SexSwap 1.5.2002 no.226
News Tips Trix
SexSwap is part of Gamma
Entertainment
www.gammacash.com/frameindex.php3
This is the almost weekly
SexSwap News-Tips-Trix and it goes to all members of
SexSwap and SexSwap2 and AsianSwap and GaySexSwap and SexSwap2000 Banner
Exchanges. It contains information on SexSwap, Porn, Tips'n'Trix, and
software
reviews for the adult webmaster. I perform all literary stunts without
the use of
nets, safety-cables, spell checkers, or grammar fixers, and this tends
to leave
the reader in a state of bewilderment...you will get used to it.
REMOVAL INSTRUCTIONS ->
click www.sexswap.com/removal.html
-----------------------------------------------
GAMMA LINKS
(quick links to all our resources)
CASH www.gammacash.com
TGP tgp.erotism.com/
TGP BUILDER maximize.gammacash.com/buildgallery/
CONTENT www.gammae.com/webmasters-content.html
FREE HOST www.erotism.com/
WEBMASTER AREA maximize.gammacash.com/
NEWS www.gammae.com/gamma-news.html
CHAT chatboard.gammae.com/ubbcgi/ultimatebb.cgi
SEXSWAP www.sexswap.com
TRIX ARCHIVE trix.sexswap.com
-----------------------------------------------
I am slowly trying to recover
from this holiday adventure. Markets are open today..Woohoo! People
are forced back to slave for the man...Woohoo! And we get to bang on
the keyboards all day. Woohooo! Give me good old daily routine anyday
<- what a hermit :P I would have to say that the news has been just
awesome for holiday shopping. Even better than I anticipated. Now the
trick will be seeing if online merchants added this revenue to the bottom
line. I believe Amazon report Jan 22. I am not sure when Yahoo does.
I believe HotJobs accepted that offer from Yahoo. If I owned HotJobs,
I would be dancing a jig. Yahoo seems to be grasping at straws in my
opinion. Brujah ICQd me today that he think Yahoo is now charging yearly
for listing, rather than one time. If this is true...wow...death of
a major player search engine is near.
Some fun scripts in this
weeks letter. Steve is shring his domain harvesting script which are
unique and interesting. check them out. I have included my latest box
security script as well as ask your help in determining if I have once
again been hacked by the crooks :)
on with the show
|||||||||||||||||||||||||||||||||||||||||||||||
VEGAS BABY VEGAS
don't forget that in T-2 days it is the giant event that many adult
webmasters crave.....VEGAS BABY...woohooooo. I would have to predict
that it will be monster sized this year.
www.internext-expo.com/
As always, here are my vegas
tips and tricks for those of you attending.
1. BLUE MAN GROUP
if you can find tickets to this...it really is like nothing you have
ever seen and TOTALLY FUN. Best show in town if you ask me
www.blueman.com/ticketinfo/lasvegas.shtml
2. HELICOPTER RIDES
although a little more costly that some adventures, this is worth the
$200-$300. If you have never been in a chopper or to the bottom of the
grand canyon, it is simply amazing and not you regular vegas sort of
fun. Very rare and unique. They also pick you up at your hotel in van
or limo. Damn fun
grandcanyontourcompany.com/heloair.htm
3. MANDALAY BAY
If you want a sweet casino to gamble and drink at..it is hard to beat
this hotel. The women are all babes. The tables are all miles apart
so you have tons of walking room. There almost no baby strollers.....I
like rate hotels now by the lack of baby strollers =) Like walk around
Excalibur and you might think it is Disney Land. If you are looking
for old school vegas fun (broads, booze, and bourbon) hee hee haa...stick
to the fancy pads like Mandalay, Venetian, Bellagio, and even Paris
for a quaint small casino. If you want to be mobbed by kids with ice
cream, then try Circus Circus, Excalibur, New York New York. If your
are claustrophobic and have a death wish...go to New York New York ...a
zoo.
