Boston Linux & Unix (BLU) Home | Calendar | Mail Lists | List Archives | Desktop SIG | Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings
Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU

BLU Discuss list archive


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

A win95 question



Derek,

Thanks for your note.

I've two concerns:

1. I want to be able to control it from the head end

2. It has to be transparent to the users, i.e., they won't tolerate anything that
they have to start each time they leave the machine, so I don't think a script would
do the trick.  Am I wrong?

Also, I'm REALLY worried about such a utility getting passed around - you know how
executives like to brag - and I'd greatly appreciate ideas on how its use can be
controlled from inside the firewall, so the modem pool managers don't get deluged
with "no access" complaints.

OK, here's some thoughts:

1.  A Java applet that the user starts, which logs into an Apache server and trades
packets.  Logon would be controllable per user.

2.  A TSR that Pings a particular IP, and closes down if it doesn't get a response.
(This would be VERY broad-gauge control, of course:  one switch for all users.)

3.  A web page on the Apache server which includes Javascript that pushes packets to
the client.

4.  A NTP program on the user's machines, set to check with a server inside the
firewall, and (somehow) available only to approved users.

Of course, this is all subject to the your reality checks. Thanks again.

Bill

Derek Atkins wrote:

> Why not a script that does something like:
>
> while (1)
>         ping [count=5] internalhost
>         sleep 60
> end
>
> This will send out ICMP ping traffic (and hopefully get responses)
> every minute, which should give the modem the idea that the user
> is still being active.
>
> -derek
>
> Bill Horne <bhorne at banet.net> writes:
>
> > Jerry,
> >
> > I'm sorry, I didn't make my request more clear.
> >
> > This will be an "indial only" setup: no PC-anywhere or other outdial use is
> > needed. The company uses SecurID cards to verify indial attempts, so everybody
> > has to initiate the connections FROM their PC, INTO the corporate modem pool.
> >
> > The people whom want this TSR are higher-level employees that get to break the
> > rules if they want, and they want to log on once and leave it as long as they
> > choose. In other words, they need a background program to run on Win95 boxes,
> > which will send "keepalive" packets at regular intervals, and fool the modem
> > pool controllers into thinking they're sitting at their PC's when they're not.
> >
> > I'd like to be able to control the TSR from inside the firewall, so that those
> > whom abuse it can be shut off/restricted/whatever, and (frankly) so that my
> > friend can cover his butt if someone higher up doesn't like it.
> >
> > All suggestions welcome.
> >
> > Bill
> >
> > Jerry Feldman wrote:
> >
> > > Bill,
> > > Most telecommunications products for Windows have the capability to support
> > > inward dial for both fax modem and voice. The question is does he want to
> > > be able to dial in to his Windows system and actually run programs. What
> > > you are looking for is something like Carbon Copy or PC Anywhere.
> > >
> > > I think you need to look at what he wants to accomplish. Also, that is a
> > > big security risk, because you are leaving an open hole in the internal
