Message boards :
Cafe SETI :
Some Little Known Computer Info Just For SETI Users
Message board moderation
Author | Message |
---|---|
AC Send message Joined: 22 Jan 05 Posts: 3413 Credit: 119,579 RAC: 0 |
The NTFS filing system contains Alternat Data Streams (ADS) wich are located within normal system and program files, and are hard to detect by your operating system. A malicious hacker can install a "hacker tool", Trojan Horse, or other spy tool in the ADS wich sometimes escapes detection by antivirus scanners. It's commonly known that ADS was meant to support the MAC Hierarchical File System... hehe. A little well placed birdy told me that a certain "agency" with a three letter abreviation was really behind this! |
Captain Avatar Send message Joined: 17 May 99 Posts: 15133 Credit: 529,088 RAC: 0 |
> The NTFS filing system contains Alternat Data Streams (ADS) wich are located > within normal system and program files, and are hard to detect by your > operating system. A malicious hacker can install a "hacker tool", Trojan > Horse, or other spy tool in the ADS wich sometimes escapes detection by > antivirus scanners. > > It's commonly known that ADS was meant to support the MAC Hierarchical File > System... hehe. > > A little well placed birdy told me that a certain "agency" with a three letter > abreviation was really behind this! > So whats the Fix? |
Captain Avatar Send message Joined: 17 May 99 Posts: 15133 Credit: 529,088 RAC: 0 |
http://www.windowsecurity.com/articles/Alternate_Data_Streams.html |
AC Send message Joined: 22 Jan 05 Posts: 3413 Credit: 119,579 RAC: 0 |
> > The NTFS filing system contains Alternat Data Streams (ADS) wich are > located > > within normal system and program files, and are hard to detect by your > > operating system. A malicious hacker can install a "hacker tool", Trojan > > Horse, or other spy tool in the ADS wich sometimes escapes detection by > > antivirus scanners. > > > > It's commonly known that ADS was meant to support the MAC Hierarchical > File > > System... hehe. > > > > A little well placed birdy told me that a certain "agency" with a three > letter > > abreviation was really behind this! > > > > So whats the Fix? > > Well Captain Avatar... there are a couple of monitoring progs out there that check for changes in files, but I would suggest something a little more simple like a GOOD wiping utility that destroys ADS's by overwriting them altogether. I think a utility like East-Tec Eraser would just do the job pretty well. > |
wrzwaldo Send message Joined: 16 Jul 00 Posts: 113 Credit: 1,073,284 RAC: 0 |
> > The NTFS filing system contains Alternat Data Streams (ADS) wich are > located > > within normal system and program files, and are hard to detect by your > > operating system. A malicious hacker can install a "hacker tool", Trojan > > Horse, or other spy tool in the ADS wich sometimes escapes detection by > > antivirus scanners. > > > > It's commonly known that ADS was meant to support the MAC Hierarchical > File > > System... hehe. > > > > A little well placed birdy told me that a certain "agency" with a three > letter > > abreviation was really behind this! > > > > So whats the Fix? > > Try This. And This. <img src="http://boinc.mundayweb.com/seti2/stats.php?userID=2259&team=off"> |
AC Send message Joined: 22 Jan 05 Posts: 3413 Credit: 119,579 RAC: 0 |
> > > The NTFS filing system contains Alternat Data Streams (ADS) wich > are > > located > > > within normal system and program files, and are hard to detect by > your > > > operating system. A malicious hacker can install a "hacker tool", > Trojan > > > Horse, or other spy tool in the ADS wich sometimes escapes detection > by > > > antivirus scanners. > > > > > > It's commonly known that ADS was meant to support the MAC > Hierarchical > > File > > > System... hehe. > > > > > > A little well placed birdy told me that a certain "agency" with a > three > > letter > > > abreviation was really behind this! > > > > > > > So whats the Fix? > > > > > > Try This. <a> href="http://www.heysoft.de/Frames/f_faq_ads_en.htm">And This.[/url] > I've tried this util some months ago, and found that it has inaccurate scanning results. |
7822531 Send message Joined: 3 Apr 99 Posts: 820 Credit: 692 RAC: 0 |
It's commonly known that ADS was meant to support the MAC Hierarchical File System... hehe. Ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha - I'm not rolling on the floor. |
AC Send message Joined: 22 Jan 05 Posts: 3413 Credit: 119,579 RAC: 0 |
