provide any assistance on this. He is not willing to hear advices and suggestions. :-) Shall we stop here? Thanks. -- Regards, T.Shrinivasan My experiences with Linux are here http://goinggnu.wordpress.com For Free and Open Source Jobs http://fossjobs.in ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Thu, Jun 10, 2010 at 11:20, Kenneth Gonsalves law...@thenilgiris.com wrote: there is no such thing as ethical hacking - which is a term invented by one of the biggest conmen in the Indian software scene for the sole purpose of promoting himself. There is hacking - which we do. And cracking which we frown upon. +1 That pretty much sums up the thoughts of most us on the term 'ethical hacking'. -- Salvadesswaran Srinivasan Chennai ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
Organizations don't arbitrarily create rules. They are made because of 1) govt compliance regulations, 2) IT security policies enforced by their customers, and 3) industry best practices. Not necessarily so. In India they are created out of ignorance or arrogance on the part of network admins. See this: http://www.s-anand.net/blog/you-are-in-prison/ especially the info-graphic at the end. *But i don't recommend breaking the rule, of course. It will violate the agreement signed.* -- அகிலன்(Akilan R) (http://www.coding-aviator.blogspot.com) I should have no use for a paradise in which I should be deprived of the right to prefer hell. --Jean Rostand ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Thursday 10 June 2010 11:50:49 Akilan R wrote: Organizations don't arbitrarily create rules. They are made because of 1) govt compliance regulations, 2) IT security policies enforced by their customers, and 3) industry best practices. Not necessarily so. In India they are created out of ignorance or arrogance on the part of network admins. See this: for example when I joined NRC-FOSS, everything was blocked except email and web browsing - no ssh, no IRC, no svn over http. And this is a research institute with a strong FOSS component! -- regards kg http://livejournal.com/lawgon ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Thu, Jun 10, 2010 at 12:37 PM, Kenneth Gonsalves law...@thenilgiris.comwrote: On Thursday 10 June 2010 11:50:49 Akilan R wrote: Organizations don't arbitrarily create rules. They are made because of 1) govt compliance regulations, 2) IT security policies enforced by their customers, and 3) industry best practices. Not necessarily so. In India they are created out of ignorance or arrogance on the part of network admins. See this: for example when I joined NRC-FOSS, everything was blocked except email and web browsing - no ssh, no IRC, no svn over http. And this is a research institute with a strong FOSS component! @OP this is what happen to most of us. in a academic or corporate institution. this doesnot mean we should try to crack their network infrastructure. if you really want a open Internet connection then buy a PDA or a data card. use your own private Internet connection and if you want to learn then get your own infrastructure or join such institution which provide such courses... OMG.. OP is using his company email id.. :o You are probably not reading the email properly. I have NO access to any kind of email, what were you thinking when you said that? i mean to say that if you are the person who want to learn all this stuff and do it against that institution then you shouldn't have used the institution's email ID.. this will reveal not only your identity.. but the company in which you are working, that could be a threat to you as well as your company too, do what ever to yourself, no one will say anything... but to the company.. they never gonna spare you for that.. ethical hacking: this term is rather oxymoron.. hacking is never illegal.. cracking is.. -- regards kg http://livejournal.com/lawgon ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc -- idlecool ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
*pedant prick alert* On 06/10/2010 02:35 PM, Shiv Deepak wrote: ethical hacking: this term is rather oxymoron.. hacking is never illegal.. cracking is.. Actually it is a tautology http://www.google.com/search?q=define%3Atautology oxymoron is when two terms are contradictory, http://www.google.com/search?q=define%3Aonxymoron for example: 'unlawful hacking' or 'ethical cracking' (which, incidentally the OP wants us to believe is all that he was wanting to /learn/) cheers, - steve -- random spiel: http://lonetwin.net/ what i'm stumbling into: http://lonetwin.stumbleupon.com/ ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
[Ilugc] Breaking blocked access in my office
Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Here is the scenario. I cannot access any email sites, IM sites, entertainment sites from my office. The setup as far as I understood is that all traffic from the local systems are being tunneled through a proxy server. I tried using various methods to access websites IM sites like anonymous proxy servers few other ways. But what I found was that no matter what, I don't seem to be able to access any of the mail/IM sites. Just then I tried Firefox add-on sameplace [xmpp] which was little complicated to set up as it had few dependencies the only thing that works for me now in gtalk. All the other Firefox addons like gtalksidebar, meebo, etc failed. Certainly, they aren’t blocking talk.google.com since any addon trying to connect to gtalk connects to talk.google.com. Few doubts on my mind now are: * Is there a way to direct http traffic over xmpp? * How do I know if they are blocking it via ports? * I would like you guys to guess the rule or setup they have to monitor or block traffic. For all those guys having the same problem, I am currently able to use gmail/rediffmail/yahoomail via http://www.noblewebs.com/postbox/ as mentioned above, gtalk via sameplace firefox addon. Regards N Deepak. This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Here is the scenario. I cannot access any email sites, IM sites, entertainment sites from my office. The setup as far as I understood is that all traffic from the local systems are being tunneled through a proxy server. I tried using various methods to access websites IM sites like anonymous proxy servers few other ways. But what I found was that no matter what, I don't seem to be able to access any of the mail/IM sites. Just then I tried Firefox add-on sameplace [xmpp] which was little complicated to set up as it had few dependencies the only thing that works for me now in gtalk. All the other Firefox addons like gtalksidebar, meebo, etc failed. Certainly, they aren’t blocking talk.google.com since any addon trying to connect to gtalk connects to talk.google.com. Seriously, if it blocked the sys admins should have a reason to. The reason is certainly not for us to work around it. If you think they are insane in setting some restrictions, take it up with them. Looking for ways to tunnel only makes your position more complicated. Abishek Goda ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
RE: [Ilugc] Breaking blocked access in my office
Seriously, if it blocked the sys admins should have a reason to. It makes sense for them to block it as there are few other secure projects running from the same location. And I guess it's the same issue with every corporate office. Having said that, I still want to understand the setup they have break it for my own communication purposes. _ N Deepak P This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
This is a non-technical dispute and working around it is likely a contract violation and you can terminated for doing so. Regardless of the feasibility of such solutions, I would have to ask you and everyone to refrain from this path. Posting about this in a public mailing list with archives is a bad idea as well. +1 Just what I did not add, but should have. Abishek ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 2:05 PM, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: OMG.. OP is using his company email id.. :o Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Here is the scenario. I cannot access any email sites, IM sites, entertainment sites from my office. The setup as far as I understood is that all traffic from the local systems are being tunneled through a proxy server. I tried using various methods to access websites IM sites like anonymous proxy servers few other ways. But what I found was that no matter what, I don't seem to be able to access any of the mail/IM sites. Just then I tried Firefox add-on sameplace [xmpp] which was little complicated to set up as it had few dependencies the only thing that works for me now in gtalk. All the other Firefox addons like gtalksidebar, meebo, etc failed. Certainly, they aren’t blocking talk.google.com since any addon trying to connect to gtalk connects to talk.google.com. Few doubts on my mind now are: * Is there a way to direct http traffic over xmpp? * How do I know if they are blocking it via ports? * I would like you guys to guess the rule or setup they have to monitor or block traffic. For all those guys having the same problem, I am currently able to use gmail/rediffmail/yahoomail via http://www.noblewebs.com/postbox/ as mentioned above, gtalk via sameplace firefox addon. Regards N Deepak. This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc -- idlecool ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
RE: [Ilugc] Breaking blocked access in my office
