HACKING ECONET SYSTEMS / SJ. FILESERVERS LEVEL 3 AND ABOVE 1987 - AGC ---------------------------------------------------------- Written by: Jack Death Concept: Zapper Greets to: WDG, Leck, Pay, HJR, JAS, Mr 'WooD', ZZKJ, SPODS Things to try on ECONET systems: 1 - Mess with someone else's station (great one this!) Right well on the Beeb your station number is held in memory at location &D22 and should be read only - however if you write to it and change it to someone else's station number and then do a '*.' or something then they get messed up (they can't access the fileserver). You type: ?&D22 = 2 - Jam the whole net up (causes major havoc this one!) Not content with screwing over one person's station? Then this is for you - it jams the entire network (EXCL.BRIDGE): Just type: !&D1E = 0 | Then *. or whatever to jam the net... 3 - Jam the whole net up while using the system yerself! (hehe, lovely) Now you need to be at a Master for this one.....All you need to do is to set your station ID to 254 and you can use the system in single_user mode. The Master's station ID is software configurable and can be fixed in CMOS if you like...... Just type: ?&D22 = 254 | Now the system's in Single_user_mode to you. 4 - Use logged on users' accounts after they've switched the computers off. Just switch the machine back on and set the econet handler: Type !&E01=&2D00C then *DIR followed by *. (sometimes done with just *Dir!) 5 - Use logged on users' accounts when they've pulled out their netleads but are still logged on and still using the station. (playing games usually!) Get on a Master and type: ?&D22 = then *dir, *. (easy) NOTES: On NFS chips before 3.64 and b4 ENFS you can attack them without having system priviledge: (for immediate operations) Just set your station ID above 240 and you are now prived! (?&D22) NETMAIL: If you have this then using it without an account is simple just do this: *LO.SEND then CALL&72A2 (See easy!) SYSTEM FREE SPACE THIEF: Steal all free space on the system - If your system has a 'BOOT' account...BOOT (account 0) is sort of priv'd and if you find any files on the system which are open to account 0 and accessed as W then u can fill them till the space runs out - the SYSMAN will undoubtably not real ise what is happening and just allocate 0 more K! I stole 11MBs once! Jack Death - '87 PS. If anyone wants NETMON ASCII version / 'CHEESECAKER' / 'PROTSEE' / 'ECOLORD' / 'NET CONTROL' etc. then leave me a msg here........ ---------------------------------------------------------------------------- 1990 - Does anyone still use ECONET? I still have all the stuff.......A.G.C.