*** NoBLy First Text Documentation ***

1. Why Diz Lame TXT File??????
------------------------------

Coz I noticed that many sysops didn't knew of the danger that installing
BiModem includes.  Once I tried to hack 10 boardz, I could hack 9 of them
using BiModem.  Coz I am a sysop myself, I didn't changed anything on thoze
boardz that would be VERY LAME, the sysop has much work to do if he wants
to keep his BBS working well.... With thiz TXT file I want to prevent hackers
destroying the hard work of those sysops....

2. What did I exactly do??????
------------------------------

It is very simple... First you search a BBS-proggie that is easy hackable...
(eg. most ProBoard-BBS's, Remote Access-BBS's)  Then you look for a BBS that
has the BiModem-protocol installed. First you do some "normal" filetransfers
and try to page the sysop... If the sysop is not responding, you do another
filetransfer, and for security, you page the sysop again in BiModem.  When he
still doesn't answer, you can begin... Try to upload a file from BiModem
(I use BiModem PRO, and there it is the PGUP key).  If the file is uploaded
you also can download, so you try to download a file (mostly used to test you 
can try CONFIG.SYS or AUTOEXEC.BAT). If the file comes trough, you can access
any file, if you can only access files from 1 directory then the sysop has
set a minimal protection.... Then you can do a download *.* and just skip the
files you're not interested in...

3. Okay now, but what's dangerous about that????
------------------------------------------------

Coz not everyone can or does set the READ-ONLY file attribute, you can also
upload eg. a FILES.BBS empty or so... Or maybe even upload a programfile
(for Proboard PROBOARD.EXE) that is not the Proboard executable, and so it
is possible to activate even a virus or a disk-formatter!!! ;-)

4. What could be against that????
---------------------------------

Well, certainly _NOT_ what a sysop did after I left him a messy that I hacked
his BBS using BiModem, remove BiModem from the PROTOCOLS ;-) ;-). No, you just
read the dox...... And if your are not willing to do so, then continue reading
Just start BICONFIG from the original BiModem package and there look around in
the options and there it is. You should not allow users requesting files from
any directory, and even not allow user to upload... 

5. Who Wrote Thiz????
---------------------

Well, Thiz Iz MuskY from NoBLeSSe-BBS.... I had a pretty nice time hacking
and leaching all those files from the BBS's... You find more than you might
think.... And also, you have NO ratio that is adjusted!!! ;-) ;-)

6. So...
--------

That's it, just trying to reach the 60-lines...

MuskY (NoBLeSSe-BBS *-* +32+PrIvAtE)
                --------------***------------------
