[ 28 63 29 20 31 39 39 39 20 63 72 75 63 69 70 68 75 78 20 68 77 61 ] =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-= ========================================================================== = <=-[ HWA.hax0r.news ]-=> = ========================================================================== [=HWA'99=] Number 29 Volume 1 1999 Aug 14th 99 ========================================================================== [ 61:20:6B:69:64:20:63:6F:75: ] [ 6C:64:20:62:72:65:61:6B:20:74:68:69:73: ] [ 20:22:65:6E:63:72:79:70:74:69:6F:6E:22:! ] ========================================================================== Paraphrased irc nonsense I found amusing; [16:00] *** Quits: wyze1 (Of course my password is my pets name! My parrot's name was XzF!^lP, but I changed it to polly) New mirror sites http://www.ducktank.net/hwa/issues.html. http://viper.dmrt.com/files/=E-Zines/HWA.hax0r.news/ http://hwazine.cjb.net/ http://www.hackunlimited.com/files/secu/papers/hwa/ * http://hwa.hax0r.news.8m.com/ * http://www.fortunecity.com/skyscraper/feature/103/ * Crappy free sites but they offer 20M & I need the space... HWA.hax0r.news is sponsored by Cubesoft communications www.csoft.net and www.digitalgeeks.com thanks to p0lix for the digitalgeeks bandwidth and airportman for the Cubesoft bandwidth. Also shouts out to all our mirror sites! tnx guys. http://www.csoft.net/~hwa http://www.digitalgeeks.com/hwa HWA.hax0r.news Mirror Sites: ~~~~~~~~~~~~~~~~~~~~~~~~~~~ http://www.ducktank.net/hwa/issues.html. ** NEW ** http://www.alldas.de/hwaidx1.htm ** NEW ** CHECK THIS ONE OUT ** http://www.csoft.net/~hwa/ http://www.digitalgeeks.com/hwa. http://members.tripod.com/~hwa_2k http://welcome.to/HWA.hax0r.news/ http://www.attrition.org/~modify/texts/zines/HWA/ http://archives.projectgamma.com/zines/hwa/. http://www.403-security.org/Htmls/hwa.hax0r.news.htm For many, faith is a suitable substitute for knowledge, as death is for a difficult life. SYNOPSIS (READ THIS) -------------------- The purpose of this newsletter is to 'digest' current events of interest that affect the online underground and netizens in general. This includes coverage of general security issues, hacks, exploits, underground news and anything else I think is worthy of a look see. (remember i'm doing this for me, not you, the fact some people happen to get a kick/use out of it is of secondary importance). This list is NOT meant as a replacement for, nor to compete with, the likes of publications such as CuD or PHRACK or with news sites such as AntiOnline, the Hacker News Network (HNN) or mailing lists such as BUGTRAQ or ISN nor could any other 'digest' of this type do so. It *is* intended however, to compliment such material and provide a reference to those who follow the culture by keeping tabs on as many sources as possible and providing links to further info, its a labour of love and will be continued for as long as I feel like it, i'm not motivated by dollars or the illusion of fame, did you ever notice how the most famous/infamous hackers are the ones that get caught? there's a lot to be said for remaining just outside the circle... @HWA =-----------------------------------------------------------------------= Welcome to HWA.hax0r.news ... #29 =-----------------------------------------------------------------------= We could use some more people joining the channel, its usually pretty quiet, we don't bite (usually) so if you're hanging out on irc stop by and idle a while and say hi... ******************************************************************* *** /join #HWA.hax0r.news on EFnet the key is `zwen' *** *** *** *** please join to discuss or impart news on techno/phac scene *** *** stuff or just to hang out ... someone is usually around 24/7*** *** *** *** Note that the channel isn't there to entertain you its for *** *** you to talk to us and impart news, if you're looking for fun*** *** then do NOT join our channel try #weirdwigs or something... *** *** we're not #chatzone or #hack *** *** *** ******************************************************************* =-------------------------------------------------------------------------= Issue #29 =--------------------------------------------------------------------------= [ INDEX ] =--------------------------------------------------------------------------= Key Intros =--------------------------------------------------------------------------= 00.0 .. COPYRIGHTS ...................................................... 00.1 .. CONTACT INFORMATION & SNAIL MAIL DROP ETC ....................... 00.2 .. SOURCES ......................................................... 00.3 .. THIS IS WHO WE ARE .............................................. 00.4 .. WHAT'S IN A NAME? why `HWA.hax0r.news'?.......................... 00.5 .. THE HWA_FAQ V1.0 ................................................ =--------------------------------------------------------------------------= Key Content =--------------------------------------------------------------------------= 01.0 .. GREETS .......................................................... 01.1 .. Last minute stuff, rumours, newsbytes ........................... 01.2 .. Mailbag ......................................................... 02.0 .. From the Editor.................................................. 03.0 .. So you wanna be a hacker? by Avatar.............................. 04.0 .. Microsoft vulnerability bulletin: Encapsulated SMTP address...... 05.0 .. Disrupting Net Access a Cybercrime? ............................. 06.0 .. IDEA CAST BO2K PLUGIN VULNERABILITY.............................. 07.0 .. Mitnick gets a welcome birthday present from the LA DA........... 08.0 .. An Accurate Look At Mitnick's Life Behind Bars .................. 09.0 .. Sony and EA Take Down Paradigm .................................. 10.0 .. Regional Computer Forensics Lab Set Up in San Diego ............. 11.0 .. University Sys Admin Faced with 10 Years for Using Too Much Bandwidth 12.0 .. Chaos Computer Camp Fun For All Last Weekend .................... 13.0 .. NIST Announces the AES Finalist Candidates ...................... 14.0 .. Clinton Designates Group to Look At CyberCrime .................. 15.0 .. Taiwan Government Web Sites Defaced ............................. 16.0 .. DoD Ordered to Change All Passwords ............................. 17.0 .. Belgians Under Cyber Attack From One Man ........................ 18.0 .. IRDP Hole in Win and Sol Leave Users Open to Attack.............. 19.0 .. More Government Sites Defaced ................................... 20.0 .. Taiwan Strikes back at China via Net ............................ 21.0 .. Monopoly Virus Taunts Bill Gates and Microsoft .................. 22.0 .. FBI Fingerprint database now online.............................. 23.0 .. 45 Named as Enemies of the Internet ............................. 24.0 .. Alliance Z3 Defaces Spanish Web Site ............................ 25.0 .. Government has a Hard Time with Bureaucracy ..................... 26.0 .. Law Not a Substitute for Good Security .......................... 27.0 .. Network-centric Warfare to be Used by Military .................. 28.0 .. Gateway plans for Amiga ......................................... 29.0 .. Mitnick Moved to County Jail .................................... 30.0 .. The problem with ISP's and security sites........................ 31.0 .. The Internet Auditing Project ................................... 32.0 .. TCS Web Page Defacer Pleads Guilty .............................. 33.0 .. Cybercrime On the Rise in Russia - First Offender Convicted ..... 34.0 .. ToorCon Less Than One Month Away ................................ 35.0 .. FRESHMEAT.NET BOUGHT............................................. 36.0 .. LINUXPPC CRACK-CONTEST FINISHED.................................. 37.0 .. INFOSEEK HACKED.................................................. 38.0 .. HACKERS, IT CONSULTANTS EMBRACE FREE SECURITY TOOL............... 39.0 .. TRINUX 0.62 RELEASED............................................. 40.0 .. GOVERNMENT FACES SECURITY SKILLS SHORTAGE........................ 41.0 .. SOFTWARE REVERSE ENGINEERING ALLOWED IN AUSTRALIA................ 42.0 .. IRELAND INTENDS TO CRIMINALIZE E-SIGNATURE FRAUD................. 43.0 .. ISRAEL AND PIRACY................................................ 44,0 .. OUTSIDE HELP ISN'T WANTED ....................................... 45.0 .. HACKER MYTHOLOGY................................................. 46.0 .. DEFAULT ISSUE #1................................................. 47.0 .. MICROSOFT AND AOL................................................ 48.0 .. INTERVIEW WITH ERIC RAYMOND...................................... 49.0 .. CODE-CRACKING COMPUTER CAUSES CONCERN............................ 50.0 .. HACKING YOUR WAY TO AN IT CARREER................................ 51.0 .. BALTIMORE TECHNOLOGIES TO SHIP ENCRYPTION TOOL FOR XML........... 52.0 .. STARTUP WANTS TO SELL UNTAPPABLE PHONES.......................... 53.0 .. OUTSMARTING THE WILY COMPUTER VIRUS.............................. 54.0 .. NEW MAIL ATTACK IDENTIFIED....................................... 55.0 .. ERROR IN MICROSOFT PATCH......................................... 56.0 .. NEW IE5 BUG EXPOSES PASSWORDS.................................... 57.0 .. KEY TO CRYPTO SUCCESS: DON'T BE BORN IN THE USA.................. 58.0 .. L0PHT IRDP ADVISORY.............................................. 59.0 .. Stronger computers, easier encrypton, RSA coding................. 60.0 .. 'Security Police isn't doing enough'............................. 61.0 .. Hack attacks drive outsourced security........................... 62.0 .. Backdoors in Windows?............................................ 63.0 .. The newbies guide to FUD (Fear Uncertainty and Doubt)............ 64.0 .. Crashing AntiOnline's SMTP server?............................... 65.0 .. Rootshell.com review............................................. 66.0 .. The inevitability of failure..................................... =--------------------------------------------------------------------------= AD.S .. Post your site ads or etc here, if you can offer something in return thats tres cool, if not we'll consider ur ad anyways so send it in. ads for other zines are ok too btw just mention us in yours, please remember to include links and an email contact. Corporate ads will be considered also and if your company wishes to donate to or participate in the upcoming Canc0n99 event send in your suggestions and ads now...n.b date and time may be pushed back join mailing list for up to date information....................................... Current dates: POSTPONED til further notice, place: TBA.. ................. Ha.Ha .. Humour and puzzles ............................................ Hey You!........................................................ =------=........................................................ Send in humour for this section! I need a laugh and its hard to find good stuff... ;)........................................... SITE.1 .. Featured site, ................................................. H.W .. Hacked Websites ............................................... A.0 .. APPENDICES...................................................... A.1 .. PHACVW linx and references...................................... =--------------------------------------------------------------------------= @HWA'99 00.0 (C) COPYRIGHT, (K)OPYWRONG, COPYLEFT? V2.0 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ THE OPINIONS OF THE WRITERS DO NOT NECESSARILY REFLECT THE OPINIONS OF THE PUBLISHERS AND VICE VERSA IN FACT WE DUNNO WTF IS GONNA TAKE RESPONSIBILITY FOR THIS, I'M NOT DOING IT (LOTS OF ME EITHER'S RESOUND IN THE BACKGROUND) SO UHM JUST READ IT AND IF IT BUGS YOU WELL TFS (SEE FAQ). Important semi-legalese and license to redistribute: YOU MAY DISTRIBUTE THIS ZINE WITHOUT PERMISSION FROM MYSELF AND ARE GRANTED THE RIGHT TO QUOTE ME OR THE CONTENTS OF THE ZINE SO LONG AS Cruciphux AND/OR HWA.hax0r.news ARE MENTIONED IN YOUR WRITING. LINK'S ARE NOT NECESSARY OR EXPECTED BUT ARE APPRECIATED the current link is http://welcome.to/HWA.hax0r.news IT IS NOT MY INTENTION TO VIOLATE ANYONE'S COPYRIGHTS OR BREAK ANY NETIQUETTE IN ANY WAY IF YOU FEEL I'VE DONE THAT PLEASE EMAIL ME PRIVATELY current email cruciphux@dok.org THIS DOES NOT CONSTITUTE ANY LEGAL RIGHTS, IN THIS COUNTRY ALL WORKS ARE (C) AS SOON AS COMMITTED TO PAPER OR DISK, IF ORIGINAL THE LAYOUT AND COMMENTARIES ARE THEREFORE (C) WHICH MEANS: I RETAIN ALL RIGHTS, BUT I GIVE YOU THE RIGHT TO READ, QUOTE AND REDISTRIBUTE/MIRROR. - EoD Although this file and all future issues are now copyright, some of the content holds its own copyright and these are printed and respected. News is news so i'll print any and all news but will quote sources when the source is known, if its good enough for CNN its good enough for me. And i'm doing it for free on my own time so pfffft. :) No monies are made or sought through the distribution of this material. If you have a problem or concern email me and we'll discuss it. cruciphux@dok.org Cruciphux [C*:.] 