4. BLACK JACK
here is the chart for perfect play in a 6 deck shoe
www.lips.com/blackjack.gif
n the left and vertically are your two cards. less than 8 is always
HIT and 17 or above is always STAND and that is why they are not on
the chart. On the top is the dealer's up card. Try to remember this
:P
5. POKER
really, the best game in the house is poker but it is the most intimidating.
In poker, you are playing people more than you are playing the house.
You can have 3 hours of fun on $100 in poker but that is like 5 minutes
in some blackjack sessions. Get brave and have a Hold'em lesson if they
offer them. Or, get up bright and early and attend the morning hold'em
tourneys with a bud and you will have stories for a year. Your hands
will shake and you will want your mommy...all because you are playing
people which seems to be more nerve racking and exciting than playing
the house. Learn Hold'em...it is very very easy to learn...yet vary
vary difficult to master. One tip if you do play. Throw away 9 out of
ten hands. You need very good 2 starting cards to play.
|||||||||||||||||||||||||||||||||||||||||||||||
ONLINE SHOPPING STORIES TO
WRITE HOME TO MOM ABOUT
AMAZON MAKES GOOD ON 36,000
LAST MINUTE ORDERS from Richard
www.ecommercetimes.com/perl/story/15523.html
AMAZON.COM'S VIRTUAL REGISTER
RINGS 37.9 MILLION TIMES
finance.lycos.com/home/news/story.asp?symbols=NASDAQ:AMZN&story=25814435
ONLINE CHOPPING UP 86% -
WOOOHOOOOO
biz.yahoo.com/rf/011226/n26306779_2.html
HOLIDAY SHOPPING SOARS PAST
PREDICTIONS
dailynews.yahoo.com/h/nm/20011226/bs/media_yahoo_dc_1.html
ONLINE SHOPPING UP 8 FOLD
biz.yahoo.com/rf/011226/bswcq0008_2.html
CHEERY RETAIL SALES from
Richard
public.wsj.com/news/hmc/sb1009367978795035400.htm
HOLIDAY SHOPPING SPARKLE
biz.yahoo.com/rf/011226/n26313263_4.html
|||||||||||||||||||||||||||||||||||||||||||||||
BAG OF SALT TABLE O' TRIX
CONTENT
-------------------------------------------------------
ALTERNATIVE SOLUTION TO BRUTE FORCE ATTACK from Stephen
YAHOO - ARE THE CLUELESS sent in by Dan
AFFILIATE IDEA FOR PICTURE RATING SITES from G.E.
BUILD YOUR OWN 24 GIGAFLOP SUPERCOMPUTER FOR 6K from Delay
DOMAIN NAME HARVESTING SCRIPTS AND IDEAS from Steve
MORE NEWS
/******************************************
MOVIE STUDIOS SURFING A NEW NET WAVE from Evolbaby
www.cnn.com/2001/TECH/internet/12/26/film.internet.reut/index.html
WHEN AN INCUBATOR GOES BAD
from Poshspice
www.businessweek.com/bwdaily/dnflash/dec2001/nf20011221_2747.htm
RAZORFISH AND SCIENT TALK
MERGER from PoshSpice
www.zdnet.com/zdnn/stories/news/0,4586,2551843,00.html
SHAMELESS PLUGS - CAVEAT
EMPTOR
/******************************************
where is the infamous shameless plug submitter page hidden?
