howto

application featureprinting: the art of identifying different versions and flavors of applications which use the same protocol by their implementations (or lack thereof) of protocol features.

did this last year for smtp… it’s simple: take a protocol rfc and the most popular implementations of said protocol, write a quick test script to check all possible commands and error codes, and throw it against anything you can get your hands on. though of sticking it up here since i’m doing ftp. must be a couple dozen ftp commands, but only like 16 are needed to properly differentiate application vendors.

this is cool because admins can change their banners all they want, and i’ll still know exactly what they’re running. in many cases down to the app version and patch level. fun.

• Continue reading or Leave a comment... (0)

baditude, bump n grind, bomber, crowd pleaser, depth charge, dictator, horsepower, 9mm, pipe, pole position, skin deep, southern thunder, the rock, want me, wide trac… porn stars? nope. boars with big nuts OH and don’t forget to visit the semen superstore! (there’s a super semen giveaway in october)

• Leave a comment... (2)

happy day. someone finally stuck a dvd burner on a TiVo. Saves me the trouble of downloading the .ty files, converting and burning them. Problem is the damn things probably sell for $1000++ and that’ll keep me from owning one.

The Pioneer Elite DVR-57H includes a 120-gigabyte hard disc drive while the Pioneer DVR-810H boasts 80 gigabytes of storage space. Both models are powered by the TiVo service and offer the ability to:

— Schedule and record programs while playing a DVD.
— Play programs from the hard drive while recording from the hard drive onto a DVD.
— Watch a program from the beginning while the recorder simultaneously finishes the recording.
— Transfer content at high speeds from the hard drive to a DVD for long-term storage.

• Continue reading or Leave a comment... (1)

Unverified MAIL-FROM auth. Broken PGP auth. Keeping expired domains. Claiming they own domain names, and allow customers to use them as a “service”. Redirecting the InterNIC neutral site to themselves. $150 during the domain “holding period”. The Domain Registry of America scam. The CA screwup. The current DNS wildcard scandal. Verisign needs it’s powers revoked completely, it should never be able to hijack the major namespaces again.

• Continue reading or Leave a comment... (2)

1) because the MTAs you care about follow RFC
2) because bitch spammers spoof and sendmail rejects
3) because anyone trying to relay through me should go away

www.fif3.com/code/listenblock.txt

here’s some log examples:
www.fif3.com/code/listenblock.log.txt

• Continue reading or Leave a comment... (2)