 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
free links #1
free archive pageslink1free nude pics
BLONDIESBRUNETTESRED HEADSASIANSGROUP SEXblowjobsfree/sex/1
The Archivesbluesfreesexpagenumberoneno porn here at all
webtv hacks 1porn archive sites
freelinkspagenumberone|
|
| HI BABY SORRY ^ ^ THIS SECTION STILL UNDER CONSTRUCTION . PLEASE VISIT OUR OTHER SEXY PICS ! |
| ||||||
| WTV HACKING ARCHIVES: WTV-TRICKS Updated 3-5-99 This page, and the uninformed speculations contained within, © 1999 ulTRAX@webtv.net =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= -=-=-=-=-=-=-=-=-= BACKGROUND: Most of you already know that WTV maintains two PW protected sites that are easily accessible from our lowly station in life here in Production Services. They can be reached using the GoTo box, deleting http:// and typing WTV-TRICKS:/TRICKS or WTV-TRICKS:/INFO. As it turned out, INFO was but a page on the main TRICKS Menu. Cracking the TRICKS Site had always been somewhat of a Hacker's Holy Grail. In early '98 There were as many false claims about cracking TRICKS as there were about hacking accounts. It was probably the hacker's biggest status symbol... made more frustrating by the fact that no one could ever prove they had been inside. The best anyone seemd to be able to do was get to what some of us called TRAPS. It contained a humorous message that our attempt to subvert WTV security had been documented and to sit still. Someone would be over to pick us up soon. One of my first efforts at organizing a group effort on TRICKS was trying to develop contingincy plans so that IF someone DID get in... there could be a systematic effort to milk it for what it was worth. The first person in could get the contents of the main index, if there was one. Maybe they could make printouts. But, it would be vital to get the word out to others and divide the work up with others before the PW was changed. Underlying this approach was a fear that all we got was one warning fom WTV. It was almost as if one received a sub-lethal dose of radiation when one went in. Anyone who got into TRICKS had to grab all the info they could then, give it to others, then let them go in for their sub-lethal dose. Another plan I pushed was trying to determine if TRICKS was merely another page on the Web. If so maybe a PC with a cracking program might be tried. But no one knew how to make any sense of the only URL we had: WTV-TRICK:/TRICKS. It was as if WTV was a virtual (if not an actual) network within the greater Web. Linked validators could get a referrer but never any page code. If PC could not access TRICKS, maybe the WebTV box could be adapted. The Classic boxes had a PC keyboard input jack. What if all the wireless keyboard codes could be duplicated by a PC with an IR Blaster? These were some of the first ideas discussed at the formation of the Hacking NG in late March 98. The first big break came on Sunday Aug 16. The history of this is somewhat murky. Someone (either Bad_Brad or Lord_IZM) at WebTV Crew had posted the TRICKS PW: "seqret1". This was one secret that would not stay secret very long. Soon TRICKS was inundated by invaders. INSIDE WTV-TRICKS: WTV-TRICKS is a collection of various WebTV utilities meant to be used by employees and licensees. Below is what one saw on the main index page. Included are the URLs and a brief description of the page's purpose: WEBTV TRICKS INFO (wtv-tricks:/info) An expanded version of our 411 Tech Info. VISIT BIG WILLIES (wtv-flashrom:/willie) Contained a large library of Client Builds. BLAST BACKLIST (wtv-tricks:/BlastBackList) Cleared cache. BLAST NVRAM Not only cleared cache, but returned the box to a "scriptless" state requiring it to dial in for a new Tellyscript. GO ON A POP TOUR (wtv-customscript:/poptour) POPs are "point of presense" local dialups. STAYIN' ALIVE (wtv-tricks:/StayConnected) This allowed a box to remain connected for 24 hours despite the 10 minute inactivity shutoff. In the background a midi of the old disco hit. (client:ShowServices) The IP List for all our WTV Services. JIFFYPOP-O-RAMA (wtv-custonscript:/jiffypop-o-rama) Type in any phone number and JiffyPop would give all the local POPs as well as a cost breakdown for using each. RUN A WWW TOUR ( ) VISIT VEND-A-TELLY! (wtv-customscript:/vendatelly) Source for pre-written Tellyscripts. It also allowed you to design your own. VISIT LITTLE WILLIE'S! (wtv-flashrom:/willie?lable=littlewil lie) Possibly an old version of Big Willie. UNREGISTER THIS BOX Need I say more? I don't believe anyone got the code for this page. Just as well. OUT, DAMN SPOT! (wtv-tricks:/spots) Ad spots, DOWNLOAD-O-RAMA (wtv-disk:/content/Downloads.tmpl) Seemed to be two versions... on e for Plus Users, another for Classics. The Plus DoRAMA contained VideoFlash and Music downloads and a utility for downloading other file://disk files. Also on the main TRICKS Index page was an additional PW box for those who did not get all they wanted from TRICKS itself. What is behind that barrier remains a mystery. In retrospect the TRICKS' security model was patheticly inadequate. All WTV did was put a PW on the main Tricks Index.... but not on the individual pages within Tricks. But we did not know this until we began to explore. There was never any doubt that we would be discovered. The PW page had prominent warnings to that effect that all access to TRICKS was monitored. Knowing that the PW might be changed at any minute... and realizing that the TRICKS pages themselves were NOT PW protected, but could be saved in FAVs or direct accessed.... the group I worked with concentrated first on getting the page URLs. Even if WTV changed the PW that day, we