-Original Message- From: ilugc-boun...@ae.iitm.ac.in [mailto:ilugc-boun...@ae.iitm.ac.in] On Behalf Of Pothuraju, Naga Deepak Sent: Wednesday, June 09, 2010 2:17 PM To: ILUG-C Subject: RE: [Ilugc] Breaking blocked access in my office Seriously, if it blocked the sys admins should have a reason to. It makes sense for them to block it as there are few other secure projects running from the same location. And I guess it's the same issue with every corporate office. Having said that, I still want to understand the setup they have break it for my own communication purposes. _ N Deepak P sounds like already you've started violating something here; also don't send emails from your corporate email ID which always carry a big tail called disclaimer, better to think before act on something which breaks your firm's policy system. May be it seems funny now but if they act on right manner,then it's gonna be real trouble maker for your career mate! have fun but not w/ firm's policies/values. This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 2:17 PM, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: Seriously, if it blocked the sys admins should have a reason to. It makes sense for them to block it as there are few other secure projects running from the same location. And I guess it's the same issue with every corporate office. Having said that, I still want to understand the setup they have break it for my own communication purposes. There's an excellent quote from the Camel Book (Perl): If someone hands you a strange gadget, asks you to hold the barrel to your head and pull the trigger, you cannot assume it will dry your hair. Never mind your good intentions as to why you want to bypass your corporate security policies. Look at what you are attempting from the company's perspective. It's clearly 1) against corporate policy, and 2) against the law. You may be faced with consequences more severe than you currently imagine. During my time at university, out of curiosity I tired such things, and am thankful that I got away with only a good scolding. The corporate world is not so forgiving. If you still want to learn such things, suggest you setup a lab at home and practice all you want. Don't do it at office or on someone else's infrastructure. - Raja ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
Pothuraju, Naga Deepak wrote: Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Alright, I'll try not to sermonize why posting something like this from a company mail id is a Very Very Bad Idea (TM), but if you managed not to get fired for this, here's something that always worked for me when I needed some exception to the access rules (most of them are there for a good reason, sometimes not) - make friends with your sysadmin(s) :) Cheers, Vamsee. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 3:49 PM, Vivek Rajagopalan vi...@unleashnetworks.com wrote: Pothuraju, Naga Deepak wrote: Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Have you tried this ? http://duckduckgo.com/?q=india+it+jobsv= That is not a email, IM or entertainment site. So he won't be interested :P and either ways, he'll ask you ways to crack the system to see the site. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wednesday 09 June 2010 15:49:21 Vivek Rajagopalan wrote: Pothuraju, Naga Deepak wrote: Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Have you tried this ? http://duckduckgo.com/?q=india+it+jobsamp;v= LOL -- regards kg http://livejournal.com/lawgon ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 3:24 PM, Raja Subramanian rajasuper...@gmail.comwrote: On Wed, Jun 9, 2010 at 2:17 PM, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: Seriously, if it blocked the sys admins should have a reason to. It makes sense for them to block it as there are few other secure projects running from the same location. And I guess it's the same issue with every corporate office. Having said that, I still want to understand the setup they have break it for my own communication purposes. There's an excellent quote from the Camel Book (Perl): If someone hands you a strange gadget, asks you to hold the barrel to your head and pull the trigger, you cannot assume it will dry your hair. Never mind your good intentions as to why you want to bypass your corporate security policies. Look at what you are attempting from the company's perspective. It's clearly 1) against corporate policy, and 2) against the law. You may be faced with consequences more severe than you currently imagine. During my time at university, out of curiosity I tired such things, and am thankful that I got away with only a good scolding. The corporate world is not so forgiving. even i tried such stuff and found a way to bypass the proxy server in my univ. wifi network, so mailed this issue anonymously to my college associate director.. he never replied... :D but that was way safer option than getting deeper into the intrusion and get caught at some point. :) If you still want to learn such things, suggest you setup a lab at home and practice all you want. Don't do it at office or on someone else's infrastructure. - Raja ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc -- idlecool ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 2:05 PM, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Here is the scenario. I cannot access any email sites, IM sites, entertainment sites from my office. The setup as far as I understood is that all traffic from the local systems are being tunneled