whitehat

I've been trying PelicanHCP. It's one of two listed by DistroWatch.org for clustering, cloud, and distributed OS when you search on those terms. It's pretty badical, except that there's not much support and there's an issue with the default pw when run as a VM from .iso, but if you make the files yourself you can fix it. The other choice was something called RockyCluster, but it didn't do so hot when I tried it and this is supposed to be the higher performance cluster OS. You just pop this only any machine in your LAN/WLAN and it automatically clusters. It's really pretty hot stuff!! http://pelicanhpc.788819.n4.nabble.com/A-PelicanHPC-Setup-That-Works-for-me-Hardware-and-Software-Configurations-td2069021.html

spys.ru also there's a plugin called ProxyList for FF. if you use proxies correctly trust isn't an issue. just layer and encrypt before you send traffic thru the proxy.

Run a Cloud OS as a VM -- I LIKE IT! Thanks DigiP. You came through. CloudLinux is apparently very propriatary. I just went to get it, it's a no go. I will be hunting distro watch for a free alternative, please let me know if anyone knows of one.

Yea guys, I definitely want to see pics and vids!!! I will hopefully make some this weekend. I wanted the AR Drone that Seb had and I almost purchased it a million times but the price tag was killer. I love the AR drone YouTube vids tho. My cheap radio shack iPhone copter battery lasts 45min - 1 hour, but I am worried if it has enough lift.

OK, so I do have a GPU card in my laptop and servers except for the 4 that are headless. I am not really interested in a commercial cloud, so we don't have to worry about that. I just want to get my personal computers all working together as one cluster/cloud. I see that OpenCL is a big topic... an entire computer language. But what software can I run to make all my computers act as a cluster? I guess I need to try CloudLinux? But I don't want to replace the existing OS's... GPU info on main comp: Name VNC Mirror Driver PNP Device ID ROOT\DISPLAY\0000 Adapter Type Not Available, RealVNC compatible Adapter Description VNC Mirror Driver Name Intel® HD Graphics Family Adapter Type Intel® HD Graphics Family, Intel Corporation compatible Adapter Description Intel® HD Graphics Family Adapter RAM (262,217,728) bytes Name NVIDIA GeForce GT 555M Adapter Type GeForce GT 555M, NVIDIA compatible Adapter Description NVIDIA GeForce GT 555M Adapter RAM (1,073,741,824) bytes

Tor block for WordPress? Nice. Is it FOSS? ah, i see it's $10 proprietary. money, money, dollar, dollar bill y'all ;) How do you know it blocked 249 users tho, not just 1 user 249 times? One thing I meant to mention to pwnedtopwner that's relevant is the "New Identity" feature of Vidalia. If you hit that enough times eventually you'll get a new node that works. That could also cause upward bias in the detected number of blocked users.

Thanks for the reply. Yea, I also think the term cloud is a metaphor for the non-technical, but I was told (correct me if I'm wrong) that it does refer to cluster computing. I do know of Amazon/AWS but I want to make the computers/servers I own into a cloud just for the educational benefit of doing it. I am a scientist and I do have a lot of data to crunch, but that's not really the motivation. I don't know much about GPU. Is that what I should read about to get caught up and make my own cluster with shared resources? I apprecaite the leads. I don't have time to read about it this second but I will tonight or tomorrow. Any more topics I need to look up to accomplish this?

Most hacking forums do try to block proxy services including Tor/VPN/web proxies, to keep people from randomly uploading virii and other abuse. Obviously this is a situation where there's paradox between your best interest and the interests of the website. So, I do like Radau said and use proxy chains. Go ahead and connect through Tor or I2P or VPN, then bounce on over to some place like http://spys.ru where the proxies are so fresh that the webmaster's scrape box or service won't be able to keep up with you. Alternately, you can log on your anonymous network, go win a contest or perform a service like graphic design to earn some LR or btc then use that to buy a dedicated IP proxy, so that you can use the same one every time. I think within the Vidalia software you can set that up, but if not just use FoxyProxy within your Tor browser.

I have various VPS and also many comps connected to my home network. If I understand correctly, for my servers to be a "cloud" they should be sharing resources like memory and processing power through cluster computing (?). I really wish I had learned this stuff in school LOL. How do I do that? I know there's something called Cloud Linux... do I need a special OS like that or can I leave them all and somehow run some program that makes them into a giant super-powerful cloud? I could probably pull off automatically sharing storage space easy enough with some shared folders or standard file exchange tools, but is it really possible to share RAM/CPU??

