Reverse Code Engineering RCE CD +sandman 2000

home *** CD-ROM | disk | FTP | other *** search

/ Reverse Code Engineering RCE CD +sandman 2000 / ReverseCodeEngineeringRceCdsandman2000.iso / RCE / Library / +HCU / 031-040.TXT < prev next >

Wrap

Text File | 2000-05-25 | 65.4 KB | 1,797 lines

======================================================== +HCU Maillist Issue: 31 10/17/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: please repost #2 Subject: new protection ARTICLES: -----#1------------------------------------------------- Subject: please repost Hello, can he who posted the link to ProView at Franklin Software (and a second link too) please repost the link to the second program. I think it was Sourcesomething for WinNT... TIA, WAFNA of FCA -----#2------------------------------------------------- Subject: new protection If I'm not mistaken, UNIX passwords work the same way. it encrypts the password using the password. And just how many +crackers are there now? Shadow Stalker (not a + ...yet) =====End of Issue 31==================================== ======================================================== +HCU Maillist Issue: 32 10/18/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: encryption protection #2 Subject: +crackers #3 Subject: reply to WAFNA of FCA ARTICLES: -----#1------------------------------------------------- Subject: encryption protection Hello all someone mentioned protection by encryption. I had also once thought about that - the program is crippled, some parts are encrypted, and you need to enter a word to decrypt them - so let's say the decryption works in this way: you enter the word ALIBABA and the program does this routine $4000: 00 + asc(a) = real value n.1 $4001: f0 + asc(b) = real value n.2 .... and so on.... a good protection, especially, if, as suggested, the program gives no indication as to whether is has been correctly decrypted. However, given the silly world of 'wizards', of 'are you sure you want to delete this file', etc., people wouldn't like a program that doesn't give any message like 'thank you for registering', etc. A second problem, of course, is that as soon as someone like me gets hold of the password, it goes on USENET.... that could be overcome by a key - for instance, the program, when first run, generates a key, say 'sjdfgsdjf' and that key would need a second key to generate the correct code: $2000: fe + asc(mid$(str1$,1,1)) - asc(mid$(str2$,1,1) = correct value which is all neat and effective. However, there is already something similar with the ziplock, which uses RSA encryption. On second thought, why bother with all this....... just release the crippled program and sell the real thing..... WAFNA -----#2------------------------------------------------- Subject: +crackers Shadow Stalker wrote..... > -----#2------------------------------------------------- > Subject: new protection > If I'm not mistaken, UNIX passwords work the same way. it encrypts > the password using the password. And just how many +crackers are > there now? > Shadow Stalker (not a + ...yet) as a matter of fact.... who invented this "+" idea? Apologies to all the + people on the list, but when I first saw this, my first idea was - I will make myself and my friends ********** who are more powerful than +crackers (we can kickban the +crackers hehehe) WAFNA of FCA or shall I say ****** of ***** -----#3------------------------------------------------- Subject: reply to WAFNA of FCA Wafna; The second item I sent is called Source Navigator (5 mb), and is at: ********************* Written for several OS's but DOES NOT come in a WIN95 version, a version for WINDOWS NT is available. This IS a crippled (lite) product, but with ONLY the proper "serial number", all disabled functions will work, and you will have a FULLY functional product. Since our news letter is back up, and I'm assuming every one is getting it, I will ask one more time if anyone would "donate" a full working version (8 mb) of IDA PRO, Version 3.64 or later, to me. My intent is to make the program "public" by placing it on the web for downloading. Nobody replied to my last request, and if nobody replies to this request, I'll have to pay for the program out of my own pocket. If you've already spent the $200.00 for the program, why not save me the cost? When I upload it to the web, I will send the address to this news letter so we can all use this program. Hackmore Readrite =====End of Issue 32==================================== ======================================================== +HCU Maillist Issue: 33 10/19/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: RE: encryption protection #2 Subject: Cracking Corel/Elan protection scheme... #3 Subject: Newsgroup delete proggy... #4 Subject: Re: encryption protection #5 Subject: +crackers ARTICLES: -----#1------------------------------------------------- Subject: RE: encryption protection re: encryption protection Another idea is to make the registration key (or even better, the key plus the "user ID" ASCII value) equal to the offset of the funtion that decrypts the program, such as mov eax, reg_key call [eax] --similar to the way OOP(s) programs call member functions. The disabled features could then be encrypted within the executable, with the encryptor routine being called only by a relative address. If you code it well (i.e. obscurely) and throw in a few uncalled encryption routines (each with a different algorithm), you should be able to frustrate a good number of crackers. _m ______________________________________________________ Get Your Private, Free Email at ********************** -----#2------------------------------------------------- Subject: Cracking Corel/Elan protection scheme... Hi there Noose, > OK, the way I cracked the date problem was using WinDasm32, I pulled > disass. the corel app (I've been using PhotoPaint 7 Plus). One of > the import functions is GetLocalTime (I think it's a kernel > routine). Anyway, there's only one reference to it which happens to > be within a standard MS C++ routine to convert the full date into > seconds from 1970, with adjustments for time zone etc. Did PhotoPaint dissasemble properly? Whenever I attempt to dissasemble any Corel/Elan protected app WDasm falls over :-( All the data references are missing - which doesn't make analysing any easier :-) > I actually stumbled in this routine whilst analyzing the demo > version of Elan from their website. Try downloading the demo and > adding the string "ELMDEBUG=1" to your environment. You'll find that > when running, the protection displays debugging info which gives > details of what the ???.lic file contains encoded in those long > numbers. Hmm....how big is this download? > It is then a simple enough matter (so long as you have access to the > MS specification on how GetLocalTime returns its values) to fool the > protection into always believing it is the same date - by adding a > small routine to return the same date every time. Yes, I've tried this out ('live', in memory using SoftICE) and it seems to work fine - actually, it is very easy to make the program run regardless of the date if the *year* is the same as the install year - if you change the year things become considerably more difficult. One thing that might help, whenever any part of the program 'fails' a check, a value similar to 'FFFFFFEA' for example is loaded into EAX - so jump over these (e.g. reverse the previous jmps/cmps )! I'm not sure how the EXE itself could be patched permanently though, since if there is only one GetLocalTime call in the dead listing it is probably used throughout the program to retreive the date - this may be a problem for