Ü Ü ÜÜß ß Üß Ü ßÜÛÛÛßÛÛÛÛÛÛÛÛÛ ÛÛ ÜßÛÜ ßßßßßÛÛ ÜÛßÛÛ ÜÛÜÛÜ ßßßßßÛ Üß Üß Û ßßÛßÛÜßÜÜÛÛÛÛÛÛÛÛÛÛÛ ÛÛß ÛÛ ÛÛÜÜßß ÛÛ ÜÛÜÛÜ Ûßßßßßß ß ß ß ß ß ß ßß ßßßßßßßßßß ßßß ßÛ ßÛ ßßßßßßßÛ ß Û ßßßßßßÛ ß ß -=Hacking VAX/VMS=- -=Part Two: Principal Commands=- (* THIS FILE IS FOR INFORMATIONAL PURPOSES ONLY *) iNTRO : Well. You are in a VAX, but you don't know what options are available to you from there. You can always use the $help command, that is a regular feature on all VAX/VMS systems, but the information within this system is dependant and may have been modified by your system manager or operator, therefore it may not be as helpful as it could be, or it may be overly helpful... Note that the $ is the prompt, you should not type it in. I repeat, remember to use the help function if you have any problems remembering a qualifier or parameter. The help files are set up for specifically that purpose. It is a lot easier than on personal computers when you forget a parameter you have to look up in a book that is a couple of hundred pages long, and you normally send 5 minutes finding the book itself. This way, the help is right at your finger tips. Here are some basic commands. COMMAND EFFECT DELETE fn.type;version Delete a file PURGE/K=[n] fn.type Delete all but [n] recent version APPEND fn1.type fn2.type Append fn1 to end of fn2 CREATE/LIBRARY type libname fn Create a library EDIT fn.type Edit a file COPY fn1.type fn2.type Copy file fn1 to fn2 RENAME fn1.type fn2.type Rename file fn1 to fn2 TYPE fn.type Display fn SET DEFAULT [name] Establish default dir to [name] CREATE/DIRECTORY [name.sub] Create subdir [sub] in dir name SHOW DEFAULT Display default dir name DIRECTORY [name] Display files in dir name DELETE [name]sub.DIR Delete subdirectory .sub for dir name (must be empty) SHOW PROTECTION Display default protection for file creation SHOW TERMINAL Display terminal characteristics SHOW USERS Display current users SET PASSWORD Change password SET TERMINAL/DEVICE=VT100 Tell VMS you are using a VT100 terminal PROCESS CONTROL FUNCTION CTRL-C Cancel current operation CTRL-Y Interrupt CTRL-Z EOF, or exit CTRL-S Suspend terminal until CTRL-Q hit CTRL-Q Restart terminal output CTRL-U Discard current input line CTRl-X Discards current line and deletes data in type ahead buffer. The directory is the name of the catalog of names. The filename [fn] is the string of 1 to 9 characters indicating the file. The type is an extension to the name. The version is the number of times the file has been modified. Luckily the VMS system has defaults for most of those variables. If you leave out the version, the system will default to the most recent number, the largest number of that file, and the directory defaults to the current directory. So the majority of the time, filename.type is all that is necessary. The VMS operating systems protects its files by employing a UIC, User Identification Code. And each file is defined with protection for 4 different categories. The first category is the file owner, listed as owner. The second category is the group that the owner belongs to. Since the UIC is set up in format (group number, user number), then if the owner has a UIC of (049,002), then the users in the group number 49 are in the same group as the owner of the file. This category is listed as group. The third category is for those with special privileges, the system users, and it is listed as systems. The fourth category is for all users, and is listed as world. Each of those four categories will have from 0 to 4 privilege levels for each file. Those privilege levels are (R)ead, (W)rite, (E)xecute, and (D)elete. To show what protection is currently on files, type $dir/protection. This will give you the normal directory, with an additional column showing what it is currently set for. To change protection on a single file or set of files type $set protection filename.type /protection=(group=RW) This will set it to allow all group members to read and write. The most common .Com file within the VAX system is the Login.Com which is what is loaded as soon as you log in, it executes exactly as an autoexec.bat would on a MS-DOS system. It may be useful to know. The privileges necessary to do harm to the systems are: [but only a fool would harm a system...] CMKRNL CMEXEC These privileges enable a user to execute arbitrary routines with KERNEL and EXECUTIVE access mode. These privileges are needed when one is in need to access kernel structures directly. CMKRNL is the most powerful privilege available. SYSPRV A process which holds this privilege can access objects via the system protection. A process holding this privilege has the same access rights as the process running under system UIC. SHARE This allows a process to assign channels to nonshareable devices which already have channels assigned to them. This can be used to prevent terminal hang-ups and assign channels to system mailboxes. Pray to find an account with those structure, but it is unlikely that they will exist long once for you find an account with them unless you know what you are doing on the system. If you want to hide from the SHOW USERS command within the system, one of the ways is to set up your account with a process name of delete characters so that it goes back over and deletes the spot where your name would be. If you are accessing the system remotely, you can do this by pressing the backspace key after entering your username. You will see something like this: Subhuman^H^H^H^H^H^H^H^H Put the same number of ^Hs than there is characters in your username. This works well for anyone within the system from terminals in the area, but anyone else calling in by modem may see your account as the terminal will type back over itself, at 2400 or so baud, so what is happening is visible, however it is normally safe since a system manager would be at a station and not calling in. Unfortunately this way will not hide you from SHOW SYSTEM. Fiddle around and see if you can find your own ways to hide. As usual and especially so for this operating system, the only way to get good at it is to experience the hacking for yourself. ------ DEC : Digital Equipement Corporation VAX : Virtual Access eXtension VMS : Virtual Memory System ------