Slashdot Mirror

← Back to Stories (view on slashdot.org)

Network Associates Buys "Better Carnivore"

Posted by michael on from the need-bigger-hard-drives dept.

ShaunC writes "CNet is reporting that Network Associates has just purchased a software company called Traxess, whose main product - DragNet - supposedly makes Carnivore look like a toy. DragNet is capable of monitoring everything from email to web, FTP sessions to IMs, even print jobs and VOIP conversations; sorting the protocols and logging it all to disk at gigabit speeds. One NAI exec envisions "the government using it to investigate employees and hackers." NAI has also issued a press release about DragNet."

13 of 243 comments (clear)

  1. Haha, suckers! by FortKnox · · Score: 4, Funny

    I am no longer filtering spam. I'll make those suckers wish they didn't monitor my email!!

    --
    Good quote, too many chars. Seriously, the slashdot 120 char limit sucks!
  2. Okay, this is a no-brainer, but... by StupidKatz · · Score: 5, Insightful

    Encrypt your traffic!

    They might see that it is SMTP traffic, but they can't see what you wrote. They might see it's web traffic, but they can't see exactly what it is. They might see an ssh session, but they can't sniff your root password. (Thanks to sftp, they can't grab your password there, either!)

    Since some protocol headers can't very well be encrypted, there's no good reason to try running services on alternate ports; maybe now I can finally get my friends to install PGP (or similar) on their machines.

    1. Re:Okay, this is a no-brainer, but... by drdink · · Score: 4, Informative

      Actually, I'd use IPSec. When you use IPSec, even the destination port is part of the encrypted payload. They wouldn't be able to tell what kind of traffic it was, just where it was headed.

      --
      Beware, Nugget is watching... See?
    2. Re:Okay, this is a no-brainer, but... by pesc · · Score: 5, Insightful

      Sorry, but encryption really does not solve the problem. It helps (a teeny weeny bit), but if you think you are safe just because you use encryption, think again.

      They might see that it is SMTP traffic, but they can't see what you wrote

      Yes, they can see that you are mailing newjobs@careerpath.com, sales@cybersex.com and tipping off anonymoustips@big.newspaper.com, but they can't see what you actually wrote.

      They might see it's web traffic, but they can't see exactly what it is
      They can see that you frequent www.goatse.cx, but they can't see what you saw. They may have to go there themselves...

      They might see an ssh session, but they can't sniff your root password
      They can see that you ssh to our.competitor.com and eevil.haxors.md, but can't see what you are doing. Time to target some other surveillance techniques on you!

      Yeah, you are leaving them completely in the dark by using super-duper cant-ever-crack-this 128-bit encryption...

      --

      )9TSS
  3. Comment removed by account_deleted · · Score: 4, Insightful

    Comment removed based on user account deletion

  4. excellent by tps12 · · Score: 4, Funny

    Wow, this technology sounds incredible. Anyone who's run a packet sniffer on even a smallish office LAN (for debugging network problems, I swear! :) knows that it's nearly impossible to keep all of the different ports, protocols, and IP addresses straight.

    It'll be great to see what law enforcement can do with this. I imagine if we'd had this kind of tech in place a year ago, we might have averted 9/11 altogether, so maybe this will help ensure it never happens again. Imagine the power: wondering if Tom R. O'Layman is funnelling money to the IRA? Just click a button and check out his emails, phone calls, and web history. It looks like we're headed toward a new era of public safety.

    --

    Karma: Good (despite my invention of the Karma: sig)
  5. GollumSoft by pete-classic · · Score: 5, Funny
    Traxess, formerly known a GollumSoft.

    We traxess it, doesn't we, precious. Yesss, we traxess and logsess all its nasssty little emailsess.


    -Peter
  6. Don't fear the technology, fear those who use it by dh003i · · Score: 5, Insightful

    The technology itself is fine, and potentially beneficial, if properly and very narrowly used. It could accomplish a lot of good. But any good it could accomplish would be obliterated by the vast rights violations that would take place if it was mis-used.

    In other words, this technology should be controlled by courts, which would grant access to government agencies to use it (i.e., by giving a temporary pass for limited purposes) for very specific and targetted purposes, when warranted by probable cause or reasonable suspicion.