say the WebMaster suite, which may depend on the date for the age of files etc? Anyway, I think it would be a good idea to try and make some sort of generic crack, as you suggest.... > Now, base+metal has suggested a few things about the registry value > which suggest that it contains the actual install date encoded. I > believe that is could be a very simple matter to write a routine to > get the value of this key, convert it to the date it indicates, and > plug that into a crack. Thus making a generic crack for virtually > all Corel 30-day trial apps and also many from other companies which > use the system. Yes, this sounds the most viable approach to cracking this scheme...I've not really looked into how the install date is encoded...perhaps I should.... > I'm actually quite interested in finding out how the ???.lic file > encodes the information it contains, but I think that could be a > little long-winded, and if I'm correct with the above assumption, > also a little pointless. That of course would be the cleanest crack, but it may be pretty difficult to generate a valid lic file.... Cheers, +ReZiDeNt -----#3------------------------------------------------- Subject: Newsgroup delete proggy... > Hi +ReZiDeNt > OK (for those who are interested) here it is: > > ************************************* > > Check it out and crack it but keep the crack to yourselfs. Join me > and lets find out if this thing is as potent as they make it out to > be... Thanks, I got it....I'll have to try it out sometime, see what it can do... Cheers, +ReZiDeNt -----#4------------------------------------------------- Subject: Re: encryption protection Hi all! WAFNA wrote: >a good protection, especially, if, as suggested, the program gives no >indication as to whether is has been correctly decrypted. >However, given the silly world of 'wizards', of 'are you sure you >want to delete this file', etc., people wouldn't like a program that >doesn't give any message like 'thank you for registering', etc. This problem could be solved by CRC checking the decrypted program to see if its decoded properly or not. Obviously, the checksum should not be in the program either (a call for brute force cracking) but a part of the registration code. This way even a lamer user who is not able to type the valid registration code correctly is protected against running garbage code. >A second problem, of course, is that as soon as someone like me gets >hold of the password, it goes on USENET.... This can be addressed if the program during the installation further encrypts the code with a random key then the user tells me this random key and I supply the registration code which converts the random key to the valid decryptor key. Then for every installation of the program needs a new registration code, so publishing a registration code is useless. This however does not prevent distribution of a cracking patch which can either work as a key generator (the neccessary info can be ripped out of the installer once the decryptor code is determined) or just patch the missing valid running code into the crippled version. But for this the valid decryptor is neccessary, which means at least one guy must by the program :) (Excluding the situation when someone just rewrites the missing part :() >However, there is already something similar with the ziplock, which >uses RSA encryption. Could you tell me more about this ziplock thing? What is it used for? Encrypting zip files? >On second thought, why bother with all this....... just release the >crippled program and sell the real thing..... Well, nowdays, I am just in a mood to write something, instead of cracking. I agree with you that nothing better than just leave out some parts entirely, but for a small shareware writer it might be appealing to have the opportunity, to unlock the program with a registration code instead of sending new versions. I don t know I am not a shareware programmer. I just thought we should show the better ones (who happens to get to Fravia) a way to improve on their protection. Which of course will not prevent the appearance of fully functional, registered, even dedicated copies of the program all over the net :) Zer0+ -----#5------------------------------------------------- Subject: +crackers Hi all! A few of you asked about this + thing. Fravia is the most competent among us to answer this question, but I can tell you how I see it. +ORC started to use the + sign in his handle to confuse a bit the search engines of the WEB. Nowdays everybody who wants to show his respect to him for the great tutorials, and show him that his work was not useless (this way he might send us more) can use a + sign in his handle. There are crackers who took the effort to work on his exams and passed it, they get into the HCU, (what it means being in it, I still have no idea). Once Fravia told me that there are only three crackers who passed one of the old exams and there are seven or so who passed this year exam, so it should be around ten now. However you can get into the HCU without working on an exam if you send an exceptional crack to +ORC himself, and you can get one of his secret tutorials which even the HCU kers don t get if I am not mistaken. (BTW this is a very good way to obtain new ideas and learn. I have to admit that because I don t have any secret lessons for you :(, I had to come up with this maillist idea to squeeze the info from you which otherwise would not appear on Fravia s page :) Well, that s how I see the situation, and hope that Fravia will correct me if I am mistaken. bye Zer0+ =====End of Issue 33==================================== ======================================================== +HCU Maillist Issue: 34 10/20/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: Re: encryption protection #2 Subject: SpectraLAB #3 Subject: Repository of old issues? ARTICLES: -----#1------------------------------------------------- Subject: Re: encryption protection _m wrote: >Another idea is to make the registration key (or even better, the key >plus the "user ID" ASCII value) equal to the offset of the funtion that >decrypts the program, such as > >mov eax, reg_key >call [eax] > >--similar to the way OOP(s) programs call member functions. The disabled >features could then be encrypted within the executable, with the >encryptor routine being called only by a relative address. If you code >it well (i.e. obscurely) and throw in a few uncalled encryption routines >(each with a different algorithm), you should be able to frustrate a >good number of crackers. That's certainly a good idea. The program should not contain any indication about the entry point of the decryption rutin (not getting it from an entry table ). The decription can be very simple just a few xoring there for can be hidden almost any where. The registration key brings the info: - where the decryption rutin starts - what is the key - where the encoded part starts (this is on the otherhand obvious to find, because all the disassambled code is scrambled from this position, but it might discurage a casual cracker.) Bye Zer0+ -----#2------------------------------------------------- Subject: SpectraLAB Hi All! :) A friend of mine gave me a program to crack, I gave a look at it and found quite a nice protection... the program is SpectraLAB, it's a spectrum analizer and you can found it at ******************************* (2.53 mb) If you want to give a look to the screenshots you can go to ****************************** When you install it you can choose to enable a 30-day license which lets you try the various tools, but if you want to register them you have to enter a key which enables just one of them... then if you want to enable another one you have to generate another key. When you select the "demo" installation the program (BASTARD!:)) writes many copies of the same file in random directories of your HD, so check the file accesses with filemon :) Then, if you try to put the date back, the program DISABLES the trial version... I've given a look to the disassembled code, and it seems to use TWO dlls only for the generation and check of the key... well, it's quite tricky, I'm working on it but I don't have much time in this period... if you like to join me, I hope it will be interesting for you! byez, .