Running a Buffer Overflow Attack

Running a Buffer Overflow Attack - Computerphile

8 років тому

Making yourself the all-powerful "Root" super-user on a computer using a buffer overflow attack. Assistant Professor Dr Mike Pound details how it's done.
Formerly titled "Buffer Overflow Attack" -Aug 2021
The Stack: • Reverse Polish Notatio...
Botnets: • Botnets - Computerphile
The Golden Key: iPhone Encryption: • The Golden Key: FBI vs...
3D Stereo Vision: • Stereo 3D Vision (How ...
Brain Scanner: • Brain Scanner - Comput...
/ computerphile
/ computer_phile
This video was filmed and edited by Sean Riley.
Computer Science at the University of Nottingham: bit.ly/nottscomputer
Computerphile is a sister project to Brady Haran's Numberphile. More at www.bradyharan.com

КОМЕНТАРІ: 1 200

@tristant9686 7 років тому

You can see he is very excited to tell this.

@minecraft9260 5 років тому

Tristan T I'm excited to learn this.

@germangamingvideos6069 5 років тому

@@minecraft9260 Me too

@matze3596 5 років тому

Frist time he can show what i spend his time on...Most people would not listen maybe cause they dont understand or maybe because they believe its something illegal.

@buzifalus 5 років тому

Because people are usually not interested or afraid of complex computer stuff

@iraianbu3388 4 роки тому

May i know what content is on cat shell_code

@MaxJNorman 7 років тому

I really like this guy

@TheCFJB 5 років тому

I'd 100% agree.

@gregoriysharapov1936 5 років тому

Absolutely, max!

@benchiang8235 5 років тому

Me too, he's cool.

@GodlyOne123 5 років тому

It's refreshing to see positivity and enthusiasm towards typically dry subjects. This whole channel is great, but this guy in particular is probably their most enjoyable to watch.

@ashleybishton742 5 років тому

Dude can hack anything I bet lol. He could devastate a system lol

@aadeshsalecha4951 8 років тому

This was by far the best video..... Normally Computerphile tries to address a wider audience, but I personally would like to see more of these kind of in-depth videos.

@kipchickensout 5 років тому

exactly

@CP-hd5cj 5 років тому

Check out liveoverflow if you like this. He has tons of similar stuff, and decently in-depth

@dvorak2676 4 роки тому

this is an introduction

@iraianbu3388 4 роки тому

May i know what content is on cat shell_code

@cheesescrust5399 4 роки тому

Dvo rak yeah I learned how to do basic stack overflows and run stack overflows back in the XP days, but I never learned in depth, complex attacks. I learned enough to run a debugger, find the memory address, write a nopales, etc but I never got deep enough to learn heap spraying, etc. They can get really complex now to bypass ASLR and other measures. I am trying to revisit this and learn more!

@ElagabalusRex 8 років тому

I would love to see a series on micro-architectures, machine code, and assembly

@TheRomichou 8 років тому

+ElagabalusRex Agreed!

@Funderpanda 6 років тому

and micro-waves!

@akam9919 6 років тому

Yes!

@kanpitcha54 6 років тому

please!

@AbuDoujana 5 років тому

@stephen schneider it may be tricky but it is definitely not 'insanely hard'... U just need to know at least the basics of forward programming ( C programing for example) and you can start from there, i would say i love it more than any other field but everyone has an opinion

@edgeeffect 8 років тому

The sledge/bomb animation is BRILLIANT!

@seanski44 8 років тому

Thankyou! I was pleased with that one ;)

@FreeStuffPlease 4 роки тому

It made me laugh :)

@sickerpuppies 4 роки тому

"It's meant for ethical hacking, let's just make that clear" - Mike Pound, 2016

@ashleybishton742 4 роки тому

Only if you know how to use the scripts.

@charlieweberlv 2 роки тому

That’s like trying to say this is an ethical shot from a gun to somebody’s body, it’s a hack.

@thegoodkidboy7726 Рік тому

@@charlieweberlv People who find exploits and report them are important to the security of many systems. Companies hire penetration testers to try to break into their systems, so these issues can be fixed. Watch the footage of L0pht testifying before the US senate in 1998.

@davishall Рік тому

@@charlieweberlv Not at all. To be able to identify bugs, one must be able to think like a malicious hacker and have the same tools as a malicious hacker. Without ethical hacking, there would be a lot more unethical hacking.