00.1 CONTACT INFORMATION AND MAIL DROP ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Wahoo, we now have a mail-drop, if you are outside of the U.S.A or Canada / North America (hell even if you are inside ..) and wish to send printed matter like newspaper clippings a subscription to your cool foreign hacking zine or photos, small non-explosive packages or sensitive information etc etc well, now you can. (w00t) please no more inflatable sheep or plastic dog droppings, or fake vomit thanks. Send all goodies to: HWA NEWS P.O BOX 44118 370 MAIN ST. NORTH BRAMPTON, ONTARIO CANADA L6V 4H5 WANTED!: POSTCARDS! YESH! POSTCARDS, I COLLECT EM so I know a lot of you are ~~~~~~~ reading this from some interesting places, make my day and get a mention in the zine, send in a postcard, I realize that some places it is cost prohibitive but if you have the time and money be a cool dude / gal and send a poor guy a postcard preferably one that has some scenery from your place of residence for my collection, I collect stamps too so you kill two birds with one stone by being cool and mailing in a postcard, return address not necessary, just a "hey guys being cool in Bahrain, take it easy" will do ... ;-) thanx. Ideas for interesting 'stuff' to send in apart from news: - Photo copies of old system manual front pages (optionally signed by you) ;-) - Photos of yourself, your mom, sister, dog and or cat in a NON compromising position plz I don't want pr0n. - Picture postcards - CD's 3.5" disks, Zip disks, 5.25" or 8" floppies, Qic40/80/100-250 tapes with hack/security related archives, logs, irc logs etc on em. - audio or video cassettes of yourself/others etc of interesting phone fun or social engineering examples or transcripts thereof. Stuff you can email: - Prank phone calls in .ram or .mp* format - Fone tones and security announcements from PBX's etc - fun shit you sampled off yer scanner (relevant stuff only like #2600 meeting activities) - reserved for one smiley face -> :-) <- - PHACV lists of files that you have or phac cd's you own (we have a burner, *g*) - burns of phac cds (email first to make sure we don't already have em) - Any and all telephone sounds/tones/beeps/trunk drops/line tests/etc in .ram etc format or .mp* If you still can't think of anything you're probably not that interesting a person after all so don't worry about it Our current email: Submissions/zine gossip.....: hwa@press.usmc.net Private email to editor.....: cruciphux@dok.org Distribution/Website........: sas72@usa.net @HWA 00.2 Sources *** ~~~~~~~~~~~ Sources can be some, all, or none of the following (by no means complete nor listed in any degree of importance) Unless otherwise noted, like msgs from lists or news from other sites, articles and information is compiled and or sourced by Cruciphux no copyright claimed. News & I/O zine ................. http://www.antionline.com/ Back Orifice/cDc..................http://www.cultdeadcow.com/ News site (HNN) .....,............http://www.hackernews.com/ Help Net Security.................http://net-security.org/ News,Advisories,++ .(lophtcrack)..http://www.l0pht.com/ NewsTrolls .(daily news ).........http://www.newstrolls.com/ News + Exploit archive ...........http://www.rootshell.com/beta/news.html CuD Computer Underground Digest...http://www.soci.niu.edu/~cudigest News site+........................http://www.zdnet.com/ News site+Security................http://www.gammaforce.org/ News site+Security................http://www.projectgamma.com/ News site+Security................http://securityhole.8m.com/ News site+Security related site...http://www.403-security.org/ *DOWN* News/Humour site+ ................http://www.innerpulse.com News/Techie news site.............http://www.slashdot.org +Various mailing lists and some newsgroups, such as ... +other sites available on the HNN affiliates page, please see http://www.hackernews.com/affiliates.html as they seem to be popping up rather frequently ... http://www.the-project.org/ .. IRC list/admin archives http://www.anchordesk.com/ .. Jesse Berst's AnchorDesk alt.hackers.malicious alt.hackers alt.2600 BUGTRAQ ISN security mailing list ntbugtraq <+others> NEWS Agencies, News search engines etc: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ http://www.cnn.com/SEARCH/ http://www.foxnews.com/search/cgi-bin/search.cgi?query=hack&days=0&wires=0&startwire=0 http://www.news.com/Searching/Results/1,18,1,00.html?querystr=hack http://www.ottawacitizen.com/business/ http://search.yahoo.com.sg/search/news_sg?p=hack http://www.washingtonpost.com/cgi-bin/search?DB_NAME=WPlate&TOTAL_HITLIST=20&DEFAULT_OPERATOR=AND&headline=&WITHIN_FIELD_NAME=.lt.event_date&WITHIN_DAYS=0&description=hack http://www.zdnet.com/zdtv/cybercrime/ http://www.zdnet.com/zdtv/cybercrime/chaostheory/ (Kevin Poulsen's Column) NOTE: See appendices for details on other links. http://news.bbc.co.uk/hi/english/sci/tech/newsid_254000/254236.stm http://freespeech.org/eua/ Electronic Underground Affiliation http://ech0.cjb.net ech0 Security http://axon.jccc.net/hir/ Hackers Information Report http://net-security.org Net Security http://www.403-security.org Daily news and security related site Submissions/Hints/Tips/Etc ~~~~~~~~~~~~~~~~~~~~~~~~~~ All submissions that are `published' are printed with the credits you provide, if no response is received by a week or two it is assumed that you don't care wether the article/email is to be used in an issue or not and may be used at my discretion. Looking for: Good news sites that are not already listed here OR on the HNN affiliates page at http://www.hackernews.com/affiliates.html Magazines (complete or just the articles) of breaking sekurity or hacker activity in your region, this includes telephone phraud and any other technological use, abuse hole or cool thingy. ;-) cut em out and send it to the drop box. - Ed Mailing List Subscription Info (Far from complete) Feb 1999 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~ ~~~~~~~~ ISS Security mailing list faq : http://www.iss.net/iss/maillist.html THE MOST READ: BUGTRAQ - Subscription info ~~~~~~~~~~~~~~~~~~~~~~~~~~~ What is Bugtraq? Bugtraq is a full-disclosure UNIX security mailing list, (see the info file) started by Scott Chasin . To subscribe to bugtraq, send mail to listserv@netspace.org containing the message body subscribe bugtraq. I've been archiving this list on the web since late 1993. It is searchable with glimpse and archived on-the-fly with hypermail. Searchable Hypermail Index; http://www.eecs.nwu.edu/~jmyers/bugtraq/index.html Link About the Bugtraq mailing list ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ The following comes from Bugtraq's info file: This list is for *detailed* discussion of UNIX security holes: what they are, how to exploit, and what to do to fix them. This list is not intended to be about cracking systems or exploiting their vulnerabilities. It is about defining, recognizing, and preventing use of security holes and risks. Please refrain from posting one-line messages or messages that do not contain any substance that can relate to this list`s charter. I will allow certain informational posts regarding updates to security tools, documents, etc. But I will not tolerate any unnecessary or nonessential "noise" on this list. Please follow the below guidelines on what kind of information should be posted to the Bugtraq list: + Information on Unix related security holes/backdoors (past and present) + Exploit programs, scripts or detailed processes about the above + Patches, workarounds, fixes + Announcements, advisories or warnings + Ideas, future plans or current works dealing with Unix security + Information material regarding vendor contacts and procedures + Individual experiences in dealing with above vendors or security organizations + Incident advisories or informational reporting Any non-essential replies should not be directed to the list but to the originator of the message. Please do not "CC" the bugtraq reflector address if the response does not meet the above criteria. Remember: YOYOW. You own your own words. This means that you are responsible for the words that you post on this list and that reproduction of those words without your permission in any medium outside the distribution of this list may be challenged by you, the author. For questions or comments, please mail me: chasin@crimelab.com (Scott Chasin) Crypto-Gram ~~~~~~~~~~~ CRYPTO-GRAM is a free monthly newsletter providing summaries, analyses, insights, and commentaries on cryptography and computer security. To subscribe, visit http://www.counterpane.com/crypto-gram.html or send a blank message to crypto-gram-subscribe@chaparraltree.com.  To unsubscribe, visit http://www.counterpane.com/unsubform.html.  Back issues are available on http://www.counterpane.com. CRYPTO-GRAM is written by Bruce Schneier.  Schneier is president of Counterpane Systems, the author of "Applied Cryptography," and an inventor of the Blowfish, Twofish, and Yarrow algorithms.  He served on the board of the International Association for Cryptologic Research, EPIC, and VTW.  He is a frequent writer and lecturer on cryptography. CUD Computer Underground Digest ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ This info directly from their latest ish: Computer underground Digest    Sun  14 Feb, 1999   Volume 11 : Issue 09                             ISSN  1004-042X        Editor: Jim Thomas (cudigest@sun.soci.niu.edu)        News Editor: Gordon Meyer (gmeyer@sun.soci.niu.edu)        Archivist: Brendan Kehoe        Poof Reader:   Etaion Shrdlu, Jr.        Shadow-Archivists: Dan Carosone / Paul Southworth                           Ralph Sims / Jyrki Kuoppala                           Ian Dickinson        Cu Digest Homepage: http://www.soci.niu.edu/~cudigest [ISN] Security list ~~~~~~~~~~~~~~~~~~~ This is a low volume list with lots of informative articles, if I had my way i'd reproduce them ALL here, well almost all .... ;-) - Ed Subscribe: mail majordomo@repsec.com with "subscribe isn". @HWA 00.3 THIS IS WHO WE ARE ~~~~~~~~~~~~~~~~~~ Some HWA members and Legacy staff ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ cruciphux@dok.org.........: currently active/editorial darkshadez@ThePentagon.com: currently active/man in black fprophet@dok.org..........: currently active/IRC+ man in black sas72@usa.net ............. currently active/IRC+ distribution vexxation@usa.net ........: currently active/IRC+ proof reader/grrl in black dicentra...(email withheld): IRC+ grrl in black eentity ...( '' '' ): Currently active/IRC+ man in black Foreign Correspondants/affiliate members ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Qubik ............................: United Kingdom D----Y ...........................: USA/world media HWA members ......................: World Media Past Foreign Correspondants (currently inactive or presumed dead) ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ N0Portz ..........................: Australia system error .....................: Indonesia Wile (wile coyote) ...............: Japan/the East Ruffneck ........................: Netherlands/Holland Please send in your sites for inclusion here if you haven't already also if you want your emails listed send me a note ... - Ed Spikeman's site is down as of this writing, if it comes back online it will be posted here. http://www.hackerlink.or.id/ ............ System Error's site (in Indonesian) ******************************************************************* *** /join #HWA.hax0r.news on EFnet the key is `zwen' *** ******************************************************************* :-p 1. We do NOT work for the government in any shape or form.Unless you count paying taxes ... in which case we work for the gov't in a BIG WAY. :-/ 2. MOSTLY Unchanged since issue #1, although issues are a digest of recent news events its a good idea to check out issue #1 at least and possibly also the Xmas issue for a good feel of what we're all about otherwise enjoy - Ed ... @HWA 00.4 Whats in a name? why HWA.hax0r.news?? ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Well what does HWA stand for? never mind if you ever find out I may have to get those hax0rs from 'Hackers' or the Pretorians after you. In case you couldn't figure it out hax0r is "new skewl" and although it is laughed at, shunned, or even pidgeon holed with those 'dumb leet (l33t?) dewds' this is the state of affairs. It ain't Stephen Levy's HACKERS anymore. BTW to all you up and comers, i'd highly recommend you get that book. Its almost like buying a clue. Anyway..on with the show .. - Editorial staff @HWA 00.5 HWA FAQ v1.0 Feb 13th 1999 (Abridged & slightly updated again) ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Also released in issue #3. (revised) check that issue for the faq it won't be reprinted unless changed in a big way with the exception of the following excerpt from the FAQ, included to assist first time readers: Some of the stuff related to personal useage and use in this zine are listed below: Some are very useful, others attempt to deny the any possible attempts at eschewing obfuscation by obsucuring their actual definitions. @HWA - see EoA ;-) != - Mathematical notation "is not equal to" or "does not equal" ASC(247) "wavey equals" sign means "almost equal" to. If written an =/= (equals sign with a slash thru it) also means !=, =< is Equal to or less than and => is equal to or greater than (etc, this aint fucking grade school, cripes, don't believe I just typed all that..) AAM - Ask a minor (someone under age of adulthood, usually <16, <18 or <21) AOL - A great deal of people that got ripped off for net access by a huge clueless isp with sekurity that you can drive buses through, we're not talking Kung-Fu being none too good here, Buy-A-Kloo maybe at the least they could try leasing one?? *CC - 1 - Credit Card (as in phraud) 2 - .cc is COCOS (Keeling) ISLANDS butthey probably accept cc's CCC - Chaos Computer Club (Germany) *CON - Conference, a place hackers crackers and hax0rs among others go to swap ideas, get drunk, swap new mad inphoz, get drunk, swap gear, get drunk watch videos and seminars, get drunk, listen to speakers, and last but not least, get drunk. *CRACKER - 1 . Someone who cracks games, encryption or codes, in popular hacker speak he's the guy that breaks into systems and is often (but by no means always) a "script kiddie" see pheer 2 . An edible biscuit usually crappy tasting without a nice dip, I like jalapeno pepper dip or chives sour cream and onion, yum - Ed Ebonics - speaking like a rastafarian or hip dude of colour also wigger Vanilla Ice is a wigger, The Beastie Boys and rappers speak using ebonics, speaking in a dark tongue ... being ereet, see pheer EoC - End of Commentary EoA - End of Article or more commonly @HWA EoF - End of file EoD - End of diatribe (AOL'ers: look it up) FUD - Coined by Unknown and made famous by HNN - "Fear uncertainty and doubt", usually in general media articles not high brow articles such as ours or other HNN affiliates ;) du0d - a small furry animal that scurries over keyboards causing people to type weird crap on irc, hence when someone says something stupid or off topic 'du0d wtf are you talkin about' may be used. *HACKER - Read Stephen Levy's HACKERS for the true definition, then see HAX0R *HAX0R - 1 - Cracker, hacker wannabe, in some cases a true hacker, this is difficult to define, I think it is best defined as pop culture's view on The Hacker ala movies such as well erhm "Hackers" and The Net etc... usually used by "real" hackers or crackers in a derogatory or slang humorous way, like 'hax0r me some coffee?' or can you hax0r some bread on the way to the table please?' 