+MaLaTTiA. -----#3------------------------------------------------- Subject: Repository of old issues? Hi all! +Malattia thought he could make a website with the repository of the old issues of the list if you are interested in it. I think this is not a bad idea specially if there is a search form on it which can bring up the relevant issues if some body searches for let's say "Delphi protection". Any comments? Zero+ =====End of Issue 34==================================== ======================================================== +HCU Maillist Issue: 35 10/21/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: BRW and resedit #2 Subject: Cracking Corel/Elan #3 Subject: Re: IDA pro #4 Subject: encryption and warez #5 Subject: Re: BRW and user.exe ARTICLES: -----#1------------------------------------------------- Subject: BRW and resedit hey, the other day i d/l what seemed to be a poor mans version of BRW by the name of ResourceStudio (ResEdit), i was just stuffing around and testing it capabilities and found for some reason it couldn't open c:\windows\user.exe (the reason it gave was low memory, but i seriously doubt it). Anyone with BRW want to fire it up and see if they get a simular message? Regards, faeton -----#2------------------------------------------------- Subject: Cracking Corel/Elan > Did PhotoPaint dissasemble properly? No such luck. However, the code that did disassemble is the Elan Sentinel Manager. The system doesn't actually directly jump to the code start. This may be where WinDasm has its problems. W/o a jump the actual code of the program (Photopaint) cannot be identified as code. I think WinDasm does a lot of "single stepping", in order to decide whether a series of values are code or are in fact data. I know this is how disass. progs such as sourcer work, by multiple passes. > Hmm....how big is this download? I seem to recall it was about 800k, but I could be wrong. I know it's less than 1 meg. The web page requires you to put in some details about yourself (usual old bollocks) and then gives you an ID number. You then download the executable and note down the server ID (constructed I believe from the HD serial number and label). Then the web page will give you an unlock key which will initiate the 30-day trial. The proggy just displays a window saying that the trial was correctly validated. It's def. work a look. > One thing that might help, whenever any part of the program > 'fails' a check, a value similar to 'FFFFFFEA' for example is loaded > into EAX - so jump over these (e.g. reverse the previous jmps/cmps )! There's a hell of a lot of them. Plus, some of them it appears are not really "error" codes, but are instead used as failsafes. For instance, the code checks to see if the check fails, if it does then it continues. So generic replacements would be difficult. > I'm not sure how the EXE itself could be patched permanently though, > since if there is only one GetLocalTime call in the dead listing it is > probably used throughout the program to retreive the date - this may > be a problem for say the WebMaster suite, which may depend on the date > for the age of files etc? On the contrary, this probably wouldn't affect the date of saved files. Elan "pride" themselves on producing an easy to incorporate protection system. For easy read "stupid". I recently contacted the UK wing of Elan called Rainbow systems, and obtained a information pack and demo CD. >From the info. they supplied (and also the helpful salesman I spoke too on the phone), it was clear that the code is almost certainly added AFTER compilation of the main code. Thus, any time routines would be duplicated in the main program. Any hard changes to the protection system shouldn't affect the host program. I've yet to try it on the WebMaster suite (just got hold of a copy on your suggestion), but if my suspicions are correct then that would def. suggest that the generic crack would work best on the GetLocalTime routine. Anyway, happy cracking. Noose. -----#3------------------------------------------------- Subject: Re: IDA pro Hi Hackmore! I do not have the full IDA Pro, but before you pay the 200 bucks have a look at the most recent assays on Fravia's page. There is a BRILLIANT assay on how to over come the main limitation (disassembling only 64K targets) of the new IDA pro demo. Zer0+ -----#4------------------------------------------------- Subject: encryption and warez On 19 Oct 97 at 13:50, Zer0 wrote: (I wrote) > >However, there is already something similar with the ziplock, which > >uses RSA encryption. > > Could you tell me more about this ziplock thing? What is it used > for? Encrypting zip files? Well, ziplock is a way to protect programs - you buy them, you start the setup and it generates a key - you must then phone a number, give you c/c and they will give you the matching key to open the program. Incidentally, I don't have many details, but it uses RSA 128 bit encryption, as far as I know. > Well, nowdays, I am just in a mood to write something, instead of > cracking. heretic! ;-) WAFNA of FCA -----#5------------------------------------------------- Subject: Re: BRW and user.exe Hi Faeton! My BRW which came with the Borland C++ 4.5 (on the magazine Fravia mentioned) can handle the user.exe without any problem. Zer0+ =====End of Issue 35==================================== ======================================================== +HCU Maillist Issue: 36 10/22/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: Checksums .. the routines. #2 Subject: BRW and IDA PRO #3 Subject: Repository #4 Subject: A challenge of great importance #5 Subject: Re: SpectraLAB #6 Subject: Resedit, Win32api, etc #7 Subject: Back issue repository idea #8 Subject: A generic crack for Corel/Elan #9 Subject: A brief history of '+'? :-) ARTICLES: -----#1------------------------------------------------- Subject: Checksums .. the routines. Just cracked a dongled based scheme and proggie works nicley with the cracks done in memory via SIce, the problem is byte patching the dll to overcome the protection,causes on restart the programme to disable the menu strings and disable all the function buttons. Ah a CRC checker I thought,to test I altered 1 byte in the prog and yup the proggie was checking the file, not altering the date changed matters. The crc check seems to use no usual API read file function, but does call a lot of dos functions. So has anyone got experience of dos crc functions or ways of pinpointing the code doing the checking, no dialog warning of error or other pointers, the file is 2mb long. KaziL -----#2------------------------------------------------- Subject: BRW and IDA PRO Hello Faeton; The problem you are having with Symantecs Resource Studio seems to be the standard fare for this program. When I first found it, I tried it out on a program I had already cracked, NetScanTools, and there were nearly a dozen resources it was unable to load. I wrote Fravia to tell him it was not nearly as thourogh as Borlands Resources Workshop. It does have a prettier GUI though. If you would like to try a REAL resource editor, download Borlands Resource Workshop from Asculpius's web page, or send me your address and I'll send you the same copy I sent Fravia for evaluation purposes last year, IF your E-mail can handle 2 Mb attachments. Zero; Thanks for the advice, but I read that excellent article about Ida Pro the DAY Fravia posted it to his web page. I was going to write a note to this news letter about the article, but I thought people might think I was just being "pushy" trying to get a free copy. The reasons I'm looking for a "purchased" version are: 1) The program might not be completely cracked, many programs are designed with "time-bombs" hidden somewhere inside. 