wget : tools for downloading

March 30, 2008

wget is a useful tools for downloading file over internet. I sometime use it to download linux image distro at kambing.ui.edu. It has the ability to continue the download eventhough we had stop it. It has many option also. Firstly I am gonna teach you how to install wget in windows. Because I think, this tools is also great for other users who use windows. Download the wget installer for windows in here

after you had finish installing the tools, then now it’s time to use it.

for windows, open you command prompt and for linux then open your konsole. The syntax for wget are the same for both windows and linux.

for this example though I use windows because I happen to use windows at this time.

C:\>wget -drc ftp://kambing.ui.edu/pub/debian/4.0_r0/i386/iso-dvd/debian-40r0-i3
86-DVD-1.iso
DEBUG output created by Wget 1.5.3.1 on Windows.

parseurl (“ftp://kambing.ui.edu/pub/debian/4.0_r0/i386/iso-dvd/debian-40r0-i386-
DVD-1.iso”) -> host kambing.ui.edu -> opath pub/debian/4.0_r0/i386/iso-dvd/debia
n-40r0-i386-DVD-1.iso -> dir pub/debian/4.0_r0/i386/iso-dvd -> file debian-40r0-
i386-DVD-1.iso -> ndir pub/debian/4.0_r0/i386/iso-dvd
Checking for kambing.ui.edu.
This is the first time I hear about host kambing.ui.edu by that name.
Using `kambing.ui.edu/pub/debian/4.0_r0/i386/iso-dvd/.listing’ as listing tmp fi
le.
–19:56:30– ftp://kambing.ui.edu:21/pub/debian/4.0_r0/i386/iso-dvd/debian-40r0
-i386-DVD-1.iso
=> `kambing.ui.edu/pub/debian/4.0_r0/i386/iso-dvd/.listing’
Connecting to kambing.ui.edu:21… Created fd 1856.
connected!
Logging in as anonymous … 220 (vsFTPd 2.0.4)

–> USER anonymous

331 Please specify the password.

–> PASS Yacob@

230 Login successful.
Logged in!
==> TYPE I …
–> TYPE I

200 Switching to Binary mode.
done. ==> CWD pub/debian/4.0_r0/i386/iso-dvd …
–> CWD pub/debian/4.0_r0/i386/iso-dvd

250 Directory successfully changed.
done.
==> PORT … Master socket fd 1844 bound.

–> PORT 192,168,1,177,14,129

200 PORT command successful. Consider using PASV.
done. ==> LIST …
–> LIST

150 Here comes the directory listing.
done.
Created socket fd 1820.

0K ->

Closing fd 1820
Closing fd 1844
226 Directory send OK.
19:56:46 (517.58 KB/s) – `kambing.ui.edu/pub/debian/4.0_r0/i386/iso-dvd/.listing
‘ saved [530]

-rw-r–r– 1 1500 100 183 Jun 16 2007 MD5SUMS
PLAINFILE; perms 644; month: Jun; day: 16; year: 2007 (no tm);
-rw-r–r– 1 1500 100 189 Jun 16 2007 MD5SUMS.sign
PLAINFILE; perms 644; month: Jun; day: 16; year: 2007 (no tm);
-rw-r–r– 1 1500 100 207 Jun 16 2007 SHA1SUMS
PLAINFILE; perms 644; month: Jun; day: 16; year: 2007 (no tm);
-rw-r–r– 1 1500 100 189 Jun 16 2007 SHA1SUMS.sign
PLAINFILE; perms 644; month: Jun; day: 16; year: 2007 (no tm);
-rw-r–r– 1 1500 100 4698417152 Jun 12 2007 debian-40r0-i386-DVD-1
.iso
PLAINFILE; perms 644; month: Jun; day: 12; year: 2007 (no tm);
-rw-r–r– 1 1500 100 4681476096 Jun 13 2007 debian-40r0-i386-DVD-2
.iso
PLAINFILE; perms 644; month: Jun; day: 13; year: 2007 (no tm);
-rw-r–r– 1 1500 100 4571021312 Jun 13 2007 debian-40r0-i386-DVD-3
.iso
PLAINFILE; perms 644; month: Jun; day: 13; year: 2007 (no tm);
Removed `kambing.ui.edu/pub/debian/4.0_r0/i386/iso-dvd/.listing’.
Checking for kambing.ui.edu.
kambing.ui.edu was already used, by that name.
–19:56:46– ftp://kambing.ui.edu:21/pub/debian/4.0_r0/i386/iso-dvd/debian-40r0
-i386-DVD-1.iso
=> `kambing.ui.edu/pub/debian/4.0_r0/i386/iso-dvd/debian-40r0-i386-DV
D-1.iso’
==> CWD not required.
==> PORT … Master socket fd 1804 bound.

