Hacking coke vending machines
Now, I know that this is all over the internet, but thought I’d post it anyway.
Have a read, quite interesting.
Coke vending machines are everywhere. They’re getting more and more like regular computers with LEDs that show little “ICE COLD” messages and whatnot. Well, there’s a lot more to those little built-in computers than you may think. Included in the low-level operating system that these babies run on is an actual debug menu that gives you access to all sorts of machine information and possibly gives you free cokes in older machines.
WHICH MACHINES WORK?
There’s a very strict list of vending machines that have the debug menu. First off, they’re all COCA-COLA product vending machines. This means the giant, un-missable picture on the front must show any of the following: Coke, Dasani (Water), Barq’s Root Beer, Vanilla Coke, Cherry Coke, Sprite, Evlan (water), Fanta, Fresca, Frutopia, Hi-C, Sprite Remix, Mad River, Mello Yello, Minute Maid, Nestea, Odwalla, Mr. Pibb/Pibb Xtra, Planet Java, Power Ade, Seagram’s Ginger Ale, Simply Orange, Sparkletts, or Tab. Of course anything Diet or Caffeine free works too.
The machine must have an LED screen. Some of the older ones just allow the LED to be set to a price amount and won’t have the debug menu. You’re safer if the little LED is telling you something. Usually it will scroll a little message like “Ice Cold Cokes”. Newer machines are more likely candidates.
ACCESSING THE MENU
To enter the menu, there’s a button combination. HERE’S THE ONLY THING YOU HAVE TO REALLY REMEMBER:
[4]-[2]-[3]-[1]
The buttons are numbered depending on how they are positioned. They will either be vertical (more likely), or in horizontal rows of 4 buttons per row. If it is vertical, the first button is #1, the one below it is #2, and so forth. If the buttons are in horizontal rows, the first button is #1, and the one to the right of it is #2. The numbers work like a type writer after that. In rows of 4, the first button of row 2 will be button #5. So, to review, getting in to the debug menu looks like this:
COKE MACHINE::::::
————
[ Coke ] <– Hit this button last
[ Coke ] <– Hit this button second
[ Diet Coke ] <– Hit this button third
[ Sprite ] <– Hit this button first
[ And so on ]
————-
Some text should show up on the LED (probably the word “Error”, we’ll explain what it means next sections). If nothing happens, your machine doesn’t have the debug menu.
NAVIGATION
To navigate from option to option (What they are is next section), remember the numberings we gave the buttons. They work as follows:
Button [ 1 ] - Exit/Back
Button [ 2 ] - Up
Button [ 3 ] - Down
Button [ 4 ] - Select
OPTIONS
Depending on the age of the machine, you will get a varying amount of default options available.
On older machines: SALE, VER, EROR, and RTN
On newer machines: CASH, SALE, EROR, and RTN
CASH - Machine Earnings Display
The CASH option will display how much money is in the machine currently. It generally takes a second or two to load. From here, you can scroll up and down through 12 or 16 different options, depending on the machine age. These other options display how much money was spent on each individual item, classified through its button (or slot, as I like to call it) number.
A neat side note about the slot numbers is that there are more slot numbers than there are actual slot, so usually the last 4 buttons contain zero money. This could be so that the same OS could be used on bigger machines, but the newer machines have even more slot numbers.
SALE - Total Sale Count
The SALE option displays how many drinks have been sold out of the machine. This tends to be cumulative, but not on all machines. The stock guy is probably supposed to reset this each time he re-stocks. Also, this has the same sub-options as the CASH option, where you can scroll up and down and see how many drinks have been sold from each slot.
VER - System/Machine Version?
This option will cause a large alphanumeric string to scroll across the LCD. The number looks very much like a serial number, but doesn’t vary from machine to machine. It is most likely the OS or machine version number, but of the older machines that have the option, I haven’t seen one that doesn’t have the same number.
EROR - Error Log
There are 8 different types of errors - COLJ (Column Jams), VEnd (Vend Mechanism), door (Door Switch), sels (Select Switch), CHAR (Changer Errors), acce (Acceptor Errors), StS (Space-to-sales errors), and bVal (Bill Validators). The separate types and actual errors are useless, as you assumably can’t get inside the machine, BUT(!) you can clear the errors. Hold the enter (Number 4) button down for about 2 seconds, and it should clear the error.