2) When I first began searching for this program, version 3.7 had not been released yet. The company was pushing version 3.64, which they stated was a 2 Mb demo, but if you registered, they would send the remainder of the program, which would bring it's size up to 8 Mb. Obviously, some of the files were missing from the "demo" version, which makes me wonder about the "new" demo. 3) Once I get my hands on a "purchased" version, there will be no need to crack it, or worry about reasons "1" or "2", we'll all have the BEST dis-assembler available. I'm NOT rich, like some of our mentors, but Ida Pro is well worth the investment. I WILL pay the price if nothing turns up for free, and YOU will be the FIRST to know where to get it for FREE. Hackmore Readrite -----#3------------------------------------------------- Subject: Repository On 20 Oct 97 at 12:45, +HCU ML wrote: > +Malattia thought he could make a website with the repository of > the +old issues of the list if you are interested in it. I think > this is not a bad idea specially if there is a search form on it > which can bring up the relevant issues if some body searches for > let's say "Delphi protection". Any comments? Well, IMHO I don't think it might be too wise. Among nice explanations we might find messages which cannot be understood outside the context, without looking at the thread. We'll also have the 'let's try to crack ****************** messages, which will be of no interest to the seeker. What we could do is a 'digest', a repository of tips & tricks. That would be interesting. A little like Fravia's page, but only dedicated to tips & tricks. What do you think? WAFNA -----#4------------------------------------------------- Subject: A challenge of great importance I'm forwarding this, because this will be an URGENT new project, all +HCUkers that can should work on this asap, all friends that can should help. This has ALREADY been sent to +Sync and +gthorne This has ALREADY been sent to +ORC and Frog's Print later fravia+ To: fravia, 100114,453 Date: 21-10-97 4:38 RE: A challenge of great importance Fravia: I came across this post. It suggests that M$ is discriminating against Netscape in the use of its font-smoothing software: ----------------------(starts)-- >From comp.risks: Date: Fri, 10 Oct 1997 21:41:18 -0700 (PDT) From: "Bryan O'Sullivan" ******************** Subject: Risks of installing Internet Explorer 4.0 I just downloaded and installed Microsoft Internet Exploder 4.0 onto my PC running Windows 95 at home. Among the optional features that come with this release are a few tidbits that were included with Plus!, the mostly-useless set of bells and whistles that was packaged separately from Windows 95. Two of these features are opaque window manipulation (when you move or resize a window, the entire window moves in real time, rather than a rubberband representation being tweaked) and anti-aliasing of large fonts. The anti-aliasing feature is quite useful; it makes fonts in large point sizes noticeably less pixelated. However, in this feature lies a small, and somewhat malicious, piece of code. This snippet of code apparently checks to see whether it is being asked to render a font by the Netscape Navigator browser (or, indeed, any component of the Communicator 4.x suite). If it is, it gives back a plain old jagged-edged font; otherwise, in every instance I have been able to check, it gives back an anti-aliased font. This appears to be a clear instance of discriminatory coding on the part of Microsoft, and is intended, one presumes, to make Navigator look somewhat cruddy in comparison with MSIE (not to mention all of the other software on a system). It begs a troubling question: what other features were included in MSIE 4.0 that were intended to, in some sense, impede the software of Microsoft's competitors? -------------------(ends)---- If this is true, it is really foul play. Do you think it would be a worthy gift to humanity for +HCU to "crack" the discriminating parts of the code so that Netscape users are not hurt my this? Perhaps it could be a gift to Netscape too ;-) Regards DN -----#5------------------------------------------------- Subject: Re: SpectraLAB Hi all, hi +MaLaTTiA >A friend of mine gave me a program to crack, I gave a look at it and >found quite a nice protection... >....if you like to join me, I hope it will be interesting for you! I immediately downloaded this one (took bloody ages) as it sounded realy interesting. If you like I'll post the whole proses of how I got there later but for now the file cryp95.dll got my interest and +MaLaTTiA's friend is waiting ): With some zen and a few breakpoints ): I saw a call from within the main program to this dll{ call(eax)}. This is where the code at the bottom comes in, exactly at the point of the call. I was a bit lazy and first tryed it with a 'Ret' at this point and wholloah, it worked. One problem was that the program constantly checked your licence status but a few minutes later that was solved also. Search for this line of code (cryp95.dll) in your hex editor: 1A 55 8B EC 51 83 EC 3C FF 15 65 10 00 10 C9 C3 then replace the NEXT line's code (after the one above) with 50 33 C0 66 B8 FF FF 90 90 A3 9A 67 47 00 58 C3 and save it using the same name. Enjoy. (This is an example of bypassing the whole routine of checking for a password. I always think that the programmers write the program and then later do a protection routine and yes so far it proved to be right ): Bye GlorFindeL ______________________________________________________ Get Your Private, Free Email at ********************** -----#6------------------------------------------------- Subject: Resedit, Win32api, etc ****Putting the Win32 API Online**** Today I downloaded a demo copy of Robohelp and converted the entire Win32 API into .HTML format. Unfortunately, this is some 13 MB of files. Now I could trim this monster down manually or split it across 3 Fortunecity accounts ny re-writing all of the href's...but that is an awful lot of work just to put this damn thing online. Does anybody know a place where I can upload this, either a private server or a public (read "free") provider that will allow up to 15 MB of file space? Regarding Symantec Resource Studio: I've played around with both this and BRW and noticed that each can disassemble files that the other cannot--notably user.exe for Symantec, and explorer.exe for BRW. When taking apart user.exe in response to the last newsletter I got an "invalid bitmap header info" error from Symantec--usually this happens with VB or MFC applications. My advice: keep both around. (And check out Resource Hacker by Robert Brooks--he has a "Wallpaper Heaven" page--it is not yet fully functional and it is in VB5, but it is free, has promise, and he'll even send you source code if you show interest). - mammon_ ______________________________________________________ Get Your Private, Free Email at ********************** -----#7------------------------------------------------- Subject: Back issue repository idea Hello All/Zer0+ > Hi all! > > +Malattia thought he could make a website with the repository of the > + > old issues of the list if you are interested in it. I think this is > not a bad idea specially if there is a search form on it which can > bring up the relevant issues if some body searches for let's say > "Delphi protection". Any comments? Sounds like a good idea...I think there is a java/javascript program around that allows a search of files on a web site - that would enable a web page to be set up without having to pay for cgi access. I would be more than willing to host such a repository on any of my sites/mirrors...but what about security? Perhaps the www/email addresses of those people who contributed should be deleted if the site is going to be public....what do you think? Cheers, +ReZiDeNt ***************************** -----#8------------------------------------------------- Subject: A generic crack for Corel/Elan Hi Noose, > > Did PhotoPaint dissasemble properly? > > No such luck. However, the code that did disassemble is the Elan > Sentinel Manager. The system doesn't actually directly jump to the > code start. This may be where WinDasm has its problems. W/o a jump > the actual code of the program (Photopaint) cannot be identified as > code. I think WinDasm does a lot of "single stepping", in order to > decide whether a series of values are code or are in fact data. I > know this is how disass. progs such as sourcer work, by multiple > passes. Yes, I think you're right about that - Elan seems to use a 'wrapper' sort of thing, and that's probably what throws the disassembler. > I seem to recall it was about 800k, but I could be wrong. I know > it's less than 1 meg. The web page requires you to put in some > details about yourself (usual old bollocks) and then gives you an ID > number. You then download the executable and note down the server ID > (constructed I believe from the HD serial number and label). Then > the web page will give you an unlock key which will initiate the > 30-day trial. The proggy just displays a window saying that the > trial was correctly validated. It's def. work a look. Yes, I must try it sometime - even though the protection it offers has just been rendered useless... ;-) > > One thing that might help, whenever any part of the program > > 'fails' a check, a value similar to 'FFFFFFEA' for example is > > loaded into EAX - so jump over these (e.g. reverse the previous > > jmps/cmps )! > > There's a hell of a lot of them. Plus, some of them it appears are > not really "error" codes, but are instead used as failsafes. For > instance, the code checks to see if the check fails, if it does then > it continues. So generic replacements would be difficult. Oh, yes, I was't suggesting replacing them :-) I just meant it can help as you trace...if you know they're 'badflags' > > I'm not sure how the EXE itself could be patched permanently > > though, since if there is only one GetLocalTime call in the dead > > listing it is probably used throughout the program to retreive the > > date - this may be a problem for say the WebMaster suite, which > > may depend on the date for the age of files etc? > > On the contrary, this probably wouldn't affect the date of saved > files. Elan "pride" themselves on producing an easy to incorporate > protection system. For easy read "stupid". I recently contacted the > UK wing of Elan called Rainbow systems, and obtained a information > pack and demo CD. Oops! I just realised the pointlessness of my statement after sending the message - since the API routine used to save the file would get the date independantly of the caller program - so even as I type I'm working on the generic crack - it should be ready soon....I'll write a little essay about it, but basically all it does is hardwire the day, month and year as they are passed to the encode-date routine. > >From the info. they supplied (and also the helpful salesman I spoke > >too > on the phone), it was clear that the code is almost certainly added > AFTER compilation of the main code. Thus, any time routines would be > duplicated in the main program. Any hard changes to the protection > system shouldn't affect the host program. I've yet to try it on the > WebMaster suite (just got hold of a copy on your suggestion), but if > my suspicions are correct then that would def. suggest that the > generic crack would work best on the GetLocalTime routine. You're quite right...it does seem to be some sort of 'wrapper' and yes, there are no problems patching it - in fact, this helps us greatly in producing the generic crack, since the data to search for will be identical regardless of the program. I've patched a few of the Corel programs (WebMaster Suite, CorelDraw) I have with hex editor and in memory, it seems to work fine. I'm just going to finish the generic crack, test it as thoroughly as I can and then pass it around for beta testing just to be certain. > Anyway, happy cracking. You too - BTW, are you a UK cracker also? The reason I ask is I know of a group called PSD who released a crack for an old version of Corel WebMaster Suite - I don't know whether it used the Elan protection scheme, but I thought you might be one of their crackers. Cheers, +ReZiDeNt -----#9------------------------------------------------- Subject: A brief history of '+'? :-) Hi there WAFNA, > as a matter of fact.... who invented this "+" idea? Apologies to all > the + people on the list, but when I first saw this, my first idea > was - I will make myself and my friends ********** who are more > powerful than +crackers (we can kickban the +crackers hehehe) I don't use IRC much myself :-) But +ORC first used the '+' idea as a method of identifying +HCU students (see the original strainer at Fravia's site). IIRC, +ORC used the '+' to confuse search engines. Although Fravia+ did say on his page that you don't necessarily have to be in the +HCU to use the '+' in your handle, I refrained from using it until I gained access to the +HCU, as I felt that was the most appropiate course to avoid confusion. Cheers, +ReZiDeNt =====End of Issue 36==================================== ======================================================== +HCU Maillist Issue: 37 10/23/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: strainer #2 Subject: BRW, resedit and back issues #3 Subject: Re: IDA Pro #4 Subject: I've made a generic crack for Corel Apps ARTICLES: -----#1------------------------------------------------- Subject: strainer When is the next +HCU strainer coming up? I can't wait to see if I have what it takes <g> Shadow Stalker -----#2------------------------------------------------- Subject: BRW, resedit and back issues Just to follow up on this topic, i decided to get off my butt and found a copy of BRW in one of +gthorne's orcpaks... i agree with mammon_ though that they both have there uses. one thing i have learnt from this episode is that a better GUI doesn't always mean a better program <G> regarding the back issue idea, i don't think it would be a wise idea too leave all the back issues open too the public... first of all why would anyone bother subscribing in the first place! maybe a passwd protected site would be more practical? i suppose you could get the passwd if you subscribed to the mailing list... Regards, faeton -----#3------------------------------------------------- Subject: Re: IDA Pro Hackmore wrote: > 2) When I first began searching for this program, version 3.7 had >not been released yet. The company was pushing version 3.64, >which they stated was a 2 Mb demo, but if you registered, they >would send the remainder of the program, which would bring it's >size up to 8 Mb. Obviously, some of the files were missing from >the "demo" version, which makes me wonder about the "new" demo. I have downloaded the demo it was around 12 MB this time. > 3) Once I get my hands on a "purchased" version, there will be >no need to crack it, or worry about reasons "1" or "2", we'll >all have the BEST dis-assembler available. > I'm NOT rich, like some of our mentors, but Ida Pro is well worth the >investment. I WILL pay the price if nothing turns up for free, and YOU >will be the FIRST to know where to get it for FREE. Thanks, and I am ready to share the price. If some of the others put some money in too the price per individuals could go down considerably. BTW just came into my mind that I should call my brother if he has met it. (Unlikely, because he is not a cracker, but much more programs go through his hands :) than I will ever get, so a man can never know.) Bye Zer0+ -----#4------------------------------------------------- Subject: I've made a generic crack for Corel Apps Hi all (Noose, base+metal), I've finished the generic crack for Corel products, I need some people to test it....anyone interested? It works fine for me... Cya, +ReZiDeNt =====End of Issue 37==================================== ======================================================== +HCU Maillist Issue: 38 10/24/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: Rezident - Generic Corel Crack #2 Subject: Visual Basic (Please deliver us) #3 Subject: Generic crack for Corel Apps #4 Subject: something for us all #5 Subject: re: strainer info #6 Subject: Repository #7 Subject: Re: SpectraLAB ARTICLES: -----#1------------------------------------------------- Subject: Rezident - Generic Corel Crack Hi Rez, > I've finished the generic crack for Corel products, I need some > people to test it....anyone interested? It works fine for me... Mail me a copy at ************* Noose. -----#2------------------------------------------------- Subject: Visual Basic (Please deliver us) Well, hallo all. It is obvious that more and more programs are going to be written in VB (5, 6, 7, etc) What I ask is if it is possible to find out what asm code is passed to VB function calls ?. For example when a call is made to __vbaFileOpen what parameters are passed that make it OpenExisting instead of CreateNew ? I hope i'm not confusing things here, but when there is a disassembly listing from W32dsm, it is very obvious what the call is because the name is there for all to see. What is not obvious is what the various pushes before the call represent, at least it's not obvious to me :-( With good old DOS interrupts it was quite clear what each value meant. I don't know if there is documentation already in existence on this topic or if anybody can supply it. I think it would be useful. Regards, Zipper49 ______________________________________________________ Get Your Private, Free Email at ********************** -----#3------------------------------------------------- Subject: Generic crack for Corel Apps This is a multi-part message in MIME format. ------=_NextPart_000_0012_01BCDFE1.C3538E80 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable +ReZiDeNt wrote: >I've finished the generic crack for Corel products, I >need some people = to test it I would like to try it on coral cad. I also have a copy of Coral cad = modeler beta4 which I will now look at and report back. A crack before = the release of the progm now theres a thought!! Would you be prepared to share your solution in broad terms?? Rgds basE+mEtaL ------=_NextPart_000_0012_01BCDFE1.C3538E80 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD W3 HTML//EN"> <HTML> <HEAD> <META content=3Dtext/html;charset=3Diso-8859-1 = http-equiv=3DContent-Type> <META content=3D'"MSHTML 4.71.1712.3"' name=3DGENERATOR> </HEAD> <BODY bgColor=3D#ffffff> <DIV>+ReZiDeNt wrote:</DIV> <DIV><BR> </DIV> <DIV>>I've finished the generic crack for Corel products, I >need = some=20 people to test it</DIV> <DIV> </DIV> <DIV>I would like to try it on coral cad. I also have a copy of Coral = cad=20 modeler beta4 which I will now look at and report back. A crack before = the=20 release of the progm now theres a thought!! </DIV> <DIV> </DIV> <DIV>Would you be prepared to share your solution in broad terms??</DIV> <DIV> </DIV> <DIV><FONT size=3D2><STRONG>Rgds</FONT></STRONG></DIV> <DIV><FONT size=3D2><STRONG></FONT></STRONG> </DIV> <DIV><FONT = size=3D2><STRONG>basE+mEtaL</STRONG></FONT></DIV></BODY></HTML> ------=_NextPart_000_0012_01BCDFE1.C3538E80-- -----#4------------------------------------------------- Subject: something for us all Hello all, micro$oft has M$ project 98 on its home-page as a fully functional 60-day timed version hehehehe It *is*, unfortunately almost 20 MB to download..... But won't it be fun to crack it and post the crack on USENET for the benefit of mankind and the destruction of M$? Another interesting thing to crack is maximizer97 ************************** which is a very nice contact manager (ie phone book, but 'phone book' makes it look cheap, and you can't charge $130 for that......). You can also d/l it (14 MB) as a 60-day version....... the setup requires a pwd, without the pwd, it setups the proggie as a 60-day version. I got it yesterday, played with it a little, and found out that it's quite a stupid protection...... is uses getsystemtime..... it even has two wonderful CMP, which CMP some registers to.... $46 (#60). Anyway, it was late, I didn't have the time to play with it too much..... but it's there for us all! WAFNA OF FCA -----#5------------------------------------------------- Subject: re: strainer info the 1999 strainer will not be created until the 1998 class is underway, this is how +ORC does things part of it is probably due to the type of software that may be out at the time though the real reason has more to do with the fact that it would make sense to wait for the new students to be in session before the next year is planned out sorry for the suspense, but it will probably be 6 months or more before anything is even considered +gthorne /**************************************************\ Greythorne The Technomancer WebSite: ******************************* (AKA:) ************************************ Gateway: ************************************* Fortress: *************************************** Old Mirror: ****************************** My ftp/web site at the fortress is down for summer, if anyone has space for us for a ton of files, we would love to converse with you. Okay - so it seems like a permanent loss... \**************************************************/ -----#6------------------------------------------------- Subject: Repository Hi All! :) > Well, IMHO I don't think it might be too wise. Among nice > explanations we might find messages which cannot be understood > outside the context, without looking at the thread. We'll also have > the 'let's try to crack ****************** messages, which will be of > no interest to the seeker. You're right, but I thought it would be very useful for any new subscriber who can get the old numbers without asking them to Zer0, or for the ones who are interested in the ml but want to give a look at it before subscribing it... > What we could do is a 'digest', a repository of tips & tricks. That > would be interesting. A little like Fravia's page, but only dedicated > to tips & tricks. > What do you think? Well, it's a GREAT idea!!! Really cool, the only problem is that it takes quite much time, I think, and I don't think I can manage it alone... but if someone helps me we can do it together!!! Also, my idea of repository is that if you make a new tool you want to upload, or a file with a description of a crack which you think is too long to be put in the ml, it is possible to upload it to the page and then tell others it's online... > Sounds like a good idea...I think there is a > java/javascript program around that allows a search of files on a web > site - that would enable a web page to be set up without having to pay > for cgi access. OH!!! IT WOULD BE _GREAT_!!! :)) I was afraid of making up a cgi, also because fortunecity doesn't give the possibility to use them... :) > I would be more than willing to host such a repository > on any of my sites/mirrors... we can share the space and the ideas maybe, specializing our pages and making them complementary :) > www/email addresses of those people who contributed should be deleted > if the site is going to be public....what do you think? I agree with you, I can filter the issues before putting them online, so the http and mail addresses will be covered... well, just the ones we want to cover, of course :) byez, .