> > > network.
> > > Bill Horne wrote:
> > >
> > > > Thanks for reading this.
> > > >
> > > > I've been asked to come up with a Windows 95 TSR that will allow users
> > > > of a dialin modem pool to leave their machines unatended for long
> > > > periods.
> > > >
> > > > Now, I know that's a BAD IDEAtm, but the guy who's asking is an old
> > > > friend and he's in a bind.
> > > >
> > > > Please email me with suggestions on how to achieve this without a major
> > > > programming effort.  Ideally, the solution will allow logging & control
> > > > from the server end of the pool, so as to discourage use over time.  I'd
> > > > like to have an Apache server that trades "keepalive" packets with the
> > > > clients while they're unattended, and logs which machines are using it
> > > > and for how long.
> > > >
> > > > Thanks in advance.
> > > >
> > > > Bill Horne
> > > >
> > > > --------------ms43E54D46ECF6D1EEBBA698DC
> > > > Content-Type: application/x-pkcs7-signature; name="smime.p7s"
> > > > Content-Transfer-Encoding: base64
> > > > Content-Disposition: attachment; filename="smime.p7s"
> > > > Content-Description: S/MIME Cryptographic Signature
> > > >
> > > > MIIJ/QYJKoZIhvcNAQcCoIIJ7jCCCeoCAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHAaCC
> > > > B7QwggR+MIID56ADAgECAhBTmdEBn+7LRVcRW+X7EWHEMA0GCSqGSIb3DQEBBAUAMIHMMRcw
> > > > FQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29y
> > > > azFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9yZXBvc2l0b3J5L1JQQSBJbmNvcnAuIEJ5
> > > > IFJlZi4sTElBQi5MVEQoYyk5ODFIMEYGA1UEAxM/VmVyaVNpZ24gQ2xhc3MgMSBDQSBJbmRp
> > > > dmlkdWFsIFN1YnNjcmliZXItUGVyc29uYSBOb3QgVmFsaWRhdGVkMB4XDTAwMTIxMTAwMDAw
> > > > MFoXDTAxMDIwOTIzNTk1OVowggECMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UE
> > > > CxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9y
> > > > ZXBvc2l0b3J5L1JQQSBJbmNvcnAuIGJ5IFJlZi4sTElBQi5MVEQoYyk5ODEeMBwGA1UECxMV
> > > > UGVyc29uYSBOb3QgVmFsaWRhdGVkMSYwJAYDVQQLEx1EaWdpdGFsIElEIENsYXNzIDEgLSBO
> > > > ZXRzY2FwZTEVMBMGA1UEAxQMRXJuZXN0IEhvcm5lMR8wHQYJKoZIhvcNAQkBFhBiaG9ybmVA
> > > > YmFuZXQubmV0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDoPjbX3vm+FoKlj2IMlsZl
> > > > S/5KK0D14NWUT/RI+BTkq1IUb5B4y31VCQHmzeApgJBKgnRbqD0Rqi9OTETK/pdKaZGfYkSL
> > > > 2rIWtvBdMo3rermqDhttBdMCzQq7gxaWx+K5dif21TVi5UJmNjK1Vn9jdcUBfC9s5NZlNgSa
> > > > a2vsfwIDAQABo4IBJjCCASIwCQYDVR0TBAIwADBEBgNVHSAEPTA7MDkGC2CGSAGG+EUBBwEI
> > > > MCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LnZlcmlzaWduLmNvbS9ycGEwEQYJYIZIAYb4
> > > > QgEBBAQDAgeAMIGGBgpghkgBhvhFAQYDBHgWdmQ0NjUyYmQ2M2YyMDQ3MDI5Mjk4NzYzYzlk
> > > > MmYyNzUwNjljNzM1OWJlZDFiMDU5ZGE3NWJjNGJjOTcwMTc0N2RhNWQzZjIxNDFiZWFkYjJi
> > > > ZDJlODkyMTZhZjZiZjdkMDExNDk5Y2EyYjI0N2ZmZjNlYTQ1MGQwMwYDVR0fBCwwKjAooCag
> > > > JIYiaHR0cDovL2NybC52ZXJpc2lnbi5jb20vY2xhc3MxLmNybDANBgkqhkiG9w0BAQQFAAOB
> > > > gQCcxkZYdwgDbLiYLmH/RdAfh5DWwElxmz6LvITK8PEcXDqUktypVagvWcK4yjf05gNzXT5Y
> > > > XnBWCygwaWmzz/hJhmQQb+q69yG18F6ewjcmtEtg39EQPUZ7T/Fk36YgCn6VSuQtNMd5gdp8
> > > > kuUeS8LmCX/Khidda+NVHrJewlsdGDCCAy4wggKXoAMCAQICEQDSdi6NFAw9fbKoJV2v7g11
> > > > MA0GCSqGSIb3DQEBAgUAMF8xCzAJBgNVBAYTAlVTMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5j
> > > > LjE3MDUGA1UECxMuQ2xhc3MgMSBQdWJsaWMgUHJpbWFyeSBDZXJ0aWZpY2F0aW9uIEF1dGhv
> > > > cml0eTAeFw05ODA1MTIwMDAwMDBaFw0wODA1MTIyMzU5NTlaMIHMMRcwFQYDVQQKEw5WZXJp
