This discussion has been locked.
You can no longer post new replies to this discussion. Posts are automatically locked, when no new replies have been made for a long time. If you have a question you can start a new discussion.

Sven Gustavson Wanted

I lost contact to Sven Gustavson (svenny@fnmail.com). If anybody knows his new e-mail then please say me const@land.ru

  • Constantin,

    probably Navision couldn't laugh about his efforts on cracking their license file and he rushed into some problems ?

    Never mind, selling his cracking capabilities, like he did, does not always lead to wellness and much money, sometimes this causes also pain :-)

    Torsten


    quote:
    Originally posted by constis:

    I lost contact to Sven Gustavson (svenny@fnmail.com). If anybody knows his new e-mail then please say me const@land.ru





  • Correct. And I'm sure that Navision and the BSA would like to know where to find as well!

    He is not someone you would like to be associated with.

    Best regards, Erik P. Ernst, webmaster
  • Hi!

    It is always pleasant to hear good words about itself...
    Probably, Navision and BSA in the sleep see, as will catch me... -)))
    By the way, I did not crack the license file of Navision Financials, I went by another way and developed the small utility, during the use by which original program "forgets" some license limitations. And another utility makes it possible for any user to login to database with the Superuser rights.
    I must say that authorization system into Navision Financials is realized sufficiently weakly. Even in the programs from Microsoft Office everything is made much more reliable.

    Sven.

    P.S. I hope that you will not cancel my registration on this forum... -)



    Edited by - GoodMan on 2001 Oct 06 19:23:59
  • By the way, I have read answer to my message, but noted the misprint in my message. This answer disappeared after the correction of misprint. I'm sorry, these are the error of the forum control script, but not my malicious design... -)

    Sven

  • What's your explanation about ? About not only using a cracked license file but a much better solution ? It doesn't make any difference whether you cracked the license file or the authorization system, whether you patched the FIN.EXE or disable the system by a hook. The result is the same: a bypass of an access restriction covered by Navision's rights and license.

    If you think that the authorization system is weak and you can proof this, why not showing this to Navision ? I can tell you why: because you are selling your crack (your words, you personally called it a crack) to your own profit and now you are trying to justify this by the access system beeing weak ? How do you call what you are doing (selling the crack) ? Business ? Oh man, come back to reality...

    Torsten

    quote:
    Originally posted by GoodMan:

    Hi!

    It is always pleasant to hear good words about itself...
    Probably, Navision and BSA in the sleep see, as will catch me... -)))
    By the way, I did not crack the license file of Navision Financials, I went by another way and developed the small utility, during the use by which original program "forgets" some license limitations. And another utility makes it possible for any user to login to database with the Superuser rights.
    I must say that authorization system into Navision Financials is realized sufficiently weakly. Even in the programs from Microsoft Office everything is made much more reliable.

    Sven.

    P.S. I hope that you will not cancel my regis



  • I rather doubt this is the real guy. I think this is a hoax. The FBI would trace his IP address so fast and I doubt he is that stupid... Of course, we can only hope...
  • Well. We shall leave a problem of detour of the license restrictions.
    We shall study the database user's access authorization system. At input by the username and the password the system forms inquiry such as "SELECT * FROM USERS WHERE USERNAME=XXX". If the inquiry returns any object the system will transform the entered password and compares to the information written down in this object. At concurrence access is authorized. At updating inquiry to "SELECT * FROM USERS WHERE USERNAME<XXX (1 byte of FIN.EXE), and also at change of the program code so that system compared the received object with itself (1 more byte), the bad person at input of a name "zzz" will get access with the rights of user "Willy", at input of "Willy" - access with rights of Timmy, and at input of "Timmy" - access with rights of SUPERUSER!!!
    As far as I have understood, you pay Navision for reliable system of authorization...
    If someone still doubts, that it is possible, create small base with the user "VERY_ARTFUL_USER" and the password "VERY_LONG_AND_ARTFUL_PASSWORD". Pack with any archiver and send this base to me. I shall change the password of the user to VERY_SHORT_AND_DUMB_PASSWORD, and also I shall add user Svenny with Superuser rights.

    Sven

    quote:
    Originally posted by todro:

    What's your explanation about ? About not only using a cracked license file but a much better solution ? It doesn't make any difference whether you cracked the license file or the authorization system, whether you patched the FIN.EXE or disable the system by a hook. The result is the same: a bypass of an access restriction covered by Navision's rights and license.

