Marking Your Cyber Territory?

NoOnesMessiah asks: "I recently finished a relatively major webmail install for a large company and it all went very, very well. I left a '/.cornerstone' file for posterity (with names, dates the disks started spinning, 'asbuilt' notes for apache, php, etc) so that future generations would know who to blame (or call) in 3 to 5 years. I have also done this in various and sundry places within my network infrastructure while I wore the mantel of Senior Systems Engineer and even in bits of a major mp3 player's website while it was growing up on our network. Hell, even the concept of the 'asbuilt' is more than 14 years old to me. How was PHP built? Look at the "asbuilt" file for configure or compile-time options... This got me to wondering; How do Slashdot readers mark their territory so future generations know they were there? Certainly I'm not the only one who does this. I would think that most people do, even in some small way. Do you mark your own personal mailer, web server or desktops in the same fashion as you might for your employers or clients?"

Traditional methods

I'm a great believer in using tried and tested methods that have served for millions of years. For that reason, I tend to urinate around the servers that house my projects. This method leaves my scent around my territories, which other programmers can detect and use the information accordingly.

It also helps cool the processors in the summer.

Re:Traditional methods

I would like to know what you drink so that I, too, can produce vast quantities of urine.

Re:Traditional methods

[Directrix1]

I usually like to put a backdoor in my software with the password being my dead son's name. Good times.

Re:Traditional methods

[.milfox]

Joshua, eh? :P

Re:Traditional methods

[Directrix1]

So, you're the one thats been hacking into my applications. How did you get past the AES wrapped SRP authorization on top of TLS sockets. Oh wait, its because I logged in over telnet that one time isn't it? Or maybe its because of that SSH CRC32 patch I forgot to apply back in 2001. Damn.

The best way...

[metalhed77]

After a bitter parting is obviously named text files in obvious places stating things like "h@x0red by l337 crEw, mad pr0ps to the hole in the firewall"

Keep em on their feet ;)

All the time! But.....

[Jernic]

I created a web page for a historic hotel a few years back(2000). It was up still unchanged until late last year. In the code, I put my name and email indicating that I wrote it and also put my name at the bottom of the visable page. Whoever changed it left the code mostly unchanged except for removing my info from the site.
Now you'll never know it was me!
But they kept the same images that were edited using GIMP!(My name is still in the comments within the pictures)

gt

Smartass reply

[hawkstone]

Yeah, sure! I put a checkin comment every time I modify code, along with my name and date. Future generations will know the exact time I introduced a bug just by looking at the source!

</smartass>

(Okay, so I'm a programmer, not a sysadmin. I guess your question doesn't really apply to me, unless you call uninstalling Clippy "leaving my mark".... :)

Re:Smartass reply

[JamMasterJGorilla]

Smartass? I think not. Real programmers use a source control system, there is nothing better then finding that bug that a "senior" sodtware engineer put in the code when he/she wasn't so senior. There is no better way to leave your mark than a clean checkin with a good comment and even a reference to a bug id.

Re:Smartass reply

[hawkstone]

Okay, you got me. It was a completely true statement, and it directly answered his question.

The reason I called it smartass is because I don't think it was the answer he was asking for, since I don't think I was the intended audience for the question.

You're right that it does still apply somewhat -- even sysadmins write scripts (or more) and should always leave their mark in the form of a comment.

Want your mark to last?

[Breakerofthings]

Make it Intrinsic
For example; if you have ever seen my code, knowing what it looks like, you would never be able to miss the muddy footprints I stomp all over anything I touch.

Immortality through Mediocrity!! Do something right, or well, and you will soon be forgotten.
Do it really half assed, or fsck it up, and you will surely be remembered.

Re:Want your mark to last?

[MrRat]

and your former employers remember you well

I create build directories

[MazTaim]

On any machine that I work on, I create a directory similar to '/-Build/' or 'C:\-Build\'. In this folder I keep subdirectories w/ drivers, software, updates, configs, etc. One other thing I include is a file called build.txt. In this file I put some nice information to have:

---
foo.bar.com
Built on 6/20/2003
Built by

Installation notes:

Updates:
6/26/2003 -

---

I am a big fan of making sure everybody knows "who-dun-it" and how to do it again.

Re:I create build directories

[leshert]

I like this method, but I prefer to do it on a separate server, preferably within a system like CVS. After all, if the hard drive you built out gives up the magic smoke, the "build" notes won't help you rebuild the installation.