RTN - Return
This is simply the return option. Selecting this will exit the debug menu. On newer machines, pressing the BACK button at the main menu will not exit, and RTN must be selected.
A side note: The menu can also be exited by pressing the coin return button.
EXTRAS
By holding in the coin return button and not releasing, on the newer “big-button” machines, this will display the internal temperature in Fahrenheit, as in “42F”.
CPO - Coin Payout Mode
You can can dump coins from the coin mechanism, and the various menu options allow you to choose which type of coins (Nickels, dimes, etc.) are dumped.
tVFL - Tube Fill Mode
This is useless to you. This allows you to load coins into the coin tubes, which you can’t do from the outside.
TEST - Test Routines
This allows you to test the following various routines:
SE Allows you to test the buttons. Will give you number
of button when you press it
SP Sold-out paddle test. Not quite sure, most likely internal function.
Su Sold-out switch test. Same as paddle.
CO Motor test. Will run various column motors.
Cn Coin test. Put in a coin and it will tell you what kind of
coin it is.
nA Note acceptor test. Same as Cn, but for bills.
dSP Display test. Will illuminate various LEDs.
vErS Rattles off version number.
RELY - Relay test
This tests the relay electronic control of various parts. Do not do, as it will cause damage if various internal parts are not unplugged before usage.
PASS - Password
This is not normally accessible, but allows you to change the menu password from the 4-2-3-1. Whoo!
PrIC - Price Setting
Used to set the price for a drink. Not sure how to work it, but it seems simple enough.
StOS - Space-to-sales routine
Lets you change the STS routine and other options. This means that various buttons will all mean the same thing, i.e. the 6 coke buttons don’t actually vend from 6 different columns, but vend from one (changing when one runs out of course).
COn - Machine Configuration/Permissions
This is the machine config menu that decides what of these options you are allowed to access through the outside panel. This is probably only accessible with the door open. I won’t go into detail, but I’ll list the Config numbers and what each do: C1 sets price menu on, C2 sets special (manufacturer) options on), C3 disables the “ICE COLD COKE” message. C4 is autoviewing of menu when door is opened, C5 is door switch status, C6 is mysteriously reserved for “future use”, C7 determines whether your money credit stays in for 5 minutes or indefinitely, C8 is Force Vend, C9 allows multiple vends without putting in more money (i.e put in a 5 and get 3 cokes and then your change), and C10 is Escrow Inhibit.
CCoC - Correct Change Only Control
Adjusts Correct Change only rule to your liking.
TIME - Time Adjustment
Allows you to set the machine’s local time.
LANG - Language Selection
Not sure how many languages are supported, but there are apparently more than just English.
what is spam?
Are you getting emails that try and sell you all sorts of stuff? do you have a blog, and you are getting 400+ comments a day on your blog with a whole bunch of links to some website?
I think you are suffering from Spam my friend. So, what is spam
Spam is flooding the Internet with many copies of the same message, in an attempt to force the message on people who would not otherwise choose to receive it. Most spam is commercial advertising, often for dubious products, get-rich-quick schemes, or quasi-legal services. Spam costs the sender very little to send — most of the costs are paid for by the recipient or the carriers rather than by the sender.
There are two main types of spam, and they have different effects on Internet users. Cancellable Usenet spam is a single message sent to 20 or more Usenet newsgroups. (Through long experience, Usenet users have found that any message posted to so many newsgroups is often not relevant to most or all of them.) Usenet spam is aimed at “lurkers”, people who read newsgroups but rarely or never post and give their address away. Usenet spam robs users of the utility of the newsgroups by overwhelming them with a barrage of advertising or other irrelevant posts. Furthermore, Usenet spam subverts the ability of system administrators and owners to manage the topics they accept on their systems.Email spam targets individual users with direct mail messages. Email spam lists are often created by scanning Usenet postings, stealing Internet mailing lists, or searching the Web for addresses. Email spams typically cost users money out-of-pocket to receive. Many people - anyone with measured phone service - read or receive their mail while the meter is running, so to speak. Spam costs them additional money. On top of that, it costs money for ISPs and online services to transmit spam, and these costs are transmitted directly to subscribers.
