Slashdot Mirror
Ask Slashdot: Good Tracking Solutions For Linux Laptop?
First time accepted submitter WillHPower writes "So I have ordered a new Ubuntu-powered laptop. I spent some extra bucks on lots of RAM and a good sized solid state drive. After putting money into it, I'd like to find a way to track this laptop in case it's ever stolen. Are there any good tracking software/services the run on Linux laptops? Also, are there any other techniques besides tracking for dealing with a lost or stolen laptop that I should consider?"
No, there's no good Linux HW tracking software. Why? Cause there's no good software for other platforms either. It's all "make-you-feel-good-software" which doesn't survive a simple OS reinstallation...
Give yourself full remote administrative control over it from your home system. At that point you can use all the standard "Where's my IP" tools to track down where it is; can use the webcam etc.
=~ s,(.*),<sarcasm>$1</sarcasm>,g if any_point_you_wish();
You're probably better off going with theft protection. Your best bet might be to label it a "Linux Laptop" in big bold letters.
http://preyproject.com/
Writing a bash script that automatically sends the laptop's current outbound IP address to a remote file is one idea. That would at least help you figure out to some degree there the laptop has been used from. It'd require law enforcement to go further than that, though...
They will gladly tell you where your computer has gone to.
Assuming you have valuable and/or personal data on the machine, don't forget disk encryption. Either encrypt the entire disk, or perhaps just the data partition. Truecrypt is a good solution for this.
Enjoy life! This is not a dress rehearsal.
Not to worry, the NSA already has you taken care of.
http://preyproject.com/download
http://preyproject.com/
A plethora of solutions already do this, without the overhead of reinventing the wheel. Check out http://preyproject.com/
I'm a big fan of these - - They deter the actual theft before it happens.
http://www.stoptheft.com/
+++ATH0 NO CARRIER
Get internal gps. Dual boot with a no-password windows xp account. The thief will have a much higher chance to log into that. Make it spam a home server with its coordinates every second its on and has access to the internet. Encrypt your linux partition. The key is you want the thief not to just wipe it and sell it, they need to power it on.
If your computer is stolen, it will be formatted to install a Windows is just a few seconds. Sad but true.
Encrypt the hard drive. Insure against theft. Forget about it if it's stolen.
Finally had enough. Come see us over at https://soylentnews.org/
...the problem seems to be that just knowing the IP of your stolen computer is not enough for the police to get it back for you. It seems they also want a photo of the thief taken while using the computer, which complicated matters a lot. At least that's what other users have reported.
You'll have to try harder than that to get me to help you track people.
I would recommend Prey: http://preyproject.com/blog/2011/04/its-official-prey-is-now-on-ubuntu
I have used it and it seems to work well. It's free for up to 3 machines too.
The first thing the theft will do: an offline OS installation.
I bet the stolen Linux laptop will have its OS erased to either to run MS Windows or an other Linux distro.
Isn't the big thing to steal these days are smart phones and tablets? Especially, iPhones and iPads?
And if walks away from it, just leave up a full screen terminal. The morons will just think it's broke - that's assuming they pay attention to anything without an Apple logo on it.
Seriously, just have it insured and back up the data regularly. If it gets stolen, claim it, buy another and restore. It's happened to me and I was back on my feet with a new laptop in 24 hours, the insurance claim took a week but all I had to do was file the claim and talk to a couple people on the phone.
If it is stolen and you can tack it, do you really want to do that? Track down some petty thief and confront them? Why? Thats sounds time consuming and potentially dangerous. Why bother?
I tertiary the others on this.
While it is true none of the solutions will survive an OS re-install, in most cases that's not terribly relevant. You want to track it down before they re-install the OS anyway.
Prey is very unobtrusive; I often forget it's even there. It can give you screen shots, access location information, and even snap pictures with the webcam if your laptop is so equipped.
Great product and service.
Depending on the laptop (in BIOS), you can use CompuTrace with Dell laptops.
http://www.absolute.com/en/products/absolute-computrace
Life is not for the lazy.
Thanx. I did not know about this one.
I prefer the "u" in honour as it seems to be missing these days.
Apologies if this sounds like I'm some sort of shill, but I'm not. Just a happy customer:
http://preyproject.com/
* Free and open source
* Completely passive
* If the laptop is reported missing (and has net access to know this), Prey will report its geo-location via Google Maps, take passive captures of the user with the laptop's webcam, take screenshots of their activity, and if necessary completely lock down the computer (though you'd normally do this manually and as a last resort - once locked, the thief will probably ditch it very quickly). Does other things as well.