LoL :) I wasn't planning to sell any but I'm too polite to refuse! jk. If anyone wants to give this a try and compare results / discuss methods I'd totally be up for that. What do you say, Newold -- why not build your own and post pics? You can get those drones cheap! DigiNinja, Mr. Protocol, Seb, Darren what about you guys? As long as you accept up front that you may crash and break it then this could be a barrel of monkeys. You could even have a dual between two "Wi-Fly Pineapple Drones" if your drone supports augmented reality.

OK, so I just found a new reason to try to unbrick my Mark IV and flash it. On another hacking website they had an article about some $350 drone with a WiFi radio. Last year someone gave me one of those little drone helicopters you can fly with your smartphone. It only cost like $79 at Radio Shack (you can probably beat this deal) and it comes with a replacement plan. I'm thinking we should strap try strapping a Mk 4+battery pack on to a drone and do some "Wi-Flying". No more walking right into the lion's den looking all awkward as you clumsily try to plug-in and/or hide your strange-looking device with the antenna and all that. Just get within eyesight -- or within radio signal distance if you have a camera on your drone -- and fly it into enemy territory, capturing data all the while. If you got good with it then you could fly it up the side of a tall building and land on a windowsill, capture some packets for an hour and fly it back down! :) OK I completely realize that this probably has limited sane usefulness for us and the windowsill part may be a bit on the optimistic side, but wouldn't it be cool to help pioneer the capability? Has anyone here done it and if so is there any video, because I'd love to see it? I could totally see the FBI and CIA lurking around reading about this, then deciding to rip us off and make a $500,000 version LOL

Thank you very much. That does help a lot! I read this last night and thought I thanked you then, but I must've fallen asleep. I had a follow up question though -- if you can just set everything to static and it's fine then why would anyone ever want to use DHCP or NAT? I only have 1 IP from my major home ISP with many computers connected wirelessly (and 1 is wired). So, given this should this be correct? DHCP + NAT: Each computer has its own local/internal IP and NAT tells the data which IP it's supposed to be going to. DHCP, no NAT: Each computer has its own local/internal IP but you're screwed because there's nothing telling he router how to route data sent tot he external IP between these local/internal IP's? Presumably this should be pointless? If it actually does work then what is NAT really contributing? No DHCP, NAT: Each computer has the same IP, which is the external/broadcast one, though NAT is sitting there ready to handle DHCP when you turn it on. Presumably this should also be pointless? Should you even be able to use the Internet in this situation? no DHCP, no NAT: Each computer has the same IP and NAT is disabled because it's irrelevant. You can't use the Internet unless you turn off all computers except for 1, because of the fact that we're assuming the home ISP only gives you 1 IP, like my ISP does. Does that all sound correct? If so, then I understand with my only remaining confusion being that I know sometimes I've disabled NAT and still have been able to use the Internet. Perhaps it was because I was only using 1 computer at a time? I'm also reading this http://www.iplocatio...etmask.php and trying to understand the role of the netmask/subnetmask, but I'm not sure if I should push my luck by asking how it figures into all of this. Every one I've ever seen has always been 255.255.255.0 or maybe 255.255.255.255 somtimes. Apparently this somehow performs mathematical operations on some IP address to help route data and keep us from running out of IPv4 addresses? I feel like this kinda makes sense but I'm not quite there yet.

DBAN! I highly recommend keeping the DBAN boot & nuke ISO on your comp and jerry rigging a hotkey to do a nuke, in case you're ever caught behind enemy lines with mission-critical information. Darren actually mentioned a similar idea in response to a viewer question on one episode. The viewer wanted an emergency erase hotkey and Darren didn't know how but he said you could dual boot DBAN. My solution is the same but if you want a hotkey you can set it up just like you would anything else. Just map your key combo to a batch script or automator program, etc which instructs the computer to restart and boot the DBAN iso. http://www.dban.org/

Could some of you IT wizards help me understand something about DHCP and NAT? I haven't studied these in the classroom, but I've done my share of reading and have certainly renewed DHCP and toggled NAT a few thousand times in the course of troubleshooting over the years. I was also just reviewing again the episode of hak5 where Darren + the cutie set up PPTP in BT5 and he shows how to disable DHCP for stealthiness. My limited understanding is basically that NAT allows my army of home computers to share a single external IP address by use of internal/local IP addresses and DHCP helps devices communicate with one another. So my question is "what happens when I disable one of both of these?" Empirically, I can see that I'm usually able to continue using the Internet as normal, on several devices at once. Does lack of NAT just slow down the process of identifying which of my babies (computers) a packet is meant for? Thanks