One particularly nasty variant of email spam is sending spam to mailing lists (public or private email discussion forums.) Because many mailing lists limit activity to their subscribers, spammers will use automated tools to subscribe to as many mailing lists as possible, so that they can grab the lists of addresses, or use the mailing list as a direct target for their attacks.
Glossary of Online Gaming Acronyms
The populatiry of online culture has led to completely new ways of communicating, widely used through instant messangers, voice chat programs, etc etc. At the forefront of this is the online gaming scene, where new words are coined every day to describe everything from describing wether or not a person is at his/her keyboard, to emotions such as the joy of beating somebody else at a game!
Expressions of appreciation for a fellow gamer’s humor (although online gamers do have a tendency to overstate):
LOL (or “KIK” for the typing impaired) - You are “laughing out loud” though in real life (RL) you may be simply smiling broadly or perhaps quietly chuckling.
ROFL - You are “rolling on the floor laughing”. Obviously, if you were really rolling on the floor you would be unable to reach the keyboard to express your delight. However, you are mightily tickled by someone’s comment or action.
ROFLMAO - You are “rolling on the floor laughing your ass off”. Completely overcome by mirth, you respond to the funniest thing you’ve heard in days by collapsing into helpless laughter. In RL, you really are laughing out loud, sometimes for minutes on end.
LMFAO (”Laughing my fat arse off”); LMTAO (”Laughing my thin arse off”); LMAAO (”Laughing my average arse off”) - Variation depends on your self-image!
Expressions of approbation, approval, achievement, and congratulations:
Woot! – Generally used in celebration eg. “That was great! We really killed that poor sod!” or “I vindicated that impossible monster, look at me, I’m so cool!”
FTW! - “For the win!” Used in apreciation for something as in, “Fast and cheap bandwidth for all!”
Ding! – Used when you’ve achieved a new level in a game such as an RPG. Not to be overused. When youve gotten to the highest evel in a game, everyone will be entirely pleased for you and should respond with:
GRATZ! (or the variations: Grats!, Gratzz! Gratzzzz! - some gamers get carried away with their zzzz). Gratz is an easy abbreviation to decode; it is simply a contraction of “Congrats”, which is a contraction of “Congratulations”. Use it often to make friends, play nice.
WTG - “way to go!” Self-explanatory.
PWN or PWNED - “Thr styff of lemgendz: Gamer defeats gamer, types in ‘I pwn you’ rather than I OWN you. ‘This word is just an overly used Internet typo. It has been overused to the point that people who play online games are using it in everyday speech.’ — Tory Rowley, Corunna, Michigan” - taken from the Lake Superior University’s Banished Words List for 2007.
Expressions of Dismay and Concern:
WTF? - “what the f%#&?”. Please note the question mark included in this expression. In RL, WTF connotes a shrugging shoulder and “so what” attitude. In gaming, WTF? expresses confused alarm, as in “what the HECK just happened here?”
OMG - “Oh My Goodness!” or “Oh My Gosh!” For those moments when you wish to express your shock, dismay, or other similar emotion; like that moment when you turn the corner only to get into spitting distance with 50 enemy players, armed to the teeth.
????? - “who the hell do you think you are?” “take it back, right now.” “how dare you pass such an insulting, untrue, and completely uncalled for remark?” I shall now kill you!
STFU - “shut the %#&@ up” Nice people never use this phrase.
JK - “just kidding” You better say it quick.
IAMF - It’s all my fault. Yes, it is. You screwed up. Admit it, apologize and move on.
Occasionally, you will need to leave your computer to perform a variety of RL tasks (mainly, getting another beer, mug of coffee, paying the pizza delivery person, changing the baby’s diaper, or reassuring your partner that you are still aware of their existence.) It is courteous to inform your groupmates of your absence:
RL - “Real Life”
AFK - “Away from Keyboard”
BIO - short for “biological” - ie, you are taking a potty break.
ATM - “at the moment”
OTW - “on the way”
GTG - “good to go” or RTG - “ready to go”. Can also be used as an antonym as G2G – “Got to Go”.