    But if we fear this kind of technology and want to outlaw it off-hand, declaring the technology evil, then we're no better than the RIAA/MPAA, who want to ban technologies (DVD-R(W), DVD-RAM, CD-RW, CD-R, P2P, etc) simply because they *can* be used for illegal purposes.

    --
    social sciences can never use experience to verify their statemen
  7. Gives their slogan a new meaning! by WolfWithoutAClause · · Score: 4, Funny
    Check out their slogan on their homepage:

    "Your network. Our business."

    My motto is:

    "My network. None of your business." but I guess that is where they and I have a parting of the ways... ;-)

    --

    -WolfWithoutAClause

    "Gravity is only a theory, not a fact!"
  8. This already exists! by XaV_K · · Score: 5, Interesting

    Whilst this story may grab the headlines, an application that has very similar functionality already exists and can be purchased today. I have a friend who works for Silent Runner ( http://www.silentrunner.com/ ) and believe me, this is already selling well to top corporates and governments / police forces here in Europe. Created by Raytheon, who work closely with US Government on many levels (NSA, CIA, Military - they make the software for the Patrior missile etc), Silent Runner is the one to look out for today. This announcement by NAI is them attempting to play catch up in the market. Their product is not yet ready to sell (ie you can't buy it today), whilst SR are quietly installing themselves in many large organisations. Big brother is already here!

  9. An infinite number of monkeys... by fmaxwell · · Score: 5, Funny
    Imagine the poor sods that have to go through the captured data. They'd get to read stuff like this all day:

    HotHoney4462: I am a porn star.
    StudMan217: Send me your picture!
    HotHoney4462: I don't have one on my computer.
    StudMan217: Do you have a scanner?
    HotHoney4462: No. But my friends tell me I look like Pamela Anderson...
    {...}
    133t_dewd: i still cant run the password cracker you sent.
    Neo4329542: what happens?
    133t_dewd: i cant find it.
    Neo4329542: where did you save it?
    133t_dewd: i dont know -- i just hit okay.
    Neo4329542: click on my computer.
    133t_dewd: how? i can't see your computer...
    {...}
    Mom,
    > Here's a picture of your father on
    > the new tractor.
    There was no picture attached. could you
    send it again?
    > The TV has been broken since you left. I turn
    > it on and the screen is black except for three
    > green letters in the upper left that say DVD.
    > But there is no DVD in the machine. I ejected
    > it twice and checked.
    You have to hit the input select button on the
    remote until you see a picture. It says DVD
    because I played that one for you when I was there.


    The biggest problem that they face is replacing people who commit suicide after about a week of reading that stuff.
  10. Turnabout is fair play by ArcSecond · · Score: 4, Insightful

    Okay, if the cops get to watch us all the time with cameras, why don't they let us watch too? Why not put the closed circuit feed onto the net, or cable tv? I mean, have you ever put a camera on a cop before? I have. They aren't exactly happy about it, and you can argue all you like, but they have intimidation down to a science. But if they can watch us, why can't we watch them?

    --

    I've got a bad attitude and karma to burn. Go ahead. Mod me down.

  11. Why this should bother you by moc.tfosorcimgllib · · Score: 4, Interesting

    Collecting the data now doesn't bother me. What bothers me is when I look for a new job 20 years from now, only to have my potential employer pull out a breifcase that holds EVERYTHING I've done on the internet since 2002 (Including all encrypted stuff, I'll bet brute force methods are a lot easier with faster computers).
    But for me, that isn't a big deal, I'm already an adult. What happens for my kids, where they have their entire lives scrutinized before being given a job? What happens if they get in some trouble and are put in juvenile detention, but then they clean up their act? Will that be a permanent black marker on their file for the rest of their life?
    What if they have controversial ideas or views?
    This isn't about data mining for the present, when you are a sheep in the herd, no one will notice you. When people look at you as an individual, they will know everything about you, personal history and otherwise, that is what this is about.
    Have you ever run a google search on someone? Imagine the results coming up with everything that person has done on the web, and being able to make sure it IS the person you wanted to look for.