[NTLUG:Discuss] FW: motivating shady clients to payup
Steve Baker
sjbaker1 at airmail.net
Mon Aug 26 23:34:48 CDT 2002
Aaron Goldblatt wrote:
>>If I were an 'unsavory client' - I'd simply unscrew
>>the hard drive from the PC and place it into another
>>PC as Drive #2 and voila! All secrets may be revealed
>>without worrying about passwords, BIOS's, CD-ROMS
>
>
> It has been my experience that a client sufficiently skilled to pull
> this off (and modify such files as /etc/passwd or /etc/shadow to
> permit access once the machine is setup again) doesn't need one
> of us to set up a traffic analysis tool.
I dunno - it doesn't take much to realise that you just need:
cp /etc/passwd /mnt/etc/passwd
cp /etc/shadow /mnt/etc/shadow
...I know I could pull that off - I'm not sure I could write a
traffic analysis tool simply because I'm a graphics guy and know
very little about networking.
I think that what I'd do would be to buy 'dongles'. You can
arrange to have those time-out or count the number of usages and
'expire' after some set number of runs of the application.
If this is the only project like this then it might not be worth
the effort - but if you do a lot of this kind of thing then it
would be worthwhile to learn how to do it.
----------------------------- Steve Baker -------------------------------
Mail : <sjbaker1 at airmail.net> WorkMail: <sjbaker at link.com>
URLs : http://www.sjbaker.org
http://plib.sf.net http://tuxaqfh.sf.net http://tuxkart.sf.net
http://prettypoly.sf.net http://freeglut.sf.net
http://toobular.sf.net http://lodestone.sf.net
More information about the Discuss
mailing list