> > > > U2lnbiwgSW5jLjEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazFGMEQGA1UECxM9
> > > > d3d3LnZlcmlzaWduLmNvbS9yZXBvc2l0b3J5L1JQQSBJbmNvcnAuIEJ5IFJlZi4sTElBQi5M
> > > > VEQoYyk5ODFIMEYGA1UEAxM/VmVyaVNpZ24gQ2xhc3MgMSBDQSBJbmRpdmlkdWFsIFN1YnNj
> > > > cmliZXItUGVyc29uYSBOb3QgVmFsaWRhdGVkMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKB
> > > > gQC7WkSKBBa7Vf0DeootlE8VeDa4DUqyb5xUv7zodyqdufBou5XZMUFweoFLuUgTVi3HCOGE
> > > > QqvAopKrRFyqQvCCDgLpL/vCO7u+yScKXbawNkIztW5UiE+HSr8Z2vkV6A+HthzjzMaajn9q
> > > > JJLj/OBluqexfu/J2zdqyErICQbkmQIDAQABo3wwejARBglghkgBhvhCAQEEBAMCAQYwRwYD
> > > > VR0gBEAwPjA8BgtghkgBhvhFAQcBATAtMCsGCCsGAQUFBwIBFh93d3cudmVyaXNpZ24uY29t
> > > > L3JlcG9zaXRvcnkvUlBBMA8GA1UdEwQIMAYBAf8CAQAwCwYDVR0PBAQDAgEGMA0GCSqGSIb3
> > > > DQEBAgUAA4GBAIi4Nzvd2pQ3AK2qn+GBAXEekmptL/bxndPKZDjcG5gMB4ZbhRVqD7lJhaSV
> > > > 8Rd9Z7R/LSzdmkKewz60jqrlCwbe8lYq+jPHvhnXU0zDvcjjF7WkSUJj7MKmFw9dWBpJPJBc
> > > > VaNlIAD9GCDlX4KmsaiSxVhqwY0DPOvDzQWikK5uMYICETCCAg0CAQEwgeEwgcwxFzAVBgNV
> > > > BAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQLExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMUYw
> > > > RAYDVQQLEz13d3cudmVyaXNpZ24uY29tL3JlcG9zaXRvcnkvUlBBIEluY29ycC4gQnkgUmVm
> > > > LixMSUFCLkxURChjKTk4MUgwRgYDVQQDEz9WZXJpU2lnbiBDbGFzcyAxIENBIEluZGl2aWR1
> > > > YWwgU3Vic2NyaWJlci1QZXJzb25hIE5vdCBWYWxpZGF0ZWQCEFOZ0QGf7stFVxFb5fsRYcQw
> > > > CQYFKw4DAhoFAKCBhjAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcBMBwGCSqGSIb3DQEJBTEP
> > > > Fw0wMDEyMTIwNDQ2NDBaMCMGCSqGSIb3DQEJBDEWBBS/sQ6t5M77C7lFQU6eJmWlsV5f+TAn
> > > > BgkqhkiG9w0BCQ8xGjAYMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMA0GCSqGSIb3DQEBAQUA
> > > > BIGAycKbR/5S81t+DKvurYr2vCXG2bjCzau2swFUMWfrukL+N5WxcfxBcXqXOOp2MRfXNI0h
> > > > UmOG+Usj0kmL1sDVMij8x/FSKIPqDpsxowcv94EHQQBUXVZZ+CerYr4ilbdzGn4C8rYnp5Nx
> > > > DtR8LANLVVt3h1AOg/1ozv0MpZ/q4+o=
> > > > --------------ms43E54D46ECF6D1EEBBA698DC--
> > > >
> > > > -
> > > > Subcription/unsubscription/info requests: send e-mail with
> > > > "subscribe", "unsubscribe", or "info" on the first line of the
> > > > message body to discuss-request at blu.org (Subject line is ignored).
> > > >
> > >
> > > --
> > > Jerry Feldman <gaf at blu.org>
> > > Boston Linux and Unix user group
> > > http://www.blu.org
> >
> > --
> > Bill Horne
> > (Remove '.nouce', if present, for direct replies.)
> >
> >
> > -
> > Subcription/unsubscription/info requests: send e-mail with
> > "subscribe", "unsubscribe", or "info" on the first line of the
> > message body to discuss-request at blu.org (Subject line is ignored).
>
> --
>        Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
>        Member, MIT Student Information Processing Board  (SIPB)
>        URL: http://web.mit.edu/warlord/    PP-ASEL-IA     N1NWH
>        warlord at MIT.EDU                        PGP key available
> -
> Subcription/unsubscription/info requests: send e-mail with
> "subscribe", "unsubscribe", or "info" on the first line of the
> message body to discuss-request at blu.org (Subject line is ignored).

-
Subcription/unsubscription/info requests: send e-mail with
"subscribe", "unsubscribe", or "info" on the first line of the
message body to discuss-request at blu.org (Subject line is ignored).




BLU is a member of BostonUserGroups
BLU is a member of BostonUserGroups
We also thank MIT for the use of their facilities.

Valid HTML 4.01! Valid CSS!



Boston Linux & Unix / webmaster@blu.org