–> PORT 192,168,1,177,14,131

200 PORT command successful. Consider using PASV.
done. ==> REST 5891040 …
–> REST 5891040

350 Restart position accepted (5891040).
done.
==> RETR debian-40r0-i386-DVD-1.iso …
–> RETR debian-40r0-i386-DVD-1.iso

150 Opening BINARY mode data connection for debian-40r0-i386-DVD-1.iso (46984171
52 bytes).
done.
Created socket fd 1840.
Length: 403,449,856 [397,558,816 to go]

[ skipping 5750K ]
5750K -> ,,…….. ………. ………. …..

for more details you can use

#man wget

or refer to this site

happy downloading !!!

Scheduling shutdown in linux

March 29, 2008

When you have an unlimited internet connection, you happen to download many file over internet. And you let your computer turn on for a long time. Well it’s better for you to schedule your computer to shutdown at specific time when you estimated the download would be complete. For this though I use crontab.

scheduling shutdown daily

type this in your konsole

#crontab -e

it will open up a file, fill the file with this command

0 20 * * * /sbin/shutdown -h now

after that press esc then type :wq to get back to konsole (we are using vim, so I hope you are familiar with it). At the example above, I scheduled the computer to shutdown at 20:00 (24:00 hours format). You just have to wait till 8 pm and then your computer will be shutdown automatically. There are other examples also, like this

this is an example of cron file
#run five minutes after midnight
5 0 * * * * /sbin/shutdown -h now

#run at 2.15pm on the first day of every month
15 14 * * /sbin/shutdown -h now

you can get more detailed information by typing

$ man 5 crontab

or

$ man crontab

and you can study more about the use of crontab there.

Wireshark : A packets sniffer analyzer

March 28, 2008

When our computer was connected to the network, such as LAN. Then wireshark is an utility that enable you to see the packet that is running through the network. Wireshark just not let you see them but capture them.

Did you know, what does this means? what is the use of all those packets anyway?

well, I’d say it contain high value personal data. Like passwords, when somebody trying to log on to specific website, he/she sends data through the networks and to the modem adsl router and to the internet but when you use wireshark you can see the data when it pass your computer and decrypt it. If you are lucky then you didn’t have to decrypt the packets because some sites (e.g Friendster) don’t use encryption at all.

wireshark is available in all platform (windows, mac os and linux). And it’s easy to install. so I don’t think you would have problem during the installation and also wireshark has nice GUI .

well then, let’s get started right.

open your wireshark.

goto Capture->Options

a new window will pop up. click on the interface and it will bring a top down menu.

choose your network cards so that wireshark could function. In the picture below I use Nvidia as my network cards.

then click start button. And wireshark will start capturing packets through the network. When wireshark captures packets, the packets itself is so numerous that we need to use filter so that we only see the packet that contains specific data that we need to know. The data that we want to catch here is password. so go to filter and use this command to filter the packets data.

http.request.method==”POST”

and the packets will be capture just like the picture below.

you may be able to find password specific data by searching the packet that contain login in its packet. If you find those packets then click on line-based text data in wireshark and wireshark will show you the contents of those packets. You may be able to find some passwords though and I can guarantee you that.

there are other filter that you can use, namely :

http.request.method==”GET”   //to capture packets that people requests in the network
tcp  //to find packets that use tcp connection

you can also find other types of filter over the internet

Wireshark is the most popular tool in sniffing and has been used till today. There are other tools that you can use such as Cain & Abel, John the Ripper and etc. But for this I will explain in the next tutorial.

well then, happy sniffing everyone !!!

How to delete your linux partition

March 27, 2008

maybe you got bored with linux and decide to uninstall it and return to windows, well then I ‘ll show you how to delete your linux partition correctly so you won’t had to experienced any error in your windows.

the first step is for you to download this small utility in here

after that copy the extracted file that you’ve downloaded in your C root.

