Security Basics mailing list archives

Re: Wardialing - Odd Results

From: Atom Powers <apowers () digipen edu>
Date: Fri, 22 Jul 2005 09:43:32 -0700

I've seen this if the data rate for the system you are dialing in to andthe program you are using are not in synch. For instance, if the systemyou are dialing to is 9600bps and you have your hyperterminal set to1500bps you will end up getting many duplicate bits, because you aresampling more frequently than you are recieving. The result is garbagelike you show below even if the system you are dialing to is respondingwith ASCII characters.


Ron wrote:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hey guys,

Lately, we've been doing a Wardial on our network.  We found some odd
results that weren't identified by PhoneSweep.  So I dialed in with
HyperTerminal and got a lot of "garbage".  I sent a series of "a"'s (I
held down the a button for awhile) and more stuff showed up.

I attached a capture of the session, just in case that helps.  I think
the "FF"'s near the top were what was being echoed back when I was
holding "a".

Is there some obvious setting to change?  Or is there a better program
to dial in with?  I'm guessing that something is off, but I'm not
familiar with using dialup modems.

Thanks,
Ron
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.9.15 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFC39AxfqSf2EkP4p4RAgvwAJ0U0blADvvCCyeF6jhrvkfe2KAXoACfXX+9
Kzu5Jfvl/E4Dp5yYmF2e8lk=
=YjW9
-----END PGP SIGNATURE-----

------------------------------------------------------------------------

Šõ9äC`CBñ¨30Þ/qŒQ43°a÷àr@ç²ßp`âcC;;:èr£¢!cSx`D2²/ñ†»CÀ€000000Š¢"
D 
ˆB¨ápC:§²wuðÊÃ1ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ»ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ»ÿÿÿÿÿÿÿÿ»ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿûÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ»ÿÿÿûÿÿÿûÿÿ»»ûÿÿÿœRˆ(+uÞ—At)?¦Šœ)¡îÍ±\týÞáJ
¬ægüXQ‚µg½ŽV   7ÛB5Júò/£žð1�ýµF;PÕªˆò‡dþxW"¼1©¤4¿ÊémÒSf8|âÈhéÙr‡i8h1�N°õÜë¼)Z`üñ,œ‹þn¡ª_àÃud„z�"ŒÀÉ[Í…²KÀË 
ž7þþÑ¯/²…ìæ<;ñ5Egú áe×òV2äú‡¥ºQcÒ„Ñ“º,,×¡6ŸÞ¾Kã¹[y?ÝÒˆ4wNU(ÝGùÒÇÔ—I���XF–FPÁ!~Î½Oƒ~uæêf5ÿƒcuøÇÏœÞzà
/Ä;|øÂÐSP£4¹Çò\X~+? ÖlŸ6•îDsŽà<+=„DK*Ú�°Ô¹HŠ}HJ�ÌöàDÔ+gðÝnäJùOD¾R"l4-–Ò�
ô'QJÜCpj¸JV¯Iéí1áºð· ÁÃóÚ”í»YÓk¹…·büô1Ä}daé% ×Fsr€Ç\bÝüŠï¦´‡%)“�¡  O ŸG¡Ü 
É5[÷§ÿ’Ÿy¢Yg~;]ä»°Ðï×Bî)"´ßWIýX^œüÝ
�Ê!9”×˜Òêô©}ì&>³æÊ?zt¥¾U]CTêîiçNqŽˆ‹Ï¿0/žû�Ï¯|~1pwOŒPº”t5:öVÍš©¡zã)W0Ü{[öc?69ITÇÑ+<—«ï8î“?KX¸ù¢d‚vþù»§e¬q 
›îuËOðÚèp…¢ Ùé»q\µ<¨;.5ÙS‚|,‰}+!Õ©²¯ÈùŒÍÏ{àýëëØµõÞ®ZŒ¹ü´}Ð)¹|†¸Yà: 7·´ä×"ý6ÎX%\›Ã?¯
ðµW».±û|Ùibˆ]�H�æŒË,Œ«yâÙ-‡]™“`ÎmÆ)°9i‡îwÁ§Ž)ssÛßèõv[&²Ð-Ñ„ìt$¡*ºüg«F$ìS6|®%Ã7KÝ"™&t7ÃºJùÙåÈÊ•K:ôÜ`ê;4É°5Ï—´ˆË+Úÿ�¡G1h%f±–c|ï
ü6ÆWÎ6ð>€¦(ÐŠˆ‡¶$i\ŠÁÕÞ…Ú,løî?˜i��¡klM÷FóÑ”€/OGj¿Ü(dûþøÜm\S£S‘Õ¡D7.Nˆ³o.ŠÚŽ~oF*;¦sYîò^U!.û       üÂ,z ØŽ
òFóä…"?Æ6Ú�ä®Uý+T1ÃÆÏèQúf°Æ:õ>zSB>©™pOß¢©ê¨á¦<DGJâIQ ,·r¥}~@ìêKi$öúàÐ&o8£dÙáà€¸´€) Ìê|ÀÔ¬ßÈÿe¹KÛ 
Ö¯ù}$Ñ‹�â†òó¨ÿ®bU'óÈmYvxîOþþ^–<Ž›êfÅÓ C´<¯¡zFú½Œ&ä¸Éú—¤~ˆôÝ_ÉÈy|l…²ø
q�
T('HòcCŒaI:¶‘ßgÓz¿<åƒDîÊLmí(ýò(çŽnÞ<2—ä+2<�
‹4äEÐAG.sDó»ú…x»õ] Mé5@’¸¹Dƒ:”"¦t†™êÎµ0Ÿ?C†#À¶>›6Û9„ðÚ‘içû‹£„P¦aF“Æ»2Œl0…•ÊÒ\…é¨ª~¼c±Qßª—·ÅÅ¡§+QcÌZlC

Current thread:

Wardialing - Odd Results Ron (Jul 21)
- Re: Wardialing - Odd Results security (Jul 22)
  - Re: Wardialing - Odd Results Dave Aronson (Jul 26)
- Re: Wardialing - Odd Results Atom Powers (Jul 26)
  - Re: Wardialing - Odd Results John R. Dennison (Jul 26)
    - Re: Wardialing - Odd Results Champ Clark [Vistech] (Jul 29)
    - Re: Wardialing - Odd Results Ron (Jul 29)
- <Possible follow-ups>
- Re: Re: Wardialing - Odd Results anonymousnz (Jul 26)
- Re: Re: Wardialing - Odd Results knieveltech (Jul 26)