@slingshot99 Рік тому

@@charlieweberlv You have to be able to disassemble something to understand its flaws. That's what ethical hacking essentially does.

@ItsNotJustRice 3 роки тому

I know this particular video was years ago, but this guy is actually fun to watch. I'm terrible at learning, but he makes sense of a lot of things without dragging on the boring part.

@Stopinvadingmyhardware Рік тому

Are you that mad at someone you don’t even know?

@Soedmaelk 8 місяців тому

@@Stopinvadingmyhardware You replied to the wrong guy

@sivalley 8 років тому

To err is human, but to really foul things up requires the root password. -Unknown

@U014B 8 років тому

Love it.

@sophiacristina 4 роки тому

It was Aristotle!

@kbs1212 4 роки тому

sivalley Stealing-no, borrowing this

@xBZZZZyt 3 роки тому

Or SUDOer's password.

@masonhunter2748 3 роки тому

To err is human. -Grammarly

@Elite7555 3 роки тому

Absolutely brilliant demonstration. All universities that I know teach C/C++, but they don't teach the essence of software security, which should be pounded into every student's head right from the beginning.

@NightLife094 Рік тому

In my university in germany, they taught us these. But i mean the courses are called cybersecurity and reverse engineering

@lawrencelim6890 Рік тому

@@NightLife094same. The info was taught in an intro to cyber course which made us do a lab that required us to attain root access using buffer overflow just like in the video.

@ButzPunk 8 років тому

This was brilliant. More like it, please!

@cloveramv 5 років тому

Powerrrrrrrrrrrrrrrrrrrrrrr BUHAHAHAHAHAAHAHA whoami . . I am root baby.

@iraianbu3388 4 роки тому

May i know what content is on cat shell_code

@colossalbreacker 4 роки тому

I'm a cs major, but I don't normally like watching cs related youtube channels. These videos are awesome though, some of them are things I thought I had a decent grasp on and I end up learning something. I also love how happy Dr. Pound seems when he is talking about something, you can tell he really likes what he does.

@JaceLansing 3 роки тому

Man! How am I only finding your channel now!? This was great. Thank you for taking the time to put this together.

@DFX2KX 7 років тому

messing with, and forcibly messing with the stack is the source of a few old school console hacks if I recall, particularly on NES games. You write memory by doing very specific things to set certain memory values in an unusual way

@hamstsorkxxor 7 років тому

Pokemon! If I remember correctly, that missingno nonsense in Pokemon Red was a stack overflow.

@UmVtCg 7 років тому

The game genie does this

@ns2304 2 роки тому

Think its how PS1 and onwards did it as well. Gameshark and Gamemaster ripped the values off the game corresponding to a particular attribute. Then you tweak the code to get outcome like inf items, inf health etc. Never knew this was the science behind it hah

@__-xl1zi 4 роки тому

Everyone else: *makes a 20 char buffer* Mike: "We allocate a buffer that's 500 characters long"

@username17234 4 роки тому

You need the buffer to be big enough to be able to comfortably hold your machine code plus a hefty padding for memory address variations.

@dicksonZero 4 роки тому

still wondering how he is going to type all 500 characters until he pulls out his python

@cheesescrust5399 4 роки тому

Eduardo I didn’t think it matters. I thought even small buffers could be exploited because the exploit payload just overflows and gets thrown into the stack. As long as you nopsled is hit by the pointer it just keeps running until it hits the return address which jumps to the shell code? Is that not correct?

@rampage_sl 4 роки тому

@@dicksonZero I see what you did there

@mu11668B 4 роки тому

Well... If I'm not writing codes for dev boards that has memory capped at few KBs, I usually allocate a lot more, like 4096 bytes. It has hardly any drawback for machines with GBs of RAM and lowers the risks of writing data beyond the buffer zone.

@shumakriss 8 років тому

Thank you! I've never seen this explained in its entirety and there are lots nuances that have always inhibited my own educational endeavors. Knowing GDB, assembler, endianness, no-op sleds, etc were all concepts I understood but could never completely tie together. Excellent video.

@jonahansen 5 років тому

Damn! Excellent presentation on how stack overflow exploits work! No hand-waving; a complete demonstration of how it's done, down to aligning the return address and the no-op sled mitigation.