2 - A tool for cutting sheet metal. HHN - Maybe a bit confusing with HNN but we did spring to life around the same time too, HWA Hax0r News.... HHN is a part of HNN .. and HNN as a proper noun means the hackernews site proper. k? k. ;& HNN - Hacker News Network and its affiliates http://www.hackernews.com/affiliates.html J00 - "you"(as in j00 are OWN3D du0d) - see 0wn3d MFI/MOI- Missing on/from IRC NFC - Depends on context: No Further Comment or No Fucking Comment NFR - Network Flight Recorder (Do a websearch) see 0wn3d NFW - No fuckin'way *0WN3D - You are cracked and owned by an elite entity see pheer *OFCS - Oh for christ's sakes PHACV - And variations of same Phreaking, Hacking, Anarchy, Cracking, Carding (CC) Groups Virus, Warfare Alternates: H - hacking, hacktivist C - Cracking C - Cracking V - Virus W - Warfare A - Anarchy (explosives etc, Jolly Roger's Cookbook etc) P - Phreaking, "telephone hacking" PHone fREAKs ... CT - Cyber Terrorism *PHEER - This is what you do when an ereet or elite person is in your presence see 0wn3d *RTFM - Read the fucking manual - not always applicable since some manuals are pure shit but if the answer you seek is indeed in the manual then you should have RTFM you dumb ass. TBC - To Be Continued also 2bc (usually followed by ellipses...) :^0 TBA - To Be Arranged/To Be Announced also 2ba TFS - Tough fucking shit. *w00t - 1 - Reserved for the uber ereet, noone can say this without severe repercussions from the underground masses. also "w00ten" 2 - Cruciphux and sAs72's second favourite word (they're both shit stirrers) *wtf - what the fuck, where the fuck, when the fuck etc .. *ZEN - The state you reach when you *think* you know everything (but really don't) usually shortly after reaching the ZEN like state something will break that you just 'fixed' or tweaked. @HWA -=- :. .: -=- 01.0 Greets!?!?! yeah greets! w0w huh. - Ed ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Thanks to all in the community for their support and interest but i'd like to see more reader input, help me out here, whats good, what sucks etc, not that I guarantee i'll take any notice mind you, but send in your thoughts anyway. * all the people who sent in cool emails and support FProphet Pyra TwstdPair _NeM_ D----Y Dicentra vexxation sAs72 Spikeman p0lix Ken Williams/tattooman of PacketStorm, hang in there Ken...:( & Kevin Mitnick (Happy Birthday) kewl sites: + http://www.securityportal.com/ NEW + http://www.securityfocus.com/ NEW + http://www.hackcanada.com/ + http://www.l0pht.com/ + http://www.2600.com/ + http://www.freekevin.com/ + http://www.genocide2600.com/ + http://www.packetstorm.harvard.edu/ ******* DOWN (THANKS JP) ****** + http://www.hackernews.com/ (Went online same time we started issue 1!) + http://www.net-security.org/ + http://www.slashdot.org/ + http://www.freshmeat.net/ + http://www.403-security.org/ + http://ech0.cjb.net/ @HWA 01.1 Last minute stuff, rumours and newsbytes ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ "What is popular isn't always right, and what is right isn't always popular..." - FProphet '99 +++ When was the last time you backed up your important data? Thanks to myself for providing the info from my wired news feed and others from whatever sources, also to Spikeman for sending in past entries.... - Ed @HWA 01.2 MAILBAG - email and posts from the message board worthy of a read ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ 02.0 From the editor. ~~~~~~~~~~~~~~~~ #include #include #include main() { printf ("Read commented source!\n\n"); /*Thin pickings this week for news, but here we go with #29 * * * Remember to send in any articles you want to write to us! * wether its technology, hacking, internet, or phreaking... * also poetry and short cyberpunk stories will be considered * for printing, use us as your distribution medium... * send submissions to: hwa@press.usmc.net */ printf ("EoF.\n"); } Congrats, thanks, articles, news submissions and kudos to us at the main address: hwa@press.usmc.net complaints and all nastygrams and mai*lbombs can go to /dev/nul nukes, synfloods and papasmurfs to 127.0.0.1, private mail to cruciphux@dok.org danke. C*:. 03.0 So you wanna be a hacker? by Avatar ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ retro-text picked up off the web by - ed ... http://dmatrix.teamshadow.com/hack/statemind.txt So you wanna be a HACKER huh? It's a state-of-MIND! ..you can induce it - but only if you are willing to drive yourself mad enough! Go read and practice until you have mastered at least Assembly language and Intermediate Level Electronics! Without this foundation you'll be just another little geek, who might know the magic words to the spell but dosent understand what he's doing! So RTFM! ..so what does that mean? Read The Fucking Manual! You will be sooo amazed at how easy most things are if you just try to read the manual first! The truth is: Most people cant read. Or they read poorly if they read at all. So if you can't really read...STOP RIGHT HERE. GO learn to read first. If you can't read at a minimum 12th Grade level you cant be a hacker. Reading is the basic skill you must have to do EVERYTHING BEYOND THIS POINT. Tell your friends you cant party...you're busy. Spend at least 4 hours a day at your new-found fascination...or decide right here and now that you cant cut it! If you CAN, get a copy of MINIX or LINUX...start learning about OPERATING SYSTEMS. Then start your 1st real hack...try building a computer-controlled, DTMF dialer card for your cheap PC...write the code to use it with, make it a TSR to keep life interesting...now port it to MINIX or whatever ...better yet, port it as an IOCTL call at kernel level! You keep reading... Now you're ready to take on something more complex - go to the Library, start a literature search; topic: Telephone Technologies. RTFM! Learm about the ancient cross-bar, the Pre-ESS systems, the fab MFTSS, the TELEX boxes and circuits...keep reading...buy up an older, cheap (like under $50) cellular phone...by this time you should already have a subscription to 'Nuts & Volts" as well as a few other grassroots technology pubs....buy a copy of the "Cellular Hacker's Bible"....start by doing something simple.. ..disassemble and re-write the phone`s control ROM to allow it to function as an 800MHZ scanner...hopefully you've assembled a large array of tools and test gear by now. You've got a good dual-trace scope, some pc-based PROM burner, a signal generator, a logic probe or two, maybe even a microprocessor-emulator for the 5051, the Z80, the 68010 or something....you may have been dragged into some fields-afar by life - incorporate them: If somebody drasgged you into SCUBA, build your own sonar. If you have gotten interested in amateur radio, you can build a lot of swell stuff...I recommend you checkout Packet's AX25A level2 protocol...very slick stuff! If your bud's are all into motors, take a whak at doing your own Performance PROMS for GM's F.I. and spark advance curves...or try adapting some Volkswagen/BOSCHE Kjetronics F.I. to a Harley Davidson!..maybe you're into music so you buy a synthesizer and learn all about electronic music, you start hacking analog modules and build a nicer synth than you could buy! Then you interface it to a MIDI port on a cheap 286AT and then hack up some sequencer software, or buy some and then disassemble it to fix all the bugs! You keep reading... By now most of your friends are also "far into the pudding", you have either gained 50 lbs or gone totally skinny...your skin tone is 2 shades lighter from being indoors so long...most of the opposite sex is either totally freaked by or with you - they either dig you, or they dont!...you're probably knocking on the door of what will be a $60K+/yr job as a systems analyst...and you are well-aware that 90% of the people in this world can't talk their way out of a badly cooked steak at the local eatery, let alone install a new motherboard in their PC! So you pick up some extra cash on doing shit like that for the straights...you keep reading, and RTFM'ing higher and higher, learning about networks...the VCR breaks down and your SO bitches about having to wait till monday to have it fixed...you fix it in about 40 minutes....the next day the clothes dryer starts to make squeeking noises like a 50' mouse, you've never fixed one before - but somehow it's not that difficult to open the bastard up and find the squeek and fix it...and suddenly it dawns on you that hacking code or hardware is pretty much the same! You keep reading... Congrats, you are now a real hacker. Absolutly nothing but a lack of time (or in some cases money) can stop you. You are a true Technologic Philosopher...you can function in places a mere Engineer or Scientist would truly FEAR TO TREAD! You can read better than Evelyn Wood, you have a collection of tools that would make a Master Machinist and a Prototype EE or ME cry. You can calculate series and parallel resonant circuits in your head. You can fix any consumer appliance - if you can get the parts. Your car has either become one of your main hacks or you'ver deligated the job to a mechanic who you have found to be a fellow hacker; and you work on his homebrew 68010 unix box...because you've got a 68010 emulator and he works on your car because that's the kind he specializes in! Maybe you trade services with people for 50% of what ordinary people have to BUY WITH CASH!...you keep reading... (this is the stage where the author now finds himself...16 years into a career at a Fortune 5 company and age 42...still reading... your mileage may vary! <-((that's my code too! I co-wrote VEEP, (vehicle-economy-emissions-program, a complete auto-simulator, written in Fortran-5 for the Univac 1108 system using punch-cards!) for the Ford Foundation and the DOT while at JPL in 1973)) ) -Avatar-> (aka: Erik K. Sorgatz) KB6LUY +----------------------------+ TTI(es@soldev.tti.com)or: sorgatz@avatar.tti.com *Government produces NOTHING!* 3100 Ocean Park Blvd. Santa Monica, CA 90405 +----------------------------+ (OPINIONS EXPRESSED DO NOT REFLECT THE VIEWS OF CITICORP OR ITS MANAGEMENT!) @HWA 04.0 Microsoft security bulletin: Encapsulated SMTP address vulnerability ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Microsoft Security Bulletin (MS99-027) -------------------------------------- Patch Available for "Encapsulated SMTP Address" Vulnerability Originally Posted: August 06, 1999 Summary ====== Microsoft has released a patch that eliminates a security vulnerability in Microsoft® Exchange® Server. The vulnerability could allow an attacker to perform mail relaying via an Exchange server that is configured to act as a gateway for other Exchange sites using the Internet Messaging Service. Frequently asked questions regarding this vulnerability can be found at http://www.microsoft.com/security/bulletins/MS99-027faq.asp Issue ==== Exchange Server implements features designed to defeat "mail relaying", a practice in which an attacker causes an e-mail server to forward mail from the attacker, as though the server were the sender of the mail. However, a vulnerability exists in this feature, and could allow an attacker to circumvent the anti-relaying features in an Internet-connected Exchange Server. The vulnerability lies in the way that site-to-site relaying is performed via SMTP. Encapsulated SMTP addresses could be used to send mail to any desired e-mail address. The patch eliminates the vulnerability by making encapsulated SMTP addresses subject to the same anti-relay protections as non-encapsulated SMTP addresses. Affected Software Versions ========================= Microsoft Exchange Server 5.5 Patch Availability ================= ftp://ftp.microsoft.com/bussys/exchange/exchange-public /fixes/Eng/Exchg5.5/PostSP2/imc-fix NOTE: Line breaks have been inserted into the above URL for readability. More Information =============== Please see the following references for more information related to this issue. Microsoft Security Bulletin MS99-027: Frequently Asked Questions, http://www.microsoft.com/security/bulletins/MS99-027faq.asp. Microsoft Knowledge Base (KB) article Q237927, XIMS: Messages Sent to Encapsulated SMTP Address Are Rerouted Even Though Rerouting Is Disabled, http://support.microsoft.com/support/kb/articles/q237/9/27.asp. Microsoft Security Advisor web site, http://www.microsoft.com/security/default.asp. Obtaining Support on this Issue ============================== This is a fully supported patch. Information on contacting Microsoft Technical Support is available at http://support.microsoft.com/support/contact/default.asp. Acknowledgments ============== Microsoft acknowledges Laurent Frinking of Quark Deutschland GmbH for bringing this issue to our attention and working with us to alert customers about it. Revisions ======== August 06, 1999: Bulletin Created. ----------------------------------------------------------------------- THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY. © 1999 Microsoft Corporation. All rights reserved. @HWA 05.0 Disrupting Net Access a Cybercrime? ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Contributed by D----Y -------------------------------------------------------------- This story was printed from ZDNN, located at http://www.zdnet.com/zdnn. -------------------------------------------------------------- Disrupting Net access a cybercrime? By Robert Lemos, ZDNN August 6, 1999 3:28 PM PT URL: http://www.zdnet.com/zdnn/stories/news/0,4586,2310624,00.html A former system administrator of the University of Oklahoma has been charged under the state's computer-crime statutes with slowing the university's network to a crawl. Ryan Breding, 25, faces a single count of disrupting the university's Internet service in 1997, when hoards of incoming students downloaded pirated software from servers that he had allegedly set up on the university's network. "There were times when the authorized users -- students -- were not able to access the Internet at all," said Scott Palk, first assistant attorney general for Oklahoma's Cleveland County District Attorney's Office. Known as warez (pronounced "wares"), the software is identical to store-bought versions and includes serial numbers to spoof the copy protection mechanisms. The downloads overloaded the network, and many students were denied access. Getting up to speed While distributing such software is illegal, the district attorney's office has only charged Breding with interfering with network operation. On that charge alone, the former employee faces up to 10 years in the state penitentiary and up to $100,000 in fines. The Oklahoma Computer Crimes Act of 1984 makes it a felony to "willfully and without authorization disrupt or cause the disruption of computer services or deny or cause the denial of access or other computer services to an authorized user of a computer, computer system or computer network." An initial lack of familiarity with computer crimes stymied the investigation. State investigators and prosecutors needed to learn how to pursue digital criminals and examine the evidence. "These are new crimes -- at least locally," said Palk. "Some people had to undergo training to look into it." Palk stressed that, for the investigators, the case was a necessary learning experience. "This may be a hallmark of things to come," he said. "And we need to be ready." University officials would not comment for this story. A preliminary hearing is set to start on Aug. 17. @HWA 06.0 IDEA CAST BO2K PLUGIN VULNERABILITY ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From http://www.securityfocus.com/ BO_CAST Plug-in Identical Key Vulnerability Bugtraq ID: 561 Remote: Yes Date Published: 08/04/99 Relevant URL: http://www.securityfocus.com/level2/?go=vulnerabilities&id=561 Summary: The BO_CAST plugin for BO2k has a vulnerability that causes any password to generate the same CAST-256 key. Daniel Roethlisberger has released an updated version, BO_CAST 2.3 . It is available for download at: http://www.roe.ch/download/bo_cast.shtml IDEA BO2k Plug-in Identical Key Vulnerability Bugtraq ID: 562 Remote: Yes Date Published: 08/04/99 Relevant URL: http://www.securityfocus.com/level2/?go=vulnerabilities&id=562 Summary: The IDEA encryption plug-in for BO2k version 0.3 has a flaw which causes any password to generate the same key.Maw~ has released version 0.4 which does not have this vulnerability. It is available at: http://www.wynne.demon.co.uk/maw/ @HWA 07.0 Mitnick gets a welcome birthday present from the LA DA ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From Http://www.hackernews.com Mitnick Gets Birthday Present from LA DA - Federal Sentencing Set For Today contributed by evenprime and turtlex The Los Angels District Attorney has given Kevin a surprise but welcome birthday present by dropping the state charges against him. Last Friday, Kevin's fifth birthday behind bars, the LA DA claimed that the six-year old case had been mischarged. Kevin had been charged with one count of illegally accessing a Department of Motor Vehicles computer and retrieving confidential information. (Which means he (or someone else) tricked a DMV employee over the phone into faxing him information) This action clears the way for Kevin to be released to a halfway house after his federal sentencing. ZD Net http://www.zdnet.com/zdnn/stories/news/0,4586,2310792,00.html News.com http://www.news.com/News/Item/0,4,40234,00.html?tt.abc..ticker.ne MSNBC http://www.msnbc.com/news/298088.asp Yahoo News http://dailynews.yahoo.com/h/zd/19990806/tc/19990806375.html Federal Sentencing Hearing Set For Today Once again Kevin Mitnick is scheduled to be sentenced for his federal charges. While he has already pleaded guilty and has accepted time served plus probation as punishment the issue of restitution still needs to be decided. The hearing will be held today (Monday) at 1:30 pm in Courtroom 12 at the LA Federal Courthouse, 312 N. Spring Street. FREE KEVIN http://www.freekevin.com/ ZDNET; -------------------------------------------------------------- This story was printed from ZDNN, located at http://www.zdnet.com/zdnn. -------------------------------------------------------------- L.A. district attorney drops Mitnick case By Paul Elias, ZDNN August 6, 1999 6:09 PM PT URL: http://www.zdnet.com/zdnn/stories/news/0,4586,2310792,00.html?chkpt=hpqs014 The Los Angeles district attorney gave Kevin Mitnick a birthday present Friday, dropping its six-year-old computer hacking case against the convicted hacker. That development could speed the release of the 35-year-old, removing an obstacle that could have prevented Mitnick from going free from federal prison soon after he is formally sentenced Monday in an unrelated federal case. "We're ecstatic," said Carolyn Hagin, one of Mitnick's attorneys in the state case. Deputy District Attorney Daniel Bershin said he dropped the state case because it had been "mischarged." Dubious 'computer' crime In 1993, the district attorney charged Mitnick with one count of illegally accessing a Department of Motor Vehicles computer and retrieving confidential information. The problem with that charge is that Mitnick, posing as a Welfare Fraud investigator, simply picked up a telephone on Dec. 24, 1992, and duped an employee accessing the DMV computer for him. "Since Mitnick did not personally connect to the DMV computer, but either he or someone else communicated with the DMV technician via a telephone conversation," Bershin wrote in his motion to dismiss the case, "it would be difficult to prove that Mitnick gained entry to the DMV computer, or that he instructed or communicated with the logical, arithmetical or memory function resources of the DMV computer." Bershin also confirmed at a July 28 hearing what many of Mitnick's supporters have been claiming f*or years: that their martyr has been the target of overzealous prosecution. Bershin first informed Los Angeles County Superior Court Judge Leland Harris of the district attorney's intention to drop the case at the July 28 hearing, a position that caught Harris off guard. As early as July 7, Deputy District Attorney Larry Diamond -- who had originally handled Mitnick's case -- was vigorously arguing against any reduction in Mitnick's $1 million bail pending trial. Judge 'curious' "So I'm curious as to why all of a sudden between July 7 and July 28 we have this radical change in position," the judge asked of Bershin. "Well, I think to be quite candid, the answer, or course, is Mr. Diamond," Bershin said. "I know that Mr. Diamond has wanted to handle this matter personally for a long time ... and I know that Mr. Diamond personally believes that Mr. Mitnick has been skating through the system for a long time and has a great interest in him." At that July 28 hearing, Harris refused to dismiss the case, saying to do so would be "a radical jump off the precipice to move to dismiss at this time." He ordered Bershin to submit a written motion to dismiss, which Harris granted Friday. Halfway house an option Harris' action clears the way for Mitnick's freedom. He is due to be sentenced in federal court for several hacking charges he pleaded guilty to in March. His attorney in the federal case, Donald Randolph of L.A.'s Randolph & Levanas, said he will ask Central District Judge Mariana Pfaelzer to order Mitnick into a halfway house after formally sentencing him to 68 months in prison. Randolph said he is optimistic Pfaelzer will grant the request, but if she doesn't Mitnick is set to go free sometime in January. Still at issue is the amount of money Mitnick must repay in restitution. His victims, including several high-tech giants such as Sun Microsystems (Nasdaq:SUNW) and Motorola Corp. (NYSE:MOT), say that Mitnick's hacking cost them millions of dollars in compromised intellectual property. Federal prosecutors are seeking $1.5 million in restitution. Mitnick, through Randolph, argues that he is leaving prison broke and that conditions of his probation, once he is released, severely restrict his access to a computer, the only way he knows how to make a living. Pfaelzer has indicated that she will order Mitnick to make some restitution, which she is scheduled to decide Monday as well. Mitnick was arrested in 1995 after a high-profile, two-year, electronic manhunt for him. -=- News.com District attorney drops Mitnick case By Dan Goodin Staff Writer, CNET News.com August 6, 1999, 7:35 p.m. PT The Los Angeles district attorney's office has dropped state charges against Kevin Mitnick, the notorious hacker who pleaded guilty in March to wire fraud and other federal charges, according to a published report. Mitnick, who will receive a five-year sentence if a federal judge accepts the plea, could be released from jail early next year. He has been held in federal custody since he was captured in a high-profile investigation in 1995. He also faced separate state charges as well. But Deputy District Attorney Daniel Bershin said today he was dropping those charges, because they had been "mischarged," ZD Network News is reporting. The case stemmed from 1993 charges that Mitnick unlawfully accessed computers at the state department of motor vehicles. Bershin admitted in a brief filed today that the case was flawed because Mitnick never accessed the computer himself, but allegedly used posed as a welfare fraud inspector over the phone in order to get a DMV to retrieve information, ZDNN said. Mitnick is scheduled to appear in federal court in Los Angeles this Monday for sentencing before U.S. District Judge Mariana Pfaelzer. -=- Kevin Mitnick appears at a hearing shortly after his arrest on Feb. 15, 1995, in Raleigh, N.C. L.A. drops Mitnick case Action could pave way for hacker’s freedom By Paul Elias ZDNN AUG. 3 — The Los Angeles district attorney gave Kevin Mitnick a birthday present Friday, dropping its six-year-old computer hacking case against the convicted hacker. That development could speed the release of the 35-year-old hacker, removing an obstacle that could have prevented Mitnick from going free from federal prison soon after he is formally sentenced Monday in an unrelated federal case. "Internet Underground" Hackers: Knights-errant or knaves? Will hackers or spies knot the Net? Deputy District Attorney Daniel Bershin said he dropped the state case because it had been mischarged. “WE’RE ECSTATIC” said Carolyn Hagin, one of Mitnick’s attorneys in the state case. Deputy District Attorney Daniel Bershin said he dropped the state case because it had been “mischarged.” In 1993, the district attorney charged Mitnick with one count of illegally accessing a Department of Motor Vehicles computer and retrieving confidential information. The problem with that charge is that Mitnick, posing as a Welfare Fraud investigator, simply picked up a telephone on Dec. 24, 1992, and duped an employee accessing the DMV computer for him. “Since Mitnick did not personally connect to the DMV computer, but either he or someone else communicated with the DMV technician via a telephone conversation,” Bershin wrote in his motion to dismiss the case, “it would be difficult to prove that Mitnick gained entry to the DMV computer, or that he instructed or communicated with the logical, arithmetical or memory function resources of the DMV computer.” MSNBC's Michael Brunker reports on Mitnick's plea bargain deal with the federal government Bershin also confirmed at a July 28 hearing what many of Mitnick’s supporters have been claiming for years: that their martyr has been the target of overzealous prosecution. Bershin first informed Los Angeles County Superior Court Judge Leland Harris of the district attorney’s intention to drop the case at the July 28 hearing, a position that caught Harris off guard. RADICAL CHANGE IN POSITION As early as July 7, Deputy District Attorney Larry Diamond — who had originally handled Mitnick’s case — was vigorously arguing against any reduction in Mitnick’s $1 million bail pending trial. “So I’m curious as to why all of a sudden between July 7 and July 28 we have this radical change in position,” the judge asked of Bershin. “Well, I think to be quite candid, the answer is, of course, Mr. Diamond,” Bershin said. “I know that Mr. Diamond has wanted to handle this matter personally for a long time ... and I know that Mr. Diamond personally believes that Mr. Mitnick has been skating through the system for a long time and has a great interest in him.” At that July 28 hearing, Harris refused to dismiss the case, saying to do so would be “a radical jump off the precipice to move to dismiss at this time.” He ordered Bershin to submit a written motion to dismiss, which Harris granted Friday. MITNICK’S FREEDOM? Harris’ action clears the way for Mitnick’s freedom. He is due to be sentenced in federal court for several hacking charges he pleaded guilty to in March. His attorney in the federal case, Donald Randolph of L.A.’s Randolph & Levanas, said he will ask Central District Judge Mariana Pfaelzer to order Mitnick into a halfway house after formally sentencing him to 68 months in prison. Randolph said he is optimistic Pfaelzer will grant the request, but if she doesn’t Mitnick is set to go free sometime in January. Still at issue is the amount of money Mitnick must repay in restitution. His victims, including several high-tech giants such as Sun Microsystems and Motorola Corp. say that Mitnick’s hacking cost them millions of dollars in compromised intellectual property. Federal prosecutors are seeking $1.5 million in restitution. Mitnick, through Randolph, argues that he is leaving prison broke and that conditions of his probation, once he is released, severely restrict his access to a computer, the only way he knows how to make a living. Pfaelzer has indicated that she will order Mitnick to make some restitution, which she is scheduled to decide Monday as well. Mitnick was arrested in 1995 after a high-profile, two-year, electronic manhunt for him. © 1999 ZDNet. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of ZDNet is prohibited @HWA 08.0 An Accurate Look At Mitnick's Life Behind Bars ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by staff There have been a few articles floating around the web that attempt to describe what Kevin is going through and the experiences he must endure. This one appears to be the most accurate and is based off only the third Mitnick interview granted to a media organization. Aviary Mag http://aviary-mag.com/News/Mitnick_Life/mitnick_life.html Kevin Mitnick´s Life -- Life in and around 6 South, 626 ATTRITION Staff Recently, two of the Attrition Staff writing for OSAll caught up with Kevin Mitnick and asked a few more questions about his living conditions. We presented him with an article by Kimberly Tracey (-1-) to establish a baseline for our talk and a reason for this followup. Life as it REALLY stands Here's a little bit about Kevin Mitnick's life at the Los Angeles Metro Detention Center (MDC), a bit more up to date: At the MDC there IS a yard for exercising. It is called the "rec deck" (Recreation Deck), rather than a yard and offers fresh air and sunlight, through a protected metal grating. On this patio Kevin has the option of playing basketball, walking or using the universal weights. The call for "lockup"(-1-) (known as 'lockdown' in most prisons including MDC) means that inmates must return to their cells. This is typically done for a count to ensure all inmates are still within the confines of the prison, or if any of the individuals get out of control. The times when they are all rounded up on the balcony means they are 'tossing cells' or doing a 'shakedown' (looking for contraband items). There are two 'units' per floor. Each unit has three TV's giving a total of six per floor. However, inmates from one unit may not use the resources from (or visit) another unit. Short of personal or legal visits (or court appearances), they do not leave their unit. As of May 24th, the vending machines were removed from the floors. Despite this, the microwaves (2 per unit) are still available. Along with the removal of vending, many items were added to the commissary. "I never buy food from the guards. No inmates including me purchase food or any items from MDC staff. It's strictly forbidden," Kevin says. The only source for Kevin to buy food is the commissary which offers a small variety of food (as well as toiletry items). We learned that the MDC does offer a couple exercise bikes that still work. "I use them all the time," Kevin smiles. While using one of the four phones in his unit, he often brings a stool from his cell to make the calls a bit more comfortable. Often times, the phones are turned on as early as 6am he says. The practice of 'buying' phone time is frowned upon by MDC staff. "The MDC does not allow inmates to have any cash or change, money is contraband so it's impossible to buy phone time for a 'few extra dollars,'" Kevin reports. Since February, Kevin has been able to use the government approved laptop on weekdays, with appropriate supervision. This time is usually spent sorting through the many gigs of evidence in preparation for his case. Now that a plea has been entered, time is spent making a much more educated guess at the actual damage figures being leveled at him. Unfortunately, the friendly advice about tapes and videos that was offered by Ms. Tracey is a bit inaccurate. "I appreciate any tapes or CD's, however, I'll have to wait until I'm released before I can listen to them." Kevin has no resource to play tapes or videos with or without his defense team present. No Place Like Home Each day that Kevin comes down to the visiting room, he carries a cardboard box overflowing with legal declarations, printed evidence, news articles and more. Ten minutes later, one of the MDC staff bring him the government approved laptop so that he can examine the bulk of the evidence. Outfitted with a locking device preventing floppy use, Kevin can only receive programs and evidence via CDROM. Dual booting into Redhat Linux and Windows 95, he is able access almost all of the evidence. To be more accurate, he can not access any of the evidence from the VMS backup tapes, megs of logs from various CDs, and of course the evidence still not provided by the government. After visiting his direct family or legal staff, Kevin returns to what he has been forced to call 'home' for four years, five months, and twenty one days. Not that he or anyone else is counting. Home is a cell smaller than the largest of private visitation rooms reserved for legal visits. Those rooms are perhaps 8x10, and yet still larger than Kevin's cell (that he shares with one other inmate). Cell #626 sits off the 'common area' and is seperated by a wooden door with a narrow glass window, offering less view than the narrow window that grants him a peek of the Roybal Federal Building. Along with the other inmate, the tiny cell has two bunks, a toilet, sink, all acceptable personal possessions and a tendancy to give people a cramped feeling. The common area is available to inmates from roughly 6:30 to 9:45. This area contains the bikes, microwaves, televisions and phones. Also provided are billiards and ping pong tables. While the common area may sound fun and recreational, it is not condusive to those trying to read or study legal briefs. Kevin's cell has a lovely view of the sixth floor of the Roybal Federal Building. A building with more stringent metal detectors than the MDC even. Even from the sixth floor, he gets to view more federal offices. A Day in the Life of.. With a better image of the material life surrounding Kevin, hopefully it will be easier to envision a typical day. 6:30 - wake up sign up for phone time (typically two 20 minute blocks) 7:00 - light breakfast (example: pastry and milk) 7:45 - head to patio, walk for half an hour 8:15 - weight lifting on patio 10:20 - use part of phone time 10:40 - grab lunch tray (example: eggs, burrito, potatoes, milk) lockdown for lunch 12:00 - "boring time" legal visits, phone calls, lay out in sun, read, socialize 3:45 - lockdown for count 4:45 - grab dinner tray for later use part of phone time 6:00 - ride bike, exercise 7:30 - shower eat dinner 9:45 - lockdown shave, read 11:00 - sleep During most of his workouts, Kevin is able to listen to an AM/FM walkman. For those of you interested in his music selection, his radio is programmed with the following stations: #1 93.1 #2 95.5 (KEZY) #3 103.1 #4 106.7 (KROQ) #5 98.7 (STAR) Drop Him A Line The letters and comments he receives are an uplift to say the least. Continued support and cards are welcome and he sends his thanks to the many people who have written him. Kevin enjoyed his birthday on August 6th, especially when the State of California opted to drop the outstanding charges leveled at him some seven years prior. Despite his birthday passing, cards or words of encouragement would be a great gift. Federal judge M. Pfaelzer sentencing him to the defense proposed restitution and 'time served' would be the best gift though. ;) If that is too much to ask, recommending his immediate release to a half way house would be acceptable. As Ms. Tracey said, sending him money via postal money orders is appreciated so that he can enjoy it right away. Another way to support Kevin is to purchase 'Free Kevin' bumper stickers from www.freekevin.com as the profit goes toward his legal defense fund. For those not keeping up, Kevin is due to be sentenced on Monday, August 9th at 1:30pm. Judge Pfaelzer can be found at the US Court House (-2-), room 12. Kevin Mitnick 89950-012 P.O. Box 1500 Los Angeles, CA 90053 Both of us have spent long hours locked in a government SCIF on previous security contracts. We were paid to be in these small depressing rooms and hack military networks. I could barely stand 8 hours in those 10x10 rooms full of computers with no windows. Now, Kevin gets to sit in his less than 10x10 cell for allegedly hacking other networks. It's sick and ironic. @HWA 09.0 Sony and EA Take Down Paradigm ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by km Sony Computer Entertainment America and Electronic Arts have recently filed suit against alleged members of the warez group Paradigm in the U.S. District Court for the Northern District of California. The suit alleges that members of the group infringed on the copyrights and trademarks by distributing unauthorized copies of software from the two companies. United States Marshals recently conducted a court-sanctioned seizure and impounded evidence at the location of a participant of the group. SCEA and EA plan to continue the civil case against the pirates, they will also cooperate with law enforcement in the United States and will be turning over evidence to authorities in several other countries for possible criminal action against other group members. Yahoo Biz News http://biz.yahoo.com/bw/990806/ca_sony_co_1.html Friday August 6, 8:05 am Eastern Time Company Press Release Electronic Arts and Sony Computer Entertainment America Nab Internet Pirate Ring Companies file joint lawsuit against online pirates REDWOOD CITY, Calif. and FOSTER CITY, Calif.--(BUSINESS WIRE)-- August 6, 1999--Declaring war on a major Internet pirate ring that illegally uploaded, traded and distributed copies of their software, U.S.-based Electronic Arts(tm) (Nasdaq:ERTS - news), the industry's largest entertainment software publisher, and Sony Computer Entertainment America (SCEA), the company behind the PlayStation® game console, the world's best-selling videogame system, recently filed suit against certain alleged members of the ring in the U.S. District Court for the Northern District of California. Among other claims, the complaint asserts the defendants infringed the copyrights and trademarks of the two companies through the copying and distribution of software owned by Electronic Arts and SCEA. United States Marshals and lawyers for the companies recently conducted a court-sanctioned seizure and impounded evidence at the location of a participant of the group that calls itself ``Paradigm.'' During the seizure, a computer, hard drives, CDs and other items related to the illegal operation were impounded by the Marshals. The complaint further notes that the seizure, as well as the investigation which preceded it, produced a significant amount of evidence against members of the worldwide ring located in the United States, Canada, the United Kingdom, Germany, the Netherlands, Denmark, Norway, Portugal, Sweden, Russia and other locations. The evidence identified by true name and location dozens of participants in the distribution of pirated software belonging to the companies. While SCEA and Electronic Arts plan to continue the civil case against the pirates, they also continue to cooperate with law enforcement in the United States and will be turning over evidence to authorities in several of the other relevant countries for possible criminal action against the group's members. ``Putting an end to software piracy is a top priority for our industry,'' said Ruth Kennedy, senior vice president and general counsel, Electronic Arts. ``Electronic Arts and SCEA believe that the break up of pirate Internet rings like this will be key to our success in combating the rising problem of Internet piracy. This action is part of our ongoing plan to find and prosecute these thieves.'' ``Piracy of packaged entertainment software last year amounted to over US$3.2 billion worldwide for our industry alone. Electronic Arts alone lost more than $400 million. Internet pirate rings like Paradigm contribute to these losses by uploading games where the industrial pirates in places such as Asia or Russia can download them, turn them into copies of packaged goods and rush them to the street -- sometimes even before we get the legitimate goods to market,'' Kennedy noted. Pre-release or day-of-release software is highly prized by pirate Internet rings, that compete for ``points'' in the pirate community by being the first to ``release'' an illegal version of the product, often with copy protection and other content removed. Both companies praised the recently announced criminal ``I.P. Initiative'' by federal authorities including the Department of Justice, the FBI, and U.S. Customs, which as its goal has increased criminal prosecutions of pirates of intellectual property. According to Riley Russell, vice president of legal and business affairs, Sony Computer Entertainment America, ``We will work diligently to ensure that these counterfeiters are fully prosecuted and that others who think Internet piracy and `trading' is acceptable will think again.'' Russell noted that last year alone, counterfeiting