BBClient 3.0

call again and again and again

Hi guys,

Originally posted by praveen_bala@Mar 12 2006, 01:44 PM
hey guys im using sify.. but right now iam unable to use the linux client.. it gives me an error saying " Download Latest Version" ... my dialer version is 1.2  ..... but ppl in customer care giving me the same website address from where i downloaded this version.... any guys have any idea? any new client available?
[snapback]44312[/snapback]

Click to expand...

[/quote]
i'm getting the same error. I've called up their call centre and their tech team is supposed to "contact me in next 12-24 hours"... will wait and see.

I just installed Ubuntu 5.10 on my machine and am waiting for solution to sify's login problem...till then my Ubuntu is useless..because i dont have several of the required repositories!!

Hi AllI have subscribed to Sify a few days back. I dont like the ISP but in our area only Sify provider is there.I have a linux only desktop, so I can't login to the network. Contacted cutomer care, but they did not respond. So I started to reverse engineer the Sify BBClient.exe.Till now I have found the following things.LoginStep :1 Send IPAddress, MacAdress and Client Version, to get a session id.Step :2 Use the session ID (Unixtimestamp + ipaddress) from the reply to create a 256 character encrypted string, put it in "cons=%s&macaddress=%s" and push it to server.LogoutStep :3 Use the session ID obtained above, userid, ipaddress and macaddress, post it to the logout.php page.In the entire excercise the user-agent for carrying out webrequests should be BBClient.I used wget for trying this.I guess they are using some sort of symmetric encryption with sessionid as the secret key.More details shall follow once I crack the encryption.I shall make proof of concept shell scripts and post them in my website soon....

Great work . There are many GNU users stuck up like you due general apathy of sify towards a linux client. Many of my friends are using sify as they have no other option and are stuck with windows to use the net . Please work on it and also give out your site, I dint find it mentoned in your post.Actually I normally dont like such public discussions on reverse engineering etc , but here the case is different as Sify dont give a shit to linuxusers and provide virtually no support to them. Atleast my provider gives me a separate account to use from linux and it works!!Also I take this opportunity to say that I urge all people to bombard SIFY with mails so that they fix this partial treatment of linux uxers.

QUOTE(cryptobuster @ May 15 2006, 02:20 PM) [snapback]51344[/snapback]
More details shall follow once I crack the encryption.

I shall make proof of concept shell scripts and post them in my website soon....
[/b]
Hi there. I too am a Linux user. I dont use windoze much. I too was trying to crack this but unfortunately ( or should I say fortunately? ) I dont have the "pleasure" of a Sify connection so there was little or nothing I could do about it. Please keep me updated. Once you have the details of the protocol figured out I can help you in making an Open Source client for GNU/Linux. I have about a month of exams so I cant be of much help until June 15th.

Hi guysgood news and bad newsgood news is sify customer care has responded after 24 hrs and they lifted the version check on my login ID....So now I can login on the sweet old GNU/Linux client on their website.bad news is I have stopped working on the reverse engg. workHere are the details from my R&D work and other pointers from my side to crack the encryption😛re Requisites:VMWare for linux ( a trial version is fine )Windows 98 guest for VMWare on linux host.Sify Client from sify downloaddialer pageethereal packet sniffer for linuxapache server for linuxProcedure:A. I have installed sify client in guest w98 machine and sniffed the traffic frm my linux host and concluded the following sequence:Message #1 is sent to the server, server returns Msg #2 with a sessionID in the reply XML (xml is truncated to make the posting small)Then the client calculates a hash or encrypts the username,password info using the sessionID and posts the msg#3 to the server.Then the server returns a msg#4 welcoming us to the internet.#1 15:59:23.120 202.144.65.70:8090 POST / HTTP/1.0Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, */*Accept-Language: en-usContent-Type:application/x-www-form-urlencodedAccept-Encoding: gzip, deflateConnection: CloseContent-Length:69User-Agent: BBClientHost: 202.144.65.70macaddress=&srcip=192.168.238.128&version=3.22&os=98#2 15:59:23.340 202.144.65.70:8090 HTTP/1.1 200 OKDate: Sun, 14 May 2006 16:22:13 GMTServer: ApacheX-Powered-By: PHP/4.4.0Set-Cookie: PHPSESSID=d50fc5fd8d84775bf51fe224f3349cd0; path=/Expires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0Pragma: no-cacheContent-Length: 3973Connection: closeContent-Type: text/html......1147623733.....14-05-2006 21:52:13#3 15:59:53.550 202.144.65.70:8090 POST /bbandclient_v30/validatelogin.php HTTP/1.0Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, */*Accept-Language: en-usContent-Type:application/x-www-form-urlencodedAccept-Encoding: gzip, deflateConnection: CloseContent-Length:290User-Agent: BBClientHost: 202.144.65.70cons=801c11f8976c6f38a78ad51486f9411d801c11f8976c6f38a78ad51486f9411d801c11f8976c6f38a78ad51486f9411d801c11f8976c6f38a78ad51486f9411d801c11f8976c6f38a78ad51486f9411d801c11f8976c6f38a78ad51486f9411d801c11f8976c6f38a78ad51486f9411d801c11f8976c6f38a78ad51486f9411d&macaddress=#4 15:59:54.100 202.144.65.70:8090 HTTP/1.1 200 OKDate: Sun, 14 May 2006 16:22:43 GMTServer: ApacheX-Powered-By: PHP/4.4.0Set-Cookie: PHPSESSID=f2cbf430fa8863498c3eecac843b86b3; path=/Expires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0Pragma: no-cacheConnection: closeContent-Type: text/html0Login successfulXXXXXXXxxxxxxxxxx.....B. Logout procedure.Once logged in we should save our session ID to send a logout request as in the following request#1 15:59:02.360 202.144.65.70:8090 POST /bbandclient_v30/logout.php HTTP/1.0Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, */*Accept-Language: en-usContent-Type:application/x-www-form-urlencodedAccept-Encoding: gzip, deflateConnection: CloseContent-Length:117User-Agent: BBClientHost: 202.144.65.70username=&srcip=&macaddress=&version=3.22&sessionid=1147623034#2 15:59:02.410 202.144.65.70:8090 HTTP/1.1 200 OKDate: Sun, 14 May 2006 16:21:52 GMTServer: ApacheX-Powered-By: PHP/4.4.0Set-Cookie: PHPSESSID=3283dfe48e7dacf6199fb9e30660c135; path=/Expires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0Pragma: no-cacheConnection: closeContent-Type: text/html130150Logout successfulC. Where to go from here:1. Make a php page that spews out the reply XML with a session ID = 1 and host it in your system2. Add an IP address to your system to match your server IP address and disconnect the LAN cable.3. Make the client in the vmware windows98 to login. record the traffic in ethereal.repeat the experiment with session ID =0 ,2 ,3 ,4 etc....and observe the "cons=a34534bae2342ec....: section and try to figure out what kind of an encryption it could be...My view is that it could be a simple symmetric encryption....Also from the fact that they r using PHP at the server side, most probably they should be using cryptographic / hash function provided in PHP, refer to PHP docs for any clues.It could also be a simple XOR of the sessionID and the credentials.But we should remeber that the crypto/hash function returns a 256 character string.Now It's time to say good bye to the forum as my woes have ended with Sify guys....Please feel free to contact me thru this forum for any extra inputs....

I am unable to connect to sify using the dialer 3.22 under windows 2000 Proff.It says some MSVCP60.DLL windows bad iage or corrupt . so formated the HDD and reinstalled the same OSthe local sify people instists on saying the usual thing that the OS is corrupt. The same connection was working in other OS a day before. So the connectin and the PC both are ok (both New) can someone shed some light on this ?

QUOTE(peelpress @ Sep 21 2006, 03:25 AM) [snapback]62817[/snapback]
I am unable to connect to sify using the dialer 3.22 under windows 2000 Proff.

It says some MSVCP60.DLL windows bad iage or corrupt . so formated the HDD and reinstalled the same OS

the local sify people instists on saying the usual thing that the OS is corrupt. The same connection was working in other OS a day before. So the connectin and the PC both are ok (both New) can someone shed some light on this ?
[/b]

its a vb runtime file you don't have to fomat you pc lols jsut install vb runtime download it from lots of site like dll.com or students hang out you can sole thsi prob.. friend

The Sify Secure authentication algo is fairly trivial. My other post might interest you : https://broadband.forum/sify-broadband/15416-steppenwolf-takes-sify-encryption-algorithm/

You can find the modified algorithm on my website (C# implementation)
I have made a new command line client. u can download it from
pradeep.chandiramani - Sify Broadband command line client