@Anvilshock 8 років тому

Nice presentation, thanks! It would be even nicer to have the stack video segment made clickable, given UKposts's tendency to "Suggest" everything but related videos.

@Computerphile 8 років тому

+Anvilshock I'll sort that! >Sean

@Anvilshock 8 років тому

***** Much obliged, thanks!

@zavvie809 8 років тому

+Computerphile I suggest heap sort for that. :)

@benjabean1 8 років тому

+Computerphile Still not really fixed. It's currently neither a card or an annotation.

@ChaimS 8 років тому

+Anvilshock Also, it would be awesome if it was mentioned where in the video he talks about them, since we may not necessarily have 10-15 minutes to watch the whole video.

@MrJoao6697 8 років тому

What a video! Great job on explaining this attack, I'll definitely be looking forward to learn more of this as I get into assembler at University!

@timm9301 5 років тому

I have studied exploit dev for a number of years and this is by far one of the best explanations ever! Keep it up!

@dantesalighieri 3 місяці тому

The way this man explains things is absolutely DIAMOND.

@qgysugfq3935 Рік тому

This hits especially hard since I just finished my assembly and computer systems class. Great video!

@geonerd 8 років тому

Mike has a certain Dr. Evil vibe in that he clearly enjoys writing "Malicious Code." :)

@cyberwithtom7714 5 років тому

for years ive been reading and trying to work out the ins and outs of bufferoverflow i can honestly say this is one of the most simple and effective videos out there on BO well done and Kudos loved watching it (for the 100th time)

@Acid113377 7 років тому

probably one of the best computerphile videos yet. Thank you Dr. Pound!

@gassnake2004 8 років тому

Great video! There's a lot of virus "concept" videos that explain how they work, but not many that show the actual implementation and writing of specific attacks. More please!

@furetosan 8 років тому

Awesome video. Especially the bit about the no-op slope.

@Tithis 5 років тому

Studying for a security certificate and was having a hard time understanding exactly what was going on with the way they explained it in their videos. Your video really helped me understand it better, mostly by visualizing how the memory is laid out.

@TheMagAirsoft 3 роки тому

Dr Mike Pound, i do not know if you know this but you are saving a lot of network security students with your videos on these subjects. They are incredibly informative and makes a whole subject comprehensible in the matter of minutes. A Great thank you.

@realeques 7 років тому

i love how he explains every topic like its the best in the world... i could use him as my personal coach !

@x1g5dj7dh4 8 років тому

This was amazingly informative, especially for someone not using Linux. Well done!

@tommybenshaul3443 6 років тому

a very good video, explains beautifully the why stack works and how to exploit a buffer overflow

@jurepustoslemsek7882 4 роки тому

I watched this a long time ago, but after taking an Assembly class in uni, I suddenly completely understand what he did and why it works! this is an absolutely amazing video as it actually gives an incentive to continue learning low-level programming and such.

@lolbajset 8 років тому

I absolutely love videos on things like malware, exploits and similar stuff, feel free to upload more of it if you can :D

@eliausi9696 7 років тому

Welldone on explaining this so well

@hypernova2906 3 місяці тому

the stack content visualization and the no-op sled animation were really awesome

@lumin0l161 Рік тому

Best explanation of a buffer overflow I’ve ever seen.

@JaisMathews 3 роки тому

It would have been pleasure to sit in his classes. We need more professors like this.

@xSCOOTERx2 8 років тому

Had this for a homework assignment. It was quite hard to understand how to manipulate the stack at first, but this video helped a lot.

@itissmallagain8002 2 роки тому

currently have this as assignment

@nikhilnarayanan5949 4 роки тому

This channel is by far one of the best....I made a computer application similar to chain reaction using the swing framework of java....I got a stackOverFlow error because of infinite recursion....this video really sorted me out....thanks!!!😁😁😊

@DirkArnez 3 роки тому

Very clearly explained... I have been looking for a tutorial like this for about ten years.

@HavelockBanana 8 років тому

yeah! A technical video :-) Nice to see some actual code on this channel (even though it's being explained in a simple way :) )

@hellterminator 8 років тому

And this, kids, is why you should always sanitize your inputs.

@michaeltorres1263 8 років тому

+hellterminator HAHAHAHAAHA!

@SUFHolbek 8 років тому

+hellterminator Little Robby Drop Tables

@hellterminator 8 років тому

Simon WoodburyForget Interesting language. I'm probably gonna stick with C/C++, but Rust is definitely interesting.

