===================================================================== VIII. Screwing with the most secure operating system on the net (VAX/VMS Hacking) WHAT IS VAX/VMS? VAX: Virtual Address eXtension. Computer is desisgned to use memory addresses beyond the actual hardware and can therefore run progs larger than physical memory. Developed by Digital Equipment Corporation (DEC). VMS: Virtual Memory System. Also developed by DEC. DCL: Digital Command Language. Similar to DOS batch language or UNIX script language. ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ WHAT ARE SOME OF THE DEFAULT VAX LOGINS? Username Password -------- -------- DECNET DECNET DEFAULT DEFAULT DEMO DEMO unpassworded FIELD FIELD SERVICE GUEST GUEST unpassworded OPERATOR OPERATOR OPERATIONS OPERATIONS SYSMAINT SYSMAINT SERVICE DIGITAL SYSTEM SYSTEM MANAGER OPERATOR SYSLIB SYSTEST UETP SYSTEST SYSTEST_CLIG CLIG SYSTEST TEST SUPPORT SUPPORT DEC ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ WHAT ARE SOME OF THE BASIC COMMANDS FROM THE "$" PROMPT? @: executes a DCL program usage- @filename.com ACCOUNTING: program that tracks usage of the system by users CREATE: PASCAL compiler usage- CREATE filename.pas CREATE/DIR: create a subdirectory DEL: delete files usage- DEL filename.ext DIR: list the contents of a directory options- /FULL = full listing with all security info /BRIEF = brief listing * = wildcard for anything % = wildcard for a specific character EDIT: VMS editor, requires VT-220 terminal HELP: brings up help info LOGOUT: obvious MAIL: send E-mail locally and to any connected networks $PASSWORD: change your password usage- $PASSWORD newpassword PHONE: chat program usage- PHONE changes the prompt to a '%', from there type in the username you wish to talk to. If the user is on a different node then enter nodename::username PHOTO: record session RUN: execute an executable file SHOW: lets you look at alot of different stuff usage- SHOW option options- CLUSTER = VAX cluster, if any DEFAULT = directory path and device DEVICES = system devices (drives, modems, etc.) INTRUSION = accounts being hacked, if any MEMORY = obvious NETWORK = network name and VAX's location in it PROCESS = PROCESS processname shows status QUOTA = disk space available for account SYSTEM = system info DAY = obvious TIME = obvious USERS = online users TYPE: display file on terminal (same as DOS 'type' and UNIX 'cat') SET FILE/PROTECTION: sets the Read/Write/Execute/Delete flags usage- SET FILE/PROTECTION=OWNER[RWED] filename.ext options- WORLD, GROUP, or SYSTEM can be used in place of OWNER WORLD = all users in your world GROUP = all users in your group SYSTEM = all users with SYSPRV privileges SET TERMINAL: controls terminal settings usage- SET TERMINAL/option options- WIDTH=80 = set width to 80 columns ADVANCED_VIDEO = selects 124x24 lines NOADVANCED_VIDEO = unselects 124x24 lines ANSI_CRT = selects ANSI escape sequences NOANSI_CRT = unselects ANSI escape sequences AUTOBAUD = allows computer to select highest possible baud rate NOAUTOBAUD = turn off automatic baud selection BROADCAST = allows receipt of SEND, MAIL and PHONE messages NOBROADCAST = prevents receiption of SEND, MAIL and PHONE messages DEVICE_TYPE=VT220 = set terminal type to VT-220 ECHO = enables echoing from DCL command line NOECHO = disable DCL command line echoing FULLDUP = enable full duplex NOFULLDUP = disable full duplex HANGUP = log off if no carrier NOHANGUP = don't log off even if no carrier INQUIRE = show device type of terminal PAGE=43 = set display length to 43 lines TYPE_AHEAD = enable type ahead function NOTYPE_AHEAD = disable type ahead function UNKNOWN = use for ASCII device types WRAP = set wrap around feature NOWRAP = unset wrap around feature ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ WHAT ARE COMMON VAX FILENAME EXTENSIONS? COMPILER SOURCE CODE FILES ========================== ADA = ADA compiler source code file BAS = BASIC compiler source code file B32 = BLISS-32 compiler source code file C = C compiler source code file COB = COBOL compiler source code file FOR = FORTRAN compiler source code file MAR = MACRO compiler source code file PAS = PASCAL compiler source code file PLI = PL/I compiler source code file OBJ = object code created by compiler before linking DCL LANGUAGE FILES ================== CLD = DCL command description file COM = DCL batch file GENERAL FILES ============= DAT = DATa file DIR = subDIRectory file EXE = EXEcutable program HLP = text for HeLP libraries LIS = system listing files (TYPE, PRINT, PHOTO) LOG = batch job output MEM = DSR output file RNO = DSR source file SIXEL = file for SIXEL graphics SYS = SYStem image file TJL = Trouble JournaL TMP = TeMPorary file TXT = text library input file UAF = User Autorization File MAIL FILES ========== DIS = DIStribution file MAI = MAIl message file TXT = mail output file EDT EDITOR FILES ================ EDT = command file for the EDT editor JOU = EDT journal when problems occur TPU = editor command file