www.wildbikini.com/plugs/plug.php
|||||||||||||||||||||||||||||||||||||||||||||||
CHEAP HOSTING VIRTUAL &
DEDICATED- 300GB MONTHLY TRANSFER
Virtual Account= JUST $10 BUCKS! per month / dedicated 99.00 per month
www.acrobatdesigns.com/sexswapspecial.html
sales@acrobatdesigns.com
SOFTWARE HARDWARE
/*****************************************
PCCILLAN
I am considering trying this less known virus protection. I love their
online scanner. I have struggled with McAfee and even with Norton. I
may give this lesser know product a whirl in the near future. They have
been around a long time and seem to have a nice clear site with good
upates on the current virus attacks
www.antivirus.com/pc-cillin/products/pcc2000.asp
|||||||||||||||||||||||||||||||||||||||||||||||
STEVEN SPEILBERG LEGO STUDIOS
www.lego.com/eng/studios/default.asp
www.amazon.com/exec/obidos/ASIN/B00004TX75/
here is a way too cool toy that is as much fun for adults as it is for
kids. I gave this to my old pal "Gene La Machine and his kids"
for Christmas and they are peeing their pants over it. It is a lego
set designed to be used with teh computer to make action and still movies.
It is a mini movie studio and movie editing machine. The effects are
pro level and the sounds are funny. You can buy it online or even at
amazon.
Check out this rendition
of Monty Python's 'Camelot' from the Holy Grail. Clearly done by pros...but
still...WOW
www.lego.com/eng/studios/screening/movie.asp?title=montypython
TRIX
/******************************************
ALTERNATIVE SOLUTION TO BRUTE FORCE ATTACK from Stephen
Stephen writes:
In all of the brute force protection methods I have read none seem to
really
address the problem the right way.
What does the person trying to crack an account want? He wants a valid
password. Blocking the crackers isn't giving them what they want.
So instead of trying to block the cracker, let them in, or make them
think
they got in.
If the cracker is trying
to crack a username that is not valid on your
server you can just make that account valid but instead of pointing
it to
your real members area you point it to a "fake" area, maybe
with a bunch of
pop-ups. Not only does this stop the cracker, because for all his program
knows he has a valid login, but also the login might get posted to a
password trading website where you could make a few extra $.
Now the problem with the above is that if the cracker is trying to crack
a
valid account on your server you couldn't turn it into a "fake"
area login.
But you could, after detecting the cracker, just send them to your "fake"
area. This would make the cracker think he got a valid password but
really
its not.
(I don't know if the above
idea would help a really large website or if I
even know what I'm talking about. But I have seen variations of the
idea
done and working. So its worth a shot.)
Guru-Of-Gif writes:
I like Stephen's idea...can any of you programmers out there tell us
if this would work in real life and why or why not? Here is another
approach with that idea...why not seed your customer login database
with 1000 easy names and passwords. Then, the script will get a hit
almost instantly. This might also catch a lot of simple hackers and
send them to cash pages etc rather than true pages. I guess the question
is "when the brute force machine gets a HIT and matches, does it
shut off, or does it only shutoff when the hacker tells it to"?
please email me your comments on these ideas andy@lips.com
Here is one more thought...can
a method be created where the login page is constanly moving...maybe
using php. Therefore surfers don't see it moving...they just get to
it...but the script can never find it since it is not in the same place
twice? Or it is on the same html page, but how it talks to the DB is
altered once a second or something and this makes it impossible for
the brute force to use? Is this theory possible? Or would the scipt
still cause grief by pounding away?
UPDATE - PASSWORD SEEDING
+ IPROTECT
I was just on the horn shooting the shit with the Baron-Of-Bandwidth
and he told me two things related to BRUTE FORCE
1. PASSWORD SEEDING
he said "sorry dude, we have been doing this for over two years
now" ...hee hee haa. So yes, password seeding as I theorized above
does seem to be a very good idea. Dayne says they use common stuff like
admin, root, bob, tom and maybe the same word for password or a blank
password and then hand that off to a error 403 and the scripts turn
off once they get in generally.
2. iPROTECT
the baron says iProtect still works very well for certain password hacks.
