[NTLUG:Discuss] FW: motivating shady clients to payup

jeremyb@univista.com jeremyb at univista.com
Mon Aug 26 23:56:45 CDT 2002 

 I think the harddrive swap problem could be overcome by have a script
monitor 
portions of /proc/  for changes....   if those changes indicate such a major
change then blamo!
down the system and page the DMCA nazzi's.   ..no flames please that was a
joke.   :)

I'm not actually writing the bandwidth usage tool. I'm  scripting the glue
that holds the 
big guns together; So to speak.

sorry,  I gotta call your cards on this one...  what does this accomplish?

     cp /etc/passwd  /mnt/etc/passwd
     cp /etc/shadow  /mnt/etc/shadow


-Jeremy

-----Original Message-----
From: Steve Baker
To: discuss at ntlug.org
Sent: 8/26/02 11:34 PM
Subject: Re: [NTLUG:Discuss] FW: motivating shady clients to payup

Aaron Goldblatt wrote:
>>If I were an 'unsavory client' - I'd simply unscrew
>>the hard drive from the PC and place it into another
>>PC as Drive #2 and voila!  All secrets may be revealed
>>without worrying about passwords, BIOS's, CD-ROMS 
> 
> 
> It has been my experience that a client sufficiently skilled to pull 
> this off (and modify such files as /etc/passwd or /etc/shadow to 
> permit access once the machine is setup again) doesn't need one 
> of us to set up a traffic analysis tool.

I dunno - it doesn't take much to realise that you just need:

     cp /etc/passwd  /mnt/etc/passwd
     cp /etc/shadow  /mnt/etc/shadow

...I know I could pull that off - I'm not sure I could write a
traffic analysis tool simply because I'm a graphics guy and know
very little about networking.

I think that what I'd do would be to buy 'dongles'.  You can
arrange to have those time-out or count the number of usages and
'expire' after some set number of runs of the application.

If this is the only project like this then it might not be worth
the effort - but if you do a lot of this kind of thing then it
would be worthwhile to learn how to do it.

----------------------------- Steve Baker
-------------------------------
Mail : <sjbaker1 at airmail.net>   WorkMail: <sjbaker at link.com>
URLs : http://www.sjbaker.org
        http://plib.sf.net http://tuxaqfh.sf.net http://tuxkart.sf.net
        http://prettypoly.sf.net http://freeglut.sf.net
        http://toobular.sf.net   http://lodestone.sf.net



_______________________________________________
https://ntlug.org/mailman/listinfo/discuss

More information about the Discuss mailing list