Where did it do? The thread I'm reading says it should be here: http://www.hak5.org/duckencode.jar but it's not and I can't seem to find the URL for the web app...

ooooo, it's to cool it! Well, that's creative. Thanks

OK so, I know this eccentric DNS guru who sent out a link to this website/forum showing me a post where these people are apparently powering a computer with cooking oil or something? There are pictures but not much of an explanation and -- although this appears to be pretty hacker fabulous -- .I'm not precisely sure what I'm looking at. Any thoughts? http://www.share-scr...ontentcbdd.html

that Ladytron group you mentioned looks kind of interesting. what's a good song by them? yea Chemical Bros are good too. i prefer Paul Van Dyke and Teisto for trance, but I saw them at the 2005 Ultra Music Festival in Miami and they had lots of fireworks and people were going crazy with exciment. i meant to be intoxicated, but i was accidentally sober and it was hillarious to see a crowd of thousands of people on XTC LOL. craaaazy!

Well, fair enough. I'm not sure that it matters, but I do think that YT is more famous. Asides from his original NASA and educational hacking, here's why: 1. I just did domain valuation: www.dualcoremusic.com - $1,400 www.digitalgangster.com - $42,000 If you include ytcracker.com (which is also YT's site, but not the interactive one) then that's another $1,400 ($43,400 all in all). 2. YTCracker has been around way longer, and is doing better on iTunes 3. YTCracker invented the term "nerdcore", which the newer artists (like MC Lars, MC Frontalot, Dual Core, Beefy, MC Router, etc) all use to describe themselves. There's no disputing that, as they've all appeared on each others' albums and no one has contradicted the claim. On a side note, the credit for the term "iGeneration" goes to MC Lars. 4. When the FBI raided Sabu he had recently contacted YTCracker, who had agreed to make a song called #AntiSec, which was to promote LulzSec, give contact instructions to journalists, bring in new members to Anonymous, and start the AntiSec movement. The FBI allowed it to continue so that Sabu would be able to build trust. Despite this, as Sabu said after his arrest became public, the song he and YT created launched a movement that is bigger and longer lasting than LulzSec. As you may have seen all over the news, Anonymous and AntiSec have remained very active. For instance, they pwned the FTC and recently dumped a few million iPhone UDID's / Apple ID combos (has Frontalot or Dual Core ever hacked anything btw? I'm honestly curious). <-- #antisec, by the Nerd rap king, YTCrackerhttp://pastebin.com/...m/mJWUDtGD <-- FTC pwnage (I disapprove, but still think it's cool, like I think "The Godfather" is cool, but I don't want the local stores being extorted) http://pastebin.com/nfVT7b0Z <-- a few million iPhones dumped by the #antisec movement (and really, there's a lot more, just do a search) 5. I think YTCracker has lot more of a real-world government documented hacker and SEO career than his contemporaries... 6. YTCracker is the only one I always see at DEFCON with a limo, insanely hot women, Krystal, and all the trappings of a successful rapper/blackhat hacker 7. He's made a lot more music than anyone else I can think of in this genre, including Dual Core 8. Even some of the kids who follow him on his forums, IRC, and elsewhere have emerged as some of the most famous recent hackers in the news. For instance, cam0, who served time for hacking Paris Hilton, and TrainReq, who the FBI raided for hacking Miley Cyrus, both presented their hacks to the world in the name of YTCracker's DG army and remain his loyal followers to this day. im the defacto leader of a movement screaming "hack the planet" back in 99 hacktivism in its prime globalHell had the .mil rooted alphabet soup and their troops in the suits kid kicking down doors and seizing my equipment blocking all my shipments sitting on their hitlist 0day radical emphatic beat addict and that stab hit i envelope the game call me rabbit