cost SCEA and Electronic Arts losses of several hundreds of millions of dollars around the globe. Other Internet rings besides Paradigm that are also believed to be involved in the pirating of entertainment software include groups calling themselves ``Razor 1911,'' ``Class,'' ``Origin,'' ``Hybrid'', ``Divine'', ``Fairlight'' and others, with members based in the United States and in many other countries around the world. The companies are confident evidence developed in the current case as well as continuing efforts by the entertainment software industry will result in additional civil actions and criminal prosecution of members of these groups in the future. Electronic Arts, headquartered in Redwood City, California, is the world's leading interactive entertainment software company. Founded in 1982, Electronic Arts posted revenues of more than $1.2 billion for fiscal 1999. The company develops, publishes and distributes software worldwide for personal computers and video game systems. Electronic Arts markets its products under seven brand names: Electronic Arts, EA SPORTS(tm), Maxis(tm), ORIGIN(tm), Bullfrog(tm) Productions, Westwood Studios(tm) and Jane's® Combat Simulations. More information about EA's products and full text of press releases can be found on the Internet at http://www.ea.com. Sony Computer Entertainment America, a division of Sony Computer Entertainment America Inc., markets the PlayStation game console for distribution in North America, develops and publishes software for the PlayStation game console, and manages the U.S. third party licensing program. Based in Foster City, Calif., Sony Computer Entertainment America Inc. is a wholly-owned subsidiary of Sony Computer Entertainment Inc. Note to Editors: Electronic Arts, EA SPORTS, Maxis, ORIGIN, ORIGIN Systems, Bullfrog and Westwood Studios are trademarks or registered trademarks of Electronic Arts in the United States and/or other countries. Jane's is a registered trademark of Jane's Information Group, Ltd. PlayStation is a registered trademark of Sony Computer Entertainment Inc. Contact: Electronic Arts Pat Becker, 650/628-7832 or Sony Computer Entertainment America Molly Smith, 650/655-6044 10.0 Regional Computer Forensics Lab Set Up in San Diego ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by bluesky With $600,000 provided by two federal grants officials have set up the San Diego Regional Computer Forensics Laboratory with the support of 32 federal, state and local law enforcement agencies. The lab will be manned by 14 FBI trained specialists from local police agencies, including the San Diego Police Department and the Sheriff's Department. The lab will conduct court-approved wiretap operations that call for intercepting Internet communications as well as data recovery and analysis from seized computer systems. San Diego Union Tribune http://www.uniontrib.com/news/uniontrib/fri/metro/news_2m6lab.html First regional computer crime laboratory set up in San Diego Forensic team will retrieve electronic evidence for use in trials By Bruce V. Bigelow STAFF WRITER August 6, 1999 Overwhelmed by the use of computers in illegal activities, federal authorities have formed a regional crime lab in San Diego that specializes in retrieving computerized data and preserving the evidence for trial. The San Diego Regional Computer Forensics Laboratory is being hailed by organizers as the first of its kind, and it already has become a nationwide model for law enforcement in other cities -- even before its FBI-trained specialists have received their first case. The lab also is expected to eventually conduct court-approved wiretap operations that call for intercepting Internet communications. "All of us involved in the investigation and prosecution of computer crime view the San Diego lab as a prototype of what we hope to establish in various jurisdictions around the country," said David Schindler, a federal prosecutor in Los Angeles who won convictions of Kevin Mitnick and other notorious hackers. Most of the lab's 14 forensic specialists are sworn officers from local police agencies, including the San Diego Police Department and the Sheriff's Department. The lab's electronic infrastructure was designed by computer security experts at the Navy's Space and Naval Warfare Systems Command headquarters. "This is extremely important, not just a little important," said Alan Paller, a computer security expert at the SANS Institute, an international research and education cooperative for more than 60,000 system administrators. "The vast majority of discoveries (of network intrusions) go unresolved because there are no resources outside the FBI of any scale. If the probability of getting caught and put in jail is far-removed, why worry?" About $600,000 needed to renovate FBI offices and equip the facility was provided by two federal grants, said Mitch Dembin, an assistant U.S. attorney in San Diego who proposed the idea. "I sold this idea to the individuals who are doing this on their own in the wilderness of their own departments, and then I sold the idea to the department heads in those agencies," Dembin said. A total of 32 federal, state and local law enforcement agencies have agreed to support the lab, he added. "The idea is one I very much agree with," said Doug Tygar, a professor of computer science at the University of California Berkeley who specializes in computer security. "Unless they have the ability to deal with digital data, digital transactions, law enforcement agencies are going to be behind the curve." While the FBI established a computer forensics lab at its Washington headquarters years ago, experts say the agency also has maintained tight controls over the software tools used by its forensic specialists. "Until now, the FBI only trained its own people," Dembin said. The San Diego lab's staff members, who completed their FBI training seven weeks ago, are now working in temporary quarters until work on the new facility is completed in the next month or so. "What they're doing right now is developing the protocols and processes that will be applied to any case," Dembin said. "We're already receiving inquiries from all over country . . . which is interesting since we haven't prosecuted a single case yet." The interest prompted Dembin to organize a session about the San Diego lab during the High Technology Crime Investigation Association's annual meeting, to be held in San Diego's Town & Country Convention Center next month. The regional lab will help set forensic standards for local investigators and provide guidance in the way search warrants are served, computers are seized and data is retrieved for evidence at trial, said Bill Gore, who supervises the FBI office in San Diego. "We've been pretty lucky, I think, because so far the defense attorneys haven't really homed in on the procedures that we use," said Gore. The presentation of computerized data at trial can be as complex as DNA evidence, he added. The lab's investigators also are expected to deal with tricky investigations, such as a handful of employees who are using a corporate computer network for illegal activities. The "courts are reluctant to let the U.S. attorney shut down a business" by seizing control of a company's entire computer system, Dembin said, "so we have to come up with tools that minimize our interference with commerce." For Dembin and other prosecutors, however, a more practical problem stemmed from protracted delays in the analysis of computer-based evidence seized in cases that ranged from securities fraud to drug crimes. "There's been a bottleneck in analyzing computer or electronic evidence," said Schindler, who usually works with FBI forensics experts in Los Angeles. Said Dembin: "Putting aside the question of whether the forensics was done right, cases were getting disposed of before the seized computers were even analyzed." Dembin's first brush with computer crime occurred in 1991, when he prosecuted a disgruntled employee who tried to sabotage General Dynamics computers in San Diego with a "logic bomb." Since then, the 45-year-old prosecutor has handled his own share of malicious hacker cases. Over the past eight years, Dembin also saw how con artists converted their telemarketing scams into Internet schemes, and he oversaw bank fraud cases that relied on computerized financial records. "Now more and more the only place where documentary evidence exists is on the computer," Dembin said. "People are keeping their personal records of everyday activities on their computers, and criminal society is no different." Copyright 1999 Union-Tribune Publishing Co. 11.0 University Sys Admin Faced with 10 Years for Using Too Much Bandwidth ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by evenprime A former University of Oklahoma systems administrator has been charged with using too much bandwidth. He faces a single count of disrupting the universities internet service after he allegedly set up a warez site on the University owned servers. While not charged with piracy or copyright infringement the local DA decided to prosecute under the Oklahoma Computer Crimes Act of 1984 which states that it is a felony to "willfully and without authorization disrupt or cause the disruption of computer services or deny or cause the denial of access or other computer services to an authorized user of a computer, computer system or computer network." He faces up to 10 years in the state penitentiary and up to $100,000 in fines. (So now it is a crime to have a popular site? This article fails to mention if this person was a legitimate user of the network to begin with.) ZD Net http://www.zdnet.com/zdnn/stories/news/0,4586,2310624,00.html -------------------------------------------------------------- This story was printed from ZDNN, located at http://www.zdnet.com/zdnn. -------------------------------------------------------------- Disrupting Net access a cybercrime? By Robert Lemos, ZDNN August 6, 1999 3:28 PM PT URL: http://www.zdnet.com/zdnn/stories/news/0,4586,2310624,00.html A former system administrator of the University of Oklahoma has been charged under the state's computer-crime statutes with slowing the university's network to a crawl. Ryan Breding, 25, faces a single count of disrupting the university's Internet service in 1997, when hoards of incoming students downloaded pirated software from servers that he had allegedly set up on the university's network. "There were times when the authorized users -- students -- were not able to access the Internet at all," said Scott Palk, first assistant attorney general for Oklahoma's Cleveland County District Attorney's Office. Known as warez (pronounced "wares"), the software is identical to store-bought versions and includes serial numbers to spoof the copy protection mechanisms. The downloads overloaded the network, and many students were denied access. Getting up to speed While distributing such software is illegal, the district attorney's office has only charged Breding with interfering with network operation. On that charge alone, the former employee faces up to 10 years in the state penitentiary and up to $100,000 in fines. The Oklahoma Computer Crimes Act of 1984 makes it a felony to "willfully and without authorization disrupt or cause the disruption of computer services or deny or cause the denial of access or other computer services to an authorized user of a computer, computer system or computer network." An initial lack of familiarity with computer crimes stymied the investigation. State investigators and prosecutors needed to learn how to pursue digital criminals and examine the evidence. "These are new crimes -- at least locally," said Palk. "Some people had to undergo training to look into it." Palk stressed that, for the investigators, the case was a necessary learning experience. "This may be a hallmark of things to come," he said. "And we need to be ready." University officials would not comment for this story. A preliminary hearing is set to start on Aug. 17. @HWA 12.0 Chaos Computer Camp Fun For All Last Weekend ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by turtlex A computer, some beer, cyber friends, warm grass and a new moon, what more could you ask for? Chaos Computer Club Camp wrapped up over the weekend, people are saying it was the most fun they have had since HIP. Wired http://www.wired.com/news/news/culture/story/21159.html (Printed in last issue) 13.0 NIST Announces the AES Finalist Candidates ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by evilwench Five encryption technologies have made the final cut to be the next standard cryptographic mechanism used to protect sensitive government information. It has taken over a year to whittle the initial field of twelve entries down to five, one of which will replace DES, the current standard. The final standard is expected to be chosen by the Summer of 2001. The five finalists for the advanced encryption standard (AES), where named by the National Institute of Standards and Technology on Monday. The five finalists are MARS, RC6TM, Rijndael, Serpent, and Twofish. Advanced Encryption Standard (AES) Development Effort http://www.nist.gov/aes Federal Computer Week http://www.fcw.com:80/pubs/fcw/1999/0809/web-nist-8-9-99.html ZD Net http://www.zdnet.com/zdnn/stories/news/0,4586,1015886,00.html FCW; AUGUST 9, 1999 . . . 