    If you think that the authorization system is weak and you can proof this, why not showing this to Navision ? I can tell you why: because you are selling your crack (your words, you personally called it a crack) to your own profit and now you are trying to justify this by the access system beeing weak ? How do you call what you are doing (selling the crack) ? Business ? Oh man, come back to reality...

    Torsten




  • Hi all,
    i think that people is getting an exagerate reaction to sven's crack. The reality is really different to what people usually thinks about cracks and so...

    a) BSA suks.... BSA is an organism made by powerful companies to gain more money from bad software: Forcing you to buy all software you would like to try instead of just trying the software and buying it if you find it useful for your purposes. They force you to first buy the software, then test it and then, if you find it unuseful or not as good as it was suposed to be, lose your money as there are usually no refunds on working but unuseful software.

    b) Cracking programs is an old tradition, specially when you're a student with low economical resources and you want to play (at least for an hour) with almost the new games before buying one of them. Usually you find that only one percent of the games are good enough for keeping you playing for more than an hour. The same can be applied to commercial programs, where most of them are not good enough for the price they are costing. If you can't test them, you're losing your money and helping bad software instead of forcing companies to increase the quality of their products (example of crap software only useful for using the cd's for decoration is windows XP)

    c)
    quote:
    Jim HollcraftI rather doubt this is the real guy. I think this is a hoax. The FBI would trace his IP address so fast and I doubt he is that stupid... Of course, we can only hope...
    Jim... FBI is only authorized to "play games" INSIDE the States. If Sven is using other countries for the distribution of his crack, the FBI cannot touch him... excepting if he's selling his crack inside the states. Remember also that different countries have different legal treatment to the cyber-crimes, and there are some countries where copying/cracking and selling copied/cracked software is not a crime...

    d) Cracking programs is the only way to improve their security: if noone tries to crack the program noone will try to improve it security. The fact is a good software design should include some hard-testing such as people trying to break into all the security aspects of the program (especially when we're talking about a serious program for keeping all our company information). Instead of contacting BSA what Navision should do is contacting Sven and trying to improve their security instead of just trying the guy that finds the hole... as probably there are more people than can find the same hole...) The problem is that companies try to keep their security catching the guy's who are able of breaking it instead of using more money on security improvement.

    e) If you're worried about the crack, you better should be worried about serious security bugs in Navision, such the one that allows any user with restore capabilities to access all data on navision using a database backup file.... that's a bug reported a long time ago that's still on Navision....

    BTW... i like your t-shirt, Sven... nice Netscape logo... ;)

    Regards,

    Alfonso Pertierra (Spain)apertierra@teleline.es


    Edited by - apertierra on 2001 Oct 11 02:17:41
  • Come on guys. Get a life!

    In response to the previous post:

    A.
    BS (B*ll S*it)

    B.
    True, but that does not make it legal.

    C.
    True, and consider the implications on YOUR long-term salary, if everybody used pirate copies. Not to mention what will happen to the next generation of our beloved products, if the developers don't make money.

    D.
    Yeah right! And Sven does this for fun only?? Wake up!

    E.
    You're right. This SHOULD have been fixed. However, it's not and until it gets fixed restrict other users than the trusted ones from actually MAKING a backup in the first place - that IS possible, you know. Hey wait a minute, only trusted users are allowed to make backups anyway!?!? Aren't they? Did you forget that when you implemented? Shame on you! Now, go and change it immediately and at the same time, make sure that the physical security around the backup media is also in order! :-)


    Lars Strøm Valsted
    Head of Project and Analysis

    Columbus IT Partner A/S
    www.columbusitpartner.com
  • Hi, Lars...
    the all-time old discussion about hacking/cracking morality would take too long... (lol) is a theme that always take too long.
    Just for resuming, remember that there is also a "hacking"-ethic:
    a) Support the good software: if you test a program and you like it or you're planning to use it, buy it.
    b) make all software available for testing for free... (selling cracks is not on that ethic).

    The only thing about Sven's crack i'm really versus is the fact that he's selling that crack. Cracks are not supossed to be sold... that's strictly piracy
    :)


    Alfonso Pertierra (Spain) apertierra@teleline.es


    Edited by - apertierra on 2001 Oct 11 02:18:24
Related
Recommended