Posted by
CmdrTaco
on from the i've-seen-this-before dept.
Zendar writes "idg has an article about how students at the 151-year-old Tufts University were paid as little as $20/month to relay spam from computers in their dorms. Interestingly enough, the students approached the spammers about this scheme and not vice-versa."
It seems that being medical test subjects would be less likely to get them killed.
-- Modular Redundancy--Because 4 out of 5 Nodes agree
Crappy Student Jobs
by
ifreakshow
·
· Score: 5, Funny
What happened to the good old days when college students sold blood, sperm or surfed the web to earn beer money!
I can think of better uses for them
by
petronivs
·
· Score: 5, Funny
I thought college students made all the coin they could ever need with those webcams.
-- This is the real signature
(Beats those shadows on the cave wall, don't it?)
Tracked using MAC address
by
monkey_tennis
·
· Score: 5, Interesting
Interesting that they tracked the individuals down using MAC addresses for computers in their dorms...
I've never heard of any other Uni having the foresight to record this and it seems like a valid piece of info to have to include in any registration document (as per cable modem setup)
Re:Tracked using MAC address
by
Frater+219
·
· Score: 5, Informative
Interesting that they tracked the individuals down using MAC addresses for computers in their dorms...
I've never heard of any other Uni having the foresight to record this and it seems like a valid piece of info to have to include in any registration document (as per cable modem setup)
You don't even need to copy it down at sign-up time... just take it out of the DHCP server logs, or the ARP tables on the building router, then look for the MAC address on a switch port in the hall switch. Provided you know your wiring -- and know what switch port goes to what dorm room -- you just narrowed your problem down to the spammer and his roommate.
(Why yes, I did used to be a sysadmin at a college with a bandwidth hogs problem.)
Re:Tracked using MAC address
by
garcia
·
· Score: 5, Informative
at BGSU they started doing registration for the DHCP server via MAC in 1999 or 2000. When you started up after connecting your computer to the ethernet jack you would get a registration page. You would enter your student ID and your email login/passwd. Your MAC was recorded and a hostname that included your email id was given along w/a static IP. If you logged on from another other port on campus it would show as a "roam" address but it still knew you were authenticated so it still knew your MAC.
If you wanted to register another computer you would either have to use someone else's student ID + login/passwd or call up the people for help.
A side note, they were less than familiar about doing it w/alternative OSs that did not automatically bring up the registration page. You either had to use Windows to do it or have them do it manually. I used Windows;)
Re:Tracked using MAC address
by
garcia
·
· Score: 5, Interesting
I was compromised at one point in time my freshman year and had a smurf attack originate from my machine. They were able to track it down in under 2 hours to my specific port. They shut me down immediately. I had to contact the head of IT directly for reinstatement.
Although it was pretty obvious who was using the most bandwith even w/a tool like iptraf.
Students selling information
by
brejc8
·
· Score: 5, Interesting
I have been getting spam addressed to [my_unix_username]@[my_machinename].cs.man.ac.uk My machine passes the mail to me but I have no idea how the people got this address. The only way I can think of is if someone used finger @ on the machines in the department and then stuck the username with the machinename. As far as I am aware the finger@ is blocked to people outside the department so I am starting to suspect that some students are behind this. Especially as the spam is for local companies.
Thank Heavens for Diagrams!
by
greenhide
·
· Score: 5, Funny
I didn't understand the article at all. Then I saw the helpful graphic at the bottom of the article. It clearly showed just how the process worked! Without that picture, I would have been in the dark.
-- Karma: Chevy Kavalierma.
The School is very liberal..this isn't surprising
by
Migelikor1
·
· Score: 5, Informative
I'm a current student at tufts, and I'm not that surprised that there is some abuse of the system. The University is overall pretty laid back about student computing. The only things the sysadmins monitor for is virii that may cause systemwide problems (they send a person to your room with virus software if one's detected) and excessive bandwidth usage (over a gig per day for more than 3 days in month.)
While it is troubling to know that some of my fellow students abused the policy, it really isn't that hard. Though it pisses me off a little that they used University bandwidth for their little endeavor, the school has plenty, due to massive infrastructure installation in the late nineties. It hadn't caused any issues for the school (nobody I know has complained about a slowdown) so it's my opinion that the fact it's a university isn't a big deal. The kids are entrepreneurs, even if it's in a business I despise, taking advantage of the resources they've paid for. The real question is wether the school will add a clause to the acceptable use policy and start to monitor for spammers. Wouldn't be surprising.
-- My Karma is so good, I'm the Dalai Lama...or something.
What I do not understand is why don't they just block all incoming traffic to the dorms and labs? Why is it that they allow for this traffic to even make it to the PC in the first place?
Frank Grewe, manager of Internet services for the University of Minnesota in Minneapolis-St. Paul, also wasn't surprised. He says the university does not let client machines be used as servers, employs static IP addresses and tracks the amount of traffic going to and from those addresses.
