(defanzivne i ofanzivne tehnike) |
(defensive and offensive) |
|
Za sve vas koji se javljate sa posla iz NATO zemalja želeo bih da vam skrenem pažnju na nekoliko (vrlo) važnih stvari: Uzmite u obzir da preko 50% kompanija (a možda i više) koristi network monitore što znači da mogu da vide SVE što radite sa vaših radnih mesta preko Web-a koje sajtove posećujete, koje postinge stavljate na koje sajtove - sadržinu postinga i sadržinu vaših e-mailova. I po zakonu oni imaju potpuno pravo na to. BEZ upozorenja. Nemojte misliti da vam je srpski jezik zaštita jer postoje lako nabavljivi translatori za sve jezike (pa i srpski) koji u roku od nekoliko sekundi mogu da prevedu bilo koji tekst sa bilo kojeg jezika. Sve se ovo loguje i kasnije se može upotrebiti protiv vas - u toku je lov na veštice i mnogi ljudi gube posao "iz misterioznih razloga". Što se tiče Web-a od kuće - važe ista pravila i lako se može desiti da vam zakucaju na vrata. Zato: Ako ne možete da izdržite onda: Cyber war kurs deo treći ... Za početak par zanimljivosti: Dali znate da svaki put kada posetite jedan web-site (šiptarski, hrvatski, nato-ov itd.) Vi odajete jako puno (neželjenih) podataka serveru (između ostalog e-mail adresu, ISP provider, tipe browser, type CPU i još mnogo što-šta) koji grabi to od Vas svaki put kada adresirate stranu. Ne verujete? Idite na www.anonymiser.com - pa proverite sami. Svoj e-mail i user ID možete izbrisati u svim tipovima browsera kada ne želite da se odajete (edit preferencies > mail > indentity) Da se na osnovu cash-memorije i pregleda kukija na (poslovnom) kompjuteru može pratiti sva Vaša aktivnost na webu (ljudi gube posao zbog ovoga). Zato istoriju, cashe, i kukije čisti redovno ili isključiti totalno cash-memoriju i istoriju podesiti na 0. Edit > preferencies > advanced > i Edit > preferencies > Netscape Da se na windowsu 95 i NT na start > dokuments mogu videti svi dokumenti koju recento adresirani (na primer Vaša transakcija sa bankom: brojevi žiro-računa, vaše kreditne karte itd). Ovo je naročito opasno kada to radite sa javnih PC: (biblioteke, posao, cyber-kafe itd...) zato uvek izbrišite sve dokumente kada završite sa transakcijom desno dugme > properties > Programs start menu > ERASE DOCUMENTS Što se tiče provokatora i krakera koji vas napadaju: Čim im doznate IP-adresu (preko firewalla ili na drugi način) Idi na www.ripe.net - whois database ukucaj ip-adresu i dobićete sve potrebne podatke o provajderu (e-mail, telefon, adresu itd.) ili idite na www.thefreesite.com u kucajte u search box-u netlab i skinite taj program (free) onda pošaljite e-mail ili zovite provajdera i dajte mu IP - log file od napada ili prevedeni tekst provokacija koje on poštuje i oni će biti sposobni da ga na osnovu inlog-time i adresiranja sajta u određeno vreme pronađuu i isključe. Prekršioc dolazi na "crnu listu" i nijedan provajder ga više neće primiti. Zašto - zato jer je u skoro svim zemljama širenje nacinalne mržnje i zabranjeno i kažnjivo i provajder koji to dozvoljava biva novčano kažnjen, gubi imidž ili biva isključen sa Web-a (lova). Isto tako uprava Interneta skida odmah sa neta svaki server koji služi kao baza za širenja virusa ili hakerskih napada i oni su odgovorni za štetu koja se nanosi sa njihovog servera. U pismu, telefonskom razgovoru ili e-mailu provajderu navedite obavezno da ukoliko oni ODMAH ne reaguju da će te obavestiti upravu Interneta CERT (Computer Emergency Response Team) www.cert.org, IETF (Internet Emergency Task Force) www.ietf.org i još neke autoritete na mreži koji imaju moć da ih isključe sa Interneta. To će dobiti njihovu pažnju. Budite oprezni - ovo radi u oba pravca. Ovo su ukratko "Kulturne tehnike" sledeći put malo o "nekulturnim". Isto tako želeo bih da znam dali postoji interesovanje i dali ima svrhe ići dalje sa ovim kursom - koliko vas čita ovo?? u koliko ste zainteresivani za ovako nešto i da li ovo služi nekoj korisnoj svrsi? Ako vi hoćete - idemo dalje... Možemo da idemo dublje u znanje i tehnike - ako ima zainteresovanih. Sa posla ne mogu da odgovaram na pitanja ali se strpite uradiću sve što je u mojoj moći da pomognem... Bratski pozdrav svima... Reply to: komi@tron-inter.net |