If you don’t know what I mean by C root then just open in ‘My Computer, Click on Local Disk (C:), open it, and paste MbrFix.exe there. then open your command prompt

click start->run then type CMD

it will be something like this

C:\Documents and Settings\Yacob>

Change it to just a C: by typing: cd \ , then press ‘Enter’.

C:\>

then type this command

C:\> MbrFix /drive 0 fixmbr /yes

remember that I typed zero in above command

nothing will appear, you only see the command prompt again.

well you are just successfully uninstall your MBR. and the next step is to format your linux partition so then you can use it for your windows partition. You can use many tools to format partition such as norton partition magic and other available tools

have fun.

free the fish

March 25, 2008

what desktop manager did you use in linux?
if the answer that you had is gnome then I got something that will put your interest.

press alt+F2 then type

free the fish

you will now see a fish swimming in your desktop.
happy fishing !!!

setting up internet using flexi

March 23, 2008

well, for those of you living in indonesia can start surfing through the internet using CDMA phone.
for this though I use flexi.

firstly you need to have DKU cable for your phone so that you can connect your laptop with your phone. for this I use nokia 6275i cdma

plug the DKU cable to your laptop and type this command in your console

jacobian@jacobian-laptop:~$ tail -f /var/log/messages
Feb 5 20:57:06 jacobian-laptop kernel: [ 122.060000] usb 1-1: configuration #1 chosen from 1 choice
Feb 5 20:57:07 jacobian-laptop kernel: [ 122.488000] cdc_acm 1-1:1.1: ttyACM0: USB ACM device
Feb 5 20:57:07 jacobian-laptop kernel: [ 122.504000] usbcore: registered new interface driver cdc_acm
Feb 5 20:57:07 jacobian-laptop kernel: [ 122.504000] /build/buildd/linux-source-2.6.22-2.6.22/drivers/usb/class/cdc-acm.c: v0.25:USB Abstract Control Model driver for USB modems and ISDN adapters
Feb 5 20:57:07 jacobian-laptop kernel: [ 122.944000] usbcore: registered new interface driver cdc_ether
Feb 5 20:57:07 jacobian-laptop kernel: [ 122.956000] usb 1-1: bad CDC descriptors
Feb 5 20:57:07 jacobian-laptop kernel: [ 122.956000] usbcore: registered new interface driver rndis_host
Feb 5 20:58:25 jacobian-laptop kernel: [ 200.576000] PPP generic driver version 2.4.2
Feb 5 20:58:27 jacobian-laptop kernel: [ 202.660000] PPP BSD Compression module registered
Feb 5 20:58:27 jacobian-laptop kernel: [ 202.752000] PPP Deflate Compression module registered

my CDMA modem was detected as ttyACM0, now we do the next configuration

jacobian@jacobian-laptop:~$ sudo gedit /etc/wvdial.conf
##this will open up a file, delete the content of that file and write this configuration into that file

[Dialer cdma]
Modem = /dev/ttyACM0
Baud = 115200
Init1 = AT+crm=1
FlowControl = CRTSCTS
Phone = #777
Username = telkomnet@flexi-time
Password = telkom
Ask Password = 0
Dial Command = ATDT
Stupid Mode = 1
Compuserve = 0
Force Address =
Idle Seconds = 300
DialMessage1 =
DialMessage2 =
ISDN = 0
Auto DNS = 0
New PPPD = yes

close the the file and then type the following command in your konsole

jacobian@jacobian-laptop:~$ wvdial cdma
WvDial: WvDial: Internet dialer version 1.56
WvModem: Cannot get information for serial port.
WvDial: Initializing modem.
WvDial: Sending: AT+crm=1
WvDial Modem: OK
WvDial: Modem initialized.
WvDial: Idle Seconds = 300, disabling automatic reconnect.
WvDial: Sending: ATDT#777
WvDial: Waiting for carrier.
WvDial Modem: CONNECT
WvDial Modem: ~[7f]}#@!}!} } }=}!}$}%\}”}&} } } } }#}%B#}%}%}&%y[17]5}’}”}(}”3$~
WvDial: Carrier detected. Starting PPP immediately.
WvDial: Starting pppd at Tue Feb 5 20:58:25 2008
WvDial: Warning: Could not modify /etc/ppp/pap-secrets: Permission denied
WvDial: –> PAP (Password Authentication Protocol) may be flaky.
WvDial: Warning: Could not modify /etc/ppp/chap-secrets: Permission denied
WvDial: –> CHAP (Challenge Handshake) may be flaky.
WvDial: Pid of pppd: 6318
WvDial: Using interface ppp0
WvDial: local IP address 10.1.1.70
WvDial: remote IP address 2.2.2.2
WvDial: primary DNS address 203.130.193.74
WvDial: secondary DNS address 202.134.0.62

well now you have successfully connected to the internet.