16:15 EDT NIST names finalists in AES development BY DIANE FRANK (dfrank@fcw.com) The National Institute of Standards and Technology today named the five finalists in its development of the next-generation Advanced Encryption Standard. NIST has been working with 15 candidates from 12 countries for the past year to test their submissions for the AES algorithm. NIST will use AES to replace the Data Encryption Standard adopted in 1977 as a federal information processing standard for federal agencies. The five finalists are MARS, developed by IBM Corp., Armonk, N.Y. RC6, developed by RSA Laboratories, Bedford, Mass. Rijndael, developed by Joan Daemen and Vincent Rijmen of Belgium. Serpent, developed by Ross Anderson, Eli Biham and Lars Knudsen of the United Kingdom, Israel and Norway, respectively. Twofish, developed by Bruce Schneier, John Kelsey, Doug Whiting, David Wagner, Chris Hall and Niels Ferguson, most of whom are associated with Counterpane Systems, Minneapolis, Minn. All of the candidate algorithms support cryptographic key sizes of 128, 192 and 256 bits and were tested by NIST and other cryptographic groups around the world. A full report on the process is available on the AES World Wide Web site at www.nist.gov/aes. -=- ZDNET; -------------------------------------------------------------- This story was printed from ZDNN, located at http://www.zdnet.com/zdnn. -------------------------------------------------------------- Finalists for new crypto standard named By Jim Kerstetter, PC Week August 9, 1999 1:05 PM PT URL: http://www4.zdnet.com/zdnn/stories/news/0,4586,1015886,00.html?chkpt=hpqs014 DES is a step closer to the dustbin. The U.S. Commerce Department's National Institute of Standards and Technology (NIST) today announced five finalists in the two-year competition to find a replacement for the Data Encryption Standard, which has served as the government's basic encryption standard since 1977. The replacement, to be called the Advanced Encryption Standard (AES), should be completed by the summer of 2001, according to NIST. The five finalists include: MARS, developed by IBM in Armonk, NY. IBM researchers also created DES back in the '70s. RC6, developed by Ron Rivest (inventor of the RSA public key algorithm and several other well-known hashing and private key algorithms) and RSA Laboratories in Bedford, Mass. Rijndael, developed by Joan Daemen and Vincent Rijmen of Belgium. Serpent, developed by Ross Anderson, Eli Biham and Lars Knudsen of the United Kingdom, Israel and Norway. Twofish, developed by Bruce Schneier, John Kelsey, Doug Whiting, David Wagner, Chris Hall and Niels Ferguson of Counterpane Systems in Minneapolis. Schneier also developed the popular Blowfish symmetric algorithm. Resisting brute force DES -- as well as its replacement, AES -- is what cryptographers call a symmetric or private key algorithm. A symmetric algorithm requires that both parties receiving encryption have a copy of the same encryption key in order to read the scrambled data. It is also likely the most widely used encryption algorithm in the world today, supported by most commercial encryption products. But DES has proven to be easy prey for modern technology. It uses keys of 56 bits, which were first broken nearly three years ago. In January 1999, cryptographers using a special DES-cracking machine, along with a nationwide network of PCs, were able to crack DES in less than 24 hours. The crackers used a "brute force" method of attack to solve the mathematical factoring behind DES. In other words, they put a lot of processing horsepower against the algorithm and were able to solve it -- something that has been feasible only in the last couple of years because of improvements in chip technology. AES on the scene Enter the AES. NIST first requested proposals for the AES in September 1997. Each of the candidate algorithms supports key sizes of 128, 192 and 256 bits. A 128-bit key cannot be broken using known technology today. Each added bit essentially doubles the key strength. RSA Data Security Inc. CEO Jim Bidzos used the following analogy at the company's conference in January: A 40-bit key is the water that fills a spoon. A 56-bit key is the water that fills a small swimming pool. A 128-bit key would be all of the water on the planet. "The process has always been about standardization," said Counterpane's Schneier. "AES will be the encryption standard for the next 20 or so years, and hence will be used in applications that we can't imagine. If a single algorithm is to be chosen for AES, it must be efficient in all current and imagined applications." NIST will make the five finalist algorithms publicly available. Analysis of the finalists will be presented at a conference in April 2000, and public comments will be accepted until May 15, 2000, according to the NIST. @HWA 14.0 Clinton Designates Group to Look At CyberCrime ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by Ryan On Saturday August 7th, President Clinton issued an executive order to establish a working group to examine unlawful conduct on the internet. The group is to determine if current laws are adequate to combat online crime such as child pornography and sales of illegal drugs. The executive order also calls for closer examination of the tools used by law enforcement to investigate these crimes. This could be interpreted as a major call for key escrow. The group has been ordered to complete its reports within 120 days. US Newswire- Text of Executive Order http://www.usnewswire.com/topnews/Current_Releases/0807-107.htm ZD Net http://www.zdnet.com/zdnn/stories/news/0,4586,2311209,00.html Wired http://www.wired.com/news/news/politics/story/21191.html Executive order; Text of Clinton Executive Order on Internet Conduct U.S. Newswire 7 Aug 11:07 Text of Clinton Executive Order Establishing Working Group to Examine Unlawful Conduct on the Internet To: National Desk Contact: White House Press Office, 202-456-2100 WASHINGTON, Aug. 7 /U.S. Newswire/ -- The following is the text of an Executive Order released today by President Clinton: EXECUTIVE ORDER - - - - - - - WORKING GROUP ON UNLAWFUL CONDUCT ON THE INTERNET By the authority vested in me as President by the Constitution and the laws of the United States of America, and in order to address unlawful conduct that involves the use of the Internet, it is hereby ordered as follows: Section 1. Establishment and Purpose. (a) There is hereby established a working group to address unlawful conduct that involves the use of the Internet ("Working Group"). The purpose of the Working Group shall be to prepare a report and recommendations concerning: (1) The extent to which existing Federal laws provide a sufficient basis for effective investigation and prosecution of unlawful conduct that involves the use of the Internet, such as the illegal sale of guns, explosives, controlled substances, and prescription drugs, as well as fraud and child pornography. (2) The extent to which new technology tools, capabilities, or legal authorities may be required for effective investigation and prosecution of unlawful conduct that involves the use of the Internet; and (3) The potential for new or existing tools and capabilities to educate and empower parents, teachers, and others to prevent or to minimize the risks from unlawful conduct that involves the use of the Internet. (b) The Working Group shall undertake this review in the context of current Administration Internet policy, which includes support for industry self-regulation where possible, technology-neutral laws and regulations, and an appreciation of the Internet as an important medium both domestically and internationally for commerce and free speech. Sec. 2. Schedule. The Working Group shall complete its work to the greatest extent possible and present its report and recommendations to the President and Vice President within 120 days of the date of this order. Prior to such presentation, the report and recommendations shall be circulated through the Office of Management and Budget for review and comment by all appropriate Federal agencies. Sec. 3. Membership. (a) The Working Group shall be composed of the following members: (1) The Attorney General (who shall serve as Chair of the Working Group). (2) The Director of the Office of Management and Budget. (3) The Secretary of the Treasury. (4) The Secretary of Commerce. (5) The Secretary of Education. (6) The Director of the Federal Bureau of Investigation. (7) The Director of the Bureau of Alcohol, Tobacco and Firearms. (8) The Administrator of the Drug Enforcement Administration. (9) The Chair of the Federal Trade Commission. (10) The Commissioner of the Food and Drug Administration; and (11) Other Federal officials deemed appropriate by the Chair of the Working Group. (b) The co-chairs of the Interagency Working Group on Electronic Commerce shall serve as liaison to and attend meetings of the Working Group. Members of the Working Group may serve on the Working Group through designees. WILLIAM J. CLINTON THE WHITE HOUSE, August 5, 1999. -0- /U.S. Newswire 202-347-2770/ 08/07 11:07 Copyright 1999, U.S. Newswire -=- ZDNET; -------------------------------------------------------------- This story was printed from ZDNN, located at http://www.zdnet.com/zdnn. -------------------------------------------------------------- Clinton establishes Net crime taskforce By Maria Seminerio, ZDNN August 9, 1999 12:50 PM PT URL: UPDATED 3:30 PM PT President Clinton on Saturday established a working group to address cybercrimes, including online sales of illegal drugs and explosives, and online child pornography trafficking. The working group is charged with determining whether existing federal laws are sufficient to combat Internet-related crime. Also, in what seems like a call for widespread key escrow for encrypted communications, Clinton ordered the task force to determine "the extent to which new technology tools, capabilities or legal authorities may be required for effective investigation and prosecution of unlawful conduct" online. The issue of key escrow -- allowing law enforcement a guaranteed "back door" into encrypted online messages -- is hugely controversial, and has been a central bone of contention in the debate over the Clinton administration's encryption export policies. The director of the Federal Bureau of Investigation, Louis Freeh, is a vocal supporter of key escrow, but online privacy advocates believe any such plan would be disastrous for individual Internet users. "It's a valid concern," said David Sobel, general counsel at the Electronic Privacy Information Center, when asked whether the move is a precursor to a more aggressive key escrow push. Why no wider investigation? With the controversy over illegal Internet porn and online drug and gun sales having sizzled for some time, Sobel said it's unclear why the White House should now launch a wider investigation. It's also unclear what action, if any, Clinton will take after the group completes its report, a White House spokesman told ZDNN Monday. Clinton could urge Congress to pass new Net crime laws, although there is no specific plan for him to do so, the spokesman said. Another administration official, speaking on condition of anonymity, said the task force's work won't be specifically aimed at the key escrow issue. "We just wanted to take a step back and see what new laws, if any, are needed" to address cybercrimes, the official told ZDNN. The task force will include Freeh, Attorney General Janet Reno, and other federal officials, such as the director of the Office of Management and Budget, the Secretary of the Treasury, the Commerce Secretary and the director of the Bureau of Alcohol, Tobacco and Firearms. The co-chairs of the Advisory Commission on E-Commerce will serve as liaisons. Clinton ordered the group to complete a report within 120 days, and many federal agencies will have a chance to respond before it is made public. -=- Wired; Plan B for Cyber Space Wired News Report 5:00 p.m. 9.Aug.99.PDT President Clinton has asked his advisers to come up with new ways to combat illegal online activity including child porn and the sale of guns, drugs, and explosives. In announcing a new working group on unlawful conduct on the Internet, the Administration stopped short of calling for new laws. Instead, Vice President Gore said the feds may need new technology tools, capabilities, or legal authorities to fight cybercrime. "What we need to do is find new answers to old crimes," said Gore in a statement released Friday. About 11 federal agencies will participate in the working group, including the Bureau of Alcohol, Tobacco, and Firearms; the FBI; the Commerce Department; the Food and Drug Administration; and the Drug Enforcement Agency. Each agency will solicit ideas for deterring cybercrime from the private sector and from state and local law enforcement officials. "The working group will help to make the Internet a safe place for all Americans by examining the extent to which existing federal law and technological tools are effective in combating crime on the Internet," Gore said. The working group will make its recommendations in four months in the context of current policies and principles. Among those principles: that industry should self-regulate, that laws should be technology-neutral, and that the Internet is an important medium for commerce and free speech. The administration announced the new strategy only weeks after lawmakers and privacy activists panned a Clinton-approved plan to develop a nationwide surveillance network. That proposed network, recommended by the White House National Security Council and known as the Federal Intrusion Detection Network (Fidnet), sought to fight cybercrime by vacuuming up electronic signals. Prominent House republicans slammed that plan. House Majority Leader Dick Armey warned that the Fidnet could grow into an "Orwellian" system. @HWA 15.0 Taiwan Government Web Sites Defaced ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by Weld Pond Several Taiwanese government web sites have been defaced by someone claiming to be from the Hunan province in China. The defacements contained political statements, in Chinese and English, concerning Taiwan's political status. An unidentified official said that he did not think that firewalls where necessary on public web servers. Excite News http://news.excite.com/news/r/990809/02/net-taiwan-hacker