H@L0_F00

O.o What internet are you using? I think there is something wrong with it :T XP uses LM and NTLM. Use Ophcrack.

JtR

http://hackerspaces.org/

A DIY platter transfer wouldn't be too far out of reach for somebody that this kind of thing would be created to defend against, though.

Operating systems don't like formatting themselves

You need to debug the crash and see if any arbitrary code can be run from it.

I don't think fuzzing will be necessary since the bug is reproduceable already

Site says it's Ubuntu based, so I'm assuming that it uses casper/squashfs. Try this.

http://forums.hak5.org/index.php?showtopic=13944 Although I've added quite a few more since then

Everybody quit... almost 3 years ago...

Sounds a little similar to the "map" command in GRUB4DOS, if you ask me...

http://proxyfirewall.org/? I've used SocksCap for SOCKS (SSH tunnel) proxies, but I'm guessing you're behind an HTTP proxy? The program isn't developed anymore, but you can find it floating around the web.

I personally haven't been able to stop listening to hardcore techno, hard trance, and gabber since I discovered them. Hardcore being what I listen to most often. di.fm is a great place to look around for new music. They have quite a few free streaming channels by sub-genre. Hardcore, hard trance, and gabber are what I prefer listening to when I'm doing... just about anything. It's so upbeat and exciting. It makes me feel great, even when I'm feeling pretty down, and it helps me concentrate, although sometimes I get to into the music that I listen so intently I can't concentrate long enough to do whatever it was I was doing. In that case, I just put on some trance, which is a little less intense.

So... It blocks incoming connections, but not outgoing? Just like every other firewall.

http://www.aircrack-ng.org/doku.php?id=compatible_cards?

Maybe you're too far from it? Maybe your MAC is blacklisted? There could be many reasons for the association to not complete successfully. EDIT: dhclient <NIC> will obtain and set your IP, Gateway, DNS, etc. from a DHCP server. So, c0r might think he's not connected to the AP because he wasn't using dhclient and didn't get an IP address, and therefore, has no internet access.

I'll buy another IP or domain name. I really doubt it will be blocked, especially anytime soon.

I want it to be as idiot-friendly as possible though. I also want it to be easy to use. I think I'll stick a ready to use portaPuTTY or KiTTY on the server so they can just download, select an option or two, click connect, and be good. I need to write a program or script that can change the Firefox and IE proxy settings, so the users won't have to do that either. As for authentication, I'll just be using whatever password they want.

I've talked to quite a few friends at school and I think I've got at least 6-7 people that would all be willing to pay for an SSH tunnel proxy. It's looking like I'll most likely go with GoDaddy's Unlimited Plan for a few months (until school is out, probably). I'm thinking about maybe using a local or browser exploit if elevated privileges are needed (cmd, batch scripts, etc.), instead of giving out the Admin passwords. This will be rather effective because the computers are *never* updated. We're actually running IE 6 and Firefox 2.0 with Deep Freeze. I need to find out how to restrict users to a single active login at a time to prevent them from just sharing the same user/pass... I will give them /bin/false as their shell, just in case somebody thinks they'll try to be funny with the server. What do you all think of the idea? What else could/should I do? Thanks.

If it can boot in a VM, the problem is almost certainly the computer from which you are trying to boot it from. If you get the same error in the VM, then it is almost certainly the USB setup.

Actually, I'm quite certain I'll go with Sparda's suggestion. It's just what I was looking for. I've already had a talk with his boss... After the SysAdmin told him what he knew about me *at the time*, his boss was skeptical, so he came down to my school the next day. I was told he said something along the lines of "I don't think we have any students that smart..." (Although I didn't take any credit for being able to run Ophcrack... I also explained to him that *anybody* could use it and it's the most mainstream way to crack Windows passwords/). We had a conversation about how I was able to boot Ophcrack from my flash drive, crack all of the passwords within a few minutes, and how I implemented the same passwords on the Mac systems. I then also told them how easy it is to completely disable Deep Freeze and re-enable it without them every having reason to be suspicious. He was taking notes the whole time... :)

BIND has Windows binaries as well.

http://www.warvox.org/ Saw that recently on the Defcon 17 MetaSploit Track

BT4 doesn't work on any of the computers? Is it the same errors? Can you try it in a VM?

From some nmap scans, I have found some Blue Coat systems. I'm almost positive there will be more than one... I'll just have to do some more digging.