* Works on Win/OSX/Linux/iOS/Android
* Allows you to run it in two ways:
1. Make an account on the website, install the software and link it to your account, so that should your laptop go missing you can report its absence via the site and it'll do its thing once the laptop goes online elsewhere. Free accounts all you to link up to 3 devices, pro accounts allow more in addition to more features, but you'll easily be fine with a free account.
2. If you want to be completely independent, you can run Prey stand-alone. No account needed - it works by monitoring for the existence of a URL when online, and if said URL reports a 404 error, it triggers and sends reports via email. Hence, you set up some free hosting with a dummy file, point Prey to the full URL of said file, then if laptop goes walkies, remove the file from the host to trigger Prey. No reliance on accounts or anything. Bit much for a regular user but easy enough for advanced users and not dependent on a company for the software to keep working.
if they can't boot it.
that SSD and the screen can sell as well as the case / ram / cpu / and other parts.
Since you're running Linux, you will probably discover that any thief will reformat the hard drive to install Windows. This leaves two options:
1) Look into software that may already be baked into the firmware.
2) Have it automatically, and preferably transparently, boot into Windows then follow some of the other advice found here.
Neither route will help you recover a laptop once it has passed through the hands of professionals.
Overall, you'd probably be better off detering theft in the first place: don't use it in overly public places, never leave it alone in public places, invest in a good lock, and make it look undesirable. (One thing that I like about my ThinkPad is that it looks 10 years older than it actually is. Stickers, especially "non-removable" ones, make more identifiable and harder to resell without a cleanup effort. Scratches and dings will reduces its apparent value. Heck, smashing the slot for the lock will probably deter most thieves since it would be harder to sell.) Remember, the best way to avoid being a target is to avoid looking like a target.
Oh, and write down every serial number on the system.
http://www.intel.com/go/anti-theft
If your computer has Intel Anti-Theft, this will super cede the bios. No one will be able to use your computer in any way. They cannot boot to a usb or CD; they cannot access the bios. It will be a brick without the password or correct credentials from Intel.
It's called buy a cheap laptop, encrypt it, back it up regularly, and buy another when it's lost or stolen. Works for other operating systems too. Even with computrace, you can't get police to act on the location a lot of times. Tracking software saves money on insurance, that's it.
Configure it to launch a DDoS against the NSA and FBI if your password isn't entered within 30 seconds of booting.
Solving Unix problems since 1989...
NSA
This will get you an IP address every 15 mins in your apache log so you can login or trace it.
/usr/bin/curl https://mywebserver.org/checkin
/usr/bin/ssh -R 43811:localhost:22 mywebserver.org
*/15 * * * *
Also, if you don't want to run a full apache stack, boa is a nice light webserver which will do the same. Also, many options for perl/python servers which could be lighter yet but you would need to implement your own logging. Another cool option is have your laptop open a reverse ssh tunnel right to your server when it boots.
@reboot
Join the Slashcott! Feb 10 thru Feb 17!
protect yourself against the tracking by the Illuminati.
New Economic Perspectives
You're a slashdot guy, so you must be pretty talented. Open the thing up and find some unused GPIO (or serial port) that you can tap into and hook a small block of C4 and a detonator up to it [1]. Then, create a cron job that runs daily to check that you've been logged in at least once, and if it doesn't it should assume the laptop was stolen and trigger the detonator. No. Wait. Better make the cron job run every 12 hours. You can never be too careful. Just make sure you never sleep in on weekends or leave your house without your laptop.
Next, to be extra safe, you'll want to somehow monitor failed login attempts and trigger the C4 whenever too many happen. Not sure how to do this as I'm a hardware guy myself, but I'm sure you can figure things out on your own or with your frienemy Google. I'd say that allowing one failed login attempt should be a safe threshold, but I'd recommend against allowing any more than that, as you're just asking for trouble. In fact, unless you're some kind of pussy that can't type, you can probably get away without any grace login attempts.
If you were really paranoid, you could try to implement some sort of retina scan or proximity sensor using the built-in webcam, but that's an advanced topic probably better left for some future "Ask Slashdot" post.
[1] If you have sort sort of issue with using C4, maybe you should consider somehow using a thermite charge instead. Less "bang", yes, but definitively more colourful, and would give new meaning to the term "toasted skin syndrome".
Unless you set it to automatically login with no password, the thief will never be able to boot it up to allow your tracking software to work.