Re:I create build directories

[MazTaim]

I actually never thought of using a system like CVS. I kept master copies of the documents on an intranet, but it was my responsibility to copy the documents up to the intranet site when I created or updated my documents.

As a side note, stupid me attempted to use as common variable placeholders for my previous example. It should have read more like:

---
foo.bar.com
Built on 6/20/2003
Built by (name)

Installation notes:
6/20/2003 - (name)
(some stuff)

Updates:
6/26/2003 - (name)
(More stuff)

---

with folders more like 'c:\(machine-name)-build\' and '/(machine-name)-build/'.

My signatures

[Isomer]

First I build most servers from an autoinstall image like Redhat's Kickstart. I'm sure to include the kickstart config in /root. Everything else is built using package management tools and the source rpms/debs are kept on the machine for future generations to easily reproduce the exact same machine. Then finally keep /etc in CVS.

For things that I may not want to take credit for, or not want some people to know who did this work[1] I put a seemingly random string in somewhere, usually out of sight, but visible to anyone who looks for it which is the md5sum of some string. If I want to prove that I wrote it, I can produce the string which generates the same md5sum, nobody else can. Also, if you put the string somewhere out of the way later coders ignore it and/or believe that it's important in some way they don't understand and leave it alone :)

[1]: I do a lot of work on IRC, you really don't want to put "Trojan detector 2002 By Isomer" all over it coz the kiddies whose trojans it detects will DDoS you instead...

Re:My signatures

[NukeIear]

Then finally keep /etc in CVS.

I've found that RCS is a bit more suited to this task.

Me?

[_TinCho]

How do Slashdot readers mark their territory so future generations know they were there?
well, i usually piss around the servers...

how do I leave my mark?

I just endorse the fuckin' check

What the hell

Like I really give a shit about Web Admin System #134 or Database Front End #2435 or Mail Server #1266 ... the fuckin' box is gonna get hacked or broken down within 12 months anyway, I'm gone by then.

If I found your .cornerstone file, I'd probably just say to myself "eh, some leftover cruft from the build process, better delete it".

As for my own computer, well my NAME all over the damn thing would probably clue somebody in that it's mine (in the files I mean, I don't actually write my name all over the box :-).

Re:how do I leave my mark?

the fuckin' box is gonna get hacked or broken down within 12 months anyway, I'm gone by then.

Remind me never to hire you to secure my system. :o)

In the code...

[eclectic_echidna]

try {
...
} catch (VeryBadException e) {
if (DateTime.Now.year > 2003) {
MessageBox.Show("ee WAS here. Not anymore! Nelson: ha-ha ");
} else {
;
}
}

Comments in HTML

[mnmn]

The HTML I type for websites sometimes has a <!-- --> comment, but usually something funny rather than my own name or address. I never leave ad advertising mark unlike many admins with my name websites and other information. Usually the webmaster or postmaster@whatever.tld points to my common but spam-filled free email (yahoo/hotmail) and people can still contact me with a quick reply latency.

Oh yeah, C++ source code is a different game...

Re:I generally take out the ugliest female employe

I wondered how that got there. I'm suing.

I don't mark at all

[PD]

I don't mark things, I don't put my names on programs, and I don't leave files around on servers so others can see who done what.

I do computer work because it's fun and it pleases me. I don't care what others think of it.

Re:I don't mark at all

I do it for the money!

Story of Mel

[sohp]

One job I was not particularly happy one day, so I pasted a copy of The Story of Mel into a comment in one particularly annoying part of the code. I wonder if it's still there.

A "docs" site

[djmitche]

Personally, I'm really the only hardcore UNIX person at my present employer. I anticipate that at some point I'll get hit by a bus or something, so I make notes on just about everything I do on a specially designed, password-protected web page. All of the data is in a format that's easy to read if, for example, Apache is broken.

I have directories for HOWOTOs, package install documentation, projects, standards & conventions, and official policies. Although most of the documentation up there is mine, I'm working on getting the rest of the admin team to use the site, too. It has already proven very helpful as an adjunct to my own memory, and as a source of "RTFM" URLs when others ask the same question over and over :-)

Re:A "docs" site

[fliplap]

you should PGP it all and keep the passphrase somewhere safe with a note regarding what its for. That way they'll get it if you die, but not if they lay you off without notice :-)

Re:A "docs" site

Personally, I'm really the only hardcore UNIX person at my present employer. I anticipate that at some point I'll get hit by a bus or something, so I make notes on just about everything I do on a specially designed, password-protected web page. All of the data is in a format that's easy to read if, for example, Apache is broken.