He did say that over the years they have loosened the minimum tries
up do to proxies. He says they might go up to 20 or even 30 for some
AOL proxies.
www.digital-concepts.net/cgi-iprotect.html
|||||||||||||||||||||||||||||||||||||||||||||||
YAHOO - ARE THE CLUELESS
sent in by Dan
chatboard.gammae.com/ubbcgi/ultimatebb.cgi?ubb=get_topic&f=1&t=001841
Dan sent it this great post from the Gamma chat board. It seems that
a webmaster found that a Yahoo personal user had hotlinked to one of
his pics. Being kind, he told yahoo of the problem and got back the
standard B.S. "we cannot alter the personal add without proof"....like
look you idiots..he just gave you the exact proof...open the source
and see the link! The good news is that he is pulling 150 hits a day
from the hotlink!
Are the cogs in your braing
turning? Posts to Yahoo personals...links back to your site....each
add is 150 hits a day! WOW. (this may be illegal or immoral so consult
a lawyer first). Hee hee haaa, man am I soft in my old age. In sexswap
issue #12 I would of said "here is how you spam the fuck out of
yahoo personals" =) Now, let's say yahoo charges for personals.
Well they charge $600 to index an adult site and I sure bet you don't
get 150 hits a day...if personals were $20 a month...it might be worth
the fee. Would you pay $20 for 150 x 30 = 4500 hits and that is 0.004
or 4/10ths of a cent per click...man that is sweet math.
|||||||||||||||||||||||||||||||||||||||||||||||
AFFILIATE IDEA FOR PICTURE
RATING SITES from G.E.
G.E. writes
It seemed to me that if people were uploading their pictures to his
checkoutmypicture site, that these folks were probably very much into
dressing sexy, so perhaps an affiliateship with us would make sense
since we sell sexy clothing. Our affiliate ship page is www.exoticclothes.com/affiliate_signup.htm
|||||||||||||||||||||||||||||||||||||||||||||||
BUILD YOUR OWN 24 GIGAFLOP
SUPERCOMPUTER FOR 6K from Delay
Delay writes
Here is a cool article on building yourself a 24 gigaflop supercomputer
for about $6k. Also has a bit of info on wireless communications technology.
www.pbs.org/cringely/pulpit/pulpit20011227.html
|||||||||||||||||||||||||||||||||||||||||||||||
DOMAIN NAME HARVESTING SCRIPTS
AND IDEAS from Steve
Steve writes
Here are two fun scripts I wrote.
Actually, they are the same, just used for different things. The first,
whois.pl, I used to submit Goto search term suggestions to internic's
whois page. Basically, just copy the search terms and get them all in
a file called data.txt...
search_term_1
search_term_2
.
.
Search_term_n
run the script and get the
raw html files in one file called results.txt and then use something
like textpad to search through the file for the term "match"
to find any unclaimed domains. The other is the same....data.txt from
goto suggestion tool and formated as:
term_1a+term1b
term_2a+term2b
.
.
term_na+term_nb
so amateur nudes would be
amateur+nudes, etc. and results into results.txt and gives you a massive
file of the top bids for a given list of terms. Then change its extension
to html to view it. Only thing is, they both have the same in and out
files, so you should run them in different folders ;-) Hmmm...I'm not
sure if they will be of any use to you, but it is all pretty interesting.
Yes, if you want, you can use the scripts for the newsletter. But they
are kind of mangled for personal use, so I don't know how good they
will go over.
trix.sexswap.com/steve_scripts.zip
I tried to rewrite them this
week, but it didn't work. Basically, the idea is simple: use as input
the goto search term suggestion tool and run that through either internic
whois to find domains or the get current bid tool to find what people
are bidding on that term. Maybe easier, just put in the above paragraph,
say it is done by perl and if anyone wants the script, to email me at
webmaster@bluejp.com
and I will either send the script or run it for them, depending on the
response. Or post the scripts...either way...I am easy ;-)) Well, I
think the best reason to buy a domain is either to brand it or to get
se hits off of it, so I decided just to let the whole idea go about
finding terms for type-ins.
INTERESTING SITES
/******************************************
CAL TRANS HIGHWAY SPEEDS
just refound this site. It has been around since as long as I can remember.
