1996-06-12 - Re: Anonymous return addresses
Header Data
From: “Mark M.” <markm@voicenet.com>
To: Alan Horowitz <alanh@infi.net>
Message Hash: bdf12bd588fd8883781c5bdf95efdec5327e20d58266cce50e395e976087639b
Message ID: <Pine.LNX.3.93.960611202255.188B-100000@gak>
Reply To: <Pine.SV4.3.91.960611172935.20391B-100000@larry.infi.net>
UTC Datetime: 1996-06-12 08:37:04 UTC
Raw Date: Wed, 12 Jun 1996 16:37:04 +0800
Raw message
From: "Mark M." <markm@voicenet.com>
Date: Wed, 12 Jun 1996 16:37:04 +0800
To: Alan Horowitz <alanh@infi.net>
Subject: Re: Anonymous return addresses
In-Reply-To: <Pine.SV4.3.91.960611172935.20391B-100000@larry.infi.net>
Message-ID: <Pine.LNX.3.93.960611202255.188B-100000@gak>
MIME-Version: 1.0
Content-Type: text/plain
-----BEGIN PGP SIGNED MESSAGE-----
On Tue, 11 Jun 1996, Alan Horowitz wrote:
> Can anyone "give away the Ending" of Cliff Stoll's book - and describe
> the basic methodology used to track back to the German hacker?
>
> I don't have time to read the book. I don't need to understand all the
> little nuanced details, I just want to know the "trick".
Here's the story as best as I can remember from _Cyberpunk_:
Cliff Stoll worked at LBL where he found that the account of a former worker
was being abused by a cracker. He set up a system that would log every
keystroke the cracker made and he would automatically get paged whenever there
was an intrusion. The connection was apparently from a Tymnet node. Stoll got
a search warrent and traced the Tymnet connection back to a modem pool at
Mitre in Virginia. The people at Mitre found that the cracker was dialing into
the modem pool and exploiting a security hole to dial back out to a Tymnet
node. With cooperation from the CIA, it was found that the calls were being
made from a network in Germany called Datex-P. When the network discovered the
extremely high long-distance bills, they traced the call back to Pengo (Hans
Huebner).
- -- Mark
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
markm@voicenet.com | finger -l for PGP key 0xe3bf2169
http://www.voicenet.com/~markm/ | d61734f2800486ae6f79bfeb70f95348
"In Christianity neither morality nor religion come into contact with
reality at any point."
-- Friedrich Nietzsche
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3
Charset: noconv
iQCVAwUBMb4P3rZc+sv5siulAQE7UAP/QoDxTapE1GjxXdWBD7mXIv+p4aeo2s8Z
7MZV65Faqpa/iEUEO539TkTToDr8yIUC1Mdkx3QDaJ0k5Wfw8qT2956n6kGS6CkS
hi2CgrOIlzsdBBbvdhxMHoRlA7O15uc4nQ3ghJU/FjjdpOFsQh/pwLRcdrG78L3n
X33Gi7YUdxc=
=2NkX
-----END PGP SIGNATURE-----
Thread
Return to June 1996
- Return to “Alan Horowitz <alanh@infi.net>”
- Return to “Hal <hfinney@shell.portal.com>”
- Return to ““Mark M.” <markm@voicenet.com>”
- Return to “Mike Fletcher <fletch@ain.bls.com>”
Return to ““Robert A. Rosenberg” <hal9001@panix.com>”
- 1996-06-09 (Sun, 9 Jun 1996 11:14:24 +0800) - Anonymous return addresses - Hal <hfinney@shell.portal.com>
- 1996-06-11 (Tue, 11 Jun 1996 17:23:03 +0800) - Re: Anonymous return addresses - “Robert A. Rosenberg” <hal9001@panix.com>
- 1996-06-11 (Tue, 11 Jun 1996 17:31:31 +0800) - Re: Anonymous return addresses - “Mark M.” <markm@voicenet.com>
- 1996-06-12 (Wed, 12 Jun 1996 15:42:22 +0800) - Re: Anonymous return addresses - Alan Horowitz <alanh@infi.net>
- 1996-06-12 (Wed, 12 Jun 1996 16:37:04 +0800) - Re: Anonymous return addresses - “Mark M.” <markm@voicenet.com>
- 1996-06-12 (Wed, 12 Jun 1996 17:47:16 +0800) - Re: Anonymous return addresses - Mike Fletcher <fletch@ain.bls.com>
- 1996-06-12 (Wed, 12 Jun 1996 15:42:22 +0800) - Re: Anonymous return addresses - Alan Horowitz <alanh@infi.net>