Hacker Magazine Phrack Returns After Four-year Hiatus (phrack.org) 32
Earthquake Retrofit quotes this report from The Register:
More than four years since its previous issue, iconic hacker zine Phrack has published a new issue. Phrack issue number 69 contains articles from researchers Aaron Portnoy and Alisa Esage, as well as articles on OS X rootkits and exploiting Ruby on Rails...
First released in 1985 via BBS, Phrack has been staffed by dozens of editors and contributors in its three-plus decades. The long-running zine has also hosted a number of notable articles, including the famed Hacker Manifesto and Smashing The Stack For Fun And Profit.
First released in 1985 via BBS, Phrack has been staffed by dozens of editors and contributors in its three-plus decades. The long-running zine has also hosted a number of notable articles, including the famed Hacker Manifesto and Smashing The Stack For Fun And Profit.
Attn: Editor (Score:2)
Re: (Score:2)
You confuse hacking with cracking.
Re: (Score:2)
Re:Admissions of guilt (Score:5, Insightful)
And this is why I must not get active without having a permission to attack. A written statement by the owner of a computer or network allowing me to do my job.
For the record, the same applies to doctors who, too, need your permission to cut you open. Doing so without is a serious crime called assault.
Re: (Score:2)
Yes, IAL.
Of course. The malevolently clever way you presented the information gave it away... putting the quotation after your comment on it.
Clearly, a barrister's parlor trick.
Re: (Score:2)
Yes, emergencies are an exception to this. Doesn't really apply here, there is no implied consent when it comes to testing security. I can't really imagine a case where waiting for a signature on the PTA could kill someone.
Spot the arrogance (Score:1)
Doctors are licensed professionals; you don't get to be a doctor by walking up and spouting a good bit of 1337 or yabbering about your ETHICALity or your hat colour. Doctors don't get hired because they get caught butchering without permission. They instead can actually lose that hard-won license for malpractice and end up bereft of income. You, can just walk over to the next sucker and up your hourly rates a notch.
But that really isn't the point. The point is that the terms "hacker" and "hacking" have been
Spot the cluelessness (Score:4, Informative)
Sorry, but if you don't know anything about IT security, you might want to keep from running your mouth. You just might look like a complete idiot to those that know more than you.
If you spent at least 5 minutes googling you could have notice that there are indeed by now a lot of certifications that will easily allow anyone, even non-professionals, to find out whether someone knows what he's doing or whether he's just talking crap. And contrary to popular opinion hacking some server and getting caught is certainly NOT anything that would recommend you as hiring material. If anything, it ends your career in any field that even remotely touches anything considered sensitive. The cynic in me would say 'cause you got caught, but at least the official reason, and that's at least as good, is that you cannot be trusted. And trust goes a long way in this field.
Said certifications are also something that you will immediately lose if you're caught doing anything illegal in the area of security, by the way. Which is essentially the equivalent of losing your job and any income. So no, I can't just walk over to the next sucker after I've been caught with my virtual fingers in some server I should not prod. Organizations that can afford security professionals usually also know that these certifications exist and that lacking one means that, well, you're not something they want to hire.
So please, if you insist in talking down to someone, at least first of all find out where you stand.
Re: (Score:2)
If you spent at least 5 minutes googling you could have notice that there are indeed by now a lot of certifications that will easily allow anyone, even non-professionals, to find out whether someone knows what he's doing or whether he's just talking crap.
If you knew anything about anything you would know that it is possible to get most certifications while not knowing fuck about shit.
And contrary to popular opinion hacking some server and getting caught is certainly NOT anything that would recommend you as hiring material.
History abounds with famous counterexamples.
Re: (Score:3)
Yes, and just as with any other profession, the game is "spot the relevant ones". I could name a few, but my selection would probably be biased by which ones I have. ;)
But even HR by now knows what's relevant and what's fluff. We're still somewhere at the beginning where people can still sell snakeoil to unsuspecting people, but the time for quacks is coming to an end.
At least in ITSEC. From what I gather, the time of quacks in medicine is dawning again.
Re: (Score:2)
Re: (Score:2)
Funny how people "know" all kinds of untrue stuff. There is no section in the US code which says "computer hacking" is illegal. Many activities so described in common parlance are illegal of course, but that's not the same thing.
What's more there can't be any law that outlaws reading or writing about illegal activities. Or to be more precise any such law targeting such writings must be so narrowly drawn as to be readily circumvented.
Notable articles... (Score:4, Interesting)
The long-running zine has also hosted a number of notable articles, including the famed Hacker Manifesto and Smashing The Stack For Fun And Profit.
Not to mention an article from 1997 called "The Art of Port Scanning [phrack.org]" in which Fyodor introduced a tool called nmap [nmap.org]...
Re: (Score:1)
And it's interesting that that article includes this: "I have used many of the top scanners available today, including
strobe by Julian Assange [...]".
Re: (Score:2)
Yea, I tried strobe, but I had this weird problem where I'd use it, then shut it down, but in the middle of the night strobe would start back up and port scan a few more times without my permission.
And yet, you liked it so much you bought it breakfast afterwards and kept using it for another week or two
Re: (Score:2)
... he said anonymously.
I met Fyodor at a CanSecWest years ago. Wound up giving him a ride to Vancouver International airport. Had pleasant conversation and found him to be humble, intelligent, and likeable.
Phrack was relevant (Score:3)
Sadly, it has kinda outlived its life cycle. While it was certainly very important in the past, it did not really age well. Today it's little more than a piece of nostalgia, something fondly remembered as the source of many important revelations from a time when the internet wasn't what it is today.
But give it time. If our law makers stay on the road down to insanity, it could well become very relevant again soon.
Re: (Score:2)
That first paragraph can indeed work for more than just Phrack.
The second line, though...
Re: (Score:1)
How does it compare to 2600? (Score:3)
Re: (Score:2)
I don't recall Phrack ever being printed on paper.
Re: (Score:3)