> It's commonly known that ADS was meant to support the MAC Hierarchical File > System... hehe. > Ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha ha > ha ha ha - I'm not rolling on the floor. > I'm glad to hear that your not rolling on the floor... hehe. But the ADS support concept was being pushed so that it could be possible to deploy reconaissance and data interception tools in a computer system with NTFS. |
Captain Avatar Send message Joined: 17 May 99 Posts: 15133 Credit: 529,088 RAC: 0 |
> But the ADS support concept was being pushed so that it could be possible to > deploy reconaissance and data interception tools in a computer system with > NTFS. > I take it the feds all use Apples? |
AC Send message Joined: 22 Jan 05 Posts: 3413 Credit: 119,579 RAC: 0 |
> > > But the ADS support concept was being pushed so that it could be possible > to > > deploy reconaissance and data interception tools in a computer system > with > > NTFS. > > > > I take it the feds all use Apples? > I didn't specify that it was the feds. But THEY do like to use D.I.R.T. (Data Interception by Remote Trasmission). |
Siran d'Vel'nahr Send message Joined: 23 May 99 Posts: 7379 Credit: 44,181,323 RAC: 238 |
> > > But the ADS support concept was being pushed so that it could be possible > to > > deploy reconaissance and data interception tools in a computer system > with > > NTFS. > > > > I take it the feds all use Apples? > Well, their not using oranges or plums. ;-) L8R.... T'Khasi Time: Tuesday, 15 February 2005 - 07:39 PM --800 (Pacific Standard Time) CAPT Siran d'Vel'nahr - L L & P _\\// Winders 11 OS? "What a piece of junk!" - L. Skywalker "Logic is the cement of our civilization with which we ascend from chaos using reason as our guide." - T'Plana-hath |
Captain Avatar Send message Joined: 17 May 99 Posts: 15133 Credit: 529,088 RAC: 0 |
> > > > I take it the feds all use Apples? > > > > Well, their not using oranges or plums. ;-) > Careful Siran your druelling juice all over the keyboard. |
Paul Zimmerman Send message Joined: 22 Jan 05 Posts: 1440 Credit: 11 RAC: 0 |
I''m a fed ....now? |
Siran d'Vel'nahr Send message Joined: 23 May 99 Posts: 7379 Credit: 44,181,323 RAC: 238 |
> > > .... > Careful Siran your druelling juice all over the keyboard. > At least it's not apple juice. ;-) L8R.... T'Khasi Time: Tuesday, 15 February 2005 - 07:54 PM --800 (Pacific Standard Time) CAPT Siran d'Vel'nahr - L L & P _\\// Winders 11 OS? "What a piece of junk!" - L. Skywalker "Logic is the cement of our civilization with which we ascend from chaos using reason as our guide." - T'Plana-hath |
Captain Avatar Send message Joined: 17 May 99 Posts: 15133 Credit: 529,088 RAC: 0 |
> I''m a fed ....now? Who called you a fed? Didn't they say fred? |
Siran d'Vel'nahr Send message Joined: 23 May 99 Posts: 7379 Credit: 44,181,323 RAC: 238 |
> I''m a fed ....now? > Let's see what Timmy comes back with. @Timmy: Come on Timmy, I want to see a witty comeback to this. ;-) L8R.... T'Khasi Time: Tuesday, 15 February 2005 - 07:56 PM --800 (Pacific Standard Time) CAPT Siran d'Vel'nahr - L L & P _\\// Winders 11 OS? "What a piece of junk!" - L. Skywalker "Logic is the cement of our civilization with which we ascend from chaos using reason as our guide." - T'Plana-hath |
Fat B Send message Joined: 3 Apr 99 Posts: 1688 Credit: 4,205,162 RAC: 0 |
An apple a day keeps the feds at bay... |
AC Send message Joined: 22 Jan 05 Posts: 3413 Credit: 119,579 RAC: 0 |
> An apple a day keeps the feds at bay... > > > Well Fat B, try this instead of an apple: HookProtect. |
7822531 Send message Joined: 3 Apr 99 Posts: 820 Credit: 692 RAC: 0 |
Or use EXT3+SELinux, or HFS+J with FileVault-ed 128-bit OtF encrypting... .o0(Hmm... "Do not use obscene language or threaten other participants; we may delete such messages." Methinks that Berkeley a-stretches ye avatar columnae with message a-proof of how profundly the users have sunketh...) |
Captain Avatar Send message Joined: 17 May 99 Posts: 15133 Credit: 529,088 RAC: 0 |
> > I''m a fed ....now? > > > > Let's see what Timmy comes back with. > > @Timmy: Come on Timmy, I want to see a witty comeback to this. ;-) > > L8R.... > > T'Khasi Time: Tuesday, 15 February 2005 - 07:56 PM --800 (Pacific Standard > Time) > [url=http://www.summercon.org/2003/hackers_and_feds.jpg] |
©2024 University of California
SETI@home and Astropulse are funded by grants from the National Science Foundation, NASA, and donations from SETI@home volunteers. AstroPulse is funded in part by the NSF through grant AST-0307956.