Author |
Message |
K' You can win any war if you start a year early
Gender: Joined: Jul 13 2006 Posts: 271 Location: Southtown Offline
|
Posted: Sun Aug 06, 2006 4:39 am Post maybe stupid Post subject: Hands off my wireless. |
|
|
|
|
Source.
Quote: | Upside-Down-Ternet
My neighbours are stealing my wireless internet access. I could encrypt it or alternately I could have fun.
Split the network
I'm starting here by splitting the network into two parts, the trusted half and the untrusted half. The trusted half has one netblock, the untrusted a different netblock. We use the DHCP server to identify mac addresses to give out the relevant addresses.
/etc/dhcpd.conf
ddns-updates off;
ddns-update-style interim;
authoritative;
shared-network local {
subnet *.*.*.* netmask 255.255.255.0 {
range *.*.*.* *.*.*.*;
option routers *.*.*.*;
option subnet-mask 255.255.255.0;
option domain-name "XXXXX";
option domain-name-servers *.*.*.*;
deny unknown-clients;
host trusted1 {
hardware ethernet *:*:*:*:*:*;
fixed-address *.*.*.*;
}
}
subnet 192.168.0.0 netmask 255.255.255.0 {
range 192.168.0.2 192.168.0.10;
option routers 192.168.0.1;
option subnet-mask 255.255.255.0;
option domain-name-servers 192.168.0.1;
allow unknown-clients;
}
}
IPtables is Fun!
Suddenly everything is kittens! It's kitten net.
/sbin/iptables -A PREROUTING -s 192.168.0.0/255.255.255.0 -p tcp -j DNAT --to-destination 64.111.96.38
For the uninitiated, this redirects all traffic to kittenwar.
For more fun, we set iptables to forward everything to a transparent squid proxy running on port 80 on the machine.
/sbin/iptables -A PREROUTING -s 192.168.0.0/255.255.255.0 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.0.1
That machine runs squid with a trivial redirector that downloads images, uses mogrify to turn them upside down and serves them out of it's local webserver.
The redirection script
#!/usr/bin/perl
$|=1;
$count = 0;
$pid = $$;
while (<>) {
chomp $_;
if ($_ =~ /(.*\.jpg)/i) {
$url = $1;
system("/usr/bin/wget", "-q", "-O","/space/WebPages/images/$pid-$count.jpg", "$url");
system("/usr/bin/mogrify", "-flip","/space/WebPages/images/$pid-$count.jpg");
print "http://127.0.0.1/images/$pid-$count.jpg\n";
}
elsif ($_ =~ /(.*\.gif)/i) {
$url = $1;
system("/usr/bin/wget", "-q", "-O","/space/WebPages/images/$pid-$count.gif", "$url");
system("/usr/bin/mogrify", "-flip","/space/WebPages/images/$pid-$count.gif");
print "http://127.0.0.1/images/$pid-$count.gif\n";
}
else {
print "$_\n";;
}
$count++;
}
Then the internet looks like this!
And if you replace flip with -blur 4 you get the blurry-net
|
I would've sent them to view a bit of goatcx.
Mental scars for life are fun! |
|
Back to top |
|
|
D1st0rt Miss Directed Wannabe
Age:36 Gender: Joined: Aug 31 2003 Posts: 2247 Location: Blacksburg, VA Offline
|
Posted: Sun Aug 06, 2006 3:46 pm Post maybe stupid Post subject: |
|
|
|
|
Old, they even backslashed it. _________________
|
|
Back to top |
|
|
BDwinsAlt Agurus's Posse
Age:33 Gender: Joined: Jun 16 2003 Posts: 1145 Location: Alabama Offline
|
Posted: Sun Aug 06, 2006 8:54 pm Post maybe stupid Post subject: |
|
|
|
|
I think that is interesting. I don't use wireless though. When I save up enough money for my laptop I might get a wireless. I don't like staying in the same room as the rest of my family all the time.
Thanks for the post. |
|
Back to top |
|
|
Cerium Server Help Squatter
Age:41 Gender: Joined: Mar 05 2005 Posts: 807 Location: I will stab you. Offline
|
Posted: Mon Aug 07, 2006 1:14 am Post maybe stupid Post subject: |
|
|
|
|
Thank you for calling AOL technical support, how can I be of assistance today?
Whenever I browse the interweb my images are upside down.
Id hate to be the poor sap who had to attempt to troubleshoot this. _________________ There are 7 user(s) ignoring me right now. |
|
Back to top |
|
|
The Apache BECAUSE I'M A STUPID IDIOT
Age:32 Gender: Joined: Jul 10 2006 Posts: 294 Location: High Wycombe Offline
|
Posted: Mon Aug 07, 2006 5:47 am Post maybe stupid Post subject: |
|
|
|
|
"Thank you for calling Dell technical support. The line is currently closed. Please don't call again until we are open.
If your webpages are being shown upside down, please reinstall your internet" |
|
Back to top |
|
|
Cyan~Fire I'll count you!
Age:36 Gender: Joined: Jul 14 2003 Posts: 4608 Location: A Dream Offline
|
Posted: Mon Aug 07, 2006 9:54 am Post maybe stupid Post subject: |
|
|
|
|
Hehe, this makes me wish I used wireless.
... thanks Grav. _________________ This help is informational only. No representation is made or warranty given as to its content. User assumes all risk of use. Cyan~Fire assumes no responsibility for any loss or delay resulting from such use.
Wise men STILL seek Him. |
|
Back to top |
|
|
Solo Ace Yeah, I'm in touch with reality...we correspond from time to time.
Age:36 Gender: Joined: Feb 06 2004 Posts: 2583 Location: The Netherlands Offline
|
Posted: Mon Aug 07, 2006 11:34 am Post maybe stupid Post subject: |
|
|
|
|
This is a reason for me to get a box on wireless.
Isn't this kinda the same as airpwn though? |
|
Back to top |
|
|
Mine GO BOOM Hunch Hunch What What
Age:40 Gender: Joined: Aug 01 2002 Posts: 3614 Location: Las Vegas Offline
|
Posted: Mon Aug 07, 2006 1:11 pm Post maybe stupid Post subject: |
|
|
|
|
Solo Ace wrote: | Isn't this kinda the same as airpwn though? |
airpwn intercepted wireless packets and sent off its own before the real sites could reply. This requires admin access to one of the routers to adjust the iptables. |
|
Back to top |
|
|
Solo Ace Yeah, I'm in touch with reality...we correspond from time to time.
Age:36 Gender: Joined: Feb 06 2004 Posts: 2583 Location: The Netherlands Offline
|
Posted: Tue Aug 08, 2006 2:08 am Post maybe stupid Post subject: |
|
|
|
|
Well, yeah, but the result is the same.
I think the way airpwn works is more coolness. |
|
Back to top |
|
|
|