IWETHEY v. 0.3.0 | TODO
1,095 registered users | 0 active users | 0 LpH | Statistics
Login | Create New User
IWETHEY Banner

Welcome to IWETHEY!

IWETHEY Home / IWETHEY Board / Jobs Forum / Easy
Post #43,631
by deSitter
Picture of deSitter
6/27/02 11:17:03 AM
Reply
New Easy
From the "Dynamic IP Hacks" howto:


It would be nice to be able to get access to my work machine (Sun) from
home, and vice versa, yet telnet is firewalled at work. Here's a way
around it.

For purposes of this explanation I'll give the method for gaining access
to my work machine from my home Linux machine, with a dial-up PPP
connection to my ISP and dynamic IP assignment.

From home, when I want access to my work machine, I dial-in and fire up
X, set "xhost +", determine my dynamic IP, and email my dynamic IP to my
work machine in a mail message with a particular format. On my work
machine I have a procmail recipe/script setup that parses the body of a
message whose subject matches a target, say "X-W". If the body of that
message meets certain requirements then it extracts the IP from the
message and spawns an xterm with the display directed to my home dynamic
IP like this:

xterm -display my.ip.i.sent:0.0 -e login

Voila! In about 30 secs to a minute, an xterm login shell appears on my
home machine! I haven't tried going the other direction yet because my
home machine isn't on full time, but using the other methods of
determining the dynamic IP from a remote machine it should work the same
way.


Now assuming you can sneak in a few VNC servers (corporate security is so braindead that this should be easy) you are on Windows and the games can begin.

You could slip in a UNIX box with a direct crossover connection and the appropriate routing to your Windows work box without anyone suspecting much. Just "accidentally" leave your laptop at work.

-desitter
Post #43,650
by pwhysall
Picture of pwhysall
6/27/02 1:09:46 PM
Reply
New Blimey.
Your company leaves port 6000 open?

Wonders will never cease.

Peter
[link|http://www.debian.org|Shill For Hire]
[link|http://www.kuro5hin.org|There is no K5 Cabal]
[link|http://guildenstern.dyndns.org|Blog]
Post #43,673
by deSitter
Picture of deSitter
6/27/02 3:10:24 PM
Reply
New Not Mine!
But you'd be surprised how porous corporate nets are.

-desitter
Post #43,708
by orion
Picture of orion
6/27/02 9:24:14 PM
Reply
New Depends on the people running them
if they are just learning how to run a network or are former PHBs turned Network Administrators, then the security will be weak. Like the lawfirm I used to work for, someone ran a password cracker, and I noticed the database on a shared drive full of passwords, and apparently nobody seemed to care that it existed or that someone has a list of password from most of the user accounts, including administrators. They also didn't seem concerned with applying the latest patches and kept SP4 on the NT 4.0 Servers when SP6.1 was out. They used a Linux server for a firewall, but I think someone else set it up for them. I'd give out their address and domain name, but I don't want someone to hack them and then point a finger back at my post listing the address to go at.
I am free now, to choose my own destiny.
Post #43,730
by ben_tilly
6/28/02 1:38:03 AM
Reply
New Well if they don't...
It is amazing how many will instead leave outbound on 80 open. Given the knowledge at home of how to create a tunnel (not hard - just look in ssh's documentation) it is trivial to hijack that to send your X display home.

Cheers,
Ben
"... I couldn't see how anyone could be educated by this self-propagating system in which people pass exams, teach others to pass exams, but nobody knows anything."
--Richard Feynman
     Just wondering how you would answer question #3 - (inthane-chan) - (21) - June 25, 2002, 08:50:06 AM EDT
         question number 3 depends on how bad you want the job - (boxley) - (6) - June 25, 2002, 01:31:32 PM EDT
             I'd go with the second one - (orion) - (4) - June 25, 2002, 01:41:51 PM EDT
                 #1 can be more appropriate, sometimes. - (imric) - (3) - June 25, 2002, 01:54:41 PM EDT
                     Sometimes, if you work for Tim Burton :) - (orion) - June 25, 2002, 02:00:59 PM EDT
                     Or as a friend of my Mater used to say - (Ashton) - June 25, 2002, 06:43:05 PM EDT
                     I agree... -NT - (slugbug) - June 26, 2002, 08:24:11 PM EDT
             Thanks Bill... - (inthane-chan) - June 26, 2002, 09:48:17 AM EDT
         3. - (deSitter) - (13) - June 26, 2002, 10:47:20 AM EDT
             Great answer! - (imric) - June 26, 2002, 02:02:43 PM EDT
             Welcome back! - (orion) - June 26, 2002, 02:13:47 PM EDT
             On passwords - (pwhysall) - (9) - June 26, 2002, 03:45:24 PM EDT
                 Passwords - (orion) - June 26, 2002, 04:44:53 PM EDT
                 We have another way - (broomberg) - (2) - June 26, 2002, 10:22:09 PM EDT
                     I like! - (static) - (1) - June 27, 2002, 12:35:42 AM EDT
                         Nick Burns your company's computer guy - (orion) - June 27, 2002, 12:40:38 AM EDT
                 Easy - (deSitter) - (4) - June 27, 2002, 11:17:03 AM EDT
                     Blimey. - (pwhysall) - (3) - June 27, 2002, 01:09:46 PM EDT
                         Not Mine! - (deSitter) - (1) - June 27, 2002, 03:10:24 PM EDT
                             Depends on the people running them - (orion) - June 27, 2002, 09:24:14 PM EDT
                         Well if they don't... - (ben_tilly) - June 28, 2002, 01:38:03 AM EDT
             Good to see you here... - (slugbug) - June 26, 2002, 08:21:46 PM EDT

Dr. Ashton prescribes a nice warm cup of cloaca cocoa.
47 ms