The RM Network Tutorial / By Njan <===============================> version 1.22, 19/09/99 Versions. -=========- 1.1: The original 1.21: Added Appendix. 1.22: 'Rumurs' amalgamated with Appendix Note: whenever you see something like this: blah(1) it means that if you don't understand the meaning of the word blah there's an explanation for it just for you, located on the newbies corner at the very very bottom of the page, so plenty of scrolling to be done. Those of you with nice intellimice will end up with cramp in your middle finger. RM Admins! Hi! ============== Greetings to any RM Employees or Admins out there, hope you're scared at the amount we know about your network. Just remember that everyone that uses your network can get to this information, they have a right to, and no amount of censorship will get rid of it, cos the censorship's not only WRONG, but buggy. And the file's mirrored. And before you start going into ethics, please research your case more, get some idea of who we are and read the disclaimer. ;) Ok... lets start... Disclaimer ========== We do not encourage any kinds of illegal activities. If you believe that breaking the law is a good way to impress someone, please stop reading right now and grow up. There is nothing impressive nor cool about being a criminal. Contents <======> RMs under 3.11 ============== Program Manager: intro Running under the logon screen Restrictions File space Hiding stuff Internet Flters (this just forwards you to later on, where I explain it -- it's generic, and also works elsewhere) RMs under 9x ============ RM Connect Running things (I) (II) Windows Explorer File Organiser File Space File Protector Internet Filtering Access 'sans' logon Misc. Tips ========== (I) Logon (II) Acorn Passwords. :) as in getting them... (IIi) Additional: Free space. (IV) WWWRoot (relates to (III)) Xtras (formerly Rumurs / Appendix) ================================== (I)Windows 3.x -- Admin Users (II)Windows 9x -- RmUsers (III)Windows 9x -- user passwords (IV)Windows 9x -- Default Admin password (V)Windows 9x -- Universal password Newbies Corner (see above) ============== What are RM networks, who is a sysadmin and what is an Intranet? This and more on the newbies corner. Other Tutorials *************** * FTP Hacking. * Overclocking. * Ad and Spam Blocking. * Sendmail. * Phreaking. * Advanced Phreaking. * Phreaking II. * IRC Warfare. * Windows Registry. * Info Gathering. * Proxy/Wingate/SOCKS. * Offline Windows Security. * ICQ Security. Plus more! Bibliography ************ Author's notes ============== This comes in handy for anyone on RM(1) networks. It's not intented for people to maliciously annoy System Administrators... only to give you a better understanding of how the network works, and also to get rid of restrictions, and impediments that you don't need. :) Note: if you're having a hard time reading this file because of the horizontal scrolling bar, turn word wrapping on. Introduction ============ RM networks work on the principle that anyone using them is stupid, and also that the System Administrator(2) is stupid. Bearing these two things in mind, and assuming that one or both of them are not true, you're well on the way to annoying plenty of people, should that be what you wish to do.. :) First off: RM Networks under Windoze 3.11 ----------------------------------------- The most basic, and horrible. It works under the basic old familiar Program manager interface, with restrictions, and a nice little logon box at the bottom right corner of the screen. For those of you who are not familiar with Windows 3.1 (the OS denied by Microsoft -- see their website and look for it. :) ) 3.x consists of a window called "Program Manager" (which in Windows 9x you can still get to by going Start>> Run>>progman.exe) with lots of nice 'groups' that you organise your programs into. Running things under the logon screen: This is always handy, and under Win 3.11, it's simple. Just make a help file (there are plenty of nice Help file editors out there: eg EditHelp) that has a link to the nice program that you wish to run, then simply click on the help option at the logon screen, then when Help pops up, click File>>Open>>the helpfile.hlp. There. Wasn't that easy? Getting rid of those damnable restrictions Luckily, Windows 3.1 has lots of nice .ini files(3) that it uses to store things, and no registry, which makes things a lot easier. to get rid of the restrictions, it's as simple as loading up File Manager (Windows Explorer to all you 9x users) by clicking on the icon, or by making a Word Macro that runs it (see Word Documentation) ((the file name is winfile.exe)), closing down Program Manager . Now, you have to: I) Open Progman.ini and change restrictions part at bottom to "no" instead of "yes" or "0" instead of "1" -- I forgot II) run Progman.exe IN SAME DIR as edited progman.ini III) et voila -- you have no restrictions. File Space RM File Organizer: the program that 'stops you' from having above your quota of disk space. One thing RM forgot to include in this otherwise cute program is the wonderful concept we know of as Hidden files(4), which it can't see. Just go to the file of your choice, whether it be Quake(5) that you downloaded using the shared ISDN(6) line, or anything else, go to its properties by pressing Alt>Enter on it, and tick "Hidden". Hiding things a bit more effectively Things like this are quite network specific, relying on the way that the network that has been setup... I may say more about this later, in the WIn 9x section, but the best way to do it is by going into File Manager (a thoroughly lovely program) and clicking Disk>Connect network drive. A certain amount of exploring wouldn't go amiss here.. Try connecting to as many drives as you can. Some of them, you're