Sunday, June 25, 2006

Happy B'day pc
















[Forgive the image quality. That pic was taken usin a webcam at night:P]


My pc's a year old now. "Old" isnt a term you would like to associate with a computer. They are supposed to be prime and mean all time long with obsolete hardware being replaced by the latest and greatest . First of all, i wouldnt call my hardware obsolete:D and second of all my upgrade frequency is really low compared to the likes of asb.

My old pc was/is a technological "marvel" . Its still running:D. An absolute beast of a machine Style, power, u name it;-) Dad bought that pc when i was in sixth standard. I would spend hours talkin to my seniors on my school bus about the MSDOS commands i was to punch in to play a game. My first surprise came when a screen labelled "Windows 95" popped up while i was expecting to c "Starting MS-DOS".. Then came the first huge challenge, Mastering the mouse:D. Tuk some time to get used to it. I furiosuly searched for(and found) the MS-DOS shell and started punching in commands like "cd games" "prince megahit" and all. It tuk some time for my brain to register the fact that u never play a game unless it is installed(read as exists) on ur comp. The comp contained 16 megabytes of EDO RAM(the only specimen ive ever seen), a 1.2 GB samsung harddiskdrive(partioned into 4 regions by the way). The video card was a real killer named Sis 6215 which was a PCI card with 1 megabyte of videomemory. Just in case ur guessin 16MB of RAM??.win 95 requires only 8MB of RAM to run. Other pieces of hardware that were added on later included a Creative 8x CD-ROM drive and a Creative Soundblaster 16 soundcard which pluggd into an ISA port. The 8x drive blew its lens in future and was replaced by a standard 52x samsung drive which was the last upgrade my old PC saw till the new pc came in a year ago. Dj and i once tried running Everest 2005 on my old pc. It detected the motherboard as "Tomato motherboard"=)) It was 7 years of win 95/98 , fifa 98 and nfs 2.

One thing really different about he first years of my old and new pc's is that the new pc never broke down(unless i count the time when dust got in to the RAM slots and sys crashd resulting in me frantically diallin biosbhai's no.) This last year has been very different where the comp became an inseperable part of ME. Durin the last year holidays mnt 16 hrs in front of the comp unless there is a power failure, which was a feat unattainable with my old comp as it wld simply shutdown after 12 hrs of use:D

So its 1 yr and runnin, hope it stays so:D

Thursday, June 22, 2006

Xplosive performance!!!!



Im damn sure u dont want this to happen on ur lap. Saw this Xplosive news on the inquirer. The laptop apparently identified as manufactured by DELL just went "bang" as reported by a person who attended the above conference. The guy advices people to "run run run!!" and never turn back in case such an event occurs in front of anyone. Nothin has been told of what actually caused it to just go up in flames like that.

Tip of the day--always keep ur laptop outta ur lap:D


Read the full story here

Wednesday, June 14, 2006

what computer am i??

got this blogtest from biosbhai's blog

1337 Case Mod
You scored 190 skilled, 80 artistic, 165 gamer, and 25 conformity!

You got the skills! You built your computer from scratch, and thought long and hard about all the components, balancing them for optimum performance. You didn't spend a fortune on your computer, but you spent what you needed to. You'll probably spend a fair bit of dough to upgrade it in six months, when the lastest video card comes out. You
play lots of games, but you probably dual boot to Linux. You probably design webpages or program things.



My test tracked 4 variables How you compared to other people your age and gender:


You scored higher than 66% on skilled


You scored higher than 58% on artistic


You scored higher than 79% on gamer


You scored higher than 12% on conformity
Link: The Which Computer are You Test written by mridlen

Wednesday, June 07, 2006

windows 95 on a sony psp


THE ULTIMATE PORT.........was hard to believe at first but luks authentic. It seems this guy actually succeeded in running win 95 on a sony psp. He apparently used an open source X86 emulator named Bochs to accomplish the feat.

Loading time is abt 10 mins. But its said to be pretty usable afterwards. The mouse is reported to have a certain inertia of motion, i.e u need to push ur joystick in the opposite dir to stop the cursor from continuing to move.

Games like minesweeper and solitaire are said to b very playable.



MINESWEEPER ON SONY PSP


SOLITAIRE ON SONY PSP

The psp in question runs at a full CPU speed of 333Mhz, and the unit reportedly heats up considerably. The author has made it clear that he aint responsible if "ur psp bursts into flames". If you wld like to read the full article do so here.

