You don’t need to set up a web server in order to automate the delivery of your information products. This section is for people who don’t want to pay a cent for hosting their downloadable information products and web sites. Hosting your own web pages gives you much more hard drive space and easier control of your HTML documents. This section will also go over typical issues when setting up a web server and a solution for each issue.

Internet Service Providers (ISP’s)

Here is a little information on most Internet Service Providers (ISP’s). If you’re on a basic ADSL or Cable package, then chances are you have some restrictions on your Internet account. Common limitations are certain port blockages, and IP address assignment process. First, let’s look at ports.

Ports

Ports are used for communication on the Internet. There are a lot of them, and knowing what they all do is not important for this document. What is important is that your ISP may be blocking you from accepting requests on port 80, which is the HTTP (Hypertext Transfer Protocol) port. HTTP allows you to surf the Internet. If you look at the address bar on your browser, you will always see “HTTP”. This means that you can access the Internet on an outgoing basis, but you can’t accept incoming HTTP connections. Why? Think of your ISP as doing you a favor. By blocking port 80, they are eliminating the chance of your computer from ACCEPTING viruses, spyware, and all sorts of other malicious activity. The problem is, this also blocks your ability of accepting other HTTP (port 80) requests, therefore preventing you from being a web server. To find out if your port 80 is blocked, you will either have to go to your ISP’s web site and find your license agreement, or call their technical support line and ask. Either way, this problem is easily solved in the next few pages. We will now move on to the next issue, IP Address Assignment.

IP Address Assignment

An IP (Internet Protocol) address is a unique identifier that gives your computer a “home” on the World Wide Web. Most basic Internet packages, including all dial-up connections, work on a dynamic IP address assignment process. The problem this causes is that if your IP address is always changing, how is anyone supposed to find your “home”? It would be like you lived in your house for 5 hours, and then left. Even your trusty mailman would get confused! One solution is to call your ISP and get your Internet package upgraded to a business plan, which will change your IP from dynamic to static, but at an extra cost. The other is to use a great free tool that we will explain in the next section.

To find out your IP address, click “Start”, then Run, type “Command”, click “OK”. When the black window, known as the “Command” window opens, type “ipconfig /all”. This will yield your current IP configuration. If you see a line that says “Lease Expires”, and it’s soon, then you definitely have a dynamic IP. Don’t worry if it expires soon, you’ll get a new one as soon as it does. You will also notice a 4-octet number, seperated by 3 periods next to its appropriate description, “IP Address”. This is your IP address.

No-IP.com

Who is No-IP?

These guys are great!

Before we get into it, lets define what a domain name is. A domain name is a alphanumeric representation of your IP address. In other words, any “www” name you enter into your address bar actually reflects an IP address. If you open up your command window again and type “ping www.articleautomate.com”, you will notice there is an IP
address in square brackets next to my domain name in the results.

Now, let’s move on.

First, No-IP will give you a web name and you don’t even have to pay for it! That means you don’t have to purchase a domain name. Any “www” address you see in your address bar is a domain name. When you use No-IP.com, you will receive a domain name that looks like www.yourname.no-ip.com. Notice the “no-IP” part. Since No-IP.com is a free service, they add that to your “www” name. This is fine because the purpose of your site is to serve your articles to your customers through your eBay and Paypal “Instant Purchase” sales, although you can also serve web pages. Your domain name also remains easy to remember.

Second, your dynamic IP address issue simply disappears. No-IP.com has developed a free piece of software that you download from them and install on your PC. What it does is monitor your IP address, and when your IP changes, it tells the No- IP.com server, which updates your “www” name to reflect your new IP address.

No-IP.com Registration

Now that you understand what No-IP is, you are ready to go out and get registered. Click the link below, find their “Sign-up Free” link, and fill in the blanks.

www.articleautomate.com/no-ip

Once you have fully registered, you will receive a confirmation email. Follow the directions on the email. Next, log into your No-IP.com account, and click on the “Add” link under the “Hosts/Redirects” header.

The “Hostname” textbox is where you will enter your “www” name, and the dropdown is the No-IP.com extension of your choice.

If your ISP does not block port 80 then you don’t need to do any port redirecting. Just click the “Create Host” button at the bottom of the page.

If your ISP does block port 80 then click on the “Port 80 Redirect”. A new page will load, but will look almost the same. For the “Port”, enter 8000. Click the “Create Port Redirect” at the bottom of the page.

Registration is complete – on to the software!

Click on the “Downloads” tab at the top and then click “Windows” on the left column. Click on the No-IP DUC v x.x.x link. (x.x.x because the version is always changing)

Follow the wizard to install the program. Once installation is complete, you will be prompted for the email address and password you entered during registration. After entering this, the console will open. Turn to the next page to see what your console will look like.

Notice the smiley face. That means the No-IP.com server has been updated with your current IP address.

Now that you have your domain name set up, you have to start hosting your pages! The next section will introduce you to an excellent program called Abyss Web Server by Aprelium.

Abyss Web Server

What is Abyss?

Simply put, Abyss is a free personal web server for Windows, MacOS X, Linux, and FreeBSD. Abyss is just a web server, and does not allow for any FTP protocol. You can access your console remotely to update directory and user settings, but you can’t upload any files unless you are at the computer running the web server.