In fact, for the uninitiated, let me give you a taste of YTCracker, so you can see why I say it's hacking music: i hated gym - cuz i never was athletic i played a couple sports just to keep it copacetic but i found more in computers than i ever could in hooping every time i wrote a goto, bitch i had that baby looping basically BASIC was the first language i spoke and i was telling Apple deuces just where they could peek and poke i had a five and quarter floppy labeled "PLEASE DON'T DROP ME" used to load a million copies and no one could ever stop me - from "Meganerd" Can't rush hacks Backdoors infected SQL jack, SQL-injection XP Command shell DG army knows I command well Run trojans B*tch knows I shark it See me IT, see me tele-market See me on your subnet mask Know that I defeat any block or class Untouchable like Kevin Costner... - I can't remember the title of this song right now but I will remember later Note: DG is short for Digital Gangster, a term popularized by YT Cracker. Mr. Cracker is the leader of SpamTec, best friends with MC Lars, mentor to MC Frontalot and Beefy www.ytcracker.com www.digitalgangster.com Oh, and since YTCracker is the most flamboyant Internet pirate behind Kim Dotcom, he actually allows you to steal his music directly from him at www.ytcracker.com/v2012/music and on IRC. He's also in the iTunes store and Pwned2Pwner if you send me your Apple ID then I will gift you a song. You should hear him in the songs "#antisec" (he started that term, btw), "I am a Pirate", "Nerd Life", "Still DG", and "Hacker War".

YTCracker is a nerd who was arrested in high school for breaking into NASA and also hacking his school. He came back as a rapping hacker and is the oldest geek rapper by far, save K&R. I like this too :) We listen to the same stuff, but for the record Dual Core and MC Frontalot are only famous because YTCracker did some tracks with them to give them some limelight. Well, that's literally true for Fronalot*, but I suppose Dual Core did pretty well on their own, although YTCracker really expanded their fanbase. * YTCracker lyric: People compare me to MC Frontalot / but the truth is I predate him with significance (Frontalot: Yea!)

So, you like to hack to general public, American Joe type music? That's cool. Lots of people do, but I just don't get it. Hacking is supposed to be rebelling against that kind of mainstream culture IMHO (and take this with a grain of salt). Here are my top favorite albums to listen to while hacking: 1. YTCracker - Serious Business 2. YTCracker - Digital Gangster EP 3. YTCracker - Nerd Life 4. YTCracker - Chrononurga 5. YTCracker - Best of the b-sides 6. YTCracker - Nerdrap Entertainment System 7. Music Inspired by Tron - the second "Tron" album... the green one (i'm a little fuzzy on the exact title) 8. Hackers - soundtrack 9. The Girl with the Dragon Tattoo - soundtrack 10. Orbital - the brown album (aka Orbital 2)

It's currently like you said: www.yoursite.com and mail.yoursite.com If you want the actual domain name I'd prefer to give it to you privately or offsite, for security (yes, I'm paranoid LOL). I asked the host about making it something like 234234234q2jknk.yoursite.com for the mail server to see if that would trick the CloudFlare resolvers, but I haven't heard back. I think either he's busy or it's the language barrier. Sigh... The host wasn't really involved with CloudFlare. CloudFlare has free accounts and I knew of them from the SEO and other forums, so I just signed up an account there for my site, independent of the host. WordPress also has a CloudFlare plugin, but it doesn't really do anything beyond signing you up. What CloudFlare does is simply to change your nameservers to CloudFlare nameservers. They have nice, big, strong, DDOS-protected servers. Additionally, they can scan browsers accessing your site to screen out suspicious traffic, blacklisted IP's, proxies, etc. Someone trying to get your IP either sees no IP or a CloudFlare IP. If someone gets your real IP, such as if they already had it before you got CloudFlare or they have a resolver, then if you have a Pro subscription they will launch a cached version of your site while you are down. It doesn't help protect the mail, FTP, or other stuff though. I actually went out and found a teenager who runs a booter service and asked about this. He said that his understanding is that the mail packets contain the IP (even though it's encrypted?) so there's basically no way to beat the resolver that he knows of, other than to stop having a mail server. Presumably the same thing applies to FTP. That's really speculation though, as I supposed we'd need to see the source of the resolver to know for sure how it works and thus how to get around it. I'm just trying to think if there are any potential solutions that I could give a try, other than the subdomain name change that's pending...

Yea LOL... that's a funny story and I like the creative use of packet capturing, but come on man... don't you feel a little bit like an insane totalitarian dictator? ;) OK maybe that's an exaggeration, but hacking is cool when you're David and your hacking target is Goliath. When it's the other way around you can't help but feel sorry for the target. You could be strict dad by taking the computer away and cool dad by looking the other way when you discover she's sneaking something under the covers? Live and let live. idk tho, i don't have kids.

Thank you. I will share some of that with the host and see what he says. Unfortunately, it is the same IP for everything. I've disabled FTP and it's no longer an issue, but the mail is still there and I have to keep that working. My nameservers are CloudFlare nameservers, so that part is all good.