on 1/9/03 12:08 PM, M Hazell at [EMAIL PROTECTED] wrote:
>> How did they turn on your machine and your modem? I
>> think the solution will be in your answer.
>
> Rondo:
> The machines were all left running as they always were, frequently 24/7
> - it's a busy network with a lot of long term number crunching to get through.
> Any (internal) modem isn't turned on or off, it's simply connected or
> disconnected
> as required, in my case by any authenticated machines requesting PPP access,
> as set by the Linux box's policies. I, or indeed, most everyone, could write
> a script to schedule a dialup operation: what most people can't do is break
> into a well protected private network across a dial-up DHCP address, traverse
> a firewall and then add that script to someone else's machine(s) behind
> all that security. When I left the connection was off, when I returned the
> script had executed and my modem had been connected. I don't really know
> *why* it was done as I didn't have any resources particularly worth bothering
> with and 56k isn't much use for DDOS attacks, etc.
>
> I still agree 100% with your original point about it being about very, very,
> very unlikely that anyone would break into a dial-up users machines, I just
> wanted to offer my cautionary tale that it can and does happen.
>
> All a bit off-topic probably, I somehow can't help getting involved whenever
> I see security discussions! And I also keep mentioning Linux so I'll go
> back to being quiet now and will try to remember that this is a PPC list.
> Apologies all :)
>
> [Mat]
Just a dumb thought.....
If you were number crunching, for something like Distributed.net, and it
needed to send packets, the other computers would ask for an internet
connection and the linux box would grant it.
Didn't know if you had anything like that set up.
When I was using OS/2 Warp 4 with Injoy (a dialup-sharing program with
firewall), if I didn't make sure that either
(a) the other machines were off, or
(b) any programs that could make a TCP/IP request were closed
a program could make the OS/2 box connect to the internet without my
knowledge. I ended up turning off the automatic dialing option and manually
connecting when I wanted to.
Brian Futrell
--
Macs: "PowerTower": 9500/200 128M/2x4.3GB/USB/9.2.2
"FrankenMac": 8500/180 7200 case 96M/4.3GB/8.1-PC Card 166/80/DOS
"Goliath": Q900 64/1GB/7.6.1
"TinyTim": P475 20/1GB/7.6.1
--
PCI-PowerMacs is sponsored by <http://lowendmac.com/> and...
Small Dog Electronics http://www.smalldog.com | Refurbished Drives |
-- Sonnet & PowerLogix Upgrades - start at $169 | & CDRWs on Sale! |
Support Low End Mac <http://lowendmac.com/lists/support.html>
PCI-PowerMacs list info: <http://lowendmac.com/lists/pci-powermacs.shtml>
--> AOL users, remove "mailto:";
Send list messages to: <mailto:[EMAIL PROTECTED]>
To unsubscribe, email: <mailto:[EMAIL PROTECTED]>
For digest mode, email: <mailto:[EMAIL PROTECTED]>
Subscription questions: <mailto:[EMAIL PROTECTED]>
Archive:<http://www.mail-archive.com/pci-powermacs%40mail.maclaunch.com/>
Using a Mac? Free email & more at Applelinks! http://www.applelinks.com
