Slashdot Mirror

I believe you're looking for Driftnet (for linux, etc.).
There is also a program for Macs called EtherPeg which does the same thing; I believe it was the original one.

...or just use a packet grabber and look for images in the traffic dump with Driftnet.

Well, a proxy might be easier. There are a bunch of tools that let you extract images from a network stream. Tune it to look for particular file types, file sizes or file names, and you are ready to go.

Let them try and hijack your browser; you can hijack the connection between them and you.

Still, I'd be interested to see if someone hacks a snooper that will sniff photos out of the air and display them...


There's already an app that does this for a LAN. It's called driftnet. So, if you have access to the same wireless LAN on which the data is being transmitted, you already can do this.

Most Slashdotters should love the fellow who did this quiz!!! http://ex-parrot.com/~chris/moral.html

Most Slashdotters should love the fellow who did this quiz: http://ex-parrot.com/~chris/moral.html

Sorry--meant to say Driftnet. EtherApe is something completely different altogether (although still pretty spiffy.)

That would be driftnet - it displays images in a window, and the site mentions that there is a screensaver derived from it.

I run it every now and again when I'm bored on the proxy server I maintain. Fun to see random imagees mixed together..

Does thee get tempted with EtherPEG or Driftnet?

I'm a huge fan of iftop, a Curses-based interactive network load monitor.

Similarly, there's also ApacheTop, which does something similar based on monitoring of the Apache HTTP server's logs.

D'oh! At first I wondered why /. was posting about capturing naughty pictures by using driftnet with webcollage.

I tried this once but my screen's too visible to my boss whenever he snoopes around the cubefarm. The first porn pic I saw I decided I'd better shut webcollage down.

I'm glad someone's having fun. But they're either braver or dumber than me

Since the above is for Mac only, on the linux side of the house lives Driftnet.

We have one guy in our office that watches porn for an hour twice daily - at 11 & 4. We all gather around the machine running driftnet, fire up ethereal & etherape on another, and watch along. It is unofficially known as the "Hour of Power Pr0n".

driftnet similar, runs on linux and depends on - surprise - libpcap.

"networks became a lot more funny when me and my nic found the pleasures of promiscuousness"

You may also be interested in Driftnet

Cause its fun!

Red Hat / Fedora packages at Dag's apt repository

What about driftnet?! Who are YOU to point fingers if you don't even mention driftnet?

;)

The best web-based version is ntop, which is another one of those "Oh my god, this is SOOO cool" tools, similar to ethereal. It lets you drill-down through a fair bit of data, and pages load fast and it's virtually real-time, so you can bang on the reload key and see a similar sort of data that etherape/iftop would give you. It has a daemon piece and a CGI piece, so installing it via a package (eg. apt-get install ntop) may be much prefered to installing it by hand.

I'm 17. Here's what I would do. I mean, I used to have a porn problem, and it ended up making me just feel guilty all the time. I wished that I had never started.
That said, here were some things, from my point of view, that would have prevented me.
Keep the door open, and face the computer to the door. Thats good. Don't put a lock on the door, make sure they keep it open. Initiate corrections for door closure.
Network your house and install a VNC server on their computers. Tell them you can see their screen, and demonstrate it for them. If you want to get better, get one that they use at schools that are harder to remove. LANSchool comes to mind.
Install driftnet on a computer you own, set it up so it saves and records all images passing through the network. You can set the limit of downloaded images to be pretty small, but its the fear factor we're after. Explain to them you see, and record all graphics that get transfered over the net.
If you have a firewall, log dns requests, explain that to them too.
With the exception of the VNC server, this setup lets them have total administrative control of their computer. They can install windows, linux, or use a mac, and you still know what domain names or pictures they access, which is enough. If they know you can, then they won't do things they're not supposed too.

Thats my $0.02

at the next G8 meeting or protest rally. How long 'til protestors -- or police -- are using this to keep everyone up-to-date on what's happening? And how much longer after that 'til police -- or protestors -- are using something like Driftnet to see what's being photographed?

Thats a big regex
stupid filter wouldn't let me paste the regex here XD

Use driftnet.

www.ex-parrot.com/~pete/copycontrol.html
My account of my first copy control cd - I can copy it but I can't play it. Includes possibly the worlds shortest patch to break the copy control technology.
WARNING - this page might be a violation of the DMCA but I'm British so [currently] I don't care.

You are thinking of Driftnet. And this is not limited to wireless networks without WEP. Once you have the WEP key (trivial if you work at the origanization, slightly less than trivial if not), you still receive all packets travelling across the network. Much like a hub, which will also work with Driftnet. Certain cable networks allow you to see peers within your local segment too.

Driftnet by itself is slightly limited display-wise. It does have a basic realtime image viewer, but I've found that plugging it into xscreensaver is much more enjoyable.

Give the kids a class-topic wiki/blog and let the computers become a tool for student-student, student-grad.assistant, and student-prof communication. The prof could bring a grad.assistant to each class and have him/her answer questions that students have about the lecture in near-realtime as they appear on the wiki/blog. Give shy students a way to ask questions. Bonus points for students that answer each other's questions before the grad.assistant.

The profs are lagging behind the students. The students have rushed forward in a somewhat haphazzard fashion, but think of it as a case of spitballs and doodles. One doesn't end spitballs by taking away all paper or doodles by taking away all writing impliments. The best thing to do is to give the students something better to do with the tools. Some virtues that will draw their attention better than the available vices.

The ancient PGP client had an "eyes only" mode that did the same thing: it decrypted the data, displayed it, then wiped the memory where the cleartext had been, never writing anything to disk. It would have been impossible to get the cleartext out of PGP without some really intrusive method, like somehow reading the actual memory pages of the PGP process, or trojaning the PGP binary itself.

Actually it's a lot simpler: use a terminal program that allows you to save the output to disk and you've got your perfect copy.

The same thing can be done for any music format that can be played on a computer. Just create a sound device that saves the digital music stream to disk instead of playing it. It has been done and it's pretty easy (see this page).

The only way around this is to handle the decryption of the data in the audio hardware or to make it impossible to use non-official drivers like Microsoft tries to do with Palladium.

I looked at this book in the bookstore, and everything was either obvious or useless. Maybe this book would have helped me when I didn't know anything about ssh, but between the man pages and Google groups everything you need is available.
What really irritated me was the authors' handling of timeouts and keepalives. It's quite common to be stuck behind a firewall that closes all idle TCP connections. The ssh keepalive functionality does not address this - it's for disconnecting dead sessions, not keeping sessions alive. You need to send some "filler" packets through the TCP connection when it's idle.

This is a frequently asked question. The answer of this book is that you shouldn't send keepalive packets because if "the sysadmin" configured a firewall to kill idle connections, you should just accept this restriction. I hope I don't have to explain how completely wrong this is. Increasingly big organizations have a firewall configured by people who are totally unresponsive.

Anyway, I solved the problem by applying this patch.

One of the book's authors responds to this question on Usenet with the same unhelpful answer found in the book.

Well, not quite, but it was inspired by it. See DriftNet.

Needs GTK, libpcap.

drifnet does about the same. It really is a nifty background for your desktop as well ;-)

Have you seen this software? It's a psuedo Windows NT sound driver that intercepts a sound output (from, say, cdplayer.exe) and saves it to a .WAV file. Yes, it's still D->A A->D but at least your audio doesn't have to travel through that crappy $2.95 Radio Shack patch cable attached to your sound card.

I found this link on Chris Lightfoot's software page.