TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
I don't think so. I'm querying the *client* computer, i.e. any computer
on campus that is running the napster program. Whether or not these use a
proxy should not matter since the below query is what is used by the
server to figure out if a *client* has a particular mp3.
-daivd
On Fri, 18 Feb 2000, Daniel B. Garrie wrote:
> I think students that want to use Napaster can easily get around this by
> running a proxy server thru someone off campus that has a cable modem.
> Thus I think it really is somewhat pointless.
>
> Daniel
>
> On Thu, 17 Feb 2000, David
> Brumley wrote:
>
> >
> > TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
> > [EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
> > ----------------------------------------------------------------------------
> >
> > I don't know about blocking napster. Some good points have been brought
> > up in the past about this. I'm focusing on finding out which students (at
> > our university) are distributing *illegal* mp3's. Can you connect to a
> > napster client and get a list of the mp3's it's offering?
> >
> > I noticed there was something about connecting and a command like:
> > /xm/search?q=&f=artist\n\n
> > but I never got it to work.
> >
> > I've looked at david weekly's documents, as well as the opennapster
> > project, and haven't seen anything there. anyone have any additional
> > resources?
> >
> > If so, I'd integrate napster file list scanning into rid (my tool) and
> > maybe iss could in theres.. (ISS - a lot of people would buy your product
> > just for this :)
> >
> > -david
> >
> > On Sun, 16 Jan 2000, Nicholas de Jong wrote:
> >
> > >
> > > TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
> > > [EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
> > > ----------------------------------------------------------------------------
> > >
> > > I take it you mean Napster, the MP3 search and grab tool by the people at
>www.napster.com
> > > I don't have an up front solution but I was looking at the napster thing a while
>ago and I realized that the whole thing is really IRC with a pretty GUI on top of it,
>thus you end up with a bit of a problem..... How do you stop IRC?
> > >
> > > I'm imagining you are combating clever students with more time on their hands
>than is good for them thus you can't readily block all the napster servers as they
>will invariably end up finding a socket redirector to regain access to the servers
>(effectively these are the IRC servers) .... While they can find ways to gain access
>to the Napster servers they will always be able to discover the hosts that have the
>MP3s on them....
> > >
> > > The way to tackle this problem is not block your users from the Napster servers,
>but to prevent users starting a file transfer from some random host... Thus I would
>suggest setting up your RealSecure machine to look for a signature that is indicative
>of a client starting a file TX by this method. Remember this signature is going to
>look similar to the signature that an IRC client has when it initiates a file
>transfer.
> > >
> > > Ahh well hope it helps, I don't have a RealSecure box in fact I've never seen
>one I've used competing products....
> > >
> > > Two cents worth...
> > >
> > > Nick
> > >
> > >
> > >
> > > -----Original Message-----
> > > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
> > > Chris Mlodnicki
> > > Sent: Wednesday, February 16, 2000 11:01 AM
> > > To: [EMAIL PROTECTED]
> > > Subject: Napter Traffic Recognition
> > >
> > >
> > >
> > > TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
> > > [EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
> > > ----------------------------------------------------------------------------
> > >
> > > Will RealSecure get a Xpress update for Napter similar to the one for
> > > ICQ?
> > >
> > > Napster can be a real bandwidth hog for corporate and educational
> > > networks, and even shutting off ports won't keep the better users from
> > > accessing outside proxies and still eating up precious bandwidth. It
> > > only take a few users to have that big T1 narrow down to an isdn.
> > >
> > > Basically, I need a way to recognize Napter traffic and kill it, no
> > > matter what port and coming from which server. Yes, a policy exists that
> > > should keep people from doing that, but active countermeasures so far
> > > have been most effective, if time-consuming. An automated method would
> > > be so much easier on the admins.
> > >
> > > Any ideas out there?
> > >
> > > Chris Mlodnicki
> > > NetStrategies and Mangement, Inc.
> > >
> > >
> > >
> > >
> > >
> > >
> >
> > --
> > #+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#
> > David Brumley - Stanford Computer Security - [EMAIL PROTECTED]
> > Phone: +1-650-723-2445 WWW: http://www.stanford.edu/~dbrumley
> > Fax: +1-650-725-9121 PGP: finger [EMAIL PROTECTED]
> > #+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#
> > c:\winnt> secure_nt.exe
> > Securing NT. Insert Linux boot disk to continue......
> > "I have opinions, my employer does not."
> >
> >
> >
>
> Daniel B. Garrie
> 3411 Stearn Hill Rd.
> Waltham, MA 02453
> Phone: 781.788.8103
> Cell: 781.405.4228
> Business Ph.: 781.529.5564
> Email:[EMAIL PROTECTED]
>
>
--
#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#
David Brumley - Stanford Computer Security - [EMAIL PROTECTED]
Phone: +1-650-723-2445 WWW: http://www.stanford.edu/~dbrumley
Fax: +1-650-725-9121 PGP: finger [EMAIL PROTECTED]
#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#+--+#
c:\winnt> secure_nt.exe
Securing NT. Insert Linux boot disk to continue......
"I have opinions, my employer does not."
