my bad

_Marshel_,

have you got a link to the BBC news story? The English link appears to be down and my google search just brings me to your quote from the fulldisclosure mailing list (http://seclists.org/fulldisclosure/2008/Apr/0003.html).

are you able to tell us which application? Was it mainstream or in-house?

Just trying to get a better feel for the bigger picture, thanks in advance.

To take eth3real's questions one step further:

• Do you have permission, to access your friend's machine
• Do you have physical access to your friend's machine

I appreciate that you want to test connectivity for the event that you cannot physically control the machine. But, before you can access the machine remotely you need to set up some systems physically, Pseud0's netcat instructions will be a good place to start looking.

Think that about sums it up nicely. From my point of view I actually enjoy all of the 'bad' hacking related films. Whilst the 'action' is completely unrealistic as long as the premise is believable I've got no complaints.

• Hackers: bad guy was corporate insider
• Die Hard 4.0: all prep work prior the attack was social engineering
• Swordfish: erm... OK Halle Berry may have helped this one
• etc.

From ChrisG's point Hackers actually does show the protoganists reverse engineering some code to figure out what it does. Also quotes Mentor's manifesto and shows clueless law enforcement out of their depth. (*)

Films that really get my goat up include the likes of Ocean's 13 (really bad film and not just for this reason). Something went wrong and one of the team gets cuffed (the IT specialist) so a stand-in man-in-the-middles a connection from the FBI (wirelessly, from a transit van) listing known acomplaces(sp?). seriously...

(*Disclaimer: until I saw Hackers as a kid I wanted to be suit so may have a slightly biased viewpoint)

Oops, don't know how I managed to miss that one 

jigkin22,

assuming you have permission to communicate with your friends computer then, as others have stated, you will need to install/enable a service to enable that communication. Taking it a bit further you could try looking at the likes of Remote Desktop or VNC.

However, as eth3real as stated, if you don't have permission then what you are attempting is illegal and you may be at the wrong forum. try unethicalhacker.net instead.

Hopefully you are in the right place and will be able to use all of the advice that has been supplied so far. Happy hunting

I seem to be in an army of two for not having issues with Vista. Using it now to type this. For day to day use I have no issues, compatibility hasn't been a problem and so far all of my software works fine.

In my opinion it is nicer to use at user level than XP. Some of the anoyances, UAC etc., are in my mind improvements, the one mistake MS made in this regard is to allow users to turn this off. I have no issue with needing to take a couple of clicks to do anything 'risky', can't see any difference with needing to su[do] to root in 'nix. Plus on a support side, friends and relatives can't complain about not knowing what they were doing when they have to click a confirmation.

Whilst I hve no complaints with Vista I should clarify due to target audience that I have a second laptop on hand for any security/incident response tasks and use Vista for administrative purposes. Bottomline, your mileage may vary.

possibly, know it just got bookmarked for later on. Now if I could just find an excuse not to go shopping with the missus....

Sweet! Wish my University had that arrangement, from someone trying to pay for extra training after graduating take full advantage.

Welcome to EH-Net.

Ethical Hacker - Hacker 

(or I'm I missing something?)

Coming off the back of this thread I've found both a review and sample chapter on LSO (don't know why I didn't think to check here earlier) by Chris Gates, thanks man. Review can be found here: http://www.learnsecurityonline.com/index.php?option=com_content&task=view&id=224&Itemid=85)

Sample chapter can be found here for your studying pleasure http://www.informit.com/content/images/9780321336323/samplechapter/0321336321_CH11.pdf

Cheers Don, should be worth a look.

Seems to be the day for podcasts. For those that missed it the ISC is starting to create podcasts (direct link here: http://phobos.apple.com/WebObjects/MZStore.woa/wa/viewPodcast?id=276609412)

Haven't had a listen yet (need itunes on my work machine, downloading...) but the ISC and Johannes stuff is usuall top notch so I'd be surprised if this is any different.

The handlers diary (http://isc.sans.org/diary.html?storyid=4202) Also has a link to an RSS feed so you can keep track of new releases.

Looks like I'm going to have headphones on all day

Don,

I've taken a look at this book on Amazon a few times but haven't been able to find a copy in store to take a quick shuffty at. I assume from your post it's worth the outlay?

While I can find a tenuous link; is there anyway for me to connection the H affliation-type stuff with the UK (or other) Amazon sites? Currency conversion is starting to make my head hurt

Thanks for the link. How well setup is the site usually? Or is it suffering from the EH-Effect?

This page cannot be displayed due to an internal error.

You can provide the following information to the administrators of this site to help them solve the problem:

Error: Unable to connect to database