The Dargoth1234 challenge

[Ryan]

Some guy named... Dargoth1234 posted the following on the Stratics forum:

Quote:

Originally Posted by Dargoth1234

Dont' use 3rd party progs that you have absolutely no clue as to what they do or how they work.

Me and a couple of friends were playing with .net files over the weekend at a computer lab on campus. We decided to pull apart a certain program people are using that is similar to UO Assist (and free).

Guess what?

Account name and password CAN be passed along at the developers discretion.


For those folks that were hacked due to using this program over the past few months....

Cry more NoObS =P

Although I'm sure NO ONE that was hacked will state they used any 3rd party apps.. EVER... lol

<---just.. laughing at the thought of those folks using a wanna-be UO-Assist program to 'help' with their l33t skillzors losing their ubber gear.. or deal with their large vendor houses ending up having their vendors dismissed and such... loads of laughs =)

Ya get what ya pay for at times I guess.. =P (like... ya pay nothing.. in the end... hehe you HAVE nothing.. =))

I responded with:

Quote:

Originally Posted by Ryan McAdams

Your claims are baseless. You’re coming onto this site, and you’re bashing this program because you probably can’t figure out how to start the installer.

What you’ve said doesn’t even make sense. Run the program let it sit idle and tell me what network sockets it is using to allow us to get your account name and password at our discretion. For your claim to be true, we would have to have a way to communicate with the application to say… OK we want this password.

You’re making up lies, and being extremely rude.

If you really are so smart as to have decompiled the application I implore you to post source code of the alleged backdoor you claim is in the application. Considering the sheer number of downloads it receives and the number of times its been virus scanned, the number of users who have ripped the code apart and written plug-ins for it and so on and so forth, you’re the only person who’s actually tried to say there’s a backdoor in it.

As for it being a ‘wanna-be UO-Assist program’…. It blows UOA out of the water... end of story. If EA still allowed people to join their UO Approved program we’d submit this application to them for review and approval and not charge a dime. We don’t do this to make money we do it to have fun. People like you that pretend like you know what you’re talking about boggle my mind.

As I’ve said please feel free to back up your claims with postings of source code, I’m sure that would be fun to see.

Feel free to email me if this thread gets deleted at ryan@runuo.com

Have a great day,
Ryan McAdams

I gave him this link to feel free to try to prove it.

Let's see if hes got what it takes.

[Ryan]

The stratics thread which I am sure will get deleted is:

http://boards.stratics.com/php-bin/u...ch=&PHPSESSID=

[tobyjug]

roflmao
I was just this second reading that thread. Refreshed my browser to see if there were any more replies and bang 'Access Denied'

[Ryan]

Quote:

Originally Posted by tobyjug

roflmao
I was just this second reading that thread. Refreshed my browser to see if there were any more replies and bang 'Access Denied'

Of course the thread got whacked...

Stratics has always been that way

This guy's a moron.

[Ryan]

Well anyway...

The thread got whacked... Stratics moved it to an internal board called "Evidence".

Which I am glad they did.

The guy said he's taking the code to the FBI... which makes me laugh considering Zippy works for a goverment agency.

Anyway... today's laugh is over.

The guy doenst have a set of nuts, makes shit up and then hides behind lies.

[Zippy]

Yeah that's pretty hillarious.

On this reguard, I'll gladly post any section of Razor source anyone requests that's supected of being a back door. Of course, no one will, because such sections do not exist.

The only information Razor itself transmits is a randomly generated number in order for statistical tracking. This number is transmitted when Razor checks to see if its the latest version, and thus this can be disabled by disabling the version checking. The source of this segment is posted below for clarity.

This is the only code in Razot that communicates with anything other than the client and the OSI/RunUO server connected.

Code:

private static void CheckVersion()
		{
			int uid = 0;
			try
			{
				string str = Config.GetRegString( Microsoft.Win32.Registry.LocalMachine, "UId" );
				if ( str != null && str.Length > 0 )
					uid = Convert.ToInt32( str, 16 );
			}
			catch
			{
				uid = 0;
			}
			
			if ( uid == 0 )
			{
				try
				{
					uid = Utility.Random( int.MaxValue - 1 );
					if ( !Config.SetRegString( Microsoft.Win32.Registry.LocalMachine, "UId", String.Format( "{0:x}", uid ) ) )
						uid = 0;
				}
				catch
				{
					uid = 0;
				}
			}
			
			try
			{
				WebRequest req = WebRequest.Create( String.Format( "http://www.runuo.com/razor/version.php?id={0}", uid ) );

				using ( StreamReader reader = new StreamReader( req.GetResponse().GetResponseStream() ) )
				{
					Version newVer = new Version( reader.ReadToEnd().Trim() );
					Version v = Assembly.GetCallingAssembly().GetName().Version;
					if ( v.CompareTo( newVer ) < 0 ) // v < newVer
					{
						if ( MessageBox.Show( Language.GetString( LocString.NewerVersion ), "New Razor Version", MessageBoxButtons.YesNo, MessageBoxIcon.Information ) == DialogResult.Yes )
						{
							/*
							string args = String.Format( "{0} Razor.exe", v.ToString() );//, Process.GetCurrentProcess().ProcessName );
							Process.Start( "Patcher.exe", args );
							Process.GetCurrentProcess().Kill();
							*/
							MainForm.LaunchBrowser( "http://www.runuo.com/razor/" );
						}
					}
				}
			}
			catch //( Exception e )
			{
				//LogCrash( e );
			}
		}

[Arvoreen]

Hmm. . . .maybe he got confused when checking out the "Automatically open doors" option?

I've used both UO Assist and Razor, and Razor certainly does blow UOA away. And it's free. I suppose I've never scrutinized the network activity that Razor produces, but quite honestly, I don't think so many people would use it if it had a hole like that in it. Besides, why would the RunUO staff give a rat's ass about getting people's passwords?

AND. . . .these messageboards are way cooler than the tugsoft site. Not that I can talk, I can't make websites for beans :P

*these are my opinions, I'm not forcing anyone to believe them. Just trolling