• TODO
  • find that list-of-document-number-prefixes, and what they mean, from the downtown location, and write them down somewhere
  • find a computer that has a working document-viewer, and FULLY DOCUMENT everything about how that document-viewer works (I need to use this information to try to get the document-viewer working on other computers)
  • [HUMINT] get in good with the M3 guards, see if they'll let me in early, like they let the other legal aides in early
  • [HUMINT] get in good with the legal aides
    • ask them if the document-viewer works on the internal-room-computers
    • ask them if they can let me on the computers for 10 minutes
  • [HUMINT] ask one of the people at the counter if it's possible to file a ticket with IT to get the counter-computers fixed, so that the document-viewer there works
• hacking
  • The Windows environment IS heavily locked-down via the Windows Group Policy editor, however, there are some gaps the group policy.
  • if you can get to Notepad, you have some extra freedom
    • possible ways to open Notepad:
      • Communication>Connection Log
    • Sometimes you can open files in usually-restricted areas. For example, c:\program files\passport\publiclogin.mac is the login macro, which contains the login username
    • You can always save files on the desktop. You can save a batch file that simply runs "cmd.exe", after which, you're pretty unlimited in what you can do.
  • the best way to get full access to the computer is to:
    1. use the notepad trick above
    2. create cmd.bat on the desktop, with this contents:

       cmd.exe
       del cmd.bat

    3. click on the "cmd" icon that showed up on the desktop
    4. the first time you run this on a computer, go to Alt-Space > Properties > Colors, and change "Screen Text" and "Screen Background" so that it's white-text on very-light-gray background. This makes it somewhat more difficult for others to notice that it's a DOS box.
  • the auto-login user+pass is stored in plaintext. You can see it via:
    reg query "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon"
  • [random note] if USB mass storage is disabled, it's possible that this will restore it:
    sc queryex usbstor
    sc start usbstor
    sc config usbstor start= boot

(for what it's worth, they use the Zephyr Passport software (http://zephyrcorp.com) to do IBM 3270 emulation to connect to their mainframe)