Expressions used to display your infinite knowledge and wisdom
IIRC - “If I recall correctly” - used to cover your ass if you misspeak. For example, someone asks “Where do I find the elite green and purpled speckled hahabird?” and you respond, “IIRC, he is crouching at the top of the third hahatree to your left.” Naturally, at that point, Mr. Know-it-all Perfect Gamer says, “FWIW, actually, he is hiding beneath the tiny hehebush under the tree.”
FWIW - “for what it’s worth” - an expression of false modesty when stating your (flawless) opinion.
AFAIK – “As far as I know” – Used with humility to display your opinion in a slightly more sensitive style.
IDK - “I don’t know” - then why are you speaking up?
Expressions referring to inventory items or weapons which you have picked up.
phat lewtz - nice gear.
BoE - “bind on equip” - refers to loot drops that anyone can pick up to use, sell, or give away.
BoP - “bind on pickup” - the moment you pick it up, it becomes bound (soulbound in WoW) to you. In groups, if you pick up a BoP item which you cannot personally use and without asking first, you will die and go to the deepest, coldest hell ever imagined by any gamer anywhere. Your first response to any BoP drop is to PASS.
Ninja Looting - grabbing loot from a slain monster, chest, etc., that you don’t have a right to grab, or that you didn’t earn, or that you don’t need. Ninja looting is very, very bad form, and - if you do it consistently - can get you labeled by other players as a “ninja looter.” Which is a sure way to get yourself black-listed from groups, guilds, and/or raiding parties. Ninja looters often become very lonely players.
Online gamers have a variety of slang terms for the various character classes and their abilities:
Tank - One of the heavily armored fighting classes, usually without magical ability or with limited magical ability, such as armsmen, paladins, warriors, champions, heros, etc. The tanks’ motto: “hold the agro.”
Caster - Any of the wide variety of magical spell-casting classes such as mages, wizards, cabalists, shamans, enchanters, etc. Casters have their very own set of expressions describing the important work they do. Some common terms include:
Freeze - A spell that “freezes” the recipient, making them unmoving or majorly slowed and at times completely unable to defend themselves. In some games, “root” is a similar type spell.
Mezz - Short for “mesmerize”. Arrgh, to be mezzed is to be made helpless, confused, and unmoving while the tanks move in and kill you. You can’t run, you can’t hide. You are dead, dead, dead.
AOE - “area of effect” - a spell that effects everything within a designated perimeter.
Stealther - Any of a class that can become literally invisible. Assassins sneak up on the foe, and slice their throats with a single stroke. Rogues, assassins, archers, and minstrels/bards often have the ability to stealth.
Healers - Duh, the classes that heal. The most beloved, yet most maligned, of any class in group play. When the group lives, the healer is the greatest thing since sliced bread. When the group dies, the healer takes the blame. You need a thick skin to be a healer.
Rezzers - Those classes with the ability to rez (resurrect) the dead. The wonderful thing about playing games is that you never really die. You get to come back for more, over and over again. If you learn from your karmic mistakes, you will eventually reach the highest level and never, never have to worry about losing experience ever again. Game nirvana!
PUG - 1. In RL, a pug is a small, wheezy dog that looks like it had its face smashed in by brick wall. 2. In online gaming, the acronym PUG stands for “Pick-Up Group,” which is a group of players who’ve gotten together (or been thrown together) in order to accomplish a goal, a quest, or whatever. PUGs are oftentimes mix-and-match, hit-or-miss groups that are less than optimum for achieving a goal. The opposite of a PUG is a:
Pre-Made Group - A planned, balanced group of players (with the appropriate mix of tanks, healers, AoEers, DPSers, etc.) who have gathered to accomplish a specific goal.
Expressions referring to monsters or foes:
MOB - a dangerous monster. You will kill it.
INC - the dangerous monster, group of monsters, or group of enemy players is “incoming” - in other words, headed your way.
ADD - Oops, here comes another one.
BAF - Dang, it “brought a friend.” Or, someone might pass the remark, “watch out, it BAFs (brings a friend).”
Agro - a military term brought to the gaming world. The monster is whacking on you - you have the agro. Ouch. If the healer or caster has the agro, they will shout “HELP” or “Get it off me” “Now”. If you’re a tank or melee specialist, do so.
PvM or PvE - Player versus Monster and Player versus Environment.
