Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Sprint telco service?
From: vulcanius <vulcanius () gmail com>
Date: Wed, 4 May 2005 00:32:53 -0400

Now this is a thread I can enjoy.

I've had alot of what we will call experience in the past with
telco's. When I refer to telco's i'm not talking just about the local
RBOC, I'm also referring to cellular providers as well.

I can't explain the "ghost voices" your hearing as that's something
i've never dealt with before. But if your leaning towards the cause of
it being a phreak, then I suggest you take a look outside your window
to the box connecting your house to the trunk line. You may see
someone there who isn't quite affiliated with the phone company.

To Steve, yeah, I remember the days of BBS's. The local number you
dialed was probably a loop. Given the few details it's impossible to
determine what type though. And the type of number your referring to
is an ANAC (automatic number announcement circuit). These are widely
available if you just search google for say, "ANAC list" 800-444-4444
is probably the most well-known and longest lasting.

In reference to that article. Telephone companies have quite a few
well-guarded secrets. But with the right attitude, voice, and
information it can be pretty easily attained. It is possible to gain
access to a switch even without a computer. There are actually local
numbers as well as 800 numbers out there that have automated voice
response systems allowing you to control the switch. In the past I
have never once encountered any of these systems having ANY form of
authentication. What do I mean? There is no PIN number, no password,
etc. You simply dial it up and your in. If you are ever clever enough
to get ahold of one of these numbers you will find a few interesting
items in the menus. My personal favorites were routing and
surveillance.

The RBOC's have gotten smart with their security in the past. They
still use their cheap old dial-up VPN's. However, gaining access to
these is a bit tough. You must have a valid bellsouth employee ID as
well as the RSA Secure ID token keychain. These keychains use an
algorithm to generate a new password every 60 seconds. I'm feeling
generous so i'll give a little more information. The generic login for
some of these VPNs is simply, "ABC1234/". The password is formatted a
bit differently. It is comprised of the six digit number produced by
the RSA Secure ID and is preceded by the letters, "kppk". 169199 seems
to be the current ID.

And yes, DMS100's give me a hardon.

On 5/3/05, KF (lists) <kf_lists () digitalmunition com> wrote:
Steve Kudlak wrote:

KF (lists) wrote:

I am interested in hearing from folks with stories similar to this:

http://www.security-focus.com/news/10083

Ever hear weird shit on your phone line? Weird billing errors? Weird
non dtmf tones randomly stray into your conversations? Had your lines
redirected? Have extra lines that you did not ask for? Do DMS100's
give you a
hard on?

shoot me a private email. hell if ya feel like it talk about it on list.

-KF

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

I have had a number of weird things with all telcos. In fact one
happened  today. If you're not on the  West Coast ofg NOrth AMerican
sorry to bore you with local meteorology. I called a friend to talk
about my travails in moving out of the place I was in and into a real
two bedroom apartment with a friend.  When I called this freind I
heard a voice that said: "Well with the amount of moisture  you can
feel in the air..." I said "hello" and I got no answer ...I tried
calling his number back and got no answer and then got a busy
signal....then I tried later and got the usual answwwering machine.

The strange stray voices  or "ghost voices" as I  sometimes call them
I have gotten a lot. Weirdly I have accidentally called a local bumber
and go some phone company linemaan's service in some state many miles
away. If people were intertested I could dig them up. I might ask if
anyone remembers 8BBS, Bernie Klatt, Suisan Thunder or other people
there and "Bow Wow Net"...


Have Fun,
Sends Steve

P.S. I dunno if this is the place for this sort of thing......I would
like to know where one gets tthe numbers that one calls that repeat
your number back to you etc.


I would be interested quite a bit in a better description of the 'ghost
voices' as that is one of the specific symptoms I am inquiring about.

-KF

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault