For Renegade 10/04/94 or Later:                            
                            
                            Step One
                     Taking out the easy way

     The easiest and most simple way to hack any board is through
there archive menu, where you can manipulate and work with
temporary zip files.  From here you can activate an ANSi Bomb to
format the Hard drive, or do many other things.  One being, making
yourself a file with users.dat and users.idx in it.  Not a good
thing.  With this, they have users, info, passwords, not to mention
yours, and they can do anything.  Your at the mercy of the hacker. 
Which is not a good thing, so to take out the easiest way, DISABLE
the Archive menu, from all users, and probably co-sysops.  Even
your own account should not have access, because all your archive
manipulation can be done in dos.  

Now in RG Cott has been trying to fix the problem and with many tests
I have run he has.  There are still other backdoors, but they are not 
as risky.  IT is now an option to Run the archive menu.  I do, but limit
there command access, they shouldn't need to add files to archives,  
basically use it for viewing readme.txt and file_id.diz files.  Be weary,
and ALWAYS be careful.

                            Step Two
                         The Secret Jump

     This is the secret jump technique used to jump from place to
place.  The one way to stop this is to assign Security Levels TO
every menu, and every important commands.  Most likely all of the
commands.  This prevents this from happening and the unlikely
chance of them jumping to your sysop menu.  Also, I have found out that
the secret jump can be used to activate commands such as *D (Drop To Dos)
So that if your security levels are not properly assigned a hacker
may drop to dos.

                           Step Three
                          The Co-Sysop

     Make sure you fully trust and know your sysops.  They can be
the one who leaks the password, or even hacks the board.  Don't
give them access to the menu editor, or Pseudo Dos, as they can
fuck up your HD real easy.  Trust them, but still be weary of them.
WARNING! WARNING! WARNING! WARNING! WARNING! WARNING! WARNING! WARNING!
If Co-Sysops have access to System Config they can screw your board
so fucking hard its disgusting!  DO NOT GIVE THEM ACCESS TO THIS OPTION
UNLESS YOU FULLY TRUST EVERY THING IN THEM.  

                            Step Four
                          The MCI Codes

     MCi codes are Renegades one fault.  Many things can be done
with MCi manipulation, so for this there is one way to prevent it. 
Use my handy batch file included in this.  It does not prevent them
from crashing the system, but it does reload it and hang them up. 
All safety.  It also notifies you.  Very important.  Very Deadly.

                            Step Five
                             Viruses

     The struggling hacker might prove to be a real idiot
sometimes.  And this might include them uploading a virus.  And if
you are unlucky enough to run it.  BOOM....so run a virus check on
everything.  THD ProScan Works Great, and I highly reccomend using 'REGD
Thunderbyte Antivirus.  Very Nice.

                            Step Six
                         Sysop Passwords

     Make sure sysops use passwords that are 100% original and that
they change them at least every 15 days.  That will keep the hacker
from getting these passwords.  Especially the sysop password.

                           Step Seven
                           QWK System

     Several methods of hacking can be done from here.  None are
potentially dangerous and the batch file should handle it fine.

                         Step Eight
                        Local Lockout
                           
   I mentioned how if Co-Sys's have access to the system config they
could mess you up.  Well they Can! They can change the NUP/SysOp Passwords
and then activate local security protection.  The board will still run
but if you want to work with it, you have to call in remotely, but
they would have changed the passwords so you couldn't get in.  Meaning
your board is gone.  Sorry..bye bye...  But thats life.

                           Step Nine
                               End

     Well as of now, I can't think of any more, so that's about it. 
This is version 2.0 and I will be writing updates as more bugs are
found.  As for now, good luck...

                              Ear
Please contact me on CoD with any questions.
+1(714)282-7644
Handle: Support
Password: Support


Join LeTHAL-NeT Today, Fill Out the included APP (in Lethal18.zip) in the
archive and send it to:
Terminal Illness
(714)282-7641
Handle: Lethal
Password: Lethal