+MaLaTTiA. -----#7------------------------------------------------- Subject: Re: SpectraLAB Hi all, hi GlorFindeL! :) > If you like I'll post the whole proses of how I got there later but for > now the file cryp95.dll got my interest and +MaLaTTiA's friend is > waiting ): Thanx a lot :)) I'm very interested in how you reached the right point, I got lost in the middle of the calls and just thought the get_authorization procedure had to be the right one... > With some zen and a few breakpoints ): I saw a call from within the main > program to this dll{ call(eax)}. Yes, it gets the address of the proc and then calls it, I think it's quite useful 'cause you can't see "a priori" where are the calls you're interested in... > I was a bit lazy and first tryed it with a 'Ret' at this point and > wholloah, it worked. One problem was that the program > constantly checked your licence status but a few minutes later that was > solved also. Uhmmm... but in my case it works ok! :? > then replace the NEXT line's code (after the one above) with > 50 33 C0 66 B8 FF FF 90 90 A3 9A 67 47 00 58 C3 > and save it using the same name. Uhmmm... this is the get_authorization procedure, right? But with this change it doesn't work on my computer... :? Maybe it's because I have activated the 30-day licanse before, but when I start the program it hangs up with a critical error. This is how the source code looks after I've changed it: :100010BB 50 push eax :100010BC 33C0 xor eax, eax :100010BE 66B8FFFF mov ax, FFFF :100010C2 90 nop :100010C3 90 nop :100010C4 A39A674700 mov [0047679A], eax :100010C9 58 pop eax :100010CA C3 ret I tried to put a jump to the end of the call in the first line, and I've seen the program looks as it is authorized, but the tools don't. So I patched the executable too to make it believe the tools are authorized too (this part was VERY easy!!! I can't believe it... :)) > (This is an example of bypassing the whole routine of checking for a > password. I always think that the programmers write the program and then > later do a protection routine and yes so far it proved to be right ): Yea... And if I looked immediately to the procedure trusting in its name... :)) Well... thanx a lot, you gave me a great help!!! :) byez, .+MaLaTTiA. =====End of Issue 38==================================== ======================================================== +HCU Maillist Issue: 39 10/25/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: One Corel/Elan cracking essay coming up :-) #2 Subject: A list database.... #3 Subject: Net snooping results: IDA 3.7 and SmartCheck #4 Subject: IDA 3.7 key file #5 Subject: Ida Pro ARTICLES: -----#1------------------------------------------------- Subject: One Corel/Elan cracking essay coming up :-) Hello there basE+mEtaL, > I would like to try it on coral cad. I also have a copy of Coral cad > = modeler beta4 which I will now look at and report back. A crack > before = the release of the progm now theres a thought!! hehe, sounds good doesn't it? :-) Just send me an email address and I'll attach it (specify MIME or UUENCODE) to you....alternatively I could post it on one of my web pages.... > Would you be prepared to share your solution in broad terms?? Absolutely! That's what this list is all about...I'm writing an essay on it at this very moment - I'll post the first draft of it in here ASAP so you and Noose (or anyone else) can comment/correct anything I may have left out and take the credit for your discoveries etc, as I was not the only one to work on this protection scheme... Cheers, +ReZiDeNt -----#2------------------------------------------------- Subject: A list database.... Hi there +MaLaTTiA, > OH!!! IT WOULD BE _GREAT_!!! :)) > I was afraid of making up a > cgi, also because fortunecity doesn't > give the possibility to use > them... :) I'll see if I can locate such a script/applet. TBH, it was only a rumour I heard, I can't say for certain whether such an applet exists, but if it did it would be most useful.... :-) > > I would be more than willing to host such a repository > > on any of my sites/mirrors... > > we can share the space and the ideas maybe, specializing our pages > and making them complementary :) Sounds good....! > > www/email addresses of those people who contributed should be > > deleted if the site is going to be public....what do you think? > > I agree with you, I can filter the issues before putting them > online, so the http and mail addresses will be covered... well, just > the ones we want to cover, of course :) Yes, that should be fine....if anyone specificaly wants their email/www addresses left in they can always add them.... Cya, +ReZiDeNt -----#3------------------------------------------------- Subject: Net snooping results: IDA 3.7 and SmartCheck Hi fellas, At a recent net snooping incident i found the following: IDA 3.7 non-crippled files can be found at: ************************************************* (dunno how long it will last there !!)You will need to download the demo version from IDA's homepage too. And the greatest invention of all times !! (no it's not Cartoon Network :) SmartCheck for visualbasic 5 at the numega ftp site: ****************************************************** It snoops on all VB calls ,and API calls made from VB apps. I got a VB5 serial number in 5 mins with this babe. You will need a password to self extract the InstallShield.Dead easy to crack (if you want to do it yourself: bpx KERNEL!LSTRLEN) If you are too lazy ,the password is: &Smc50-14d% and The software uses the famous tlock32v2.dll with a magic number of 500000 (A 1 min crack ,if u made a tlock keygen before ;) Now: can someone help me locate tasm 5 (full version) ? NB. to trurl: did u check your VCL approach with 16 bit apps.how can u locate the begining of a procedure in 16 bit code.