Installation

Click on the following link:
www.articleautomate.com\abyss

Find the “Download” link under the “Software Resources” header near the bottom of the page. Click on the “Download Abyss Web Server X1 for Windows” link and install the software.

Once the installation is complete, you will be asked for a username and a password. This identifier will then be your login to your web server. You will also see the Abyss icon in your system tray. After entering your login info, you will be prompted again for a username and password. You will always be prompted for your login information with this screen whenever you start your console.

You should get a console that looks something like this:

Do not change the “Server Root”. This is where your web server runs.

Change your “Documents Path” to the path you wish to host your pages from. For this book, I will use “c:\article”.

If your “Port” isn’t already set to 8000, do that now.

Any changes that you make will require a server restart, which is nothing more than clicking a button when you are prompted.

If you ever need to access your console again, right click on the Abyss icon in the system tray, and select “Show Console”. Please take into consideration that we have only skimmed the surface with Abyss Web Server and that there is much more to learn about it, such as setting up directory and user permissions, and your access statistics.

We will now move on to a “suggested” method of setting up your web server directory.

Directory Structure

Before you start creating HTML and putting your article online, you may want to look at how you want your web server’s file system to be set up. I have found that it is easier to maintain when you have the following setup: For this example, I have set my “Documents Path” to c:\article. To create a directory, read “Directory Creation”.

Take a look at the image below:

You will notice that we are in the article directory, and there is an index.htm file. This file will be your website’s home page. Next, you will see an images folder and a widgets folder. You will store all of your website’s images in the image folder. The widgets folder will contain another “index.html” file, which will contain the download link to your article.

Directory Creation

To create your “article” directory:

1. Right-Click the “Start” menu.
2. Click on “Explore”.
3. Navigate through the tree until you find “C:” and click on it.
4. In the right window pane, right-click on some white-space, and select “New”, then “Folder”.
5. Name your folder “article”.

Follow this process to create your “images” and “widgets” directory. We will look at creating your “index.html” file in Section 4 or this article.

Test Your Server

Next, test your server. Run the “ipconfig” command, and write down your IP address. Open a new web browser and in the address bar type: yo.ur.ip.addy:8000/

If you get the Paypal button you created and tested earlier, you have correctly installed Abyss. Notice the “8000”. This directs the website to your port 8000. If you decide to run your server on a different port, you will need to change this figure to be the same.

Now try your No-IP domain name “http://yourname.no-ip.com”. Notice that your address bar changes to your IP address?

If you don’t want the address to change to your IP, then you will have to log into your No-IP account and edit your Host settings from “Port 80 Redirect” to “DNS Host,” but the difference will be that your domain will look like www.yourname.no-ip.com:8000.

Troubleshooting

If you experience problems, such as “error 404 - Page cannot be found”, then try some of these suggestions:

1. Make sure there is an “index.html” file in your “c:\article” directory.
2. Make sure your “Documents Path” is set to “c:\article”
3. Make sure you see the following icons in your system tray (bottom right):
4. Make sure your web address DOES NOT contain a “WWW” in it. It should follow this exact protocol: yourname.no-ip.com.

If all none of these suggesstions work, the following link:
www.articleautomate.com/serverhelp

First Off - Need To Know Facts

First off, I have to say that NO! This is not a scam of any type. The company offerin’ this deal (Gratis Internet) is registered with de BBB (Better Business Bureau) and has been for quite some time. Gratis is also affiliated with big-name companies such as AOL, General Motors, Ebay, Columbia House, and many oders. These companies would never affiliate themselves with a fraudulent web site/company. Aside from all this, dere is proof that this works. Many people have received deir ipods already and many more will. I wrote this document to help spread de word to you and ofcouse to help my self get an iPod.

How it works

The way FreeiPods work is actually very simple. You sign up at deir site, den you get oders to signup and complete a offer (usually free). An offer can be anythin’ from buyin’ somethin’ on a web site to signin’ up for a free trial for a ISP. When this happens FreeiPods makes money from de offer you sign up from (even if you didn’t spend a dime). With this money dey make, dey are able to offer FREE iPods, Simple huh?

To get a free ipod, you must sign up at deir site, den complete 1 (One) offer. After that, you have to get 5 (Five) people do de same thin’, and since it usually doesn’t cost anythin’ to complete an offer, a friend should be more den willin’ to help you out. After you have completed 1 (One) offer and gotten 5 (Five) people to signup and complete a offer, you will be sent de ipod of you choice.

The steps to follow.

Step #1 (Signup)

The first step is to go to de web site and signup. You will be asked witch ipod you would like and for an e-mail address and to create a password on de first screen. Then you will be asked for your shippin’ info so dey know where to send de ipod. The address to go to to signup is:

CODE
www.freeiPods.com/default.aspx?referer=7498598

Step #2 (Referrals)

The second step is a little more tricky. This is de part where you have to get people to signup for ipods usin’ you referral link. There are many ways to do this, ask some friends to do it, send out e-mails, post on forums, get on some con’a lines, write a how-to like i did, I’m sure you will think of away to do it.

Step #3 (Offers)

An offer is when you signup for one of freeipod’s affiliates, dere are quite a few to choose from. This part is what stops most people from completin’ deir freeipod offer. The reason bein’ is that it sounds to good to be true, for example, you can signup for a completely free trial of AOL and get an ipod in return.. At first i didn’t think this was legit, but after talkin’ to a few people who have done it and had proof that it actually worked for them, i decided to give it a try and it worked.