through a proxy server. I tried using various methods to access websites IM sites like anonymous proxy servers few other ways. But what I found was that no matter what, I don't seem to be able to access any of the mail/IM sites. Just then I tried Firefox add-on sameplace [xmpp] which was little complicated to set up as it had few dependencies the only thing that works for me now in gtalk. All the other Firefox addons like gtalksidebar, meebo, etc failed. Certainly, they aren’t blocking talk.google.com since any addon trying to connect to gtalk connects to talk.google.com. Few doubts on my mind now are: * Is there a way to direct http traffic over xmpp? * How do I know if they are blocking it via ports? * I would like you guys to guess the rule or setup they have to monitor or block traffic. For all those guys having the same problem, I am currently able to use gmail/rediffmail/yahoomail via http://www.noblewebs.com/postbox/ as mentioned above, gtalk via sameplace firefox addon. This thread interested me just out of curiosity to know if someone had mailed a technical answer to the question asked. I have broken e-mail accounts, reverse engineered the DES cryptosystem and generally played a lot with crypto. I am also very good at physically breaking locks and entering a house without a key. ;) Anyway it calls for ingenuity and resourcefulness and of course purity of intent. If you are sure that you are doing something conscientious and meaningful then just go ahead. ;) So what if they fire you? Find another job. I got fired from every job for no fault of mine. Anyway lest us focus now. (Most likely they won't even know any of this) * Is there a way to direct http traffic over xmpp? With http-bind they way web IM works? You can tunnel XMPP over HTTP; so ergo you should be able to do the reverse. But I would not suggest that. See below. * How do I know if they are blocking it via ports? Blocking what via ports? Run a security scanner like netcat or nmap or nessus or nikto or hping. Did you attend my talk at IIT in Sep 2007? ( I hope I got the year right). * I would like you guys to guess the rule or setup they have to monitor or block traffic. Rule? What rule? Why should you care about it? You can get around every such rule if you are clever and know the big picture. And of course you should have access to the right tool and have lot of perseverance. Having blabbered so much I will also speak about the big picture of access control and how things actually work and how to break them. Look at tor anonymizers or port forwarding using SSH. In general you need a third party machine somewhere for you to help get on to the Internet without restrictions. Use crypto to avoid getting detected. No tool can look inside cryptographically protected packets; so tunnel traffic using ssh and your sysadmin will be none the wiser. Run your ssh server on the public IP at port 80. And use it to forward all your traffic. Once you setup remote port forwarding you can do anything you want! There is a tor plugin for firefox. To figure out which ports are blocked this command line should suffice. # nmap -sT -p 1000-5000 192.168.107.6 This will scan TCP ports between 1000 to 5000 on the IP given. To find out which machines on your network are up run this: # nmap -P0 192.168.107.0/24 nmap is not the only tool out there. You could also use hping or SING to good effect. Have fun. -Girish ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
Balaji Damodaran wrote: That is not a email, IM or entertainment site. So he won't be interested :P and either ways, he'll ask you ways to crack the system to see the site. While I don't support his action in any way, let's not get sarcastic be hard on the chap - maybe just a kid who joined right out of college - either way, we're giving him a hard enough time already, so I don't see a point in rubbing it in. Vamsee. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 4:27 PM, Girish Venkatachalam girishvenkatacha...@gmail.com wrote: On Wed, Jun 9, 2010 at 2:05 PM, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Here is the scenario. I cannot access any email sites, IM sites, entertainment sites from my office. The setup as far as I understood is that all traffic from the local systems are being tunneled through a proxy server. I tried using various methods to access websites IM sites like anonymous proxy servers few other ways. But what I found was that no matter what, I don't seem to be able to access any of the mail/IM sites. Just then I tried Firefox add-on sameplace [xmpp] which was little complicated to set up as it had few dependencies the only thing that works for me now in gtalk. All the other Firefox addons like gtalksidebar, meebo, etc failed. Certainly, they aren’t blocking talk.google.com since any addon trying to connect to gtalk connects to talk.google.com. Few doubts on my mind now are: * Is there a way to direct http traffic over xmpp? * How do I know if they are blocking it via ports? * I would like you