setting up internet connection in linux

March 23, 2008

well, for those of you who had ISP at home might be pleased to be able to get online 24/7. And it’s good you know and also you could learn new things everyday. This tutorial that I am about to present you is how to setup internet connection in linux manually. This howto can also be applied to all linux distribution although I used opensuse as my distro.

open your terminal

to set the IP address then you need to type the following command

jack-opensuse:/home/jack # ifconfig eth0 192.168.1.1 netmask 255.255.255.0

to set the gateway for you internet connection then type this

jack-opensuse:/home/jack # route add default gw 192.168.1.1

and for the last, if you want to set the DNS then open /etc/resolve.conf

jack-opensuse:/home/jack # gedit /etc/resolv.conf
it will open a file like this

### BEGIN INFO
#
# Modified_by: NetworkManager
# Process: /usr/bin/NetworkManager
# Process_id: 2920
#
### END INFO

search melsa.net.id

nameserver 202.138.244.1

##

you just need to add the DNS server after nameserver and also if you had two DNS server then you should add another nameserver just below the first one so it will be recognize as the alternate DNS server. And also if you don’t know your DNS then you should ask your ISP for it, because every ISP use differect DNS server.

well that’s all for now, you just succesfully connected to the internet.

Using nmap to scan network

March 15, 2008

If you had your computer connected to the network you must be wondering how many computer are there in the network. well if you use nmap, it will be as easy as 1 2 3.

nmap is a powerful scanning tools and has been used in many hacking technique. it’s also has been used in movies like The Matrix Revolution. if you watch the movie you’ll know what I mean.

if you are using windows then download nmap using the link below.
nmap

put the file in C:\Program Files\nmap

as you can see above that you had to make a new folder name nmap. after that extract the file and open the command prompt. for improved performance apply the nmap registry in the extract folder. if you want to use nmap frequently then you should do the following

1. From the desktop, right click on My Computer and then click “properties”.
2. In the System Properties window, click the “Advanced” tab.
3. Click the “Environment Variables” button.
4. Choose Path from the System variables section, then hit edit.
5. Add a semi-colon and then your Nmap directory (such as c:\Program Files\Nmap) to the end of the value.

then open the command prompt.

C:\Documents and Settings\Yacob>nmap -sP 192.168.1.1/24

Starting Nmap 4.53 ( http://insecure.org ) at 2008-03-15 12:51 GMT Standard Time

Host 192.168.1.1 appears to be up.
MAC Address: 00:19:E0:66:06:D0 (Tp-link Technologies Co.)
Host 192.168.1.2 appears to be up.
Host 192.168.1.3 appears to be up.
MAC Address: 00:1B:24:DE:AB:26 (Quanta Computer)
Host 192.168.1.4 appears to be up.
MAC Address: 00:90:F5:61:25:4F (Clevo CO.)
Host 192.168.1.5 appears to be up.
MAC Address: 00:0F:B0:F0:FE:BA (Compal Electronics)
Host 192.168.1.6 appears to be up.
MAC Address: 00:16:D3:FC:6B:83 (Wistron)
Host 192.168.1.7 appears to be up.
MAC Address: 00:1D:60:EC:6A:0E (Asustek Computer)
Host 192.168.1.8 appears to be up.
MAC Address: 00:11:2F:1B:FE:31 (Asustek Computer)
Host 192.168.1.9 appears to be up.
MAC Address: 00:A0:D1:D5:93:2B (Inventec)
Host 192.168.1.10 appears to be up.
MAC Address: 00:15:58:35:33:94 (Foxconn)
Nmap done: 256 IP addresses (10 hosts up) scanned in 42.156 seconds

nmap already scan the network and had find all computer that had connected to your network. also if you want to scan which operating system that they are using, then you just need to change the parameter -sP into -O.
C:\Documents and Settings\Yacob>nmap -O 192.168.1.1/24