For all of you who are contacting us from work from one of the NATO countries I wish to point a few things that are very important: Take into consideration that 50% of the companies (maybe more) use network monitors which means they can see everything you do with your computer: which sites you visit, what you post on those sites, contents of those postings and your e-mails. Legally they are allowed to do so. WITHOUT any warning. Don't think that Serbian language is any kind of protection as there are easily obtainable translating programmes for all the languages. Everything is logged and may later be used against you. The witch hunt is on and many people lose their jobs "for mysterious reasons." The same goes for your home use. It is possible that you may hear a knock on the door. Therefore: If you can't help it then: 2. use security proxies 3. Use firewall at home - go to www.zdnet.com www.download.com www.tucows.com and search for the word firewall 4. Bear in mind that with certain kinds of AT systems if your computer is attached to a modem it is possible to access it without your knowledge as the computers turn on when they get a signal from the modem. 5. Turn off ActiveX controls, Java script, Java Aplets, Aol messenger, ICQ. They are security risks. 6. If you connect to hotmail yahoo and the other public e-mail services network monitor gets your password which means that they can access your e-mail and do whatever they want with it. That way they can also see the contents of your messages, practically everything you see on the computer they can see too. BEAR IT IN MIND!!! 7. Every e-mail that you send contains in its header the original IP address which makes it possible to trace you using an anonymous mail. Cyber war - part three... To start with a couple of interesting things: Did you know that every time you visit a website (Albanian, Croatian, NATO etc.) you give away many information to the server (which you don't want to give away). For example your e-mail address, ISP provider, browser type, CPU type, everything goes to the server. You don't believe it? You can see it for yourself at www.anonymiser.com. Erase your e-mail and user ID in all types of browser if you don't want to reveal yourself (edit preferences > mail> identity). Cash memory and cooky search can lead to loss of your job. That is why you need to regularly clean the history, cash and cookies or turn them off altogether. Edit > preferencies > advanced > or Edit > preferencies > Netscape. Windows 95 will show all the documents recently used, like your bank transactions and so your bank account number etc. This is especially dangerous if you do it from a public PC (library, job etc.) So always erase all the documents once you are finished with them: balk right button > properties > programs start menu > ERASE DOCUMENTS As far as the provocateurs and crackers are concerned see following: As soon as you learn their IP address (Through firewall or otherwise) go to www.ripe.net - whois database and type in IP address. That will give you all the info on the provider (e-mail, telephone, address etc.). Or you can go to www.thefreesite.com and type in the search box netlab and download that program (free) so that you can call the provider and give them the log or the text of the provocation and the provocateur will be traced and excluded from the net. The provocateur is thus blacklisted and will not be able to open an account anywhere. In almost all the countries spreading of the national resentment is illegal and punishable by law. Any provider who allows it to go on is fined or taken off the web. Internet centre will immediately take off the net any server that serves as a base for spreading viruses or hacking as they are held responsible for the damage. In your communication with the internet provider state that unless they react PROMPTLY you will inform CERT (Computer Emergency Response Team) www.cert.org or IETF (Internet Emergency Task Force) www.ietf.org and they will be banned from the net. That will make them sit up and listen. Be careful - it works both ways. All these were polite ways. Next time we will discuss less polite techniques. That is if anyone is interested in this short course. Is anyone likely to use it? It takes time and effort but if you are interested we will continue. We can even be more technical if people are interested. I will do everything in my power to help. Brotherly greetings to all... Reply to: komi@tron-inter.net |