@mad7227 5 місяців тому

His best yet IMO. Love the level of detail and honesty enthusiasm of the topic 😁

@cup-of-char 7 років тому

Greetings! I watched this video to help me understand buffer overflows in my binary exploitation class in university and it was really helpful. Thank you so much!

@MiSt3300 3 роки тому

Apart from the attack, it's so interesting to see how the computer actually processes the programme... I mean, I never really thought about it, that all the functions and returns and variables have to be stored somewhere and that it has to know how to execute it... I really like to think of a computer as a human being XD

@GenGariczek 8 років тому

More on similar topics please :)

@chris_1337 8 років тому

This was AWESOME! More, more, more please! Dr Pound is a great teacher

@Zeldon567 2 роки тому

As a frequent viewer of videogame speedruns, I know quite a bit about the uses of buffer overflow/underflow. Fun stuff.

@34521ful 5 років тому

Just a slight error for future viewers, at the 7:10 minute mark, he points from "a" to the start of "buffer". What he meant was that we are at "ebp" to the start of the buffer is what sub $0x1f4, %esp does :)

@mustafadurukan6893 4 роки тому

So the buffer starts from esp minus 500 and the buffer progresses towards ebp, right?

@user-eh5wo8re3d 8 років тому

very nice Video. would love to See more of this sort in the future

@gegdim9307 8 років тому

Fear not my friend! Botnets and iPhone decryption coming soon!

@user-eh5wo8re3d 8 років тому

Well that is a truly marvelous thing to hear. Am looking forward to it!

@CryptoJones 5 років тому

Dr. Pound, thank you for the brilliant explanation of this. I wish I had you to explain these things to me as an undergrad.

@johnconnor7978 6 років тому

The only truly knowledgeable bunch of geeks on the internet that also know how to explain what they know. You sirs earned by EIP hi5

@another-person-on-youtube 3 роки тому

"Can't type while people are watching." I'm not the only one!

@saultube44 7 років тому

The guy is quite smart and he knows his stuff

@tabeshforoughi1380 3 роки тому

Thank You Dr. Mike.

@Denverse 3 роки тому

Today is the day I finally exploited a full buffer overflow attack to gain shell. Thank you Mike. And the animation is so helpful.

@tiannimyers1204 4 роки тому

The more I learn about computers, the more I realize how easy they are. Great video.

@athanoslee 7 років тому

I like his playful manners and smiles. I think I have a crush.

@nofrag25 6 років тому

He s married bro

@firstnamelastname7319 5 років тому

I want him to overflow my buffer 😍

@jscorpio1987 4 роки тому

Thibaud so? Are we supposed to intensively research a person’s personal life now to make sure they’re absolutely 100% single before we’re allowed to have an innocent crush on them? It’s not as if you can control such feelings and it’s not like OP was exactly sending the guy a marriage proposal.

@kbs1212 4 роки тому

J T Maybe OP isn’t but I am. Marry me Mr. Pound

@untilted9126 4 роки тому

I do as well

@Aemilindore 7 років тому

I truly love the method Cumputerphine explains things. These are very advanced concepts explained so simply. Hats off for your effort. I am a researcher in the field of WSN. But I truly love this type of work. I would love to know what research field are related to this type of work. Once again. Great explanation. Love your videos!

@Nekology87 2 роки тому

wow! such an insightful glimpse at how computers "think" and Dr. Pound you are so charimastic ^___^ thank you Computerphile for this video!! I'm just begining my programing education and this fills my cup with drive to push through learning the basics knowing later i will be able to excecute as my will wills

@navalkumarshukla9447 2 роки тому

I really liked the way he taught, didn't get it,but liked it xD

@VaultRaider 8 років тому

These types of videos are better than the robots/drones stuff

@anujmchitale 5 років тому

Not for a person who isn't interested in SW security or programming in general.

@SaeedAlFalasi 3 роки тому

Iv seen a bunch of videos on the same topic BUT THIS BY FAR is the best explanation !

@jasonford2877 4 роки тому

This video explains it better than a $2000 course I've been doing in Cyber Security (which goes into far more than just BOF) Drawing it tremendously helped me understand it!