still would have access to all the TRICKS pages. The next step was to get all the HREF action codes so even if, say the WILLIES page was pulled, we might still be able to access the library of WTV Client Builds either for an upgrade or, say if someone wanted to get back the use of Javascript in the GoTo, a delibrate downgrade. I don't doubt that all the while WTV was in panic over the Breakin, those who broke in were like Babes in Toyland. Maybe it was our equivalent of playing on the road. Many were soon to get run over. Some fried their box on the Manufactures Printer Test Build. Others found themselves trapped in a place called TestDrive. I tried a link at POPTOUR only to find my box making long distance phone call after phone call. Needless to say, what was most intriging was TestDrive. Those who found themselves there found they were blocked off from all WTV NGs and when they wrote letters, they had a @testdrive.webtv.net domain. I got my first letter from WebPoet on Monday night. He had no idea where he was but, he talked of even more goodies. For one there was not just a BIG WILLIES PAGE, but a KILLER WILLIES list... with Client Builds from 1.0 to 2.3 and everything in between including retail and export Builds. Webpoet said he also had DOOM and a debugging tool and CMD + CTRL worked to show ALL the command codes, not just a few. My next letter was from Pimpstar (Gadget) who was freaking out. Neither of them knew how they got to TestDrive and neither did any of the WebTV Consumer Reps they had contacted. To Be Continued: ===================================== ================= From: ulTRAX@webtv.net Group: alt.discuss.webtv.hacking Subject: Re: Daily & Production Upgrades Date: Sun, Aug 23, 1998 Production (or external) Upgrades are those we receive here in "production" services They have been tested and the debugging tools have been removed. If anyone got a look at their "info" page last week while in Tricks, they would have noticed that there was a note saing you were connected to "Production Services". The Daily services are "internal".... and apparently is another network... accessed by different IPs then the ShowServices IP list some of you may have seen. This is where WTV techs have access to all the old and future upgrades from 1.0 to 3.0... including all the export versions. Upgrades are catagorized by color... green is safe... red is a defective build. ===================================== ================= From: ulTRAX@webtv.net Group: alt.discuss.webtv.hacking Subject: Nothing of interest in Tricks. Date: Sat, Sep 19, 1998 There's nothing left in WTV-Tricks that's of interest [unless, or course, you've never been there]. When people got into Tricks, WTV assumed all they had to do was change the password as they had done in the past. Unfortunately for WTV, this time the culprits knew that they'd probably soon be discovered... so they had to get as much information out as soon as possible. After all, Tricks was kind of the Hacker's Holy Grail. The group [at least the one I was involved with] set as its highest priority first getting the Tricks page URLs. Since there were still a few of us who did not get accept the Summer upgrade or downloaded older builds from Big Willies, they could use javascript to get the HREF codes as well. If [we only could get the page URLs] in time, we knew WTV's changing the password would be irrelavant since we could just bypass the password protected Main Index page and go straight to the URLs [themslves]. If WTV changed the URLs, we could just go directly to the HREF codes. It seems WTV was not prepared for this approach and it forced WTV to take drastic measures resulting in a great diversion of resources. Ultimately thousands of people who were about to get the Plus upgrade were put on hold. Since then WTV has systematically gutted Tricks [of its internal builds] and may already be disabling the HREFs. ===================================== ================== From: ulTRAX@webtv.net Group: alt.discuss.webtv.hacking Subject: Re: wtv-tricks:/spots Date: Sun, Nov 29, 1998 WTV's security model for WTV-Tricks was [patheticly] inadequate. All WTV did was put a PW on the main Tricks Index.... but not on the pages within Tricks. Wtv-tricks:/spots was one of those pages. And the only thing that kept anyone from accessing it all this time was that none of us knew the page URL. One of the very first things we did when we raided Tricks was get the page URLs, then the HREF codes on those pages. Even then we did not think it would take WTV a full 2.5 days just to change the PW.... and a full 6 days to strip Willies of all the internal builds [people used as a step to get to TestDrive]. By then there were maybe 20-30 people already in Testdrive. WTV's had no alternative but to revamp their Tricks security model as anyone else would. ===================================== ================= Group: alt.discuss.webtv.hacking Date: Thu, Feb 4, 1999 From: ulTRAX@webtv.net Re: wtv-tricks:tricks KORN204 adsked: " does anyone know how to get in to wtv-tricks:tricks without getting busted? don't think im stupid or something i just want to know" It's a good question whether we now could visit TRICKS even if we had the PW. It seems that WTV had accomplished 2 main goals with their beefed up security in the November FUNK upgrade. They not only blocked access to the page URLs (except for one) and for good measure have blocked our ability to direct access the commands thses pages contained. Obviously someone has to be able to still visit TRICKS... employees, licensees etc. But whether we here in production can... who knows. |
 blue-angel-chat@webtv.net |
|
. |
| Visitors: 00306 |