Why track... just do not allow it in the first place and it will be a whole lot easier. I just do not see a reason in allowing inbound traffic to a static IP address on a campus unless it is a server owned (no pun intended) and operated by the staff. When you allow anyone and everyone to do as they please, all hell will break lose.
I can see the point of some PCs and not others, but it should always be a special case when a PC needs access to it from the outside. This is how most corporate companies run their network. I just do not understand why in most cases all I have to do is 'host -l -t any uni-net.edu' and get a list of hosts to look at and forward my spam on from.
As for the out-sourcing of CS to someone else, I would have to disagree, because it is incidents like this that usually teach people. And when they go on to the corporate world, hopefully, they will remember that they need to lock their network down . It teaches fundamentals, and in this industry, unlike a lot of others and what a lot of corporate big-heads think, it is experience more than education that counts in the long run.
--
The
biggest security hole sits between the keyboard and chair. -Andrew McAllister
This just proves these students aren't as resourceful as they could be. I for one, would have placed some sort of trojan on as many people's computers I could find, then sell ALL of their machine's use for spamming. I mean, I'm certainly not condoning spamming and I dislike it myself, but if you are going to do it, do it right....
Slashdot Mirror
It seems that being medical test subjects would be less likely to get them killed.
Modular Redundancy--Because 4 out of 5 Nodes agree
What happened to the good old days when college students sold blood, sperm or surfed the web to earn beer money!
I thought college students made all the coin they could ever need with those webcams.
This is the real signature
(Beats those shadows on the cave wall, don't it?)
Interesting that they tracked the individuals down using MAC addresses for computers in their dorms...
I've never heard of any other Uni having the foresight to record this and it seems like a valid piece of info to have to include in any registration document (as per cable modem setup)
I have been getting spam addressed to [my_unix_username]@[my_machinename].cs.man.ac.uk
My machine passes the mail to me but I have no idea how the people got this address.
The only way I can think of is if someone used finger @ on the machines in the department and then stuck the username with the machinename.
As far as I am aware the finger@ is blocked to people outside the department so I am starting to suspect that some students are behind this.
Especially as the spam is for local companies.
Mouse powered Chips, Open source Processors and Lego
I didn't understand the article at all. Then I saw the helpful graphic at the bottom of the article. It clearly showed just how the process worked! Without that picture, I would have been in the dark.
Karma: Chevy Kavalierma.
I'm a current student at tufts, and I'm not that surprised that there is some abuse of the system. The University is overall pretty laid back about student computing. The only things the sysadmins monitor for is virii that may cause systemwide problems (they send a person to your room with virus software if one's detected) and excessive bandwidth usage (over a gig per day for more than 3 days in month.)
While it is troubling to know that some of my fellow students abused the policy, it really isn't that hard. Though it pisses me off a little that they used University bandwidth for their little endeavor, the school has plenty, due to massive infrastructure installation in the late nineties. It hadn't caused any issues for the school (nobody I know has complained about a slowdown) so it's my opinion that the fact it's a university isn't a big deal. The kids are entrepreneurs, even if it's in a business I despise, taking advantage of the resources they've paid for. The real question is wether the school will add a clause to the acceptable use policy and start to monitor for spammers. Wouldn't be surprising.
My Karma is so good, I'm the Dalai Lama...or something.
Cutco....
Must... sell... knives...
The whole experience still makes me shudder.
Frank Grewe, manager of Internet services for the University of Minnesota in Minneapolis-St. Paul, also wasn't surprised. He says the university does not let client machines be used as servers, employs static IP addresses and tracks the amount of traffic going to and from those addresses.
Why track ... just do not allow it in the first place and it will be a whole lot easier. I just do not see a reason in allowing inbound traffic to a static IP address on a campus unless it is a server owned (no pun intended) and operated by the staff. When you allow anyone and everyone to do as they please, all hell will break lose.
I can see the point of some PCs and not others, but it should always be a special case when a PC needs access to it from the outside. This is how most corporate companies run their network. I just do not understand why in most cases all I have to do is 'host -l -t any uni-net.edu' and get a list of hosts to look at and forward my spam on from.
As for the out-sourcing of CS to someone else, I would have to disagree, because it is incidents like this that usually teach people. And when they go on to the corporate world, hopefully, they will remember that they need to lock their network down . It teaches fundamentals, and in this industry, unlike a lot of others and what a lot of corporate big-heads think, it is experience more than education that counts in the long run.
The biggest security hole sits between the keyboard and chair.
-Andrew McAllister
This just proves these students aren't as resourceful as they could be. I for one, would have placed some sort of trojan on as many people's computers I could find, then sell ALL of their machine's use for spamming. I mean, I'm certainly not condoning spamming and I dislike it myself, but if you are going to do it, do it right....