@rchandraonline 8 років тому

On the original diagram: Functions do not (normally) go on the stack. The stack is only data (including return addresses). With architectures having hardware support for not executing data (often called an "NX" bit), such as a lot of the Intel processors, trying to execute a function on the stack with the NX bit set would cause an exception, which in Linux in turn would generate a signal (something like SIGSEGV), and without a signal handler would kill the process. (Yay, memory protection!) oh...and I think you mean backslash x ninety.

@Computerphile 8 років тому

+rchandraonline I've a feeling that's what Mike was talking about at the end.... >Sean

@rchandraonline 8 років тому

***** , oh, yeah... As Mike says (paraphrasing), there are so many things which would make great videos on what goes on in GDB and assembly...simply fascinating how all that stuff was developed over the years.

@JAN0L 8 років тому

+rchandraonline Function code doesn't, but all the local variables used by the function go on stack, otherwise recursive functions wouldn't be possible.

@stensoft 8 років тому

+rchandraonline For running shell (or other simple tasks), NX bit is quite easy to workaround with return-to-libc attack. But that can be hardened with address randomization.

@GegoXaren 8 років тому

gcc -fstack-protector-strong -std=c11 foo.c -o foo

@taubrafi 8 років тому

Kali!

@jorgeleopoldocurberarodrig5315 5 років тому

I need the second part of this video so much.

@__-to3hq 5 років тому

I love how much this guy loves talking about all of these topics its awesome :]

@Tommus1997 5 років тому

"I'm assuming you know what a stack is." *defines function*

@Juasml 4 роки тому

When you know a lot about something, sometimes it's hard to tell when you're being overwhelming and when you're going too slow. I guess he just randomizes it to keep going.

@dderudito 4 роки тому

Hahaha

@jag831 3 роки тому

Haha that's why I love this kind of videos. "Look at this ebp register, for example. B stands for base and B is the second letter of the latin alphabet. It is allocated in 0x6404whatever5A in memory"

@fetchstixRHD 3 роки тому

To be fair, there was the video on stacks which anyone who wasn't familiar with could go and watch, so there isn't [wasn't] much point of repeating what's been done already.

@Calin42 8 років тому

when a video on the ROP chains? with ASLR on and nX :p

@emrekantar5003 Рік тому

Might be by far the best explanation i’ve ever watched

@kamoroso94 8 років тому

This was an awesome video! I remember learning about this in class but not how to exploit it and see it in action.

@5upl1an 5 років тому

The real question is, how can someone be so damn motivated at 7 in the morning?!

@RonaldMcPaul 5 років тому

Eating healthy breakfast cereals and grains.

@xxxXXXCH04XXXxxx 2 роки тому

@@RonaldMcPaul yummy

@timt.4040 6 років тому

Very helpful! What is the gdb command (not shown on screen) to list the 200 registers at the stack point of -550?

@jbrhsn8406 4 роки тому

Google it Pal!

@abindieflasche100 4 роки тому

@@jbrhsn8406 what is it

@zerozone1412 3 роки тому

@Tim Thompson did you find out what the command was? I need it😫 ..... thanks

@jag831 3 роки тому

Something like "x/500xw $esp -550" could work. I may be wrong

@hannahwhitham3539 4 роки тому

I'm so happy this channel exists

@jamescolley6983 7 років тому

Wow, great job making this information understandable to a layman such as myself. I'm getting a "driver overran stack buffer" blue screen on Windows 10 and I'm blousing about looking for a fix, I'm not sure I have one but at least I understand what a stack buffer is now. Thanks!

@anirudhsarma4233 7 років тому

Can anyone explain why 10 duplicates of the return address was needed as "padding"?

@ttttt_ 7 років тому

"there is nothing you can't do as root" except makepkg on arch :(

@nik123true 7 років тому

nice one xD

@sauron1427 7 років тому

but you can create a user with whatever password you like, su into that user and run makepkg. you can still get ANYTHING done if you have root access.

@pedro.raimundo 6 років тому

I LOLed.

@cybrhckr 6 років тому

and some programmes does not allow you to run on root :D for security reasons

@Reth_Hard 6 років тому

You can't run VLC on root :( But you can patch it easily :)

@Piotr3kM 8 років тому

Great stuff, I love videos that actually show something working in practice, rather than just the theory. Moar pls!

@lexmarkbites 4 роки тому

He is a genius and easily explained how stack diagram works! I easily understood it! Thank you!