PvP (Player versus Player), RvR (Realm versus Realm), and FvF (Faction versus Faction) - A lot of games include player versus player action in one form or another. There’s a lot of satisfaction to be had in burying your sword, arrow, or spear in an enemy when you know there’s a real person behind the toon on your screen. Talk about a challenge! But that does bring up the inevitable:
PK or PKer (Player Killer) - While there’s “honorable” PvP action to be had, many games leave room for the inevitable PKers, those people whose only joy in gaming seems to be in killing other players. As a rule, though PvP action is integral to many games, the term PKer is generally a negative one used to describe a person who kills players much lower level than he is or at a disadvantage for some other reason. Synonym - “griefer” - gives much grief to lowbies just trying to level their chars.
PC and NPC - Humanoids, friendly or foe, either controlled by a real person (PC - Player Character) or by your computer or server (Non-Player Character).
Spawn - A place where an NPC or MOB appears in the game world. Example: “Anyone know where blue-bellied, bug-eyed, big-bottomed barflies spawn? I need to seduce one for this quest.”
XP – One of the most important terms used in Role Playing Games - Experience points.
Zerg - Tactics? Who needs ‘em! Organization? Never heard of it! All you need to do is overwhelm the other guys with NUMBERS! (The video game word “zerg” orginated with the zerglings of Blizzard Entertainment’s StarCraft game. In online video gaming, it means to overpower an enemy with sheer numbers.)
Expressions used with computer malfunctions or difficulties:
Lag - Lag means to slow, due to excessive memory use or slow Internet connection. Commonly found in graphic-intensive or player-intensive environments, lag causes a huge slowdown in your character’s movement, often leading to disaster. Lag kills. A longer word for lag is latency.
DC - “disconnected from server”, LC - “lost connection” or LD - “link dead”. You are standing there, arms held loosely at your side. You are not fighting back. Your connection to the game is gone, but for 5 or 10 seconds or longer you are at the mercy of your foe. You are now dead.
S@%# - What you say out loud in RL when you DC.
General gaming terms and acronyms of popular games:
Dood - dude. Dudes are cool. Doods are kewl. They are also leet and uber.
Nerf - to reduce abilities and/or effectiveness in battle. Eg, “when will Mythic nerf them damn bone dancers?” or “Blizz gotta nerf those stupid pallies.”
Toon - Short for cartoon, a character in an online game. Usage example: “I’ll log and get my other toon.” “The toons on this server are lame.”
Twink - They sparkle. They shine. They positively twinkle in their ill-gotten glory. A Twink is a low-level character wearing gear far, far superior to what they could afford on their own. Sugar Daddy (a high-level character, often the main of an alt Twink) has twinked them sweet enough to “own” the low-level PvP combat arenas.
AA - “alternate abilities.” Some games or game expansions include paths you can take to acquire skill or expertise in areas other than your main skill or ability lines.
NP - This means “no problem” and is used in a couple of ways. First, when that noob somehow messes up and gets you killed, but has the courtesy to apologize for his mistake, you can reply with “NP.” Second, when you do something really sweet for someone and they gush over with thankfulness, you can say “NP,” as in “no big deal” or “YW - You’re welcome.”
Bot or Buffbot - A character created solely to support other characters, usually a healer who trails behind keeping the main character (or group) fully buffed and healed.
Buffs - Spells that enhance strength, power, or other abilities. One of the primary functions of the healer classes and some caster classes is to “buff” their fellow players so that they perform to their maximum ability.
DoT - A pesky spell or poison that causes “damage over time” - repeatedly hurting you until it is cured, wears off, or leaves you lying on the ground looking for a rez.
DPS - “damage per second.” This can refer to a magical spell or a weapon, as in “My fire-up-your-arse spell does 1,350,000 dps!” or it can refer to a player class, as in “Looking for one more for Deep, Dark, Dangerous Dungeon-Crawl Quest. Have tank and healer. Need DPS.”
PL - “power level”. When a higher level character groups with a lower level character for purposes of providing the lower level character with incredibly swift gains in xp. A level 2 noob sends a tell asking a level 45 to “PL” them. Appropriate response: “no way.”
Alt - Alternate character. Characters you have created in addition to your “main”.
LFG - “looking for group.” When looking for a group, it’s often helpful to let other people know what you’re looking to accomplish, as well as your character’s class and level. Example: “50 mage lfg for donut dunking quest.”