You can get the source files and a walkthrough on how to do this at the site(if u hv a sony psp 2 burn i.e:D)

signin off--th3_d4r3d3vi1

Tuesday, June 06, 2006

29 useless windows xp sp2 services


Is your win xp-sp2 pc driving u crazy because of its "warp-speeds"??. Then this little piece of info is for u. I actually came across this in a techtree.com
article. It was durin my "norton days" .My pc was just a few weeks old and after insllin NAV general sys speed had gone down a bit. I wldnt hv minded a speed drop of that amount NOW. But when uve just bought a new pc even a sliiight performance drop can make u wonder whether u bought the right PC. This article actually gave me back my speed. The difference was noticable for me. Hope it works for u.

To enable or disable services, go to Start -> Run -> and type "services.msc" and hit Enter.

Computer Browser
"Maintains an updated list of computers on the network and supplies this list to computers designated as browsers."
Contrary to what it may sound like, disabling this service still allows you to browse a network in your office. And of course, you don't need this at home. Disable it.

Distributed Link Tracking Client
"Maintains links between NTFS files within a computer or across computers in a network domain."
This one sounds useful, but only if you often create files on one computer, shortcuts to those files on another computer, and then move the original files around the network. Not many people do so. In fact, not many people even have NTFS on their Windows for some orthodox reason. Not required on FAT32, at home or even at work if your scenario doesn't match with the description. Disable it.



Error Reporting Service
"Allows error reporting for services and applictions running in non-standard environments."
I.e. "Send system information to Microsoft." No thanks. Disable it.

Help and Support
"Enables Help and Support Center to run on this computer."
This is okay to leave as-is if you hit F1 a lot, but if you almost never need to use the built-in help features (as opposed to just Googling for the problem - always a better option), then disabling this service would be a good idea. Now the problem is that the service automatically gets turned back on when required even if its disabled, so keeping it disabled is actually a better option to keeping it on automatic.

Indexing Service
"Indexes contents and properties of files on local and remote computers; provides rapid access to files through flexible querying language."
Use AvaFind (link to review) and/or Google Desktop Search instead. Just disable it - no questions asked.



Net Logon
"Supports pass-through authentication of account logon events for computers in a domain."
Useless for single machines or even most networks out here that don't actually have a domain. Disable.

NetMeeting Remote Desktop Sharing
"Enables an authorized user to access this computer remotely by using NetMeeting over a corporate intranet."
As a general rule of thumb, avoid any combination of "remote" and "internet/intranet". If you don't want people to use NetMeeting to connect to your computer and see your desktop over the Internet/Intranet, disable this please.

Network Location Awareness (NLA)
"Collects and stores network configuration and location information, and notifies applications when this information changes."
And how is that going to help you? Disable it.



Network Provisioning Service
"Manages XML configuration files on a domain basis for automatic network provisioning."
Not necessary for home and/or simple networks. Disable.

Performance Logs and Alerts
"Collects performance data from local or remote computers based on preconfigured schedule parameters, then writes the data to a log or triggers an alert."
There are other, more efficient ways of tracking performance of your machine(s) than using this service, if at all you need to do so. Most home users will never need it. Disable it.

Portable Media Serial Number Service
"Retrieves the serial number of any portable media player connected to this computer."
Unless you use some 100% Windows Media based/compatible ("PlaysForSure") portable audio/video device and Windows Media Player, this service is useless. iPod and regular flash based MP3 player users don't need it. Disable it.



QoS RSVP
"Provides network signaling and local traffic control setup functionality for QoS-aware programs and control applets."
This is an interesting concept to give more bandwidth to applications that request it, unfortunately, not many actually do this QoS thing, so it doesn't make sense to enable it. You can use cFos Speed for better bandwidth prioritization that actually works.

Remote Desktop Help Session Manager
"Manages and controls Remote Assistance."
Remote Assistance should be avoided. Disable this service.

Remote Registry
"Enables remote users to modify registry settings on this computer."
We'll let you guess this one out...



Secondary Logon
"Enables starting processes under alternate credentials."
This offers the "Run As" option to limited user accounts to be able to temporarily run some applications as an administrator (after entering the password, of course). Standalone machines usually have just one account with administrator access and other accounts, if any, are also usually administrators. You should keep this service only if your limited users often need to run applications with admin access, otherwise disable it.

Security Center
"Monitors system security settings and configurations."
That thing that pops up and tells you when your firewall is down, your anti-virus is out of date, or automatic updates are turned off. Personally, I like the alerts because then I know my anti-virus was unable to download its updates. I don't really bother with the firewall and my automatic updates are always on. If you've never needed or received any alerts on these events, this service can be disabled. The feature doesn't offer any protection by itself - it is only a monitor. Not really required.

Server
"Supports file, print, and named-pipe sharing over the network for this computer."
Only if you share files on a network would this be required. If you disable the Server service, you may still be able to access other shares, so you won't be entirely unconnected. Decide and disable if not required.



Smart Card
"Manages access to smart cards read by this computer."
How many of you actually use smart cards with your computer? Disable this.