already connected to, some you can't, and some, you can, and there's 3 gigs of free space (one, I seem to remember, was OTCFE182, which was -- I beleive -- the temporary drive of one of the computers, the T: drive, that it stored all its windows files on so that Windows doesn't crash when it realises it can't write to itself). Getting past Internet Filters -- see Windows 9x section -- it's the same. First off: RM Networks under Windoze 9x --------------------------------------- With Windows 9x, we have the 'new generation' of RM networks: RM Connect. According to RM: "...RM Connect builds on the unrivalled strength of the industry standard Microsoft Windows NT Server(7) operating system. Combined with the RM Connect Network Management System, it provides a networking system tailored to educational needs. Launched last October, RM Connect 2.3 is the latest version of this management software bringing many new benefits including the ability to manage Windows 95 and Windows 98 stations on the same network..." Running Programs ================ very simple: Start>Find>program name. The find function is just a more powerful version of the run function, RM don't seem to know that, and therefore doesn't disable it. Or, failing that, right click, Create Shortcut, to whatever u want. :) Windows Explorer ================ Right click My computer, and click Explore. End of Intro, and File Organizer ================================ Rm Connect is the name for a whole system of RM programs that are used to control RM Networks. It includes File Protector, and File Organizer, cousins of the old Windows 3.1 tool. Unfortulately, this RM generation is slightly cleverer, and so the old file hiding trick doesn't work... HOWEVER, if you have one of these networks, it is likely that the hardware is also newer, and so file space is not a problem. In this case, the SYSAdmin is likely to check manually people who he suspects of being over the limit and as you're reading this, one of those people will probably be YOU. The best way to get around this is to be up front, and 'show him' that you're not over the limit... The best way to do this is make some sort of spoof counting program, or to create a subdirectory that looks like your main one, and just highliting the files/dirs in that one, and counting it. :) If you have a joint Win/Acorn network, you can subtly put Underscores ( "_" ) in the directory names, and show him the count, or let him do it himself, on an acorn, as they can't read the sizes of dirs with underscores in them. Careful how you do this -- BE SUBTLE. File Space ========== The same network connections principle applies when it comes to finding places elsewhere to hide things... but it's a lot easier: Just go Start>Find>Computer, go Server1, or whatever other alias your server goes by . Then, you run it, and you get a complete listing of all the users/dirs on the server. If you're lucky, you'll find one that you can open and that isn't protected, such as there may be one called Scrapdir, or if there's an intranet(8) webpage, there might be one called WWWRoot . Anyway, this is always useful. Hiding things once in there doesn't go amiss either... File Protector ============== This "...increases file security right across your network by improving local hard disk security, backing up important system files and deleting any new files that users create on station hard disks...." -- RM. It basically means when you log off, the hard drive gets restored to what it was like before, re any installed programs, and also doesn't let you rename things (or delete them: I forgot). For a way to get into a machine without logging on, and therefore without it, see the bottom of this section. Internet Filtering ================== Now, please note, I did not put this section here so that lots of people using these networks could illegally look up porn. I put this here so because the RM filtering system filters Newsgroups, political parties, and lots of other sites that shouldn't be filtered. If it was for any other reason I wouldn't, cos I'm a fan of porn... The filtering system works on the basis of URL, and has a huge great long list of URLs u can't go to, and a long list of words in URLs u can't see. So, obviously, it's only the URL that's in the way, not the content.. so how could u change the URL, short of writing to the webmaster and telling him to get a mirror... well, remember when you had that web-page you wanted to translate from French to English? and you went to Altavista translation? well, that's what you do here. Go to www.Altavista.com, search for something, and then click on the translate button. (or go direct to the translate URL, if u can remember it). When it loads up, type the URL of your filtered page there, translate from Anything INTO ENGLISH so the content stays the same> and translate.. and voila! now you can view dejanews.com Accessing a machine without logging on, and accesing the hard drive, therefore, without fileprotection ====================================================================================================== If you are on the logon screen, and you have no password, just unplug the network cable (the blue thing that looks a bit like a telephone cable in the network card socket...