100% Unbootability on YMSG

[Ven0m]

YTK Support Forum :: View topic - How To Be Unbootable On ANY Chat Client Or ALG!

Well guys, now that a guy named LegendKiller (from Y!TunnelPro's forum) was so nice as to attempt to "Reverse Engineer" our BDP option in YTK Pro beta build 430 I'll tell you what's going on here (he looked at our external event logger and was able to figure it out).

Over the last several weeks Yahoo! has started "patching" their servers against the buffer boot exploit. Their "patch" consists of getting rid of the disconnection rule entirely when packet data is pending against you in the buffer. Nowadays if you were to be bombed with a booter you will NOT be disconnected regardless of what type the booter is (even if it's some hot new exploit it won't matter).

What does this mean? This means that of the 61+ servers to chat on 6 of them I've found to be protected against all boots. Here is the following list of them (I tested all of them and here are my results at the time of this post):

Unbootable Servers:

- cs1.msg.dcn.yahoo.com
- cs2.msg.dcn.yahoo.com
- cs40.msg.dcn.yahoo.com
- cs50.msg.dcn.yahoo.com
- cs55.msg.dcn.yahoo.com
- cs58.msg.dcn.yahoo.com

Now that the cat's out of the bag you can use one of these servers on ANY chat program for Yahoo! Chat and be completely unbootable only as long as there's no local program flaws in your choice of chat program. Our BDP option is a TCP window scale option (at the socket level) plus a randomization of these servers (from the pool of protected servers).

Who deserves to be credited solely for this discovery? Venom, Brock and myself. Venom/Mike made me aware of the fact that certain people weren't affected by the buffer boot exploit. After looking into a couple of things I logically deduced all the complexities down to the chat servers themselves that are providing this type of protection for you.

The rest is history...

This can be done with any ALG (YTK Pro or Y!TunnelPro) or any chat clients (YahELite, Yazak, Yahaven, Y!mLite, etc.) that allows you to select which server to log in with. All you have to do is set it, and log in. :)

[Torseq Tech.]

This is true folks. By using one of these servers you will be immune to server-side disconnects and boot flooding. You won't get knocked off the chat network on these servers even if you're on a dial-up connection.

[Stlouisx50]

Quote:

Originally Posted by Ven0m

YTK Support Forum :: View topic - How To Be Unbootable On ANY Chat Client Or ALG!

Well guys, now that a guy named LegendKiller (from Y!TunnelPro's forum) was so nice as to attempt to "Reverse Engineer" our BDP option in YTK Pro beta build 430 I'll tell you what's going on here (he looked at our external event logger and was able to figure it out).

Over the last several weeks Yahoo! has started "patching" their servers against the buffer boot exploit. Their "patch" consists of getting rid of the disconnection rule entirely when packet data is pending against you in the buffer. Nowadays if you were to be bombed with a booter you will NOT be disconnected regardless of what type the booter is (even if it's some hot new exploit it won't matter).

What does this mean? This means that of the 61+ servers to chat on 6 of them I've found to be protected against all boots. Here is the following list of them (I tested all of them and here are my results at the time of this post):

Unbootable Servers:

- cs1.msg.dcn.yahoo.com
- cs2.msg.dcn.yahoo.com
- cs40.msg.dcn.yahoo.com
- cs50.msg.dcn.yahoo.com
- cs55.msg.dcn.yahoo.com
- cs58.msg.dcn.yahoo.com

Now that the cat's out of the bag you can use one of these servers on ANY chat program for Yahoo! Chat and be completely unbootable only as long as there's no local program flaws in your choice of chat program. Our BDP option is a TCP window scale option (at the socket level) plus a randomization of these servers (from the pool of protected servers).

Who deserves to be credited solely for this discovery? Venom, Brock and myself. Venom/Mike made me aware of the fact that certain people weren't affected by the buffer boot exploit. After looking into a couple of things I logically deduced all the complexities down to the chat servers themselves that are providing this type of protection for you.

The rest is history...

This can be done with any ALG (YTK Pro or Y!TunnelPro) or any chat clients (YahELite, Yazak, Yahaven, Y!mLite, etc.) that allows you to select which server to log in with. All you have to do is set it, and log in. :)

How can this be done with YTK PRO I see CS. Servers from 101 + but not any of the ones you mentioned above. If you can enter the servers manually I'D like to know how.

[Stlouisx50]

Also I just tried those servers on Yahelite and they dont work. (non working servers)

[nakedzero]

These servers got patched already, dont they ?

[Ven0m]

All servers are patched now, and the ones listed above do not exist anymore. Yahoo changed them from the DCNs to the MUDs now. :)

[katrider900]

venom can u help me i keep gettin booted but dont no which client to use that will help