It was one of the first cool net sites. See the traffic speeds before
you leave your home
www.smartraveler.com/scripts/lsamap.asp?city=lsa&cityname=Los_Angeles&area=la
www.dot.ca.gov/dist11/d11tmc/sdmap/mapmain.html
|||||||||||||||||||||||||||||||||||||||||||||||
PRIVACY.NET from SignGuy
tests and tells you about your computer and a host of other things
www.privacy.net/
GURU OF GIF
/******************************************
ADULTWEBMASTERSCHOOL
www.adultwebmasterschool.com
check this out...I am on
my Half-life server, wasting away the day as I always do...fragging
a bunch of my online pals. A few of us get to chatting and this lad
"|TheGods| Herb" says "I am an adult webmaster"
....small world. Well we pee'd our panties and couldn't shut up about
hosting, and affiliate programs and TGPs etc. It turns out that he runs
a site called Adult Webmaster School. If you are new to the adult sector,
you might want to give it a try. They charge a fee to access their info.
One nice thing about it is that they are there for tech support questions
each day and can do some hand holding. If you see Herb, tell him that
'Twid' aka the Guru-O-Gif says 'hi'
|||||||||||||||||||||||||||||||||||||||||||||||
CHECK OUT THE SNOW IN BUFFALO
from SignGuy
wow...like 6 feet! Reminds me of the Montreal Ice storm 2 years back
that shut down the city
www.msnbc.com/news/677761.asp?pne=msn
|||||||||||||||||||||||||||||||||||||||||||||||
AM I BEING HACKED - HELP!
I think once again those CROOKS are trying to infiltrate the Guru-O-Guf's
castle. They must of sensed that I was confused over the holidays and
have made their move. Now I might be paranoid so I need you security
experts to tell me if I am on drugs or really seeing something. I rebooted
my box .100 yesterday and then ftpd in remotely. I run the infamous
Gus Gustopherson Security Guard script that I wrote about a year go.
Let me see if I have a copy of that.
<on-a-tangent>
Hold on, I think I see a tangent coming. Probably 99% of reader's are
saying "why name it that". But if you lived in Minnesota,
or North of the border, you probably know the inside joke on this one.
You all remember John Candy? Do you also remember the TV show "Second
City"? It was on in some stated but not all with Bob and Doug,
the McKenzie brothers....dude...where I grew up...honeslty...everyone
looked and sounded exactly like that...no joke! The only difference
is that they never said "take off" but "fuck off"
and I think second city changed it to be ready for prime time =) Well
have you seen the movie American Pie and American Pie 2? Do you know
the dad...that is Eugene Levy. He was the infamous "Gus Gustopherson...Security
Guard" and he would wander about the town and investigate and give
folks tickets for odd things.
sctvguide.ca/cgi-bin/sctvmangler
</on-a-tangent>
GUS GUSTOPHERSON SCRIPT (great
way to watch a box)
change the email to yours and place it on a cron to run once a day and
you will get a nice report. You may have to edit sections if you box
get piles of activity since you will get too much info
echo "LAST LOG"
>> foo.spy
lastlog >> foo.spy
echo " " >> foo.spy
echo "CHANGED DOT FILES & DOT DIRS" >> foo.spy
find / -mtime -1 -name ".*" >> foo.spy
find / -name ".*" > dot2
diff dot1 dot2 >> foo.spy
mv dot2 dot1
echo " " >> foo.spy
echo "FAT FILES" >> foo.spy
find / -size +100000 >> foo.spy
echo " " >> foo.spy
echo "DISK %" >> foo.spy
df -h >> foo.spy
echo " " >> foo.spy
echo "MESSAGES TAIL" >> foo.spy
tail /var/log/messages >> foo.spy
echo " " >> foo.spy
echo "SYSLOG TAIL" >> foo.spy
tail /var/log/syslog >> foo.spy
echo " " >> foo.spy
echo "CHECK DAILY BACK-UP" >> foo.spy
ls -l /backdafuckup >> foo.spy
echo " " >> foo.spy
echo "ALTERED SYMBOLIC LINKS" >> foo.spy
find / -path /proc -prune -or -type l -mtime -1 -print >> foo.spy
echo " " >> foo.spy
mail andy@lips.com -s 100.REPORT < foo.spy
rm foo.spy
#
to be even more sly...hide
that code as a wierd name like .htm or .moree or something that hides
and does not seem like it is watching. Here is what has me spooked.
