Difference between revisions of "Protocols/OSCAR/SNAC/OSERVICE PROBE REQ"
(Created page with "{{Protocols/OSCAR}} {{Protocols/OSCAR/SNAC/Stats |origin={{Protocols/OSCAR/SNAC/OSERVICE__PROBE_REQ/Origin}} |name=OSERVICE__PROBE_REQ |id=0x0001, 0x001F |service={{Protocols/...") |
|||
(One intermediate revision by the same user not shown) | |||
Line 19: | Line 19: | ||
=== SNAC Data === | === SNAC Data === | ||
Unconfirmed: This SNAC contains no data | Unconfirmed: This SNAC contains no data | ||
+ | |||
+ | === From Aleksandr Shutko: SNAC(01,1F) server client verification command SNAC(01,1F) OSERVICE__PROBE_REQ === | ||
+ | |||
+ | <table width=640 cellSpacing=0 cellPadding=0 border=0> | ||
+ | <tr> | ||
+ | <td> | ||
+ | <br> | ||
+ | The verification request contains eight bytes. The first four are an offset, | ||
+ | the second four are a length.<br><br> | ||
+ | The offset is an offset into aim.exe when it is mapped during execution | ||
+ | on Win32. So far, AOL has only been requesting bytes in static regions | ||
+ | of memory.<br><br> | ||
+ | When the client recieves the request, it adds it to the current ds | ||
+ | (0x00400000) and dereferences it, copying the data into a buffer which | ||
+ | it then runs directly through the MD5 hasher. The 16 byte output of | ||
+ | the hash is then sent back to the server.<br><br> | ||
+ | If the client does not send any data back, or the data does not match | ||
+ | the data that the specific client should have, the client will get the | ||
+ | following message from "AOL Instant Messenger":<br><br> | ||
+ | "<font color=blue>You have been disconnected from the AOL Instant Message | ||
+ | Service (SM) for accessing the AOL network using unauthorized software. | ||
+ | You can download a FREE, fully featured, and authorized client, here | ||
+ | http://www.aol.com/aim/download2.html</font>"<br><br> | ||
+ | The connection is then closed, recieving disconnect code 1, URL | ||
+ | http://www.aim.aol.com/errors/USER_LOGGED_OFF_NEW_LOGIN.html. | ||
+ | <br><br> | ||
+ | |||
+ | <table width=640 bgcolor=darkblue cellSpacing=0 cellPadding=0 border=0><tr><td> | ||
+ | <table width=100% cellSpacing=2 cellPadding=0 border=0><tr><td bgcolor=#E9E9E9 > | ||
+ | |||
+ | <table width=640 cellSpacing=0 cellPadding=0 align=center border=0> | ||
+ | <tr> | ||
+ | <td width=169> 00 01</td> | ||
+ | <td width=5> </td> | ||
+ | <td>word</td> | ||
+ | <td width=5> </td> | ||
+ | <td width=55%>SNAC family</td> | ||
+ | </tr> | ||
+ | <tr> | ||
+ | <td> 00 1F</td> | ||
+ | <td> </td> | ||
+ | <td>word</td> | ||
+ | <td> </td> | ||
+ | <td>SNAC subtype</td> | ||
+ | </tr> | ||
+ | <tr> | ||
+ | <td> 00 00</td> | ||
+ | <td> </td> | ||
+ | <td>word</td> | ||
+ | <td> </td> | ||
+ | <td>SNAC flags</td> | ||
+ | </tr> | ||
+ | <tr> | ||
+ | <td> xx xx xx xx</td> | ||
+ | <td> </td> | ||
+ | <td>dword</td> | ||
+ | <td> </td> | ||
+ | <td>SNAC request-id</td> | ||
+ | </tr> | ||
+ | </table> | ||
+ | |||
+ | </td></tr> | ||
+ | <tr><td bgcolor=#E9E9E9> | ||
+ | |||
+ | <table width=640 cellSpacing=0 cellPadding=0 align=center border=0> | ||
+ | <tr> | ||
+ | <td width=169> xx xx xx xx</td> | ||
+ | <td width=5> </td> | ||
+ | <td>dword</td> | ||
+ | <td width=5> </td> | ||
+ | <td width=55%>Requested data offset</td> | ||
+ | </tr> | ||
+ | <tr> | ||
+ | <td> xx xx xx xx</td> | ||
+ | <td> </td> | ||
+ | <td>dword</td> | ||
+ | <td> </td> | ||
+ | <td>Requested data length</td> | ||
+ | </tr> | ||
+ | </table> | ||
+ | |||
+ | </td></tr></table> | ||
+ | </td></tr></table> | ||
+ | </td></tr></table> | ||
+ | |||
+ | <br>Example SNAC dump with flap header: | ||
+ | <table width=640 bgcolor=darkblue cellSpacing=0 cellPadding=0 border=0><tr><td> | ||
+ | <table width=100% cellSpacing=2 cellPadding=0 border=0><tr> | ||
+ | <td bgcolor=#E9E9E9> | ||
+ | <font size=3><pre style="font-size: 13px"> | ||
+ | |||
+ | 2A 02 E5 65 00 12 00 01 00 1F 00 00 82 E8 D1 D1 *..e............ | ||
+ | 03 FF FF FF 03 FF FF FF ........ | ||
+ | |||
+ | </pre></font> | ||
+ | </td></tr></table> | ||
+ | </td></tr></table> | ||
+ | |||
+ | === From Aleksandr Shutko: Client verification sequence === | ||