Main - Your most played, highest level, or first created character.
Mine, Farm, Pharm - To stay in one place, killing the same mob over and over and over again, for loot or xp.
QFT - “quoted for truth.” Used to express your agreement with another person’s statement, opinion, etc.
RTFM - “Read the Frea*ing Manual” - a not especially polite way to stop that annoying noob from asking you question after question after question after …. Or, if you’re in a good mood, or feeling patient, it can also mean “Right Turn, Follow Me,” after which you lead the noob through by the hand.
Spam - To repeat an action over and over again. This word is also used to describe speech, generally in a public chat channel, that is either out of place or repetetive. Example: Goober, the level 2 noob, wants everyone to know how many hairy spiders he’s killed, so reports in the general channel the completion of every kill. Bigcheese, the level 40 been around a long time, tells Goober: “Stop spamming general chat!”
Tell, Send, or Whisper - Private communication from one player to another.
TP - “teleport” or, in some games “town portal.” In-game service, or player-provided service, for teleporting instantly, or quickly, from one area of the gaming world to another.
Train - A whole bunch of mobs chasing after someone who can’t handle them. Choo choo!
Zone - Many on-line gaming worlds are so vast they have to be divided into areas or “zones.” Generally, when you enter a new zone in a game, there will be a delay while your computer loads the graphics, sound files, and other stuff for that zone into your computer’s RAM.
WTB/WTS/WTT - “want to buy” “want to sell” “want to trade” Commerce and craft skills are an integral part of most every game.
PW - Most on-line games record actions of players, groups of players, or entire “realms” and change, accordingly, over time. These changing game worlds are called “persistent worlds.”
RPG - role-playing game, either on or off-line.
ZOR (suffix) - used in online gaming at the end of words in order to add “leetness” to it. Comonly takes the place of “-er” as in “hacker – haxor”. Also spelt –zorz, -xor, -z0rz, -x0r, -x0rz, etc.
MMORPG - massively multi-player online role-playing game.
Hacking a website
Sop you interested about hacking websites? you want to know what to do to prevent hacking of your own website? Have a read.
I believe that by understanding what is done and how things are done, you can use that knowledge to prevent damage to your websites due to website hacking.
There are two types of website hacking:
1. Hacking to break into password protected sections of the website. (Often Illegal)
2. Hacking so that you can modify or deform a website. NOTE: Criminal Offence
Website Hacking is not uncommon. It is simply trying to break into a site unauthorised. Webmasters can use encryption to prevent this. However, as most website programmers do not use encryption their websites are easy targets. Methods of protection include javascript, asp, php and cgi, but most other server-side languages can also be used. I will show you how to hack websites which use javascript protection.
Javascript protection has never been secure, if you are looking at the source to find the password to client-side protection, you will probably not have any problem finding the password unless it is encrypted. Follow the steps below so that you can understand the basics of hacking websites.
Recently 2 dummy bank sites were launched, the first totally insecure and the second was secured with a firewall. 8 weeks later, both sites were checked. The first without a firewall, averaged a hacking attempt every four minutes, the second, with a firewall, averaged an attack every hour. This just goes to prove how malicious some hackers are.
On this website you will find nothing of such a malicious nature. Building positive white hat hacking skills is a good thing and we encourage it, as do we helping you protect your own site, but bad hat hackers should find a better hobby.
In some cases people actually hire people to try and hack their website to secure it more. The Hacker, doing the website hacking, will turn around and tell the people how he got in. and those people will then do something to prevent the next person to hack their website.
Some ways in witch you can help yourself and protect your website from getting hacked.
1. Use a no-right-click script.
This prevents easy copying of pictures and easily viewing the source. In this way you will be slowing the hacked down, because he cannot see the way your website was built. Note: This can be circumvented by using Javascript.
2. Use frames.
This prevents viewing of the source from the top of the page. Note: This can be circumvented by using browser history.
3. Encrypt the frames page.
Encryption can stop hackers altogether. By using multiple encryption programs sources become unreadable. Note: Even encryption can be beaten.
So there you have it. How someone can hack your website, and a few steps you can take to ensure a more secure website.
Hope it helps.
Robert
