The new world order has come.

RCMP to jam wireless signals

Except they messed with the wrong engineer.. stay tuned to the antidote..

http://www.google.com/cse?cx=003849996876419856805:erhhdbygrma&ie=UTF-8&q=&sa=Search

So was cruzing on the local buysell page, and came across this baby for $20.00

I just spent the last 2 days figuring this out. here is how its done..

ok first off, we need to install some libraries, and tools to make this work.

sudo aptitude install libusb-dev libssl-dev libtar-dev libgtkmm-2.4-dev libglademm-2.4-dev zlib1g-dev build-essential checkinstall dnsproxy

we also need opensync so..

sudo aptitude install libopensync-dev

we need a utility called barry. it brings a bunch of stuff, but the most important thing is pppob which connects us to the modem in the phone

get the lastest from here http://sourceforge.net/project/showfiles.php?group_id=153722

unpack and cd into the barry source directory

now we must build the binaries

./configure –enable-opensync-plug-in –enable-gui –prefix=/usr

make

we could do make install. however its much nicer to build it as a .deb package incase we want to pull it out later

lets build our package

sudo checkinstall –fstrans=no

the flag is to fix a bug in the latest checkinstall that causes the build to fail without it.

answer N to the build docs question, and give it a description so you can figure out what its for later.

follow the bouncing ball and build the package

once we have barry installed. we need to copy over the scripts.

from the main barry source directory:

sudo cp modprobe/blacklist-berry_charge /etc/modprobe.d/
sudo cp udev/10-blackberry.rules.Debian /etc/udev/rules.d/10-blackberry.rules
sudo cp barry-rogers.chat /etc/chatscripts/
sudo cp barry-rogers /etc/ppp/peers/

this next part took me hours to figure out. for some reason the BB perl modem  doesn’t like some of the default script commands
sudo gedit /etc/chatscripts/barry-rogers.chat

comment out:
#OK AT+CGQREQ?
#OK AT+CGQMIN?

ok still with me? right, we are allmost done.

for some stupid reason (if anyone can tell me why i would be grateful) when we dial our ppp script, the dns server gets set to 127.0.0.1. even though its set to rogers dns in the script. I think it has somthing to do with the NetworkManager applet. it thinks that because it cant see a network it decides that it should loop the dns back. who knows. but I have a kludge to fix the problem

dnsproxy to the rescue
sudo gedit /etc/dnsproxy.conf

change to
#
# dnsproxy 1.15 configuration file example
#
# $Id: dnsproxy.conf,v 1.7 2005/05/16 17:31:30 armin Exp $

#
# Authoritative server
#
authoritative        207.181.101.4
authoritative-port    53        # It’s port. Defaults to 53.
authoritative-timeout    10        # Seconds to wait for answers.

#
# Recursive resolver
#
recursive        207.181.101.4
recursive-port        53        # It’s port. Defaults to 53.
recursive-timeout    90        # Seconds to wait for answers.

#
# Local address and port of dnsproxy
#
listen 127.0.0.1
port 53

#
# Security features
#
chroot /var/spool/dnsproxy
user dnsproxy

#
# Internal networks (allowed to do recursive queries)
#
internal 192.168.168.0/24    # Our internal network
internal 192.168.169.0/24    # Friendly neighbours
internal 127.0.0.1

this sets up a proxy listener on 127.0.0.1 that points to rogers dns

ok everything is set up, so to connect we:

start dnsproxy
sudo dnsproxy &

finally we call our dial up script

sudo pppd call berry-rogers

and enjoy

well apple has shown how truly evil it can be by attacking a project that is attempting to provide interoperability between ipods and linux. Apple refuses to provide a linux version of itunes, and wont allow anyone else to provide one either.

read the latest here, http://yro.slashdot.org/article.pl?sid=08/11/20/201246

they have the gaul to try to do a DCMA takedown, even though the project is clearly to provide interoperability

spread the code

Hashing Algorithm

Database hash depends on SHA1 hash of the database combined with serial number of the device and some random bytes hash.

main hashing function is located at … F6D900

Note: All offsets mentioned here are for iTunes 7.7.0.43 windows version

Note: In addition to the hash, the byte at 0x48 must be set to 2 in the iTunesDB database
I think 0x48 is lib_id It does not have to be 2(israr)

void genRandPart(unsigned char *rndPart)
{
   unsigned char rnd[12] = {0xAA,0x11,0x11,0x11,0x11,0x11,0x11,0x11,0x11,0x11,0x11,0x11};
   memcpy(rndPart,rnd,12);
}
char transformChar1(char ch)
{
   ch*= -27;
   ch-= 5;
   ch*= -121;
   ch+= 115;
   return ch;
}
void generateKey(unsigned char *hashingKey,unsigned char *serialNo ,unsigned char *rndPart)
{
   int i;
   //combin SerialNo and rndPart in one key, called tmpKey.
   unsigned char tmpKey[16];
   for (i=0;i<8;i++)
   {
       tmpKey[i] = transformChar1(serialNo[i]);
       tmpKey[i+8] = transformChar1(rndPart[i]);
   }
   //encode tmpKey, to produce hashingKey.
   computeIntKey(tmpKey,hashingKey); //011481E0: I am working on it atm(israr)
}
//sha-1 hash is of whole database with 8 bytes at 0x18, 20 at 0x32, 20 at 0x58, 46 at 0x72 all zeroed out
calcDBHash (u32 unk1 , u8* dbHash u32 a3 , u8 *ser_no , u32 hashlen_46 , u8*sha1,u32 a7)
{
   unsigned char rndPart[12];
   unsigned char hashingKey[16];
   genRandPart(rndPart); // 00A7F560
   generateKey(hashingKey, serialNo , rndPart);//00F60970
   finalizehash(hashingKey, dbHash + 14 , sha1, rndPart); //00F67A30
   //write header? maybe version indicator.
   DBHash[0] = 1;
   DBHash[1] = 0;
   //write rndpart
   memcpy(DBHash+2 , rndPart,12);

Arrgh, Fricking script kiddies.
Some a-hole managed to exploit my blog to send viagra adverts via rss..

sorry to those affected, i think i have it fixed now..

Im up to the challenge.. how about you?