Breaking Web Filters and Protecting Your Internet Privacy (Hacking!!!!)
This is the main objective of this thread and one previous one I established earlier. I think most of us need to know how to communicate to each other beyond any basic government tracking systems or have the ability to break web filters if, heaven forbid, they begin banning sites like this and others. I may be wrong, however, either way the future is in technology and we should all at least attempt to escape the prying eyes of others more sophisticated in the field.
I hope none of you are thinking of causing any havoc that would harm anyone but I do hope you would defend your freedom when it comes time by using the appropriate understanding of computer technology as an important skill in that process.
With that Said, Any idea's how we can appropriately use computer technology for our security?
C.B.s and Ham Radios?
Think that will be feasible?
Liberty BBS
If things get really bad, there could be a return to the use of the BBS. Most computers still have modems. They are pretty easy to run and use.
Thanks for the Info
FREEDOM
"First they ignore you, then they laugh at you, then they attack you, then you win!"
GANDHI
Doubts about Tor; Wireless Networking
I wonder about Tor; like in Orwell's 1984, could MIT be running it for the CIA/NSA?
Anyways, I'd recommend wireless "war-driving", with the means to packet-sniff your own traffic to verify you're not leaking any identification, like the MAC address.
As I said in the deleted thread, good sysadmins put out honey-pots for amateur hackers, trace them back, and if its the government, coerce them to rat out and/or entrap their friends, as was done to Randy Weaver.
However, companies often hide the fact they've been hacked to avoid embarrasment and a stock-hit. But they too have private security, which could get you hurt worse than a stay at club-fed.
Hacking isn't a mere prank anymore, like it was in the 80's. Like vandalizing politicians, do you really want to get clobbered over a silly prank? As they say, you might as well be hung for stealing a horse as stealing a chicken.
********************************************************************
POLITICS, n. A strife of interests masquerading as a contest of principles. The conduct of public affairs for private advantage. - Bierce
********************************************************************
I didn't think about it when
I didn't think about it when I posted my comment earlier, but Tor requires careful use, and you should NEVER run personal information through it, and NEVER passwords to accounts that you don't want to lose control over! Exit nodes see any non-https traffic totally in the clear, so any personal information you run through it can be easily recorded, and your online accounts taken over. I've seen a blog post where someone had run an exit node and recorded the information to get an idea of how much personal information was going through Tor, and it seemed to be quite a bit. It's simple to steal peoples accounts doing this. I would not doubt that the government has some exit nodes that it watches (but I haven't looked into it to be sure). So if you ever use Tor and need to use some webmail service through it, use a new "throw-away" junk account for that, so you're normal account does not get stolen. Avoid using any personal information at all in searches and communications.
And with war-driving, to prevent leaking your personal mac address, there's various free programs you can find for windows to change your mac address (sometimes called mac address "spoofing"). This is simple to do in linux (using the ifconfig command). It's only temporary on linux (unless you change some configuration files). I have no idea how permanent it is on windows. Ultimately the network card's (the actual physical hardware) actual address remains the same (it is permanent). The changes are purely in software, but the computer behaves as though the mac address is different. It's merely a measure of plausible deniability.
Keep in mind that using wi-fi that you don't own is illegal (and a violation of rights) without the owners permission (explicit or implicit).
For fairly secure web browsing, using some public wi-fi, with a spoofed mac address, far from your home, with Tor, would protect your privacy fairly well, but don't assume you can get away with anything illegal with that. There's still a possibility of it being traced back to the wi-fi that you were using, and then it comes down to local eye-witnesses at the time, and the many camera's that could have been around and recorded your presence.
Good info
Seems like the thread is back on track. Anymore info I might need in the future related to internet phones and secure phone calls.
Tor is an open source onion
Tor is an open source onion routing project, which helps defend against traffic analysis. You have to use it carefully, otherwise it's effectiveness is drastically reduced (maybe completely) if someone is trying to spy on you.
VPN's (virtual private networks, which are encrypted) are a good thing. OpenVPN is a free open source VPN server/client.
TrueCrypt is a good encryption program, that can be used for creating small encrypted filesystems within files for holding files securely, encrypting entire hard drives and flash drives, and provides two layers of plausible deniability (hidden volumes, and volumes are indistinguishable from random data).
OpenSSH is a common tool in most Linux distro's for accessing other machines running an SSH daemon. It uses encryption, and will allow for encrypted file transfers and even socket tunneling (you can use it similar to a proxy).
Enigmail is a Mozilla Thunderbird extension that makes it easier to use the PGP standard for encrypting/decrypting and/or digitally signing emails using public key cryptography. Also look into GnuPG (Gnu Privacy Guard or GPG) and some of it's front-ends.
Off-the-Record Messaging for Pidgin (a multi-protocol instant messenger) provides a way to have private conversations through instant messaging.
This Is Exactly What I was Looking For
thanx
Asterisk is awesome PBX
Asterisk is awesome PBX (telephony) software. You can setup your own VoIP (and non-voip) phone systems (using this free open source software and your computer) and connect them to other Asterisk servers (on the same network or over the internet) and through encrypted VPN's. You can also use it with regular wired phones, VoIP phones, Wi-Fi phones, and connect it to regular land-lines, etc. You can write software or even just small scripts to make it do pretty much anything. I've used it to automatically vote for the worst singers on American Idol one season, lol (see Vote For The Worst)...oh how I can't stand american idol.
I currently use asterisk for my home phone, using a VoIP service provider. I have three phones in the house, all on different extensions, so they can each call each other, and all can be used on separate calls at the same time (not that we ever actually do, lol). I have it setup so that they all ring when someone calls us, though. Our voicemail is right on the computer that's running asterisk, so when someone's leaving me a message, it's just being stored on the hard drive in that computer. I've had it setup in the past to email me the voicemails, too, but I found that I never listened to them, so I figured I'd stop wasting space on my other computer that was running my mail server.
Before my wife and I moved in together (before we were married), I had setup her old computer to be her new router, and installed asterisk on it, and set her phone to be just an extension on my phone system, and we called each other directly through this for free, while I was still able to use my phone to call everyone else normally.
Asterisk is pretty sweet.
Yes it is very cool
Encrypted telephone calls, the internets are so cool. I know this has so many agencys sweating balls and it makes me giggle with delight every time I think about it.
Backtrack is a good linux distro if you have not checked it out
Good for pen testing and also fits on usb drive.
http://www.remote-exploit.org/backtrack.html
Yeah, I've played with it a
Yeah, I've played with it a bit before. I don't remember if I've downloaded version 3 yet, or not. I haven't had time to mess with this stuff much lately.
I once hacked my own computer lol
It bluescreened on me one too many times ,and the monitor was the first to feel the pain...it got a hatchet right in the middle of the screen....then it AND the tower got thrown out the window.
I then took the whole mess outside of town and fed them with #4 buckshot!
I've never hacked mine
but I've whacked it a few good times now and then
Did you delete your other
Did you delete your other thread?
Very good info you posted
I dont know who or why the thread was deleted, but it contained a lot of good info and resources on computer security, privacy,programming, That would benefit anyone who uses the internet. Even if you arent trying to be a hacker. Shame the thread was deleted. Thanks gcopenhaver for trying to assist others on the DP with these concerns.
Sweet, I still have it (at
Sweet, I still have it (at least mostly if not completely). I didn't close the thread yet, and I was able to just hit the back button a bunch of times and one of my edits of the comment contained all of the text. I'm gonna save a copy of on my machine in case it comes of some use in the future. It took me a while to put that list together.
Here it is (as I recovered it):
Programming (you can't hack if you can't write software and understand how computers and software works)
Some popular programming languages: (use google to learn about these)
Networking
Exploits/Info
Tools (reconnaissance & exploiting)
Tools (privacy)
Wikipedia Articles
Books (a few related to computer security that are on a bookshelf near me at the moment)
This was in no way a complete list. Anyone that wants to get into computer security has a lot to learn (I know a lot, but I still have a lot more to learn, but I spend more of my time studying economics now).