Gus Gustopherson sent me the following today...I will snip
CHANGED DOT FILES & DOT
DIRS
/tmp/.X11-unix
/tmp/.X0-lock
/tmp/.esd
/tmp/.ICE-unix
/root/.gnome
/root/.gnome/.gnome-smproxy-bYUpLl
/root/.enlightenment
/root/.enlightenment/...e_session-XXXXXX
/root/.enlightenment/...e_session-XXXXXX.snapshots.0
/root/.enlightenment/...e_session-XXXXXX.clients.0
/root/.ICEauthority
/root/.bash_history
1462c1462
< /root/.gnome/.gnome-smproxy-2NOcCn
---
> /root/.gnome/.gnome-smproxy-bYUpLl
1483a1484
> /root/.enlightenment/...e_session-XXXXXX.clients.0
this looks kind of funny and all? any thoughts? Did I trigger ICE? OK,
so I went further...what the hell are those e_session files? let me
show you their contents?
File 1
[CLIENT] 0 996 1280 28 0 0 0 1 8
[SESSION_ID] 1142923264000100994285600000002540008
[NAME] panel
[CLASS] Panel
[COMMAND] panel
[CLIENT] 130 0 767 151 0 0 0 0 4
[SESSION_ID] 1142923264000100994285800000002540010
[NAME] gmc
[CLASS] Gmc
[COMMAND] gmc
File 2
1001 0
11 999
100 KEYBINDINGS
102 7
427 Home
428 4
101 910
104 8 size
105
427 Insert
428 4
101 910
104 1 Eterm
105
427 v
428 4
101 910
104 43
105
427 Delete
428 4
101 910
104 7 logout
105
427 End
428 4
101 910
104 7 restart
105
427 Right
428 4
101 910
104 15
105
427 Left
428 4
101 910
104 16
105
427 Return
looks like a key logger?
I have never seen one so I do not know???
File 3
NEW: Eterm-0.8.9.Eterm
NAME: Eterm-0.8.9
CLASS: Eterm
DESKTOP: 0
AREA: 1 1
WH: 504 341
XY: 461 489
LAYER: 4
STICKY: 0
SHADE: 0
BORDER: DEFAULT
NEW: GnomeHelpBrowser.GnomeHelpBrowser
NAME: GnomeHelpBrowser
CLASS: GnomeHelpBrowser
DESKTOP: 0
AREA: 0 0
WH: 600 500
XY: 899 0
LAYER: 4
STICKY: 0
SHADE: 0
BORDER: DEFAULT
NEW: 0.Enlightenment_Pager
NAME: 0
CLASS: Enlightenment_Pager
what is a pager? Am I seeing
ghosts? is anything here to worry about? Would love to hear what you
security folks have to say and would like to share it with readers.
email andy@lips.com
|||||||||||||||||||||||||||||||||||||||||||||||
IS THAT JUAN PABLO MONTOYA
small butcher cobra story with me styling red race suit...hee hee haaa
www.cobralads.com/butcher37.html
|||||||||||||||||||||||||||||||||||||||||||||||
Hope you all had a happy
holidays! Drop me a note if you want to share a tip trick or idea. andy@lips.com
If you get back from vegas and have a webmaster picture area that you
want to share...please send it in...it is always fun seeing what went
on. Another vegas tip...try to find out about some of the smaller parties...they
are usually just as much or more fun that the big ones! Stick around
those sexy amateur babes!
those are my stories
chow mein wayne
Andy
andy@lips.com
|