I did that once, not because I was the only "hardcode UNIX person", but because I was the only person who even knew what a command prompt was. This was at a web development shop, by the way, and we "maintained" our own servers.

Specifically, long before I arrived, the owner assumed our suppliers were maintaining them. When I arrived, I realised they weren't (Code Red et al in abundance), fixed it all up, and got a bollocking for my effort (apparently it doesn't matter if your servers are rooted, as long as you don't have to put in any time that can't be billed to a client. Yes, you guessed right - whenever somebody broke in and defaced a site, we'd bill the clients for repairing it).

Anyway, I realised pretty quickly that nobody knew what was going on, so I documented all of the routine work. I got a bollocking for that too, and, quite bizarrely, when I left, the owner phoned me up to shout at me because he didn't know what to do, and the routine work wasn't getting done.

What I left behind there was a crater :)

Re:A "docs" site

[llib_xoc]

We run TWiki here, and we each get a personal homepage. I use that page to remember (the answers to) all those repeated questions that folks ask, favorite reference URLS, etc. Then I've set my browser's "home" button to that page. Now my personal database is only one click away.

oh ya

[Edward+Scissorhands]

I mark my territory by making sure everything breaks regularly. My employers know who to call. When the police arrive, though, things get really confusing.

Easter Eggs!

[SoCalChris]

Lots and lots of Easter Eggs. One program I wrote had an egg in it where if you typed in "UP YOURS", or any string containing those two words into the password field, the mouse cursor would give you the middlle finger until you rebooted. Of course, most users would never come across that, but I'm hopeful that developers maintaining the code did.

Documenting stuff

[menscher]

I do a combination of things:

• Whenever I modify a system file, say /etc/ntp.conf, I leave a copy of the original as /etc/ntp.conf.orig. This allows people to trace what's been changed.
• Build trees are always left in /usr/local/src, sometimes with explanatory notes.
• Updates/changes to the system that users might notice are logged in /var/adm/ChangeLog.
• The base system comes from an install script, which is available to admins. I also have been known to generate a .ps file documenting the system. (This came from a perl script that generated a TeX file.)
• Modifications to code always include my last name so they're easy to find.
• I'm currently learning troff so I can write manpages documenting the local system.

Anyway, mostly standard stuff. The hard part is documenting the documentation. It's amazing how much documentation I have, that nobody would ever find!

I'm not quite a system admin...

[Myself]

I've installed quite a few dedicated communications systems that, while controlled by computers, leave little room for creative configuration in the "OS". I still find my ways..

On one system, I'd configure the IP address and netmask for an interface that was never enabled, with the ASCII numbers for my initials and the date, 255.78.74.66 / 6.28.20.3 for today, for instance.

On another, it was possible to create files with arbitrary names but not put anything in them. A few zero-length files with a hello-message did the trick.

My favorite machine allows hand-editing of an ARP-like table for an obscure routing protocol. Handily enough, this entire interface is never enabled, so I can stuff the table with things like "INSTALLEDBY-00:00:DE:AD:BE:EF NJBANDCREW-00:00:00:00:00:00 JAN01FEB01-00:00:00:00:00:00".

Even on dumb equipment like wiring blocks, I always scratch my initials into the backside before closing the block, so later when the system is tested and mistakes are found, I can defend myself. I've tried to make it standard protocol among the installers I've trained, since it saves everyone grief and encourages responsibility.

More than once, I've jotted notes on the bottom of steel equipment frames before bolting them to the floor, to be seen by the crew that tears them out in 30 years. Anything from "Kilroy was here" with the accompanying graphic, to "Help! I'm trapped under the rack!".

I've been responsible for installing some things I'm not always proud of. Personalization can also be a way of disclaiming responsibility.

Wiring junction boxes frequently contain notes jotted on gray electrical tape. "Approved by engineer Larry 5/22/01; says the NEC doesn't apply here. Black:Hot White:Neutral Green:Ground BlackW/tape:Messenger WhiteW/tape:Magic. If this box is smokey, check the one at the other end of the aisle too!"

My favorite thing is finding notes and doodles left by previous generations. Once I saw a pile of boards torn out and waiting for material reclamation (gold chipleads and stuff), so I dug through the pile admiring yesteryear's design. One controller board had a profusion of "green wire", added by a field tech to update the board to a new revision. In some unused space in the corner, a little smiley face had been elegantly needlepointed into the perfboard.

Makes you wonder how much personalization goes undetected in the products we use every day! Spend some time in the Silicon Zoo checking out the art inside chips themselves.

Re:I'm not quite a system admin...