I used de AOL offer, you actually don’t need a credit card (however i did use one). If you signup and hit cancel when it asks for your credit card info, it should still work and give you credit, many people i know have tried this and it has worked. If you DO you a credit card, all you have to do is call AOL and cancel de trial after your offer has been approved by freeipods. This usually takes a day or so.

Step #4 (Wait)

Wait for freeipods to e-mail you, dey will give you instructions on what to do from dere.. It will just have you follow a link and den fill out your shippin’ info and den it will ship.

This post will teach you how to send big files to email.

First of all you need to have a big mail box. Here are de one which we can use :

• Gmail (Google mail)
• Storage space - 1GB
• Maximum attachment size - 10MB
www.gmail.com

• Walla! mail (de best)
• Storage space - 1GB
• Maximum attachment size - 7MB
www.walla.com

• Spymac Mail
• Storage space - 1GB
• Maximum attachment size - 10MB
www.spymac.com

• Unitethemailsystems
• Storage space - 3GB
• Maximum attachment size - 10MB
www.unitethemailsystems.com

• Xasamail
• Storage space - 2GB
• Maximum attachment size - 10MB
www.xasamail.com

• Omnilect Mail
• Storage space - 2GB
• Maximum attachment size - 7MB
www.omnilect.com

Then download de software called peer to mail:
dw.com.com/redir?pid=10351095&merid=72949&mfgid=72949&lop=link&edId=3&siteId=4&oId=3002-2196_4-10351095&ontId=2196&destUrl=http%3A%2F%2Fwww.peer2mail.com%2FP2MSetup.exe

Official website:
www.peer2mail.com

Next step : Configurate de software

Go in settin’s > SMTP server settin’ and give a smtp address that you know:

Ex: smtp.laposte.net
user : HULK
pass: ******

Once configurated, you won’t need to touch it for de rest of your upload. This is a critical step, if you are experimentin’ any problem of connection this is where u need to have a look. It is possible that temporarily, your internet provider won’t allow you to use oder smtp addresses. So use:

ie:
smtp.free.fr
smtp.wanadoo.fr
…

If you are experimentin’ any problem, it is better to de-activate your antivirus (de scannin’ mail option)

1 - Click on Split/Send File.
2 - Click on de icon (choose a file to send…..).
3 - Select de archive that you want to upload.
4 - Type de address of your account (email).
5 - It determines de size of de parts that de archive will be divided (take a look at de max size used by your mail). I advise you to put a size of 6MB.
6 - It determines de type of sendin’. “Send via smtp server”

After all that, press OK. After all de parts have been sent, go to your account (email) and confirm, den you have to brin’ de Encrypted password. Always give de followin’ information to de users. Follow de example below:

Email: GMail
Login: zezão
Password: |/kjds42d4sd24 |

Remmember:
Only Encrypted Password, never sends your true password

Be careful: Never post your coordinates without havin’ previously verified de content in de mailbox

Sometimes peer2mail tells you that evrythin’ is sent but dere is a possibility that nothin’ was sent. You want to download games and movies with a good speed (thats what we all here for!). So here is an easy way to download large files from mailbox.

Anoder example:

First download peer to mail

Official website:
www.peer2mail.com

Open it and go to de browse tab

Then take de coordinates of de film or game you want to download. In this tutorial i’ll use de film mulan :

mail: walla.com
login: dragon_mushu
pass: <(/++EiJPy)>

You noticed that de mail used is walla.com. So go to www.walla.com with de adress bar or with de prerecorded website.

Login with:
“dragon_mushu” & “<(/++EiJPy)>“

Go into de inbox den click on de icon. After you’ve retrieved all de segment click on “download”. If everithin’ is fine, de movie will merge automatically and you won’t need to care about de segments. If you look for a place to share, download movies or games usin’ peer2mail, just go to de peer2mail’s website, www.peer2mail.com. Then go to de forum and click on “peer2mail related websites”.

Here is de direct link (may not work)
www.peer2mail.com/forums/viewforum.php?f=13

Here you are now. You should be an expert on peer2mail!

Peer2Mail is de first software that let you store and share files on any web-mail account. If you have a web mail account with large storage space, you can use P2M to store files on it. Web-mail providers such as Gmail (Google Mail), Walla!, Yahoo and more, provide storage space that ranges from 100MB to 3GB. P2M splits de file you want to share/store zips and encrypts it. P2M den sends de file segments one by one to your account. Once P2M uploaded all file segments, you can download them and use P2M to merge de segments back to de original file.

Sendin’ a File

In order to send a file to an email account, Peer2Mail needs to split it into segments. Web-mail providers limit de size of an email attachment usually to a nominal 10Megs, but due to de size increase resultin’ from transport encodin’s, de limit works out to be a few MB less (Usually 7MB). Use de followin’ dialog to prepare de file before sendin’:

File Name - The files you want to send. You can use de Browse button to select a sin’le or multiple files.

Mail To - The recipients who will receive de file (Web-mail account). When usin’ Direct Send you may enter only one email address. If you are sendin’ via MAPI den you can enter as many recipients as you like; Use de Recipients button to easily add email address separated by semi colon (icon_wink.gif.