SSDP Discovery Service
"Enables discovery of UPnP devices on your home network."
Most people don't have any UPnP devices on the network, so this service is useless. Do not confuse this with standard PnP (Plug-n-Play), which remains unaffected if this service is disabled.

System Restore Service
"Performs system restore functions."
I prefer trying to manually troubleshoot and fix, or reinstalling Windows in case of a fatal problem. I've never felt comfortable with using System Restore to "restore old versions of files" and all that, so I keep it disabled. It frees up memory and a good amount of disk space as well.



TCP/IP NetBIOS Helper
"Enables support for NetBIOS over TCP/IP (NetBT) service and NetBIOS name resolution."
Nobody uses NetBIOS anymore. Get over it. Disable this.

Themes
"Provides user experience theme management."
For performance reasons (or if you're just bored of all Blue), you may want to use the classic Windows 2000-style interface. You can switch to it from the Desktop Properties dialog, but there's no reason to have the service running if you're not using Luna / Default Blue, so disable it. Remember: if you're using the Luna / Default Blue interface, this service is necessary.

Uninterruptible Power Supply
"Manages an uninterruptible power supply (UPS) connected to the computer."
If you don't have a UPS, you don't need this service. If you have a UPS that you use independent of the computer (i.e. without automatic turn off etc.), you don't need this service. Even if you do have a UPS that requires installing its own software for power management, this service is not required. Use it only if your UPS connects to your PC via a COM port and automatically gets Windows to work with it (not many).



Universal Plug and Play Device Host
"Provides support to host Universal Plug and Play devices."
Works along with the SSDP service that we doubt you require. Don't know what UPnP is? Disable this.

WebClient
"Enables Windows-based programs to create, access, and modify Internet-based files."
Not a very popular feature. Disable it. If some features in Internet Explorer don't work for you, then you may need it. But then, why are you using IE, again? Huh?

Windows Time
"Maintains date and time synchronization on all clients and servers in the network."
I've kept this on. In fact, I'm so particular about having the correct time on my system, I've actually increased the update frequency from weekly to daily. If you don't share the same enthusiasm as me, you can disable this service. You can use a freeware, third party, on-demand time sync utility that will not need this service to be running, saving you memory.



Wireless Zero Configuration
"Provides automatic configuration for the 802.11 adapters"
I don't have any WiFi devices or networks to get on to, so I've disabled it. If you don't have any WiFi, do the same.

WMI Performance Adapter
"Provides performance library information from WMI HiPerf providers."
Nobody is really sure what to do with this thing. I've never needed it, and it's unlikely that you ever will. Off with it.

Workstation
"Creates and maintains client network connections to remote servers."
If your're sharing files and folders over a network, leave this on. If not, disable it. This is not needed or even utilized in a standalone PC. This doesn't affect Internet connectivity.

Friday, June 02, 2006

A short intro about port scanning

im back...my loong term(1 week) absence from the net was due to xtreme conditions arising(read as way over the data limit). Anyways i changed my plan to a low speed but unlimited one. Thought id write what all i know about port scanners.

Many people believe a port scanner is the ultimate "tool" in a hackers toolkit and it throws up ur friends password lists in a jiffy as soon as u give his ip. Wrong!!. A port scanner is just a tool for "checking" wether a particular system is "vulnerable". Also, port scanning is illegal in many parts of the world and it is NOT a good idea to try them on a public server(just in case)....

To understand different types of port scans a brief knowledge on how a TCP/IP connection is established is necessary. To put it in simple terms a TCP/IP connection is establishd as follows

Connect request
Sender ---------------------> Receiver

Connect Confirm
Sender <---------------------- Receiver

Connect acknowledge
Sender ---------------------> Receiver

This 3-way "handshake" establishes a TCP/IP connection between the "sender" and the "receiver". The most conventional type of port scan is the connect scan
The connect scan simply attempts a full fledged TCP/IP connection to every single port on the victims machine. If a connection is created succesfully with a port(consider a port as a "data-pipeline" which is managed by a particular program) the program marks that particular port as open. The chances of this scan working is really low these days. the most negative part is that this scan shows up prominently in the connection logs of the victims machine.

Another widely popular scan method is the SYN scan.
This is also known as a "half-open" port scan. This is because technically it opens "half a port". It sends the initial connection request, but as soon as the victim responds the scanner sends a connection terminate packet and closes the connection(it marks the port as open). This scan provides a lil bit higher element of stealth compared to the connect scan. It does show up in the logs but with lesser prominence. SYN scan provides somewhat accurate results with a certain degree of stealth.

Next is the FIN scan
This is the most "silent" of all port scans. It employs a packet known as the FIN packet(which means no more data from sender). An open port ignores a FIN packet while a closed port responds with an RST(connection reset) packet. The scanner thus marks out open ports. This method is kinda unreliable in the sense that accuracy is low. It aint "undetectable" but its pretty hard to detect.