[hbackert]

Wiring junction boxes frequently contain notes jotted on gray electrical tape. "Approved by engineer Larry 5/22/01; says the NEC doesn't apply here. Black:Hot White:Neutral Green:Ground BlackW/tape:Messenger WhiteW/tape:Magic. If this box is smokey, check the one at the other end of the aisle too!"

While I think it's funny, I don't think anyone who would believe the notes and touched the 'safe' white cable, would think it's funny. Yes, it's stupid to trust a piece of gray tape, but if I were to touch any cables after reading this, I would check out the wiring, mistrusting NEC and written note. There might be people who would trust the tape...

Re:I'm not quite a system admin...

[i_am_nitrogen]

Uh... neutral also carries current when things are running. Anyone who's going to be opening the electrical box ought to know that. The black/hot wire comes from the transformer to the breaker box, then to the equipment, and from the equipment the white/neutral wire goes into the ground (yes, the ground) for 120v AC, or an inverted phase wire is used for 240v.

Re:I'm not quite a system admin...

You don't get out much, do you?

The funniest part is...

[krinsh]

except for documentation I've written; and places where I've built/repackaged installers that I *had* to put my name on; I've left as little behind as possible. Two good reasons: the environments I worked in left little room for originality and often wanted to make sure that you could not be directly linked to the project(s) or would be relied upon in the future for it; and I also wanted to leave as little behind that might incriminate me in some shape or form in the future. Better to be forgotten than to have someone go; "that... whatisname... oh yeah, Kevin... what a jerk..." etc.

Hmmm...

[Slipped_Disk]

Typically anything I write has "~mikeg" or "mikeg: [some date/time stamp] - watever I changed" or my email address (mikeg@whatever-company.com) stuck in a comment somewhere.

Often something of that nature will appear if you do a "strings" on the executable if the language I was working in is a compiled one, typically my email address works its way into the code somehow (help screens, version info, etc.)

For systems hardware, a large cursive MG in green or black marker on an inside surface, usually under the motherboard or on the bottom of drive bays, indicates that I built the system. Smaller MGs (in blue or black), usually with dates, indicate service done (these are sometimes on a frame bar or even a removable panel). When a machine finally reaches the end of its life, I initial it with red marker and leave it open until it is stripped and disposed of.
I understand the signing practice used to be quite common with mainframe service techs but has become less so with PCs and cheap servers - I for one would love to see it revived as it makes it easy to know who was the last person to work on machine X.

For an OS build, my footprints are unmistakeable - anything outside of the OS goes in /usr/local/*, excepting "biggies" like a database server or web server (web servers go in /home/web or /home/www, database servers usually reside in /usr/local/[db_software_name]). A /usr/local/src directory with the source code for EVERYTHING I've installed, as well as a "bigmake" script which rebuilds it all the way I had it stays on the machine for future generations.
This script is used when upgrading software, or when rebuilding from scratch, and usually has a whole load of variables in it to turn off/on various parts of the build (for example, on my FreeBSD systems the first stage of this script is to cvsup and rebuild the OS/kernel - probably not something you want to do if you're just upgrading apache).

Remember me, damnit!

[clambake]

This got me to wondering; How do Slashdot readers mark their territory so future generations know they were there?

I write an impossible to find bug in thier critical software that will cause thier servers to shut down should my name be removed from /etc/passwd.

Re:Remember me, damnit!

[Loosewire]

you know thats not a half bad idea :-)

My signature

[Spackler]

I always stake my territory by signing the back of the checks from the people that are paying me to do the work. Sure, an info file with compile options, versions of libs, and contact info (only to be used if they want me to sign more checks).

Only applies to contracts...

[drinkypoo]

...such as when I work for someone, and that someone has gotten a contract to design something for someone else, but when I do the setup, I write full documentation for how to install it. That way, I never have to see it again once I get rid of it. Job security, shmob schmecurity. (of course, now I'm unemployed. Guess you really do reap what you sow.) Anyway the documentation has a changelog and the changelog has my name.

Documenting what you did and why is the best kind of proof that A> you were thinking and B> you were actually doing something. In addition, everyone loves documentation. As a wise man once said, documentation is like sex. When it's good, it's great. When it's bad, it's still better than nothing.

Certainly

[chunkwhite86]

Certainly I'm not the only one who does this.

Yes. Yes you are.

Easter eggs with contact info

[nlaporte]

For a project I did last summer, I put a little easter egg into each php script, so that if I pass any page the variable author=show, it shows my name and contact info. It'll be interesting to see how long it lasts...