(sel:offset) k0X -----#4------------------------------------------------- Subject: IDA 3.7 key file -----#5------------------------------------------------- Subject: Ida Pro Zer0+; There's no need to share the cost of Ida Pro, You can't squeeze cash through these wires we communicate through. I have enough money saved to purchase the program, but I'm waiting awhile so Tark can get the bugs worked out of the new version. Instead, you (or anyone else) should feel free to consider that you OWE me a favor. Then, when ANYONE asks for help, or a particular file, just pretend it's ME asking, and help them any way you can to return the favor. As you probably know by reading my essays on +Fravias pages, and my contributions to this news letter, I firmly believe that, TOGETHER, we can change the way things are in this world. Feel free to hoard consumables, like food and clothing, but INFORMATION should be a SHARED resource. If everyone in the whole world uses the same program, or the same knowledge, at the exact same time, the program or knowledge will still be there, even when the LAST person finishes. I will be placing an order for Ida Pro within the next two weeks. I'll have to wait until I recieve it, and then find a place to upload it. So we should ALL get a chance to own it in two or three weeks. Please, everyone, keep watching this news letter because I don't know how long the files will remain on the server when I upload them. I will write to this news letter at each phase of this "project" so everyone will know whats going on. Hackmore Readrite =====End of Issue 39==================================== ======================================================== +HCU Maillist Issue: 40 10/26/1997 -------------------------------------------------------- Send Articles To:......................... ************* Info, Help, Unsubscription, etc:....... **************** ======================================================== CONTENTS: #1 Subject: SPECTRALAB #2 Subject: IDA 3.7 key file #3 Subject: sorry... SpectraLAB OK..... #4 Subject: java search #5 Subject: Reply to kOX and an Ida Pro Update #6 Subject: TASM 5.0 #7 Subject: IDA PRO & more ARTICLES: -----#1------------------------------------------------- Subject: SPECTRALAB > -----#7------------------------------------------------- > Subject: Re: SpectraLAB > I tried to put a jump to the end of the call in the first line, and > I've seen the program looks as it is authorized, but the tools > don't. So I patched the executable too to make it believe the tools > are authorized too (this part was VERY easy!!! I can't believe it... > :)) Well, +Malattia....... I couldn't find WHERE to patch the .exe file...... can you tell me where and how you found it? BTW, I'm excellent on Assembly and pathetic on Windows, etc. How do I set a BPX to a mouse click? Eg I choose 'option A' by clicking the mouse, and that click would get me straight into SoftICE. TIA, WAFNA of FCA BTW - re maximizer, I managed to find a serial number (using SoftICE & meditation): 01001100010962, in case anyone's interested. However, now I forgot how I did it....... it took a long time!!!!!!! -----#2------------------------------------------------- Subject: IDA 3.7 key file For those who are too lazy to patch the IDA 3.7 non-crippled files to work w/o the ida.key file, here is it ********************************** k0X -----#3------------------------------------------------- Subject: sorry... SpectraLAB OK..... Hello all, ok, I eventually managed to crack Spectralab, and my patch is already on its way to USENET....... Speaking of which, I have an idea..... why don't we create a crackz group, like PC, and we spread our cracks around? The group could be called +HCU/ML. IMHO, creating a group would give 'credibility' to our crackz when posted around the net..... Incidentally, my question remains - is there a way to set up a BPX which manages to be activated by the press of a button? WAFNA -----#4------------------------------------------------- Subject: java search Yes, there *is* a Java search applet, I saw it once...... I will look for it again and post the URL as soon as I have it. WAFNA -----#5------------------------------------------------- Subject: Reply to kOX and an Ida Pro Update kOX; I have the full (4 Mb) version 5.0 of TASM which I can send to your E-mail address. Problem is, I don't know your E-mail address. The program handles 16 bit, 16 bit protected mode, and 32 bit code. The Ida Pro files you mentioned are just files to crack Ida Pro, as you probably already know, I'm after the FULL version to be sure nothing gets left out. After all, we'll all be using it, and why waste time re-cracking it every time Tark posts a "bug-fix" which replaces a file we've already cracked? UPDATE ON IDA PRO... Due to a very kind offer of webspace on FortuneCity's server from a fellow cracker, I will be setting up my own website, on the same server, tonight. Between the two sites, we should have enough room to transfer the entire program. So rather than wait for Tark to iron out the bugs, I will order the program on Monday. We can just get the "bug-fixes" from Data Rescues web-site as they get posted. It will probably take less than a week to arive at my door, via snail-mail, but as soon as I get the program, I will zip up all of the disks and begin uploading them. I'll keep you informed. One word of warning, I WILL NOT maintain the website. So be ready to download the program as soon as it arrives. I've heard that the site will be cancelled if not maintained for over 30 days. Maybe I heard wrong, but why take the chance? Hackmore -----#6------------------------------------------------- Subject: TASM 5.0 Attn kOX, all: I have a full version of TASM 5.0 on the original Borland floppies which I will be putting up on the web for download. I have created a "common" page at Fortunecities at the following URL: ****************************************************** the file names will be tasm1.zip tasm2.zip tasm3.zip about 1.4 MB apiece. Someday when I get time I will scan the Quick Reference so we can have an online Opcodes listing (with the hex equivalents...very handy). This web page is intended to be a transfer area; log on to Fortunecities as "hcu" with the password "crack" (not too hard to remember...) to upload files (up to 6 MB space). There are no rules so far (delete anything that gets old; it can always be re-posted), hopefully it will be up awhile (or I'll just make another one). mammon_ ______________________________________________________ Get Your Private, Free Email at ********************** -----#7------------------------------------------------- Subject: IDA PRO & more > Subject: Ida Pro > As you probably know by reading my essays on +Fravias pages, > and my contributions to this news letter, I firmly believe that, > TOGETHER, we can change the way things are in this world. Feel free > to hoard consumables, like food and clothing, but INFORMATION > should be a SHARED resource. Well, yes, but if the programmers can't sell the programs, how do they eat? I mean, ok, cracking is a challenge, etc etc., but, in fact we're all getting programs for free... - and the people who use our cracks do that because they don't want to pay for the proggies (or it's hard for them to get the softw.) Mind you, I'm not against cracking, but if *I* were to live on programming, I would make sure it would be something very hard to crack.... it would be packed with protections..... > I will be placing an order for Ida Pro within the next two > weeks. I'll have to wait until I recieve it, and then find a place > to upload it. So we should ALL get a chance to own it in two or > three weeks. Thanks!!! BTW, going back to programmers, there are *some* which deserve cracking...... M$ Project 98 is available as a 60-day trial version, it would be nice to make sure the public gets it free...... Another thing now, a question about this list - is there any criteria for accepting people in it? It seems to me that it has grown quite a lot, and I think we should at least make sure people know a little about cracking - or if they don't, that at least they have the right 'free spirit', that they want to learn. Otherwise, if it spreads enough, we'll soon have people posting messages like 'Pls crack this for me. TIA.', or 'how do I warez this program?', or 'how do I read .nfo files?', or "let's trade crackz'. WAFNA =====End of Issue 40====================================