+ | <table width=640 bgcolor=darkblue cellSpacing=0 cellPadding=0 border=0><tr><td> | ||
+ | <table width=100% cellSpacing=2 cellPadding=0 border=0><tr><td bgcolor=#E9E9E9> | ||
+ | <table width=100% cellSpacing=0 cellPadding=0 bgcolor="#4040FF" border=0> | ||
+ | <tr> | ||
+ | <td><b><font size=2 color="white"> <a name="verification"></a> Client verification sequence</font></b></td> | ||
+ | </tr> | ||
+ | </table> | ||
+ | </td></tr> | ||
+ | |||
+ | <tr><td bgcolor=#E9E9E9> | ||
+ | <table width=100% cellSpacing=0 cellPadding=0 border=0> | ||
+ | <tr><td colspan=3 height=5></td></tr> | ||
+ | <tr><td width=5> </td> | ||
+ | <td> | ||
+ | |||
+ | | ||
+ | This request used by AOL AIM server to recognize clone clients. The | ||
+ | request contains eight bytes. The first four are an offset, the second | ||
+ | four are a length.<br><br> | ||
+ | |||
+ | | ||
+ | When the client receives the request, it adds it to the current ds | ||
+ | (0x00400000) and dereferences it, copying the data into a buffer which | ||
+ | it then runs directly through the MD5 hasher. The 16 byte output of | ||
+ | the hash is then sent back to the server.<br><br> | ||
+ | |||
+ | <table width=100% cellSpacing=0 cellPadding=0 align=center border=0> | ||
+ | <tr><td width=20></td> | ||
+ | <td> | ||
+ | <table width=580 bgcolor=darkblue cellSpacing=0 cellPadding=0 border=0><tr><td> | ||
+ | <table width=100% cellSpacing=2 cellPadding=0 border=0><tr><td bgcolor=#7070D0><b><font size=2 color=white> Client verification</font></b></td></tr> | ||
+ | <tr><td bgcolor=#E5E5E5> | ||
+ | <table width=580 cellSpacing=1 cellPadding=1 border=0> | ||
+ | |||
+ | <tr> | ||
+ | <td bgcolor=#f9f9f9 width=35 valign=top> <b><<</b></td> | ||
+ | <td bgcolor=#f9f9f9 width=200 valign=top> <b>[[Protocols/OSCAR/SNAC_01_1f|SNAC(01,1F)]]</b></td> | ||
+ | <td bgcolor=#f9f9f9 valign=top> Server ack client for verification reply</td> | ||
+ | </tr> | ||
+ | |||
+ | <tr> | ||
+ | <td bgcolor=#f9f9f9 valign=top> <b>>></b></td> | ||
+ | <td bgcolor=#f9f9f9 valign=top> <b>[[Protocols/OSCAR/SNAC_01_20|SNAC(01,20)]]</b></td> | ||
+ | <td bgcolor=#f9f9f9 valign=top> Client sends verification reply</td> | ||
+ | </tr> | ||
+ | </table> | ||
+ | |||
+ | </td></tr></table> | ||
+ | </td></tr></table> | ||
+ | </td></tr></table> | ||
+ | |||
+ | <br> | ||
+ | |||
+ | </td><td width=15> | ||
+ | </td></tr></table> | ||
+ | </td></tr></table> | ||
+ | </td></tr></table> | ||
=== OSERVICE SNACs === | === OSERVICE SNACs === | ||
{{Protocols/OSCAR/Foodgroups/OSERVICE/SNACs/Simple}} | {{Protocols/OSCAR/Foodgroups/OSERVICE/SNACs/Simple}} | ||
+ | [[Category:With_Contrib]] | ||
[[Category:Stub]] | [[Category:Stub]] | ||
[[Category:AOL]] | [[Category:AOL]] |
Latest revision as of 11:59, 14 February 2021
OSCAR Protocol |
Introduction • Terms • Clients |
Basic |
Datatypes • FLAP • SNAC • TLV |
UUIDs • Errors • Tool IDs |
Host Interaction |
Rate Limits • Migration • Messages |
Other Services |
ADMIN • ADVERT • ALERT |
BART • BOS • BUCP • CHAT |
CHAT_NAV |
Tutorials |
Sign On • BART • Rendezvous |
ICBM • Locate • Buddies |
Foodgroups |
OSERVICE (0x0001) |
LOCATE (0x0002) |
BUDDY (0x0003) |
ICBM (0x0004) |
ADVERT (0x0005) |
INVITE (0x0006) |
ADMIN (0x0007) |
POPUP (0x0008) |
PD (0x0009) |
USER_LOOKUP (0x000A) |
STATS (0x000B) |
TRANSLATE (0x000C) |
CHAT_NAV (0x000D) |
CHAT (0x000E) |
ODIR (0x000F) |
BART (0x0010) |
FEEDBAG (0x0013) |
ICQ (0x0015) |
BUCP (0x0017) |
ALERT (0x0018) |
PLUGIN (0x0022) |
UNNAMED_FG_24 (0x0024) |
MDIR (0x0025) |
ARS (0x044A) |
ID | Origin | Name | Foodgroup | Service | Status | Version |
---|---|---|---|---|---|---|
0x0001, 0x001F | Host | OSERVICE__PROBE_REQ | Unspecified | All | Active | 4.0 |
Client verification request.
Contents
SNAC Header
Foodgroup | uint16 (word) | 00 01 |
Subgroup | uint16 (word) | 00 1F |
Flags | uint16 (word) | 00 00 |
Request ID | uint32 (dword) | 00 00 00 00 |
SNAC Data
Unconfirmed: This SNAC contains no data
From Aleksandr Shutko: SNAC(01,1F) server client verification command SNAC(01,1F) OSERVICE__PROBE_REQ
|
Example SNAC dump with flap header:
|
From Aleksandr Shutko: Client verification sequence
|
OSERVICE SNACs
|