guys to guess the rule or setup they have to monitor or block traffic. For all those guys having the same problem, I am currently able to use gmail/rediffmail/yahoomail via http://www.noblewebs.com/postbox/ as mentioned above, gtalk via sameplace firefox addon. This thread interested me just out of curiosity to know if someone had mailed a technical answer to the question asked. I have broken e-mail accounts, reverse engineered the DES cryptosystem and generally played a lot with crypto. I am also very good at physically breaking locks and entering a house without a key. ;) Anyway it calls for ingenuity and resourcefulness and of course purity of intent. If you are sure that you are doing something conscientious and meaningful then just go ahead. ;) So what if they fire you? Find another job. I got fired from every job for no fault of mine. Anyway lest us focus now. (Most likely they won't even know any of this) I have a question on morality issue here. My apologies if this becomes Off Topic, Shrini - delete this if it is not appropriate. As ILUG-C member, should we encourage and answer a question that asks for help to crack a system because the person I cannot access any email sites, IM sites, entertainment sites from my office? Aren't we better than crackers? My personal point of view : we shouldn't do it. Being all hardcore fans of Free Software and complaining about Adobe and Microsoft about their ethics, I believe we can at least try to be ethical in our own way. If you really wanted to help such a query, please reply to the person directly and do NOT use ILUG-C as the medium. * Is there a way to direct http traffic over xmpp? With http-bind they way web IM works? You can tunnel XMPP over HTTP; so ergo you should be able to do the reverse. But I would not suggest that. See below. * How do I know if they are blocking it via ports? Blocking what via ports? Run a security scanner like netcat or nmap or nessus or nikto or hping. Did you attend my talk at IIT in Sep 2007? ( I hope I got the year right). * I would like you guys to guess the rule or setup they have to monitor or block traffic. Rule? What rule? Why should you care about it? You can get around every such rule if you are clever and know the big picture. And of course you should have access to the right tool and have lot of perseverance. Having blabbered so much I will also speak about the big picture of access control and how things actually work and how to break them. Look at tor anonymizers or port forwarding using SSH. In general you need a third party machine somewhere for you to help get on to the Internet without restrictions. Use crypto to avoid getting detected. No tool can look inside cryptographically protected packets; so tunnel traffic using ssh and your sysadmin will be none the wiser. Run your ssh server on the public IP at port 80. And use it to forward all your traffic. Once you setup remote port forwarding you can do anything you want! There is a tor plugin for firefox. To figure out which ports are blocked this command line should suffice. # nmap -sT -p 1000-5000 192.168.107.6 This will scan TCP ports between 1000 to 5000 on the IP given. To find out which machines on your network are up run this: # nmap -P0 192.168.107.0/24 nmap is not the only tool out there. You could also use hping or SING to good effect. Have fun. -Girish ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc ___ ILUGC Mailing List:
Re: [Ilugc] Breaking blocked access in my office
On Wednesday 09 June 2010 16:40:42 Balaji Damodaran wrote: So what if they fire you? Find another job. I got fired from every job for no fault of mine. Anyway lest us focus now. (Most likely they won't even know any of this) I have a question on morality issue here. My apologies if this becomes Off Topic, Shrini - delete this if it is not appropriate. As ILUG-C member, should we encourage and answer a question that asks for help to crack a system because the person I cannot access any email sites, IM sites, entertainment sites from my office? Aren't we better than crackers? My personal point of view : we shouldn't do it. Being all hardcore fans of Free Software and complaining about Adobe and Microsoft about their ethics, I believe we can at least try to be ethical in our own way. I fully agree - we are hackers not crackers - and such discussions have no place in this list. It just needs one person to slashdot it and our reputation will be soiled. -- regards kg http://livejournal.com/lawgon ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
