You can always sniff the connection, which will show you absolutely
everything.
On Wed, 27 Jun 2001 [EMAIL PROTECTED] wrote:
> I wanted to thank everyone for their help and advice with this issue. My
> friend is feeling a little better with some more knowledge under her belt,
> and you guys/girls have been really, really helpful to her. She's run a
> program called Who's Watching Me, which she got from Tucows. It's supposed
> to find any Trojans that may be on your computer. It didn't find anything,
> which means either he's already removed it after knowing we were onto him,
> or that it's just not detectable by that program. Two up-to-date antivirus
> runs, McAfee and Trend, found nothing, too. Any other good programs/methods
> that could find something like this?
>
> Thanks again,
>
> Evan
>
>
>
> -----Original Message-----
> From: Alvin Oga [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, June 26, 2001 7:49 PM
> To: Ron DuFresne
> Cc: Delcourt, Rick; Evan Brastow; [EMAIL PROTECTED]
> Subject: RE: T1 and logs
>
>
> hi ya
>
> usually the local police does NOT do anything about cyber-crimes...
>
> but if its a criminal issue... they might be willing to do more ...
>
> if there is $10K or was it $15k of damages... than the FBI gets involved
> and is interested in nailing cyber-criminals...
> - at least thats what we needed to show to get them involved
> and i think they confiscated about 15 servers...
>
> if this hacking/sniffing/stalking is in silicon valley area...
> we'd be interested in tracking that hacker/cracker/sniffer down
>
> and if nothing else... she needs to reinstall her OS and other stuff
> to minimize her chances that he is in there with a trojan ...
> - and apply all the MS security patches.. if she is using MS
> and/or other os and its patches
>
> - or spend the time to find out what/how he is in there...
>
> have fun linuxing
> alvin
> http://www.Linux-Sec.net/Patches -- list of security updates
>
>
> On Tue, 26 Jun 2001, Ron DuFresne wrote:
>
> >
> > This lady needs to contact the local police. She is being stalked and
> > needs to have this dealt with by the proper authorities. chances are good
> > that even if he losses interest in her, unless his actions are checked,
> > he'll most likely direct the same stalking methods on someone else down
> > the road.
> >
> > Thanks,
> >
> > Ron DuFresne
> >
> > On Tue, 26 Jun 2001, Delcourt, Rick wrote:
> >
> > >
> > > Evan,
> > > This is utter hogwash. I have worked with T1 lines for the better
> > > part of 8 years and they are not much different than dial-up, ISDN or
> DSL.
> > > Just faster and permanent. They are usually supplied by one of the
> > > telecommunications companies, such as ATT, Sprint or MCI. And as far as
> I
> > > know, they only charge you an installation fee and monthly service fee.
> They
> > > DON'T require bonds!
> > >
> > > Tell your friend to ask this guy for his contractor ID or DoD access
> > > tag number. Since he is supposed to be working for the government and
> has
> > > ALREADY compromised his security clearance, this info is now accessable
> by
> > > the public. :-) If that doesn't work, just tell her to put him on her
> ignore
> > > list (or whatever is comparable).
> > >
> > > Mike
> > >
> > > -----Original Message-----
> > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> > > Sent: Tuesday, June 26, 2001 12:16 PM
> > > To: [EMAIL PROTECTED]
> > > Subject: OT: T1 and logs
> > >
> > >
> > > This is so off-topic and non-business related that I would almost expect
> a
> > > few flames, but I'm curious, and a friend of mine is rather scared, so
> I'm
> > > hoping a few of you might help out.
> > >
> > > A friend of mine chats online on a service call "PalTalk". Apparently,
> she's
> > > run into a guy that, I think, is trying to intimidate her. She doesn't
> know
> > > much about computers, and where she knows I work with them, she asked me
> a
> > > question about her situation. However, I've never worked with a T1 line,
> so
> > > I can't really answer her.
> > >
> > > Here's the deal. I guess on PalTalk, you can chat in an open room, or
> you
> > > can chat with someone in what they call a private message, or private
> chat,
> > > or something. Apparently, he's been kind of stalking her. He'll tell her
> > > things like he can see who she talks to and what she says in these
> private
> > > chats. He's told her that he worked for the DoD in "computer
> intelligence".
> > > For many years. She didn't believe much of this until one day he
> actually
> > > *did* repeat some stuff to her that she said in a private chat with
> someone
> > > else, so now she's scared.
> > >
> > > Here's a snippet of her words to me about what he's told her:
> > >
> > > "He talks about his T1 Connection as a "backbone" and "the network". He
> says
> > > that periodically, and each time it goes down and comes back online, he
> is
> > > required by government regulations to go over network activity reports
> that
> > > are generated. He says they are all to do with whatever he is involved
> > > with.. and if he's involved with chat rooms.. then he sees "contacts"
> > > between people in the room. He is supposed to "check off" on the
> activity
> > > to verify that its correct. And if he sees any irregular activity or if
> > > something is incorrect, he has to report it. He says that he had to get
> a
> > > $50,000 bond just to have this T1 connection."
> > >
> > > This sounds to me like utter bologna, but before I giver her bad
> > > information, I wanted to check with those of you that maybe do use T1
> lines
> > > and see if any of this could be true?
> > >
> > > Thanks,
> > >
> > > Evan
> > > _______________________________________________
> > > Firewalls mailing list
> > > [EMAIL PROTECTED]
> > > http://lists.gnac.net/mailman/listinfo/firewalls
> > > _______________________________________________
> > > Firewalls mailing list
> > > [EMAIL PROTECTED]
> > > http://lists.gnac.net/mailman/listinfo/firewalls
> > >
> >
> > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > "Cutting the space budget really restores my faith in humanity. It
> > eliminates dreams, goals, and ideals and lets us get straight to the
> > business of hate, debauchery, and self-annihilation." -- Johnny Hart
> > ***testing, only testing, and damn good at it too!***
> >
> > OK, so you're a Ph.D. Just don't touch anything.
> >
> > _______________________________________________
> > Firewalls mailing list
> > [EMAIL PROTECTED]
> > http://lists.gnac.net/mailman/listinfo/firewalls
> >
> _______________________________________________
> Firewalls mailing list
> [EMAIL PROTECTED]
> http://lists.gnac.net/mailman/listinfo/firewalls
>
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