Pro-China Hacker Attacks Taiwan Govt. Web sites Updated 2:58 AM ET August 9, 1999 TAIPEI, Taiwan (Reuters) - A person claiming to be from mainland China hacked into several Taiwan government Internet sites to insert pro-China messages amid a heated row between the two sides over Taiwan's political status. "Only one China exists and only one China is needed," read a message inserted Sunday into the Web site of the Control Yuan -- Taiwan's highest watchdog agency. In apparent references to President Lee Teng-hui's controversial call for "special state-to-state" ties between Taiwan and China, the message said Taiwan was and would always be an inseparable part of China. "The Taiwanese government headed by Lee Teng-hui can not deny it." The same messages -- in Chinese and English -- were placed in several other government Web sites, a Control Yuan official said Monday. "It looks like it was the same person who claimed to come from Hunan province," the official, who declined to be identified, said by telephone. The official said public Web sites were relatively easy to hack into. "It is a public Web site containing open information, so we didn't think firewalls were necessary," the official said. "Now we know it's a problem and we will fix it in the next few days." Firewalls are electronic security screens. Lee's redefinition of cross-strait ties has infuriated Beijing, which views the island as a wayward province and vows to bring it under mainland rule, by force if necessary. @HWA 16.0 DoD Ordered to Change All Passwords ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by Sarge The Defense Department has ordered all administrative and user passwords on their unclassified networks to be changed. The official reason is to protect against possible Y2K cyber attacks. Rumours indicate that this order may be the result of recent computer security breaches. Federal Computer Week http://www.fcw.com:80/pubs/fcw/1999/0809/fcw-newsdod-08-09-99.html AUGUST 9, 1999 DOD: Change Passwords BY DANIEL VERTON (dan_verton@fcw.com) Concerned that efforts to fix computer systems for the Year 2000 problem may expose its information infrastructure to cyberattacks, the Defense Department has ordered its network managers to change all administrative and user passwords on their unclassified networks. The order is the result of mandatory guidance issued last month to all of the military services' network security organizations by the Joint Task Force for Computer Network Defense. While a JTF-CND spokesperson could not confirm or deny rumors that the guidance may be the result of a recent breach of computer security, the spokesperson said that the FBI's National Infrastructure Protection Center is currently investigating intrusions into unclassified DOD networks. "We're trying to start a better process for password protection," the spokesperson said. "We gave [our components and other DOD organizations] several weeks to do this [because] we know it can't be done overnight." The JTF-CND, which was formed last December, serves as the focal point for DOD to organize the defense of DOD computer networks and systems. When cyberattacks are detected, the JTF-CND is responsible for directing departmentwide defenses to stop or contain damage and restore DOD network functions operations. The mandatory actions called for by the JTF-CND directive include changing all administrative and user passwords for all unclassified systems and then restarting the operating systems for systems that are connected to the network. The process is known as a "warm boot" and is not a full shutdown of the system, the spokesperson said. Major commands affected by the guidance and responsible for managing compliance in their respective services include the Air Force Information Warfare Center, the Army's Land Information Warfare Activity, the Defense Information Systems Agency, the Marine Corps' Marine Forces-CND and the Navy Component Task Force-CND. As a result of the directive, the NCTF-CND issued classified and unclassified messages ordering password changes. However, a spokesman for the Space and Naval Warfare Systems Command, one of the primary recipients of the message, declined to comment because of the sensitivity of the message's content. In an administrative message issued last week by the NCTF-CND, the Navy offered technical guidance to system administrators on how to deal with the lack of password date-change tracking functionality in Microsoft Corp.'s Windows NT. As a result, the Navy has made three software tools available over the Internet to help administrators automate the enforcement of password changes. In May, Art Money, senior civilian official acting as the assistant secretary of Defense for command, control, communications and intelligence, issued a DOD-wide memorandum about the potential threat to DOD networks posed by the Year 2000 computer problem. In that memo, Money cited DOD Administrative Instruction 26, which provides specific guidance on the use of passwords. A DOD spokesperson said there is "no inherent connection between the May 5 Money memo and the July 23 [JTF-CND] message -- other than they are related in the context of the department constantly putting out guidance that requires vigilance over our networks." @HWA 17.0 Belgians Under Cyber Attack From One Man ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by superman ReDatAck, a Belgian man, has claimed to have broken into the database of Skynet, owned by Belgian state-run telecommunications operator Belgacom, and accessed private information on over 1,000 users. The information allegedly includes credit card numbers and passwords. ReDatAck has also claimed to have broken into the free address book server of Lycos. ReDatAck has said that he is trying to alert people to the security weaknesses of the internet. Yahoo News http://dailynews.yahoo.com/h/nm/19990809/wr/belgium_hacker_1.html Monday August 9 12:38 PM ET Belgian Hacker Warns Of Internet Security Risk BRUSSELS (Reuters) - A computer hacker who broke into Belgium's leading Internet access provider vowed Monday to carry on attacking Web sites and databases in a bid to alert Belgium to the security risks of the Internet. ``ReDatAck'', a man in his twenties, told Reuters by telephone he had broken into the database of Skynet, owned by Belgian state-run telecomm- unications operator Belgacom, Friday night and obtained secret information on over 1,000 users. ``I have...their Visa (credit card) numbers and expiration dates, their login and passwords, access to their Web sites,'' ''ReDatAck'' said, stressing he wanted to `wake up Belgium'' to the Internet's security risks rather than misuse the information. ``Nobody thinks about security,'' he said. Skynet director Philippe Lemmens said Monday he planned to file a complaint against ``ReDatAck'' and assured users that security had been stepped up against future hackers. But ``ReDatAck'', who claimed he had also broken into the free address book server of U.S. Internet portal Lycos, was undeterred. ``I'll go on hacking. They can try to find me. It doesn't scare me. If they do find me, it will make more publicity,'' he said, adding that he was currently working on breaking into a hospital database. He declined to say which hospital. @HWA 18.0 IRDP Hole in Win and Sol Leave Users Open to Attack ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ From HNN http://www.hackernews.com/ contributed by Silicosis By spoofing IRDP Router Advertisements, an attacker can remotely add default route entries on a remote system, including most Windows machines and some Solaris systems. The attackers default route entry will be preferred over the DHCP servers default route. DHCP addressing is used by many corporations, cable modem systems, and dialup ISPs. This attack significantly increases a users risk to passive snooping, man-in-the-middle attacks, and denial of service attacks. L0pht Heavy Industries - Full advisory with sample code and patches http://www.l0pht.com L0pht Security Advisory Release date: August 11, 1999 Vulnerable: Microsoft Windows95a (w/winsock2), Windows95b Windows98, Windows98se and Sun Microsystems SunOS & Solaris operating systems. Severity: Attackers can remotely add default route entries on the victims host. Status: Microsoft contacted, fix provided. Author: sili@l0pht.com URL: http://www.L0pht.com/advisories.html Source code: http://www.l0pht.com/advisories/rdp.tar.gz code written by Silicosis & Mudge I. Problem ---------- The ICMP Router Discovery Protocol (IRDP) comes enabled by default on DHCP clients that are running Microsoft Windows95 (w/winsock2), Windows95b, Windows98, Windows98se, and Windows2000 machines. By spoofing IRDP Router Advertisements, an attacker can remotely add default route entries on a remote system. The default route entry added by the attacker will be preferred over the default route obtained from the DHCP server. While Windows2000 does indeed have IRDP enabled by default, it less vulnerable as it is impossible to give it a route that is preferred over the default route obtained via DHCP. SunOS systems will also intentionally use IRDP under specific conditions. For Solaris2.6, the IRDP daemon, in.rdisc, will be started if the following conditions are met: . The system is a host, not a router. . The system did not learn a default gateway from a DHCP server. . The system does not have any static routes. . The system does not have a valid /etc/defaultrouter file. It should be noted that the important point of this advisory is not that ICMP Router Solicitation and Advertisement packets have no authentication properties. Yes, this is a problem but it has long been known. The dangerous aspect comes in various MS platforms enabling this protocol and believing it _even when the DHCP setup specifies router information_ (ie the operating system does this even though you believe you are telling it NOT TO). The tool provided with this advisory is the basis of what would be used for everything from web page hacks, stealing credentials, modifying or altering data, etc. involving vulnerable systems. We believe most cable modem DHCP clients and large internal organizations are at risk. II. Risks --------- The ICMP Router Discovery Protocol does not have any form of authentication, making it impossible for end hosts to tell whether or not the information they receive is valid. Because of this, attackers can perform a number of attacks: Passive monitoring: In a switched environment, an attacker can use this to re-route the outbound traffic of vulnerable systems through them. This will allow them to monitor or record one side of the conversation. * For this to work, and attacker must be on the * same network as the victim. Man in the Middle: Taking the above attack to the next level, the attacker would also be able to modify any of the outgoing traffic or play man in the middle. By sitting in the middle, the attacker can act as a proxy between the victim and the end host. The victim, while thinking that they are connected directly to the end host, they are actually connected to the attacker, and the attacker is connected to the end host and is feeding the information through. If the connection is to a secure webserver that uses SSL, by sitting in the middle, the attacker would be able to intercept the traffic, unencrypted. A good example of this risk is on-line banking; an attacker playing man-in-the-middle would be able to intercept all of the banking information that is relayed, without the victim's knowledge. * For this to work, and attacker must be on the * same network as the victim. Denial of Service: Remote attackers can spoof these ICMP packets and remotely add bad default-route entries into a victims routing table. Because the victim's system would be forwarding the frames to the wrong address, it will be unable to reach other networks. Unfortunately, DHCP has quickly become popular and is relied upon in most companies. In some cases, such as cable & *DSL modems, users are required to use DHCP. Because of the large number of vulnerable systems, and the fact that this attack will penetrate firewalls that do not stop incoming ICMP packets, this Denial of Service attack can become quite severe. It should be noted that the above attacks are documented in Section 7, of RFC 1256. However, the RFC states states that the attacks are launched by an attacker on the same network as the victim. In the Denial of Service attack, this is not the case; an attacker can spoof IRDP packets and corrupt the routing tables on systems that are on remote networks. While these attacks are not new, the fact that Windows95/98 DHCP clients have been vulnerable for years, is. On systems running SunOS & Solaris, it is easy to find documentation on IRDP by looking at the startup scripts or manpages. On Windows95/98, however, information has only become recently available in the Knowledge Bank. III. Technical Details ---------------------- Upon startup, a system running MS Windows95/98 will always send 3 ICMP Router Solicitation packets to the 224.0.0.2 multicast address. If the machine is NOT configured as a DHCP client, it ignores any Router Advertisements sent back to the host. However, if the Windows machine is configured as a DHCP client, any Router Advertisements sent to the machine will be accepted and processed. Once an Advertisement is received, Windows checks to see how many Gateway entries the packet contains. If the packet contains only 1 entry, it checks to make sure the IP source address of the Advertisement is inside the hosts subnet. If it is, the Router Address entry inside the advertisement is checked to see that it is also within the host's subnet. If so, a new default route entry is added. If the address is outside the subnet, it the advertisement is silently ignored. If a host receives a Router Advertisment that contains 2 or more Router Addresses,