Hi, Blocking what via ports? Run a security scanner like netcat or nmap or nessus or nikto or hping. and how should you install it? if I know it right, then most corporates give you windows machines with the least privileges. In fact, the few things that work best in these installations are MS Office, MS Outlook and your coding environment. But then, thats all is needed. I am not sure about these tools (i've used them on a linux box at home where I am the admin) on windows, but wouldn't they need administrator rights to actually do port scanning? Just curious. Run your ssh server on the public IP at port 80. And use it to forward all your traffic. Again, you are behind a firewall with NAT. I don't have enough fundas, but can you actually get the reverse-lookup right for the public server to get back correctly? I don't know, so I am trying to understand. One last query, would not an existing IDS installation detect port scanning happening on a certain machine? Would that not put our man in question? He seems to be using his Official ID to mail the list. This leaves me with the feeling that he is not entirely aware of what he is doing. He could meaning only to check his gmail, but then if an IDS detects his login, they are not going to believe him. are they? By IDS I am referring to Instrusion Detection Systems. Btw, I am not sure if they are common in Indian IT space. Abishek ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
Hi On 06/09/2010 04:27 PM, Girish Venkatachalam wrote: On Wed, Jun 9, 2010 at 2:05 PM, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. [...snip...] This thread interested me just out of curiosity to know if someone had mailed a technical answer to the question asked. If he wanted to learn how to do this and thought that asking on a public general purpose linux users mailing list is the best way to go about it, he is better off being advised not to do it. Also, handing over a gun to monkey, might not only cause harm to the monkey, but also puts doubts on _your_ ability to think about your actions. What if he does get caught and it somehow leads back to you ? It'd be wise to always remember, our clueless cyber security cell policewallas are more than happy to jail totally unrelated people just because they could find a link. What if the OP is not just a frustrated teen in an office but anti-social enough to cause harm ? what if ... I am not kidding about being careful, before you know it, that cool hacking you do/teach for 'fun' might end up being considered as seriously unlawful activities (read major jail time). Even cracking a WEP key can be twisted into 'engaging in terrorist activities and a threat to the nation', given enough massala. cheers, - steve -- random spiel: http://lonetwin.net/ what i'm stumbling into: http://lonetwin.stumbleupon.com/ ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 4:52 PM, Abishek Goda goda.abis...@gmail.com wrote: Hi, Blocking what via ports? Run a security scanner like netcat or nmap or nessus or nikto or hping. and how should you install it? if I know it right, then most corporates give you windows machines with the least privileges. In fact, the few things that work best in these installations are MS Office, MS Outlook and your coding environment. But then, thats all is needed. I am not sure about these tools (i've used them on a linux box at home where I am the admin) on windows, but wouldn't they need administrator rights to actually do port scanning? Just curious. Run your ssh server on the public IP at port 80. And use it to forward all your traffic. Again, you are behind a firewall with NAT. I don't have enough fundas, but can you actually get the reverse-lookup right for the public server to get back correctly? I don't know, so I am trying to understand. you have to issue the following command from the local system where xx:xx:xx:xx is the remote server address: # ssh -D localhost:1080 r...@xx:xx:xx:xx more on # man ssh ;-) this will dynamically bind port 1080 on local system to the remote ssh server.. you can use any web application like web browsers and im clients which supports socks proxy.. yes you need to configure it to work.. :) for windows use putty instead for the effect ;-) One last query, would not an existing IDS installation detect port scanning happening on a certain machine? Would that not put our man in question? He seems to be using his Official ID to mail the list. This leaves me with the feeling that he is not entirely aware of what he is doing. He could meaning only to check his gmail, but then if an IDS detects his login, they are not going to believe him. are they? By IDS I am referring to Instrusion Detection Systems. Btw, I am not sure if they are common in Indian IT space. Abishek ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc -- idlecool ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