There are other methods of scans like XMAS scan, NULL scan etc. which im not that familiar with and havent used.

This is the most basic functionality of a port scanner. Well known port scanners also pack in xtra features like ip-spoofing, banner grabbing and OS detection.

Banner grabbing is the mechanism by which the "welcome" banner of certain programs "manning" a paricular port is captured by the port scanner thus letting us know which service runs on which port.

OS detection is quite a nifty feature. As they say the first step in "breaking in" to a machine is to know which OS it runs. OS detection isnt guarenteed o work at all times. It uses a technique called TCP/IP fingerprinting. Each OS handles a TCP/IP packet in its own unique way. The port scanner compares a "fingerprint" from a packet to its own "fingerprint" database to detect the OS.

Another useful feature is the ARP ping scan which uses ARP packets to determine the MAC-ID of the victims ethernet adapter and its manufacturer. this scan is not blocked by conventional firewalls with ip-blocking.

One of the best port scanners around is undoubtledly Nmap.
Its a command line port scanner which packs in a lot of useful features. A typical Nmap scan result luks like this.....

Initiating ARP Ping Scan against 202.83.39.129 [1 port] at 23:06
The ARP Ping Scan took 0.11s to scan 1 total hosts.
Initiating SYN Stealth Scan against 202.83.39.129 [1670 ports] at 23:06
Increasing send delay for 202.83.39.129 from 0 to 5 due to 17 out of 55 dropped
probes since last increase.
Increasing send delay for 202.83.39.129 from 5 to 10 due to max_successful_tryno
increase to 4
Increasing send delay for 202.83.39.129 from 10 to 20 due to 12 out of 39 droppe
d probes since last increase.
Increasing send delay for 202.83.39.129 from 20 to 40 due to 19 out of 63 droppe
d probes since last increase.
Increasing send delay for 202.83.39.129 from 40 to 80 due to 11 out of 35 droppe
d probes since last increase.
SYN Stealth Scan Timing: About 19.72% done; ETC: 23:09 (0:02:02 remaining)
Discovered open port 5000/tcp on 202.83.39.129
Discovered open port 5101/tcp on 202.83.39.129
SYN Stealth Scan Timing: About 77.96% done; ETC: 23:10 (0:00:43 remaining)
The SYN Stealth Scan took 216.70s to scan 1670 total ports.
Initiating service scan against 2 services on 202.83.39.129 at 23:10
The service scan took 14.13s to scan 2 services on 1 host.
For OSScan assuming port 5000 is open, 1 is closed, and neither are firewalled
Host 202.83.39.129 appears to be up ... good.
Interesting ports on 202.83.39.129:
(The 1646 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE VERSION
20/tcp filtered ftp-data
21/tcp filtered ftp
25/tcp filtered smtp
80/tcp filtered http
135/tcp filtered msrpc
136/tcp filtered profile
137/tcp filtered netbios-ns
138/tcp filtered netbios-dgm
139/tcp filtered netbios-ssn
445/tcp filtered microsoft-ds
593/tcp filtered http-rpc-epmap
623/tcp filtered unknown
664/tcp filtered unknown
1080/tcp filtered socks
1353/tcp filtered relief
1433/tcp filtered ms-sql-s
3128/tcp filtered squid-http
4444/tcp filtered krb524
4480/tcp filtered proxy-plus
5000/tcp open upnp Microsoft Windows UPnP
5101/tcp open tcpwrapped
6588/tcp filtered analogx
9090/tcp filtered zeus-admin
12345/tcp filtered NetBus
MAC Address: 00:11:2F:04:04:C6 (Asustek Computer)
Device type: general purpose
Running: Microsoft Windows NT/2K/XP
OS details: Microsoft Windows XP Pro RC1+ through final release
TCP Sequence Prediction: Class=random positive increments
Difficulty=14917 (Worthy challenge)
IPID Sequence Generation: Incremental
Service Info: OS: Windows



Note that the victims MAC is revealed in the scan. Since the MAC is unique 2 a pc this can be effectively used in identifying a pc. So next time u doubt whether the girl u hv been chattin 2 for the past cpl of hrs is ur neighbour, u knw wat 2 do;-) Note that ARP ping scan works only in some ISP's and it does not work for people on dial-up.

A port scan is not an attack by itself. But it is phase 1 of an attack. So the next time ur frnd threatens that hes gonna "break in" to ur pc using his new "port scanner" ask him 2 buzz off..:D

U can c "trinity" using Nmap before breaking into the power station's server in the movie "Matrix Reloaded"(thnx to anand for the info..)

signin off--th3_d4r3d3vi1