Starting Nmap 4.53 ( http://insecure.org ) at 2008-03-15 13:39 GMT Standard Time

Interesting ports on 192.168.1.1:
Not shown: 1712 closed ports
PORT STATE SERVICE
23/tcp open telnet
80/tcp open http
MAC Address: 00:19:E0:66:06:D0 (Tp-link Technologies Co.)
Device type: general purpose
Running: Linux 2.6.X
OS details: Linux 2.6.17 – 2.6.18 (x86_64, SMP)
Uptime: 0.045 days (since Sat Mar 15 12:35:21 2008)
Network Distance: 1 hop

Skipping SYN Stealth Scan against 192.168.1.2 because Windows does not support s
canning your own machine (localhost) this way.
Skipping OS Scan against 192.168.1.2 because it doesn’t work against your own ma
chine (localhost)
0 ports scanned on 192.168.1.2

Interesting ports on 192.168.1.4:
Not shown: 1711 filtered ports
PORT STATE SERVICE
139/tcp open netbios-ssn
445/tcp open microsoft-ds
5101/tcp open admdog
MAC Address: 00:90:F5:61:25:4F (Clevo CO.)
Warning: OSScan results may be unreliable because we could not find at least 1 o
pen and 1 closed port
Device type: general purpose
Running: Microsoft Windows XP
OS details: Microsoft Windows XP SP2
Network Distance: 1 hop

Interesting ports on 192.168.1.6:
Not shown: 1712 filtered ports
PORT STATE SERVICE
81/tcp open hosts2-ns
5101/tcp open admdog
MAC Address: 00:16:D3:FC:6B:83 (Wistron)
Warning: OSScan results may be unreliable because we could not find at least 1 o
pen and 1 closed port
Device type: specialized|general purpose
Running: Captor embedded, QNX 4.X
OS details: Captor Omni-Clock (employee timeclock), QNX 4.24
Network Distance: 1 hop

Interesting ports on 192.168.1.9:
Not shown: 1708 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
1025/tcp open NFS-or-IIS
5000/tcp open UPnP
5101/tcp open admdog
MAC Address: 00:A0:D1:D5:93:2B (Inventec)
No OS matches for host
Network Distance: 1 hop

All 1714 scanned ports on 192.168.1.10 are filtered
MAC Address: 00:15:58:35:33:94 (Foxconn)
Too many fingerprints match this host to give specific OS details
Network Distance: 1 hop

OS detection performed. Please report any incorrect results at http://insecure.o
rg/nmap/submit/ .
Nmap done: 256 IP addresses (6 hosts up) scanned in 49.859 seconds

Also if you want to scan any opening port then you can do it by typing

C:\Documents and Settings\Yacob>nmap -sS 192.168.1.23

Starting Nmap 4.53 ( http://insecure.org ) at 2008-03-16 07:51 GMT Standard Time

Interesting ports on 192.168.1.23:
Not shown: 1711 filtered ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
MAC Address: 00:1A:92:32:23:90 (Asustek Computer)

and also if you prefer GUI rather than command line you could download the nmap GUI version. through here

normally nmap was used within Unix environment to scan any opening port. so if you want to be a hacker then nmap is a must have tools.

CMIIW (correct me if I’m wrong)

HP Pavilion tx1000

March 2, 2008

well for those of you who recently bought this laptop and tried to install linux. then you must have been frustrated as I am.

well let me start by choosing the best distro to use. For the best distro I would recommend you to install Ubuntu 8.04 Hardy Heron. Because Ubuntu has been really great in identifying the nvidia graphic cards.

well for now I’m gonna leave you the link so you can study you laptop better with linux installation. just follow this link and you’ll find what you need.

I’ll teach you how to activate 3D effect in HP Pavilion tx1000 using opensuse 10.3

firstly go to this site to download the one click install feature that opensuse 10.3 has. After you had downloaded the necessary driver online, now use your terminal to activate the nvidia driver. Log in as root then type

#su

then type

#init 3

and you will log into text mode, then run this command there

#sax2 -r -m 0=nvidia

then reboot your laptop for the effect to take changes. After logging in your opensuse run sax2 from the terminal and you could see that the 3D acceleration has been activated. now use your terminal then type

#gnome-control-center &

there will be an icon for desktop effects and you can set you 3D there.