Optional Encryption Password - P2M automatically encrypts each segment to protect you privacy, however you can set a password (key) for de encryption to maximize de privacy. You will need this password when you merge de segments back.

Segment Size - P2M splits de file into segments. Here you can determine de segment size, most of de web-mail providers limit de attachment size to a nominal 10Megs, but due to de size increase resultin’ from transport encodin’s, de limit works out to be a few MB less (Usually 7MB). It is recommended to test your web-mail provider for de size of an attachment it can receive.

Send Method

To Direct Send - P2M has a built in SMTP component that sends de segments directly to de web-mail providers. You don’t need to enter your ISP details in order to use P2M. If you are usin’ this feature please make sure you enter a value in de ‘From Email Address’ because some web-mail providers reject email messages where dere is no ‘From’ address. You can even enter a fake mail address.

To Send Via MAPI - P2M can send de segments usin’ MAPI (Usually your outlook client). When you use this option P2M will split de files and move de sendin’ responsibility to Outlook. Note that it will use your ISP SMTP server and details to send de files. You may enter as many recipients as you wish when usin’ this option.

To Send Via SMTP Server - Send de segments usin’ your ISP SMTP Server. If you are usin’ this feature please make sure you enter a value in de ‘From Email Address’ because some web-mail providers reject email messages where dere is no ‘From’ address. You can even enter a fake mail address. You may enter as many recipients as you wish when usin’ this option.

From Email Address - This is de source address of de mail. This address doesn’t have to be valid, although sometimes web-mail providers reject emails where de domain part of de address isn’t valid.

Once you are done, click on de Ok button. You can now choose if you want P2M to send all de segments or only specific few by checkin’/un-checkin’ de checkboxes. Once you are ready, click on de Send button. It may take a few hours to complete de operation dependin’ on de file size and your internet connection.

Note: If you are usin’ an antivirus program that scans outgoin’ mail, it is recommended to disable this feature since it takes a lon’ time for each segment to be scanned.

Plain Transfer

In case you don’t want Peer2Mail to split, zip and encrypt your files, and just want to send de files “as is�” den you can use Plain Transfer. This option isn’t secure. P2M just sends de file as an email attachment and some web mail providers might even block it.

Choose Plain Transfer from de drop down button. Once you are done fillin’ de details as described above, click on de Ok button. Once you are ready, click on de Send button.

Note: If you are usin’ an antivirus program that scans outgoin’ mail, it is recommended to disable this feature since it takes a lon’ time for each segment to be scanned.

Downloadin’ de Segments

P2M includes a built in browser so you can easily log into your web-mail account. Before you can merge de segments you need to download them. It is important that you will save all de segments into de same folder. The first segment name ends with de P2M extension and de rest follow with a serial number 001…00x.

Auto Download

Peer2Mail can automatically list and download files from web-mail accounts. Currently P2M supports auto-download from Gmail, Walla, Yahoo, Spymac, Unitethemailsystems, Xasamail, Gawab, Hriders and Omnilect. To use this feature, login to your account and click on de green download button (Image). P2M will den list de segments (may take a few minutes) and at any time you can tell P2M what segment to download by clickin’ on de checkboxes that appear next to them. Click on de Download button to begin downloadin’ de selected segments.

If you checked de Auto Merge checkbox den Peer2Mail will automatically merge de segments once de download process is done

The listin’ process can be a bit slow since P2M scans de mail account and gaders information about each attachment. Sometimes a server doesn’t reply to a request so P2M might skip it. To fix that, once de listin’ process is over, click on de refresh button and P2M will re-index only de segments it didn’t already list.
P2M scans for segments only in de inbox for Yahoo, Walla, Spymac, Unitethemailsystems, Xasamailand, Gawab, Hriders, Omnilect, and on all folders with Gmail.

Mergin’ de Segments

Once you completed downloadin’ all de segments, use P2M to merge it back to de original file. Choose de folder you want de file to be saved in and click on de Merge button. The Merge dialog:

P2M Files - use de Browse button to select de first segment of de file you wish to merge. The first segment extension is P2M.

Decryption Password - If you used a password when you sent de file to your account, you must enter it now in order to merge it back. Incorrect password will result in a failure to merge de segments.

1. Some ISP’s block port 25 so it might not work
2. Most likely, you won’t be able to see what you are typin’

First of all, you need an SMTP server. These are extremely common and, in fact, I’ll provide one for you (mail.hotmail.com). SMTP: Simple Mail Transfer Protocol. This service runs on port 25 (in most cases) and is used to send outgoin’ email.

Now, open up de command prompt and telnet to mail.hotmail.com on port 25 (note: to see what you type, type telnet and enter den type in set local_echo):

code:
telnet mail.hotmail.com 25

When you are connected type in (except what’s in between *’s; you chose what will go in de []):

code:
helo
*wait*
mail from:[whoever]@[whoever.com]
*wait*
rcpt to:[whoever]@[whoever.com]
*wait*
data
*wait*
[write]
[whatever you want]
[in]
[as many]
[lines as wished]
.
*wait*
quit

Helo is just a handshake with de server. Mail from: is FROM who you want de email to be. rcpt to: is who you want de email to go to. under data is what you want sent. de ‘.’ ends data. quit quits. There! simple isn’t it.

