tag:blogger.com,1999:blog-4088979.post2804547031734066033..comments2023-10-16T06:06:25.012-04:00Comments on TaoSecurity Blog: Examining the MPAA University ToolkitRichard Bejtlichhttp://www.blogger.com/profile/13512184196416665417noreply@blogger.comBlogger7125tag:blogger.com,1999:blog-4088979.post-55433488058694281942007-12-18T02:12:00.000-05:002007-12-18T02:12:00.000-05:00Hi, I would like to know how could we add the GPRS...Hi, I would like to know how could we add the GPRS (GTP) tunnneling protocol layer dection in SNORT ? <BR/>in GPRS network we have the GTP layer being implemented and we would like to let SNORT perform the GTP layer analysis at the same time..thanksAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-44024724351534248072007-12-14T02:48:00.000-05:002007-12-14T02:48:00.000-05:00This comment has been removed by a blog administrator.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-85160745350078380412007-12-05T13:46:00.000-05:002007-12-05T13:46:00.000-05:00wiretapping is morally and legally wrong and most ...wiretapping is morally and legally wrong and most organizations/universities don't tread the murky legal grounds of making students and faculty sign waivers to monitoring; but even the smallest campus can justify its actions and flex it minute legal muscle in so far as DCMA is concerned. Most universities don't need this CD to block or monitor p2p because they already have the technology and mechanisms in place to do so after 9/11. Guess what, and this is all over the net, that there are people hired to conduct covert operations and development for the MPAA to entrap us poor consumers. Yup! Mr Bejtlich you are right, they'll be back. Joe, network monitoring is very illegal if you don't own the network, and schools actively try to investigate monitoring activity, especially because many schools still use networks with a limited number of switches/routers (using lots of cheap hubs: YUK!). "Anonymous", its trivial to cause most switches to fail open so they effectively acts as hubs, so students can view others network activity by setting their nics in promiscuous mode thereafter. Hey, I am on one side of the fence, the one that supports FOSS even in the arts. This is the era of change after all.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-70645182507683437382007-12-04T09:54:00.000-05:002007-12-04T09:54:00.000-05:00Gone for now, but I bet it will return.<A HREF="http://yro.slashdot.org/article.pl?sid=07/12/04/015229" REL="nofollow">Gone for now</A>, but I bet it will return.Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-6770399398109396612007-12-04T07:23:00.000-05:002007-12-04T07:23:00.000-05:00"What's constantly being understated is that you n..."What's constantly being understated is that you need a password to get access to the ntop data. Any university student could setup all this software themselves but the peerwatch cd just makes it easier"<BR/><BR/>btw, you didn't need a password to access the NTOP data. That was one of the biggest problems about the privacy aspect. And students could install this but they could only see their own traffic. If a network admin properly placed this tool it could see all the traffic on the network and since it had no password at the time could allow anyone to see traffice to/from other hosts.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-48158199351074860682007-11-26T12:40:00.000-05:002007-11-26T12:40:00.000-05:00Richard - If there was something to be worried abo...Richard - If there was something to be worried about ... Would you be one of the ones worried? This was just a proof of concept, and it's goals are not to catch all illegal downloading. It's designed to help administrators identify that 1)p2p is in use ... Not nail poor hungry college students or bloggers / sans speakers. It's disturbing to see how badly people spin things. Seeing it compared to the sony rootkit is like comparing apples and hand grenades. What's constantly being understated is that you need a password to get access to the ntop data. Any university student could setup all this software themselves but the peerwatch cd just makes it easier. Maybe it will jumpstart a new network engineer into the field.<BR/>As far as privacy and wiretap goes, don't users at universities need to sign agreements, right-to-monitor etc? It seems reasonable that universities should be concerned with the issue from a bandwidth perspective alone. Just my 2cents.joehttps://www.blogger.com/profile/15281753023386599243noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-88516652769831054122007-11-24T03:35:00.000-05:002007-11-24T03:35:00.000-05:00Sad to see some of our Bleeding Threats rules in t...Sad to see some of our Bleeding Threats rules in there, but that's how it goes. BSD license means free for all, not just the people we approve of. <BR/><BR/>Matt JonkmanMatt Jonkmanhttps://www.blogger.com/profile/16986658947802201086noreply@blogger.com