(10BaseT) unless its like a Television aerial thing, in which case it doesn't look like a telephone socket), and reboot... when the machine boots up, click "OK, Cancel, Cancel" and it takes u straight to the desktop. :) Also, if it's useful, the password to the user "propagate" which you get logged onto at the logon screen is "Application" The WIn 3.1 equivalent is "Guest" but I don't know the password. ----------------------------------------------------------------------------------------------------------------------------------------------------------------------- Misc Tips ========= Logon <-------> This tip applies to networks, internet connections, or anywhere else where you have a password box that if you get the password wrong, leaves the password be, and just gives an error...you also need to be able to get back to the logon screen with the password intact if you log on...... situations in which this can be applied may be obscure, but it's a good technique all the same. Ok. Let us say that you have found the logon screen with the password there. You want the password, because you want to be able to logon as your boss/check your son's E-Mail/etc. Pick the first letter, and change it to "A" and try logging on. It probably won't work. Change it to "B".. and do the same. Ecentually, you will get the right letter, and you have the first letter of the password. If you keep doing this (You don't have to keep going at it: if it isn't important, you could do one letter a day) you will eventually get all of the letters. Situations in which this can be applied: Many networks (hehe) have a public logon screen which displays whenever the machine is turned on and boots up (for information on how to get around the network logon screen, see RM Network tutorial). Usually, the logon screen program is an exe file stored in a "logon" user that logs on without you knowing when the machine starts. When you get the right pword, and it checks it, then the logon user logs off, and you're logged on. It's sometimes useful to have the logon user's password. Acorn(9) Logon <----------------> If you are on an Acorn Computer ( :-) ) then getting people's passwords is very simple on networks. I'll take an RM network for example, since this whole tutorial is about RM networks... all you need is a little tool called "!StrongEd" which is common enough... just do a search for it. It's basically a smartened up, vastly improved version of "!Edit". Load the program up onto the bar, middle click, and Go Create>!Dump. Then, a window will pop up. You want to select one of the 6 options... The right one is either Applications, or something else, I forget. When you click on it, a sub-section will appear, showing all the programs loaded up, and if you click on the program in the submenu, it'll load up another window, showing you a dump of its memory usage. COntained in this will be the password of the last user to logon. This works whether they have logged off, or whether they are still logged on, so it's useful. :) Just searh for the user name, eg "Admin". It'll probably be centered on one of the lines, surrounded by dots. Underneath it... the password, unencrypted. :) (Perrier, anyone?) Also: If u go to "Start>Find>Computers", type "SERVER1" and click Search, and u can look at all the dirs on the server. The user ones are blocked, BUT... some of them can be used to store oversized files... if there's an Acorn on the network, there'll be a folder called "scrapdir"... go in there, and click "scrapdir" again, go as deep as u can go... et voila. ;) Try all of them, and if anything pops up, use it. Xtras. =---------= By default, the directory WWWRoot on the server , which is the Intranet directory is unblocked. :) Be subtle. :) (Jessel, anyone?) NOTE: These are 2nd Hand information, and I'm 90% sure they're untrue so don't take them too seriously... Windows 3.x: Apparently, if you're logged on on one station, and logging on on another, and you hit the logoff button on one, and the logon button on the other at the same time, you get taken to an Admin user. :) Ahem. :) Windows 9x There are supposed to be users called RmUserXX, where XX is a number, and they all have a generic password... but I forget what it is. :) What little use to you that may be, there it is. The default Admin password is RMNETLM, for what it's worth... The passwords for the following users are meant to be "password" DESKMAN DESKALT TOPICLAT DESKNORM (lets you change everyone's desktop) DESKRES TOPICRES The password "OS" is meant to work for any username. Newbies Corner ============== 1. RM. A British based computer manufactoror. "Research Machines" 2. SysAdmin, or System Administrator. The man/woman/furry creature in charge of running the network, and garotting hackers. ( == SYSOP, System Operator, although SYSOP usually means a Compuservey-type person in charge of chat..) (Compuserve is a network similar to AOL) 3. Like the Windows 3.x equivalent to the registry, although Windows 9x does still use them. An unencrypted, plain text file storing settings. 4. The Hidden setting is silimar to the system file setting, except it means you can't see it unless you specify to... 5. You don't deserve to live. 6. Integrated Services Digital Network. Think of it as 2 digital phone lines, == a nice fast connection. Also let's you use it twice - say, once for your modem and once for your phone lines, each one getting 6.4KPS (KiloBytes Per Second... DUH) :) 7. You don't know what this means? You're too innocent to be reading this. 8. Intranet == Internet, except only about 20 computers, as in on a network. 9. Another sort of computer... think of it as Mac, but better. OS is hardware, on a ROM. Other Tutorials =============== * FTP Hacking. * Overclocking. * Ad and Spam Blocking. * Sendmail. * Phreaking. * Advanced Phreaking. * Phreaking II. * IRC Warfare. * Windows Registry. * Info Gathering. * Proxy/Wingate/SOCKS. * Offline Windows Security. * ICQ Security. Get them all at blacksun.box.sk, or join the mailing list at blacksunresearch.listbot.com. Bibliography ============ Advanced Ethernet/802.3 Network Management and Performance -- by Bill Hancock Connecting to the Internet: A Practical Guide About LAN-Internet Connectivity -- by Andrew F. Ward RM Documentation -- by RM RM Website -- by RM