I'm not necessarily condoning any actions suggested by this thread, but this is good information to know for your own personal computer security, and if you want to work in the IT field, or whatever other reasons you find it useful and/or necessary.
Some people want this information to be illegal (and it is in some countries). This information is essential for progressing in securing computers/networks. It's similar to the situation with guns. "Outlaw guns, and only outlaws will have guns." If you outlaw this information, then only criminals will have this information (and will use it, as they already do...it's a very profitable business [spam, id theft, extortion, etc]).
Yeah, I deleted it.
Trying to start a Variation of it again without the actual hacking occurring.
hopefully
Wow that's stupid. Trying to
Wow that's stupid. Trying to learn how to hack without actually hacking. Kinda like trying to learn karate by only reading books on the subject.
Mike - I never meant any harm. I just wanted to open people's eyes a little bit on how easy it is to break into someone's web page if you know what you're doing. I'm not going to finish hacking your site and posting a big picture of my balls on your home page like I had planned. Your site is safe, at least from me. I just hope you realize how much personal info you have strewn about the web that people who know how and where to look can easily uncover and possibly use against you. Just by knowing your web page, I was able to find your home address, a few pictures of you, and what schools you have gone to after about 10 minutes of searching. Now you know the downside to joining these social networking sites like classmates, genealogy, facebook, etc...you can be located VERY EASILY!
ecjonnyboy---I was very upset by that yesterday
I can't get so super duper mad because you're right, the slightest bit of info can open a door and with today's search tools it is easy to find a ton of info on someone. We're on the same though buddy. I offered one page on my site as a test or a way to hone HACKING skills, not to collect personal information on me. As I said yesterday, serious hacking could be a real asset to our cause, but we should never ever seek to harm any of our fellow patriots.
I, of course, forgive you and won't hold it against you. But please direct all that energy the elites. Can you find the phone number for the Peter G Peterson foundation? Seriously, I had it and now its off their website www.pgpf.org
please be cool. I only ask that you be cool.
Explore Orthodox Christianity
Central to hacking is
Central to hacking is finding out as much as you can about your target. That way you can discover things like likely passwords, find their mother's maiden name, you can call friends they are networked to in order to discover other information like birthdays, etc (called a social engineering hack) in order to find answers to password reset questions. Trust me, finding info that may lead to a password is much easier than actually trying to break into any system blind. There is NOTHING that I posted about you that anyone couldn't find out by looking up your web page registration. If you don't want people to have your home address, don't register your domain to it! You think I was trying to harm you? Domain registrations are public info. Anyone could look your address up. You did that one on your own, buddy. Speaking of which, in that post that Panda deleted is detailed info on how to find the phone # of pgpf.org (or at least the IT admin's, whom you can call and say "Do I have the right phone #? I'm looking for the PGPF main tel #."). You can find it the same way. I'm not going to tell you, because that would be too easy! But I'll give you a hint: whois pgpf.org
(OK I'll tell you if you can't figure it out. But use your head first!)
As for you Panda, you think I was initiating force? Are you retarded? You create a thread, discussing hacking and how you feel we need to improve our hacking skills. Mike said he thought it was some kind of hollywood fiction, to which I promptly corrected him, stating I would only need a website and I could hack it (fair warning, don't you think?). He then responded by posting a link to his site and asking me to do it. I could have just done it behind the scenes and not told anyone how, but since the topic is about learning to hack and everyone else contributing to the thread is posting reading lists, I thought I would really teach everyone a thing or two. See I follow the philosophy that "experience is the best teacher". A walk-through for people to follow along at home (aka my post that you deleted) is a MUCH better way to learn than by reading a book on programming or computer security. What part of "This is meant to be a learning experience" did you not understand?
What You Say is True
But mike didn't actually volunteer to be a test subject for the thread. I follow that libertarian creed that says "do not initiate force" to prove a point or to exercise governmental power.
You should just ask for volunteer (I'm not volunteering)
I'm gonna sit this one out
....but bump it for you occasionally
Explore Orthodox Christianity
Bump for Liberty
Fellowship of the White Rose
Ron Paul was right