With de spread of Hackers and Hackin’ incidents, de time has come, when not only system administrators of servers of big companies, but also people who connect to de Internet by dialin’ up into deir ISP, have to worry about securin’ deir system. It really does not make much difference wheder you have a static IP or a dynamic one, if your system is connected to de Internet, den dere is every chance of it bein’ attacked.

This manual is aimed at discussin’ methods of system security analysis and will shed light on as to how to secure your standalone (also a system connected to a LAN) system.

Open Ports: A Threat to Security?

In de Netstat Tutorial we had discussed how de netstat -a command showed de list of open ports on your system. Well, anyhow, before I move on, I would like to quickly recap de important part. So here goes, straight from de netstat tutorial:

Now, de ??a? option is used to display all open connections on de local machine. It also returns de remote system to which we are connected to, de port numbers of de remote system we are connected to (and de local machine) and also de type and state of connection we have with de remote system.

For Example,

C:windows>netstat -a

Active Connections

Proto Local Address Foreign Address State
TCP ankit:1031 dwarf.box.sk:ftp ESTABLISHED
TCP ankit:1036 dwarf.box.sk:ftp-data TIME_WAIT
TCP ankit:1043 banners.egroups.com:80 FIN_WAIT_2
TCP ankit:1045 mail2.mtnl.net.in:pop3 TIME_WAIT
TCP ankit:1052 zztop.boxnetwork.net:80 ESTABLISHED
TCP ankit:1053 mail2.mtnl.net.in:pop3 TIME_WAIT
UDP ankit:1025 *:*
UDP ankit:nbdatagram *:*

Now, let us take a sin’le line from de above output and see what it stands for:

Proto Local Address Foreign Address State
TCP ankit:1031 dwarf.box.sk:ftp ESTABLISHED

Now, de above can be arranged as below:

Protocol: TCP (This can be Transmission Control Protocol or TCP, User Datagram Protocol or UDP or sometimes even, IP or Internet Protocol.)

Local System Name: ankit (This is de name of de local system that you set durin’ de Windows setup.)

Local Port opened and bein’ used by this connection: 1031

Remote System: dwarf.box.sk (This is de non-numerical form of de system to which we are connected.)

Remote Port: ftp (This is de port number of de remote system dwarf.box.sk to which we are connected.)

State of Connection: ESTABLISHED

?Netstat? with de ??a? argument is normally used, to get a list of open ports on your own system i.e. on de local system. This can be particularly useful to check and see wheder your system has a Trojan installed or not. Yes, most good Antiviral software are able to detect de presence of Trojans, but, we are hackers, and need to software to tell us, wheder we are infected or not. Besides, it is more fun to do somethin’ manually than to simply click on de ?Scan? button and let some software do it.

The followin’ is a list of Trojans and de port numbers which dey use, if you Netstat yourself and find any of de followin’ open, den you can be pretty sure, that you are infected.

Port 12345(TCP) Netbus
Port 31337(UDP) Back Orifice

For complete list, refer to de Tutorial on Trojans at: hackin’truths.box.sk/trojans.txt

Now, de above tutorial resulted in a number of people raisin’ questions like: If de ‘netstat -a’ command shows open ports on my system, does this mean that anyone can connect to them? Or, How can I close dese open ports? How do I know if an open port is a threat to my system’s security of not? Well, de answer to all dese question would be clear, once you read de below paragraph:

Now, de thin’ to understand here is that, Port numbers are divided into three ranges:

The Well Known Ports are those from 0 through 1023. This range or ports is bound to de services runnin’ on them. By this what I mean is that each port usually has a specific service runnin’ on it. You see dere is an internationally accepted Port Numbers to Services rule, (refer RFC 1700 Here) which specifies as to on what port number a particular service runs. For Example, By Default or normally FTP runs on Port 21. So if you find that Port 21 is open on a particular system, den it usually means that that particular system uses de FTP Protocol to transfer files. However, please note that some smart system administrators delibrately i.e. to fool lamers run fake services on popular ports. For Example, a system might be runnin’ a fake FTP daemon on Port 21. Although you get de same interface like de FTP daemon banner, response numbers etc, however, it actually might be a software loggin’ your prescence and sometimes even tracin’ you!!!

The Registered Ports are those from 1024 through 49151. This range of port numbers is not bound to any specific service. Actually, Networkin’ utlites like your Browser, Email Client, FTP software opens a random port within this range and starts a communication with de remote server. A port number within this range is de reason why you are able to surf de net or check your email etc.

If you find that when you give de netstat -a command, den a number of ports within this range are open, den you should probably not worry. These ports are simply opened so that you can get your software applications to do what you want them to do. These ports are opened temporarily by various applications to perform tasks. They act as a buffer transferin’ packets (data) received to de application and vis-a-versa. Once you close de application, den you find that dese ports are closed automatically. For Example, when you type www.hotmail.com in your browser, den your browser randomly chooses a Registered Port and uses it as a buffer to communicate with de various remote servers involved.

The Dynamic and/or Private Ports are those from 49152 through 65535. This range is rarely used, and is mostly used by trojans, however some application do tend to use such high range port numbers. For Example,Sun starts deir RPC ports at 32768.
So this basically brin’s us to what to do if you find that Netstat gives you a couple of open ports on your system:

1. Check de Trojan Port List and check if de open port matches with any of de popular ones. If it does den get a trojan Removal and remove de trojan.

