Hardware Analysis Community Forums http://www.hardwareanalysis.com/content/topic/69824/ 2008-11-22T17:56:10-05:00 http://www.hardwareanalysis.com/content/topic/69824/ http://media.hardwareanalysis.com/halogo.gif text/html 2007-12-05T20:24:49-05:00 H F http://www.hardwareanalysis.com/content/topic/69824/#521442 Yeah, I would definitely be more secretive and less outspoken if I really was gonna do something breaking rules, but I'm really fed up with people either not caring, saying &quot;well, I don't care if I'm not doing anything illegal&quot; and/or laughing at me for caring or simply failing to grasp the concept. I just need some mental support really. Deplorable was a good word btw. It's about principles which seems non-existent for most people.<br /> <br /> Still interested in advice though. text/html 2007-12-05T18:33:57-05:00 Beavis Khan http://www.hardwareanalysis.com/content/topic/69824/#521427 SOL = s**t outta luck<br /> <br /> I didn't say there was no way around the keyloggers - just that you weren't likely to make it happen. By all means, have at it, but the fact that you're soliciting advice in a forum like this says to me that you're going to get caught if you try anything silly. I'm not defending the university's behavior - I think it's deplorable, as it happens. Just be sure you're willing to risk your education if you do try to circumvent the keyloggers.<br /> <br /> Edit - FWIW, this post was not meant to be an insult. Just as a dose of reality. Sometimes I'm a little more blunt than is advisable. text/html 2007-12-05T16:50:29-05:00 H F http://www.hardwareanalysis.com/content/topic/69824/#521422 Well, you're wrong really, since there are stuff like GUIs nowadays which makes it harder to reproduce what exactly I'm doing, besides I could launch it through another legitimate process or through a REST web service or a data stream or whatever. The point being that I'm not talking about killing processes, but just fooling it, which per definition isn't tampering with _it_.<br /> <br /> Btw... what does SOL mean?<br /> <br /> Imagine using a TOR circuit to SSH with SSL/TLS encryption into a computer into another country then downloading copyrighted material; they'd never know and from merely doing that connection without the downloading I'm not breaching any contracts what so ever.<br /> <br /> Similarily, if I just intercept the traffic or somehow send faux keystrokes (I can just say I got spams!), I'm not tampering with the computer per definition, as when I close my process the effect wears off. <img src="http://media.hardwareanalysis.com/smilies/smile1.gif" width="14" height="14" border="0" alt=":)" title=":)"> Plus, I want to get tips on HOW to do it not saying that I WILL...! It's simply a grey area and I consider it just as bad behaviour to log keystrokes, which I think should obviously be illegal and punished with jail max. 2 years, just as saving other people's passwords un-hashed should be!<br /> <br /> I mean, look at the government here putting a camera in everyone's face &quot;for anti-terrorist reasons&quot;, still managing to loose 25 million children's and parent's personal details by sending it through the mail! text/html 2007-12-05T16:42:52-05:00 Beavis Khan http://www.hardwareanalysis.com/content/topic/69824/#521421 Well...my guess is you're basically SOL then, unless you want to risk getting suspended/expelled for screwing with the uni computer system. Unless you can disable the keylogger without allowing logging of the keystrokes necessary to do that, you'd be giving them evidence of your misbehavior... <img src="http://media.hardwareanalysis.com/smilies/smile16.gif" width="14" height="14" border="0" alt=":/" title=":/"> text/html 2007-12-05T16:27:26-05:00 H F http://www.hardwareanalysis.com/content/topic/69824/#521416 Thanks for your replies...<br /> <br /> Ross: Indeed, it is interesting. I can imagine it would be very good to turn on should I ever take a job as a software tester, because trying to crash software very often demands determinism, so then I would be able to retrace my steps through the keylogger (and a small program registering mouseclicks and saving screenshots per mouseclick for example). But turned against you is another matter.<br /> <br /> I actually think they send it directly to a server over the network through a non file-protocol, but I can't be sure, obviously; because they need to know whos typing they're looking at and wouldn't /var/ &amp;&amp; /bin/ be per machine as opposed to per user?<br /> <br /> Beavis: Yeah, that's right. They are also clustering the computers as a big &quot;super&quot;computer, so I'm not allowed to turn them off. It's also possible to VPN/SSH into the computers which means that there may be any number of users on a single machine at a given moment... Plus, they got video cameras everywhere so they'd see me turning it off, plus the whole development environment is on those comps plus the fact that they got custom callable programs installed which I need to use... (Like postgresql etc) text/html 2007-12-05T15:51:49-05:00 Beavis Khan http://www.hardwareanalysis.com/content/topic/69824/#521411 Knoppix? Although I'd assume if they're going to bother with keyloggers they're going to prevent you from booting off CD... text/html 2007-12-05T15:40:11-05:00 Ross McFarland http://www.hardwareanalysis.com/content/topic/69824/#521409 I know this is of no use to you, but I thought I would mention I find it a very interesting topic.<br /> <br /> Reading through some Linux and Kubuntu forums I see that by default all this key-stroke information can be very easily traced and stored* and it requires software to transform it into something a little more manageable for Johnny Admin to read through.<br /> <br /> *I won't attempt to name where, I am a Linux Noob but I think they were talking about /var/ or /bin/ or something. text/html 2007-12-05T13:57:20-05:00 H F http://www.hardwareanalysis.com/content/topic/69824/#0 Dear Everybody,<br /> <br /> I go to a high-ranked computing program in the UK (now u know which), which feels that security is the world and then some! I bet they would sell me as a slave if that meant free security guards for a year! Because they got a fair number of those.<br /> <br /> Anyways, the computing department feels it's their obligation to spy on its users. This includes logging everything besides the actual content of what's being downloaded, literally, so they log all the keystrokes you do on the computers, all IPs you visit/connect to, all of the file-names you download etc. It's the same for the halls, besides the keyloggers because I got my own computers.<br /> <br /> The problem I have with this is that they are actually saving all my passwords as they go! Even though they have obviously encrypted it, it means that my password and everyone else's passwords are dependant on that single encryption. Sure, it would take a while to break it if they are using e.g. AES/Blowfish/Serpent/Twofish/whatever, but it's also the feeling that some dude with that password has access to whatever account I log into given some time to shift through the logs.<br /> <br /> They are using Kubuntu 6.10 as far as I know... I'm not that into linux world, but how exactly can I obfuscate or otherwise disable their logging? I'm fairly sure it's not a series of hardware loggers since I haven't found any extra extensions to any keyboard, so they must be processes... I guess I could send keystrokes to Linux from a program I program myself to intersperse the whole log with fake keystrokes, but that would obviously then do those keystrokes as well...<br /> <br /> I'm thinking if someone knows a way to monitor which processes are sending information/storing information as I type? Linux is supposedly possible to debug to 6 levels or something so somewhere somehow I should be able to get what process is doing it, right?<br /> <br /> I google for keylogger and only hacking/spying activities come up -- or is this actually one of the few unis that admit what they are doing? Or perhaps one of the few that's doing it?