I really hope no one actually tries any of these at work, especially in companies with a competent IT/Security team. Blocking what via ports? Run a security scanner like netcat or nmap or nessus or nikto or hping. Running a vulnerability scanner against internal or external IP's from a corporate can get you into serious trouble. This can be caught easily. In any case, none of these will be help you get around web filtering. So you can get fired *and* not be able to browse gmail. Did you attend my talk at IIT in Sep 2007? ( I hope I got the year right). Rule? What rule? Why should you care about it? You can get around every such rule if you are clever and know the big picture. If the big picture doesn't involve you keeping your job, then all is fine :-) Look at tor anonymizers or port forwarding using SSH. In general you need a third party machine somewhere for you to help get on to the Internet without restrictions. TOR : Downright dangerous running in a corporate network (even if you get it to work). Could get company into trouble due to unknown traffic relayed/exited etc. SSH Tunnel on port 80: Safest of the lot, but there are tools specifically designed to look for such long running (but low volume) sessions to external hosts. VPN's to home can also be detected in a similar manner. ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 2:05 PM, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily Be warned that you might already in trouble! You have sent this to a public mailing list from your company id. Google and every other search engine will dutifully index it against your name. Any future employer, as part of verification does a search on your name, this might very well show up on the first page. I wonder if all this attention to your mail will increase its pagerank!! I suggest that you create a lot of noise - posting lots of interesting but non-incriminating mails to lots of lists and hope that they all get a higher pagerank than this :-) Really, if you are this careless about your own interests, you should not try any of the things you hinted. You might inadvertently expose company data and may even get jail time. No joke. best of luck, mano ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 14:05, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: Hi Team I am trying to overcome the blocked access in my office somehow as I think the security restrictions have gone too far to carry on my daily activities. Here is the scenario. I cannot access any email sites, IM sites, entertainment sites from my office. The setup as far as I understood is that all traffic from the local systems are being tunneled through a proxy server. I tried using various methods to access websites IM sites like anonymous proxy servers few other ways. But what I found was that no matter what, I don't seem to be able to access any of the mail/IM sites. Just then I tried Firefox add-on sameplace [xmpp] which was little complicated to set up as it had few dependencies the only thing that works for me now in gtalk. All the other Firefox addons like gtalksidebar, meebo, etc failed. Certainly, they aren’t blocking talk.google.com since any addon trying to connect to gtalk connects to talk.google.com. Few doubts on my mind now are: * Is there a way to direct http traffic over xmpp? * How do I know if they are blocking it via ports? * I would like you guys to guess the rule or setup they have to monitor or block traffic. For all those guys having the same problem, I am currently able to use gmail/rediffmail/yahoomail via http://www.noblewebs.com/postbox/ as mentioned above, gtalk via sameplace firefox addon. If you really want to access the blocked sites, then use your mobile and access via GPRS or 3G during work breaks. Corporate networks may contain sensitive data and you might be breaching the terms of your contract. No company will tolerate such behaviour and it'll ruin your career. Just my opinion. -- Salvadesswaran Srinivasan Chennai ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 4:27 PM, Girish Venkatachalam girishvenkatacha...@gmail.com wrote: Rule? What rule? Why should you care about it? You can get around every such rule if you are clever and know the big picture. And of course you should have access to the right tool and have lot of perseverance. Stop misleading others. Encouraging someone to break the rules is immature and irresponsible. Organizations don't arbitrarily create rules. They are made because of 1) govt compliance regulations, 2) IT security policies enforced by their customers, and 3) industry best practices. It may be a prank for you, but breaking company security policies also harms the entire organization as the company's reputation and business is at stake. Eg. would you trust your money with a bank that has a poor security policy? Look at tor anonymizers or port forwarding using SSH. In general you need a third party machine somewhere for you to help get on to the Internet without restrictions. Use crypto to avoid getting detected. No tool can look inside cryptographically protected packets; so tunnel traffic using ssh and your sysadmin will be none the wiser. Run your ssh server on the public IP at port 80. And use it to forward all your traffic. No enterprise firewall/security system is stupid enough to fall for this trick. Enterprise HTTP proxy servers (Blue Coat, WebSense, IronPort) routinely break HTTPS/SSL connections. They call it SSL visibility. The best an nmap scan can do is annoy the security admins. Most firewalls will automatically detect port scans and take appropriate action. Organizations of all sizes invest a lot of resources into IT security. Bypassing them is extremely difficult. Even if you bypass the systems, it's near impossible to hide your tracks and you will be held accountable for your actions. As I already said, it's okay to be interested in cracking. But do it using your own infrastructure. - Raja ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