2. If it doesn’t or if de Trojan Remover says: No trojan found, den see if de open port lies in de registered Ports range. If yes, den you have nothin’ to worry, so forget about it.

HACKING TRUTH: A common technique employed by a number of system administrators, is remappin’ ports. For example, normally de default port for HTTP is 80. However, de system administrator could also remap it to Port 8080. Now, if that is de case, den de homepage hosted at that server would be at:

domain.com:8080 instead of
domain.com:80

The idea behind Port Remappin’ is that instead of runnin’ a service on a well known port, where it can easily be exploited, it would be better to run it on a not so well known port, as de hacker, would find it more difficult to find that service. He would have to port scan high range of numbers to discover port remappin’.

The ports used for remappin’ are usually pretty easy to remember. They are choosen keepin’ in mind de default port number at which de service bein’ remapped should be runnin’. For Example, POP by default runs on Port 110. However, if you were to remap it, you would choose any of de followin’: 1010, 11000, 1111 etc etc

Some sysadmins also like to choose Port numbers in de followin’ manner: 1234,2345,3456,4567 and so on… Yet anoder reason as to why Port Remappin’ is done, is that on a Unix System to be able to listen to a port under 1024, you must have root previledges.

Firewalls

Use of Firewalls is no longer confined to servers or websites or commerical companies. Even if you simply dial up into your ISP or use PPP (Point to Point Protocol) to surf de net, you simply cannot do without a firewall. So what exactly is a firewall?

Well, in non-geek lan’uage, a firewall is basically a shield which protects your system from de untrusted non-reliable systems connected to de Internet. It is a software which listens to all ports on your system for any attempts to open a connection and when it detects such an attempt, den it reacts accordin’ to de predefined set of rules. So basically, a firewall is somethin’ that protects de network(or systen) from de Internet. It is derived from de concept of firewalls used in vehicles which is a barrier made of fire resistant material protectin’ de vehicle in case of fire.

Now, for a better ‘accordin’ to de bible’ defination of a firewall: A firewall is best described as a software or hardware or both Hardware and Software packet filter that allows only selected packets to pass through from de Internet to your private internal network. A firewall is a system or a group of systems which guard a trusted network( The Internal Private Network from de untrusted network (The Internet.)

NOTE: This was a very brief desciption of what a firewall is, I would not be goin’ into de details of deir workin’ in this manual.

Anyway,de term ‘Firewalls’, (which were generally used by companies for commerical purposes) has evolved into a new term called ‘Personal Firewalls’. Now this term is basically used to refer to firewalls installed on a standalone system which may or may not be networked i.e. It usually connects to an ISP. Or in oder words a personal firewall is a firewall used for personal use.

Now that you have a basic desciption as to what a firewall is, let us move on to why exactly you need to install a Firewall? Or, how can not installin’ a firewall pose a threat to de security of your system?

You see, when you are connected to de Internet, den you have millions of oder untrusted systems connected to it as well. If somehow someone found out your IP address, den dey could do probably anythin’ to your system. They could exploit any vulnerability existin’ in your system, damage your data, and even use your system to hack into oder computers.

Findin’ out someone’e IP Address is not very difficult. Anybody can find out your IP, through various Chat Services, Instant Messengers (ICQ, MSN, AOL etc), through a common ISP and numerous oder ways. Infact findin’ out de IP Address of a specific person is not always de priority of some hackers.

What I mean to say by that is that dere are a number of Scripts and utilities available which scan all IP addresses between a certain range for predefined common vulnerabilities. For Example, Systems with File Sharin’ Enabled or a system runnin’ an OS which is vulnerable to de Pin’ of Death attack etc etc As soon as a vulnerable system is found, den dey use de IP to carry out de attacks.

The most common scanners look for systems with RAT’s or Remote Administration Tools installed. They send a packet to common Trojan ports and display wheder de victim’s system has that Trojan installed or not. The ‘Scan Range of IP Addresses’ that dese programs accept are quite wide and one can easily find a vulnerable system in de matter of minutes or even seconds.

Trojan Horses like Back Orifice provide remote access to your system and can set up a password sniffer. The combination of a back door and a sniffer is a dangerous one: The back door provides future remote access, while de sniffer may reveal important information about you like your oder Passwords, Bank Details, Credit Card Numbers, Social Security Number etc If your home system is connected to a local LAN and de attacker manages to install a backdoor on it, den you probably have given de attacker de same access level to your internal network, as you have. This wouls also mean that you will have created a back door into your network that bypasses any firewall that may be guardin’ de front door.

You may argue with me that as you are usin’ a dial up link to your ISP via PPP, de attacker would be able to access your machine only when you are online. Well, yes that is true, however, not completely true. Yes, it does make access to your system when you reconnect, difficult, as you have a dynamic Internet Protocol Address. But, although this provides a faint hope of protection, routine scannin’ of de range of IP’s in which your IP lies, will more often than not reveal your current Dynamic IP and de back door will provide access to your system.

HACKING TRUTH: Microsoft Says: War Dialer programs automatically scan for mothems by tryin’ every phone number within an exchange. If de mothem can only be used for dial-out connections, a War Dialer won’t discover it. However, PPP changes de equation, as it provides bidirectional transportmakin’ any connected system visible to scanners?and attackers.

So how do I protect myself from such Scans and unsolicitated attacks? Well, this is where Personal Firewalls come in. They just like deir name suggests, protect you from unsolicitated connection probes, scans, attacks.

