Post by twoface on May 2, 2002 17:40:22 GMT -5
This is a tutorial on advanced locking, its a bit more tricky but is is harder to break.
Please read the basic tutorial first.
Reserved Words Locked Dir
As I said in the last section those directories can be easily cracked. This is done by a method called "cloning" which I'm not going to go into here because I am focusing on locking dirs, not cracking them. All you need to know is that it exists and is very easy to do. There are some dirs that cannot be cloned a NT file system because they use reserved words in their name. The most common reserved words are:
CON, AUX, COM#, LPT# , PRN, NUL
In LPT and COM the # should be replaced by any number you wish, this makes it possible to have a vast number of un clone-able locked folders. To create/remove one of these directories you follow the procedure in the Simple Locked Dir section replacing "locked" with one of the reserved words above. If you try to create a directory with a reserved word without the spacing at the end the server will give an error message usually saying that it's an illegal filename.
Special Locked Dirs
There are also a few other locked dirs that are a little more tricky to crack and don't use reserved words. These dirs need to be created a different way because of leading spaces in the names, look closely for the creation differences. The dir we will try can be made as follows:
./[sp].[sp]locked[sp].[sp]/[sp]/ - [./ . locked . / /]
./[sp].[sp]locked[sp].[sp]/access - [./ . locked . /access]
Notice the leading "./" in the dir name, well the "." is a special command that tells the server to use the current directory, if that is omitted then the next character, "/", tells the server to use root in which case your folder would be made in the root of the server. The "/" still needs to be after the "." to signify the beginning of the dir name so the leading space is included, although it is not necessary in this example it just adds and extra touch to the dir. The reason this is a special dir is because it cannot be cloned. If you try to create another folder without the place holder "/ /" at the end the "." will be dropped along with spaces because it will assume the "." is for a file extension.
It is also possible to create a folder that is invisible, meaning it cannot normally be viewed in the directory structure of a pub. To do this we create a directory consisting only of spaces like this:
./[sp]/[sp]/ - [./ / /]
./[sp]/access - [./ /access]
Now if you are in the directory you created this from you will not see any directories because the FTP client does not interpret the blank folder properly, but if you put the folder in the bar on the top and hit enter it should take you to it. Also for some reason this does not create a real locked folder, if you go up one folder normally the server wont be able to display a dir listing, but with the blank folder it can. You can put as many spaces as you want in the first folder, just remember how many you made because you need to use the exact same amount to access it.
The credits for this tutorial goes to jtpfxp.
Please read the basic tutorial first.
Reserved Words Locked Dir
As I said in the last section those directories can be easily cracked. This is done by a method called "cloning" which I'm not going to go into here because I am focusing on locking dirs, not cracking them. All you need to know is that it exists and is very easy to do. There are some dirs that cannot be cloned a NT file system because they use reserved words in their name. The most common reserved words are:
CON, AUX, COM#, LPT# , PRN, NUL
In LPT and COM the # should be replaced by any number you wish, this makes it possible to have a vast number of un clone-able locked folders. To create/remove one of these directories you follow the procedure in the Simple Locked Dir section replacing "locked" with one of the reserved words above. If you try to create a directory with a reserved word without the spacing at the end the server will give an error message usually saying that it's an illegal filename.
Special Locked Dirs
There are also a few other locked dirs that are a little more tricky to crack and don't use reserved words. These dirs need to be created a different way because of leading spaces in the names, look closely for the creation differences. The dir we will try can be made as follows:
./[sp].[sp]locked[sp].[sp]/[sp]/ - [./ . locked . / /]
./[sp].[sp]locked[sp].[sp]/access - [./ . locked . /access]
Notice the leading "./" in the dir name, well the "." is a special command that tells the server to use the current directory, if that is omitted then the next character, "/", tells the server to use root in which case your folder would be made in the root of the server. The "/" still needs to be after the "." to signify the beginning of the dir name so the leading space is included, although it is not necessary in this example it just adds and extra touch to the dir. The reason this is a special dir is because it cannot be cloned. If you try to create another folder without the place holder "/ /" at the end the "." will be dropped along with spaces because it will assume the "." is for a file extension.
It is also possible to create a folder that is invisible, meaning it cannot normally be viewed in the directory structure of a pub. To do this we create a directory consisting only of spaces like this:
./[sp]/[sp]/ - [./ / /]
./[sp]/access - [./ /access]
Now if you are in the directory you created this from you will not see any directories because the FTP client does not interpret the blank folder properly, but if you put the folder in the bar on the top and hit enter it should take you to it. Also for some reason this does not create a real locked folder, if you go up one folder normally the server wont be able to display a dir listing, but with the blank folder it can. You can put as many spaces as you want in the first folder, just remember how many you made because you need to use the exact same amount to access it.
The credits for this tutorial goes to jtpfxp.