@harleyspeedthrust4013 6 років тому

Ignorant friend: "Why would you ever use Assembly?" Me: "..."

@GegoXaren 8 років тому

and this, kids, is why strcpy is removed from C11. Many of the string functions were removed and replaced with safe versions in C11.

@GegoXaren 8 років тому

also use -fstack-protector, -fstack-protector-all or -fstack-protector-strong with gcc for non-time-critical stuff.

@anujmchitale 5 років тому

strncpy is the replacement. The n is a parameter asking how much to copy. If more than the buffer length being used, the function itself won't compile.

@anyonetube День тому

the first 3 minutes of video give me more efficient information than any other videos i watched about this title

@hoptimas5415 3 роки тому

Thank you guys for the video!

@Dusk-MTG 4 роки тому

*Segmentation fault* Me: "Oh damn, I fcked up." Peter Parker: "That's exactly what we wanted."

@woutervandenputte1356 5 років тому

at 13:40 which command exactly do you use to list those 200 registers at the stack pointer minus 550

@nahue345 5 років тому

x/200xg $rsp (i think)

@chaoluncai4300 2 місяці тому

i dont get why stack ptr minus 550 but not just 508 if the program stopped at the return address, can anyone explain it please ?

@noahwilliams8996 8 років тому

This was awesome. I've always wondered how people can pull off a code injection attack, and this is how it's done.

@stephana7785 4 роки тому

Best explanation of shell code injection by far!

@ryanofarrell186 7 років тому

Video is 17:29 long. Mathematicians, unite!

@tennicktenstyl 7 років тому

What's so special about this? I'm not familiar with numbers and stuff

@Keithfert490 7 років тому

It's the smallest "taxi cab number": a positive integer expressible as the sum of two positive integer cubes in two different ways (1729=12^3+1^3=9^3+10^3).

@tennicktenstyl 7 років тому

Oh, that's nice.

@sadrien 7 років тому

Don't worry if you don't understand why that is important, because it really isn't.

@Quantumoprh 7 років тому

The quotient 0.58620689655 is used 731 times in this txt document: ftp://ftp.sanger.ac.uk/pub/1000genomes/zd1/ctcf/chip_seq_quantitation/rel_2012-09-21/cl.txt

@bluekeybo 6 років тому

How would the "hacker" get the correct return address? They'd have to run gdb and list the addresses like in the video? How'd they do it automatically without root access?

@aneeshjoshi6641 5 років тому

I think: Since every process works assuming it has the full RAM and in C you can get the address of anything using & you can probably get it.

@chasehiatt5595 4 роки тому

Gdb doesn't require root access

@bluekeybo 4 роки тому

@@chasehiatt5595 interesting

@rrestoring_faith 3 роки тому

gdb is just a debugging tool. Can run it on any executable if you have permissions to execute that executable.

@panman101mw3 5 років тому

I don't know why, but this felt a lot more interesting than all the other topics he's talked about. Rock on!

@thomasip9938 8 років тому

Please do more of this!!

@riyaz4455 7 років тому

+Computerphile What is the GDB command used here "ukposts.info/have/v-deo/aYNhlXiNZI2SxqM.html" What is the GDB command to list some blocks of memory..??? I have a session on the same topic and I really wanna use this example.....

@marsgal42 8 років тому

I'm guess I'm showing my age when I mention that this was how the Morris worm back in 1988 infected systems. :-)

@jag831 3 роки тому

Cool! I was wondering on actual, real cases in which this has happened

@filippocucina7001 2 роки тому

just incredible!

@pierreaupeix 8 років тому

This was very interesting. More of this please!

@umarsalmanrao5 4 роки тому

13:53 which command did he use here? x/200x $(ebp-100) Was it this?

@pratheeps3972 4 роки тому

Same doubt bro

@yuvalweber5946 4 роки тому

i think he used this : x/200x $esp - 550

@supernaturalswampaids8083 8 років тому

Cover the iPhone/Apple/FBI issue!

@Computerphile 8 років тому

+Reck Tominvayed Can you wait til Friday.... :) >Sean

@supernaturalswampaids8083 8 років тому

+Computerphile Yay! Thanks for the reply as well! I'm a huge fan! ....but I used to be a small air conditioner. Had to :P

@jasonneu81 7 років тому

+Player Name If you used to be a small air conditioner and now you're a huge fan then you must have been an intermediate ventilation system at some point, right :D ?