They listen to all ports for any connection requests received (from both legitimate and fake hosts) and sent (by applications like Browser, Email Client etc.) As soon as such an instance is recorded, it pops up a warnin’ askin’ you what to do or wheder to allow de connection to initiate or not. This warnin’ message also contains de IP which is tryin’ to initiate de connection and also de Port Number to which it is tryin’ to connect i.e. de Port to which de packet was sent. It also protects your system from Port Scans, DOS Attacks, Vulnerability attacks etc. So basically it acts as a shield or a buffer which does not allow your system to communicate with de untrusted systems directly.

Most Personal Firewalls have extensive loggin’ facilities which allows you to track down de attackers. Some popular firewalls are:

1.BlackICE Defender : An IDS for PC’s. It’s available at www.networkice.com.

2. ZoneAlarm: The easiest to setup and manage firewall. Get it for free at: www.zonelabs.com

Once you have installed a firewall on your system, you will often get a number of Warnin’s which might seem to be as if someone is tryin’ to break into your system, however, dey are actually bogus messages, which are caused by eider your OS itself or due to de process called Allocation of Dynamic IP’s. For a details description of dese two, read on.

Many people complain that as soon as dey dial into deir ISP, deir firewall says that such and such IP is probin’ Port X. What causes them?
Well, this is quite common. The cause is that somebody hun’ up just before you dialed in and your ISP assigned you de same IP address. You are now seein’ de remains of communication with de previous person. This is most common when de person to which de IP was assigned earlier was usin’ ICQ or chat programs, was connected to a Game Server or simply turned off his mothem before his communication with remote servers was complete.

You might even get a message like: Such and Such IP is tryin’ to initaite a Netbios Session on Port X. This again is extrememly common. The followin’ is an explanation as to why it happens, which I picked up a couple of days ago: NetBIOS requests to UDP port 137 are de most common item you will see in your firewall reject logs. This comes about from a feature in Microsoft’s Windows: when a program resolves an IP address into a name, it may send a NetBIOS query to IP address. This is part of de background radiation of de Internet, and is nothin’ to be concerned about.

What Causes them? On virtually all systems (UNIX, Macintosh, Windows), programs call de function ‘gethostbyaddr()’ with de desired address. This function will den do de appropriate lookup, and return de name. This function is part of de sockets API. The key thin’ to remember about gethostbyaddr() is that it is virtual. It doesn’t specify how it resolves an address into a name. In practice, it will use all available mechanisms. If we look at UNIX, Windows, and Macintosh systems, we see de followin’ techniques:

DNS in-addr.arpa PTR queries sent to de DNS server
NetBIOS NodeStatus queries sent to de IP address
lookups in de /etc/hosts file
AppleTalk over IP name query sent to de IP address
RPC query sent to de UNIX NIS server
NetBIOS lookup sent to de WINS server

Windows systems do de /etc/hosts, DNS, WINS, and NodeStatus techniques. In more excruciatin’ detail, Microsoft has a generic system component called a namin’ service. All de protocol stacks in de system (NetBIOS, TCP/IP, Novel IPX, AppleTalk, Banyan, etc.) register de kinds of name resolutions dey can perform. Some RPC products will likewise register an NIS namin’ service. When a program requests to resolve an address, this address gets passed onto de generic namin’ service. Windows will try each registered name resolution subsystem sequentially until it gets an answer.

(Side note: User’s sometimes complained that accessin’ Windows servers is slow. This is caused by installin’ unneeded protocol stacks that must timeout first before de real protocol stack is queried for de server name.).

The order in which it performs dese resolution steps for IP addresses can be configured under de Windows registry key

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipServiceProvider.

Breakin’ Through Firewalls

Although Firewalls are meant to provide your complete protection from Port Scan probes etc dere are several holes existin’ in popular firewalls, waitin’ to be exploited. In this issue, I will discuss a hole in ZoneAlarm Version 2.1.10 to 2.0.26, which allows de attacker to port scan de target system (Although normally it should stop such scans.)

If one uses port 67 as de source port of a TCP or UDP scan, ZoneAlarm will let de packet through and will not notify de user. This means, that one can TCP or UDP port scan a ZoneAlarm protected computer as if dere were no firewall dere IF one uses port 67 as de source port on de packets.

Exploit:
UDP Scan:
You can use NMap to port scan de host with de followin’ command line:

nmap -g67 -P0 -p130-140 -sU 192.168.128.88

(Notice de -g67 which specifies source port).

TCP Scan:
You can use NMap to port scan de host with de followin’ command line:

nmap -g67 -P0 -p130-140 -sS 192.168.128.88

(Notice de -g67 which specifies source port).

How To: Change Your Ip In Less Then 1 Minute

1. Click on “Start” in de bottom left hand corner of screen
2. Click on “Run”
3. Type in “command” and hit ok

You should now be at an MSDOS prompt screen.

4. Type “ipconfig /release” just like that, and hit “enter”
5. Type “exit” and leave de prompt
6. Right-click on “Network Places” or “My Network Places” on your desktop.
7. Click on “properties”

You should now be on a screen with somethin’ titled “Local Area Connection”, or somethin’ close to that, and, if you have a network hooked up, all of your oder networks.

