You can always sniff the connection, which will show you absolutely everything. On Wed, 27 Jun 2001 ebrastow@automatedemblem.com wrote: > I wanted to thank everyone for their help and advice with this issue. My > friend is feeling a little better with some more knowledge under her belt, > and you guys/girls have been really, really helpful to her. She's run a > program called Who's Watching Me, which she got from Tucows. It's supposed > to find any Trojans that may be on your computer. It didn't find anything, > which means either he's already removed it after knowing we were onto him, > or that it's just not detectable by that program. Two up-to-date antivirus > runs, McAfee and Trend, found nothing, too. Any other good programs/methods > that could find something like this? > > Thanks again, > > Evan > > > > -----Original Message----- > From: Alvin Oga [mailto:alvin.sec@Mail.Linux-Consulting.com] > Sent: Tuesday, June 26, 2001 7:49 PM > To: Ron DuFresne > Cc: Delcourt, Rick; Evan Brastow; firewalls@pluto.gnac.com > Subject: RE: T1 and logs > > > hi ya > > usually the local police does NOT do anything about cyber-crimes... > > but if its a criminal issue... they might be willing to do more ... > > if there is $10K or was it $15k of damages... than the FBI gets involved > and is interested in nailing cyber-criminals... > - at least thats what we needed to show to get them involved > and i think they confiscated about 15 servers... > > if this hacking/sniffing/stalking is in silicon valley area... > we'd be interested in tracking that hacker/cracker/sniffer down > > and if nothing else... she needs to reinstall her OS and other stuff > to minimize her chances that he is in there with a trojan ... > - and apply all the MS security patches.. if she is using MS > and/or other os and its patches > > - or spend the time to find out what/how he is in there... > > have fun linuxing > alvin > http://www.Linux-Sec.net/Patches -- list of security updates > > > On Tue, 26 Jun 2001, Ron DuFresne wrote: > > > > > This lady needs to contact the local police. She is being stalked and > > needs to have this dealt with by the proper authorities. chances are good > > that even if he losses interest in her, unless his actions are checked, > > he'll most likely direct the same stalking methods on someone else down > > the road. > > > > Thanks, > > > > Ron DuFresne > > > > On Tue, 26 Jun 2001, Delcourt, Rick wrote: > > > > > > > > Evan, > > > This is utter hogwash. I have worked with T1 lines for the better > > > part of 8 years and they are not much different than dial-up, ISDN or > DSL. > > > Just faster and permanent. They are usually supplied by one of the > > > telecommunications companies, such as ATT, Sprint or MCI. And as far as > I > > > know, they only charge you an installation fee and monthly service fee. > They > > > DON'T require bonds! > > > > > > Tell your friend to ask this guy for his contractor ID or DoD access > > > tag number. Since he is supposed to be working for the government and > has > > > ALREADY compromised his security clearance, this info is now accessable > by > > > the public. :-) If that doesn't work, just tell her to put him on her > ignore > > > list (or whatever is comparable). > > > > > > Mike > > > > > > -----Original Message----- > > > From: ebrastow@automatedemblem.com [mailto:ebrastow@automatedemblem.com] > > > Sent: Tuesday, June 26, 2001 12:16 PM > > > To: firewalls@pluto.gnac.com > > > Subject: OT: T1 and logs > > > > > > > > > This is so off-topic and non-business related that I would almost expect > a > > > few flames, but I'm curious, and a friend of mine is rather scared, so > I'm > > > hoping a few of you might help out. > > > > > > A friend of mine chats online on a service call "PalTalk". Apparently, > she's > > > run into a guy that, I think, is trying to intimidate her. She doesn't > know > > > much about computers, and where she knows I work with them, she asked me > a > > > question about her situation. However, I've never worked with a T1 line, > so > > > I can't really answer her. > > > > > > Here's the deal. I guess on PalTalk, you can chat in an open room, or > you > > > can chat with someone in what they call a private message, or private > chat, > > > or something. Apparently, he's been kind of stalking her. He'll tell her > > > things like he can see who she talks to and what she says in these > private > > > chats. He's told her that he worked for the DoD in "computer > intelligence". > > > For many years. She didn't believe much of this until one day he > actually > > > *did* repeat some stuff to her that she said in a private chat with > someone > > > else, so now she's scared. > > > > > > Here's a snippet of her words to me about what he's told her: > > > > > > "He talks about his T1 Connection as a "backbone" and "the network". He > says > > > that periodically, and each time it goes down and comes back online, he > is > > > required by government regulations to go over network activity reports > that > > > are generated. He says they are all to do with whatever he is involved > > > with.. and if he's involved with chat rooms.. then he sees "contacts" > > > between people in the room. He is supposed to "check off" on the > activity > > > to verify that its correct. And if he sees any irregular activity or if > > > something is incorrect, he has to report it. He says that he had to get > a > > > $50,000 bond just to have this T1 connection." > > > > > > This sounds to me like utter bologna, but before I giver her bad > > > information, I wanted to check with those of you that maybe do use T1 > lines > > > and see if any of this could be true? > > > > > > Thanks, > > > > > > Evan > > > _______________________________________________ > > > Firewalls mailing list > > > Firewalls@lists.gnac.net > > > http://lists.gnac.net/mailman/listinfo/firewalls > > > _______________________________________________ > > > Firewalls mailing list > > > Firewalls@lists.gnac.net > > > http://lists.gnac.net/mailman/listinfo/firewalls > > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ > > "Cutting the space budget really restores my faith in humanity. It > > eliminates dreams, goals, and ideals and lets us get straight to the > > business of hate, debauchery, and self-annihilation." -- Johnny Hart > > ***testing, only testing, and damn good at it too!*** > > > > OK, so you're a Ph.D. Just don't touch anything. > > > > _______________________________________________ > > Firewalls mailing list > > Firewalls@lists.gnac.net > > http://lists.gnac.net/mailman/listinfo/firewalls > > > _______________________________________________ > Firewalls mailing list > Firewalls@lists.gnac.net > http://lists.gnac.net/mailman/listinfo/firewalls > _______________________________________________ Firewalls mailing list Firewalls@lists.gnac.net http://lists.gnac.net/mailman/listinfo/firewalls