Stop misleading others. Encouraging someone to break the rules is immature and irresponsible. +1, Out of curiosity, I started read this thread. Found in mid way its going to one's life time to complete every one's reply better marked it for the weekend. :) -- Ravi Jaya Mobile: +91 97909 16181 ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Wed, Jun 9, 2010 at 4:27 PM, Girish Venkatachalam girishvenkatacha...@gmail.com wrote: Rule? What rule? Why should you care about it? You can get around every such rule if you are clever and know the big picture. And of course you should have access to the right tool and have lot of perseverance. Stop misleading others. Encouraging someone to break the rules is immature and irresponsible. Organizations don't arbitrarily create rules. They are made because of 1) govt compliance regulations, 2) IT security policies enforced by their customers, and 3) industry best practices. It may be a prank for you, but breaking company security policies also harms the entire organization as the company's reputation and business is at stake. Eg. would you trust your money with a bank that has a poor security policy? Good point. To the original poster - please refrain from doing this. You can always go home and check your emails what not. If you want to learn how to hack, please do it on your own infrastructure or get a clearance in writing from your boss to test the corporate network's security. If you are trying to bypass your companies security without written permission, please be forewarned that these sorts of hack attempts are usually logged and it will be very easy to trace the hack back to you. If an hack attempt is detected (especially originating from within the company's network), it can be very expensive for the company to determine if the hack was successful, if any computers have been compromised, what data has been stolen/manipulated etc, to close all loop holes etc.. So you will be in a LOT of trouble if you are seen as the perpetrator and you could easily face jail time and stiff fines. NO ONE is going to be believe you when you say that you went to all that effort to just check email and chat. The assumption will always be that your hack was to steal or manipulate sensitive information and that you may very well have accomplices both within and outside the organization. Regards, Prem ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On 06/10/2010 10:52 AM, Pothuraju, Naga Deepak wrote: Well..you guys came really hard on me, but never mind cuz I was kind of expecting this as it happens frequently on this list. First of all let me make my intentions clear - It was to learn not exactly to break/hack something that the company owns. You people should have answered the question then disclaimed not to hold you responsible for, even if not in the public mailing list. Your original mail said nothing about learning. The $subject is very clear that your intention is to break blocked access in the office. You can't teach someone to bypass a company policy and then disclaim yourself from that responsibility. It simply doesn't work that way. When asking for volunteer help, you can't dictate the responses you will get either. We can all just drop this and move on now. Rahul ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Thursday 10 June 2010 10:52:47 Pothuraju, Naga Deepak wrote: 'Ethical Hacking'! there is no such thing as ethical hacking - which is a term invented by one of the biggest conmen in the Indian software scene for the sole purpose of promoting himself. There is hacking - which we do. And cracking which we frown upon. -- regards kg http://livejournal.com/lawgon ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
Re: [Ilugc] Breaking blocked access in my office
On Thu, Jun 10, 2010 at 10:52, Pothuraju, Naga Deepak naga-deepak.pothur...@capgemini.com wrote: Well..you guys came really hard on me, but never mind cuz I was kind of expecting this as it happens frequently on this list. First of all let me make my intentions clear - It was to learn not exactly to break/hack something that the company owns. You people should have answered the question then disclaimed not to hold you responsible for, even if not in the public mailing list. Well, if you know what you're doing, then Vamsee's idea is the best .. just talk to your sys admins, tell them you're interested in how your network is secured, and ask them if they're okay with you trying to break it. You'll learn, they'll learn, everyone will live happily every after. -- http://roshan.mathews.in/ ___ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