8. Right click on “Local Area Connection” and click “properties”
9. Double-click on de “Internet Protocol (TCP/IP)” from de list under de “General” tab
10. Click on “Use de followin’ IP address” under de “General” tab
11. Create an IP address (It doesn’t matter what it is. I just type 1 and 2 until i fill de area up).
12. Press “Tab” and it should automatically fill in de “Subnet Mask” section with default numbers.
13. Hit de “Ok” button here
14. Hit de “Ok” button again

You should now be back to de “Local Area Connection” screen.

15. Right-click back on “Local Area Connection” and go to properties again.
16. Go back to de “TCP/IP” settin’s
17. This time, select “Obtain an IP address automatically”
ton’ue.gif 18. Hit “Ok”
19. Hit “Ok” again
20. You now have a new IP address

With a little practice, you can easily get this process down to 15 seconds.

P.S:
This only changes your dynamic IP address, not your ISP/IP address. If you plan on hackin’ a website with this trick be extremely careful, because if dey try a little, dey can trace it back

Fix de problem with seein’ them secure sites (banks or online stores) i found this very usefull to me at my work (isp backbone support lol, at de time i was regular support )

Any way… what u need to do is make a new notepad file and write in it de follown’ DLL’s.. just copy-paste dese

regsvr32 SOFTPUB.DLL
regsvr32 WINTRUST.DLL
regsvr32 INITPKI.DLL
regsvr32 dssenh.dll
regsvr32 Rsaenh.dll
regsvr32 gpkcsp.dll
regsvr32 sccbase.dll
regsvr32 slbcsp.dll
regsvr32 Cryptdlg.dll

and save it as > all file types, and make it somethin’ like securefix.bat.

den just run de file and ur problem should be gone.

I thought that perhaps this tutorial might be pretty helpful for those interested in knowin’ how to configure deir Bulletproof FTP Server that don’t already know how… Here’s how to get started�

This is for de BulletProof FTP Server 2.10. However, It should work fine on most followin’ versions as well.

I’m assumin’ you have it installed and cracked.

Basics
1. Start de program.
2. Click on Setup > Main > General from de pull-down menu.
3. Enter your server name into de ‘Server Name’ box. Under Connection set de �Max number of users” to any number. This is de limit as to how many users can be on your sever at any time.
4. Click on de ‘options’ tab of that same panel (on de side)
5. Look at de bottom, under IP Options. Put a check in de box �Refuse Multiple Connections from de same IP�. This will prevent one person from blockin’ your FTP to oders.
6. Also put a check in de ‘Blocked Banned IP (instead of notifyin’ client). VERY IMPORTANT! If somebody decides to ‘Hammer’ (attempt to login numerous times VERY quickly) your server/computer may CRASH if you don’t enable this.
7. Click on de ‘advanced’ tab
8. At de bottom again look at de ‘hammerin’ area’
9. Enable ‘anti-hammer’ and ‘do not reply to people hammerin’’ Set it for de followin’: Block IP 120 min if 5 connections in 60 sec. You can set this at whatever you want to but that is pretty much a standard Click ‘OK’

Addin’ Users
11. Setup > User accounts form pull-down.
12. Right click in de empty ‘User Accounts’ area on de right: choose ‘Add’
13. Enter account name. (ie: logon name)
14. In de ‘Access rights’ box right click: choose �Add�.
15. Browse until you find de directory (folder) you want to share. In de right column you will see a bunch of checkboxes. Put a check in de followin’ ones: Read, Write, Append, Make, List, and +Subdirs. Press ’select’.
16. Enter a password for your new FTP account.
17. Click on ‘Miscellaneous’ in de left column. Make sure ‘Enable Account’ is selected. Enable ‘Max Number of Users’ set it at a number oder than zero. 1 for a personal account and more that one for a group account. Enable ‘Max. no. of connects per IP’ set it at 1

18. Under ‘Files’ enable ’show relative path’ this is a security issue. A FTP client will now not be able to see de ENTIRE path of de FTP. It will only see de path from de main directory. Hide hidden flies as well.

Put a tick in both of dese.

Advanced:
You don’t need to do any of this stuff, but It will help tweak your server and help you maintain order on it. All of de followin’ will be broken down into small little areas that will tell you how to do one thin’ at a time.

Chan’in’ de Port
The default port is always 21, but you can change this. Many ISPs will routinely do a scan of its own users to find a ftp server, also when people scan for pubs dey may scan your IP, thus findin’ your ftp server. If you do decide to change it many suggest that you make de port over 10,000.
1. Setup > Main > General
2. In de ‘Connection’ Area is a settin’ labeled ‘Listen on Port Number:’
3. Make it any number you want. That will be your port number.
4. Click ‘OK’

Makin’ an ‘Upload Only’ or ‘Download Only’ ftp server.
This is for de entire SERVER, not just a user.
1. Setup > Main > Advanced
2. In de advanced window you will have de followin’ options: uploads and downloads, downloads only, and uploads only. By default upload and download will be checked. Change it to whatever you want.
3. Click ‘OK�

While you are runnin’ your server, usually you will end up spendin’ more time at your computer than you normally do. Don’t be afraid to ban IP’s. Remember, on your FTP you do as you want.

When you are online you must also select de open server button next to de on-line button which is de on-line Button

You also have to use de actual Numbered ip Address ie: 66.250.216.67

Or even Better yet, get a no-ip.com address