Ninjas don't carry tic tacs
Put a Windows 8 sticker on it. Nobody will touch it.
Have gnu, will travel.
Prey is great. It is more effective than "Find My Mac" and runs on may platforms, including most Linuces. :-) Android, MacOS and iOS - besides teh usual vanilla from Redmond.
http://preyproject.com/
From the FAQ:
"Flyin' in just a sweet place,
Never been known to fail..."
Chain the laptop to your desk, then no worries about a stolen laptop. Well they might steal the desk then.
Comment removed based on user account deletion
...so most of them would not think about doing an OS install.
They know where it is right now.
My best advice is don't waste time and money trying to track it. Try to avoid theft in the first place. Leave your laptop unattended and it will get stolen. The value you put in the laptop is probably not worth the cost of tracking it. You may as well add it to your current insurance. It will cost less and will pay for a replacement if ever it's stolen.
Truth is, law enforcement isn't going to take you seriously if you say you have tracked down your laptop. Rather just get it insured and have your files backed up somewhere else.
Help I am stuck in a signature factory!
Periodically (cron), have box contact another box w/ public IP that can log the public IP your laptop connected from. Your laptop will check if a file is present. If file present, setup reverse tunnel over ssh to your box w/ public IP. Now you can do anything you could if you had the laptop in front of you (almost). Scripting this is trivial.
Of course, if some scary non-windows thing came up on the laptop, the thief is going to install windows over it (or get a friend to do it for him). So, you would be better off if you could have it bring up windows running full screen in KVM e.g., if a keypress isn't made during boot. Might even help with the TSA gorillas.
Or just accept that you may lose the laptop, keep backups.
weld one end to your desk, and the other end to... oh... a wimpy little Kensington clip. hmm. just like software tools. looks tough, acts muff.
if this is supposed to be a new economy, how come they still want my old fashioned money?
Encrypt the drive and create a boot splash screen background with contact info and a reward. Most thieves are oppertuneistic.
Is the value this solution provides a quickly diminishing proposition (assuming a monthly charge for service) given the inexpensive nature of mobile computers these days? It would seem that as long as the information on the mobile device is adequately secured against offline attacks using propertly implemented crypto (granted, easier said than done), and any information of significant value isn't being stored, it would be a poor value just to recover the hardware. This is usually covered using another form of insurance already, IME. Has anyone done a proper cost analysis?
Clearly identify it as a Ubuntu laptop. Your average, low-level thief is notoriously unwilling to steal things that are rare and unpopular.
I've calculated my velocity with such exquisite precision that I have no idea where I am.
First off, toss Ubunta and use Debian. Same features and much easier to find stuff that works. If you're feeling adventurous, I'd suggest going with Gentoo instead due to optimization and use flags. Simply put, you can save lots of space along with wear by configuring the installation your way. I know someone's going to chime in about Gentoo Ricers but that's not the advantage Gentoo offers in this case. Simply put, You Chose the optimizations used on your system. "Os" is best for laptops as it includes most of the O2 performance features while sticking with a smaller footprint and use flags allow you to decide what features get compiled into the apps. Simply put, why install Gnome/KDE if you don't need them? This doesn't mean various apps can't be installed. For example, I've got a mix of GTK/QT apps - Firefox, Libre Office, QTWriter (notetab plus clone) along with Filezilla (GTK based) and all of them use Fluxbox as the WM (there are many choices).
One thing I'd suggest is to use FDE (full disk encryption) and debian makes that pretty damn easy and get some of the new 32GB flash drives for backup use (critical files) because it's very likely it'll be stolen and the chances of recovery are miniscul to none - reason for the FDE use. Simply put, consider a stolen laptop to be a complete loss and plan around that as you really wont get it back and the cops have more important things to deal with.
Mod me up/Mod me down: I wont frown as I've no crown
This only works if you can act quickly after it's been stolen.
First, open the case. Place a block of C4 in some free area, with a detonator attached to the internal USB bus. Close the case. Remember to write down the secret code for the detonator as well as your machine's IPaddress.
When machine is stolen, send the code. Great hilarity ensues.
https://app.box.com/WitthoftResume Code: https://github.com/cellocgw
Chances are you'll need the police to actually recover anything, if all you have is an IP the ISP won't give you the time of day. If they're just using it from the wifi at the local coffee shop it'll be a dead end. Even a GPS location isn't all that good if it leads to an apartment building. For every case in the media I hear about anyone making a successful recovery it's probably ten where they just can't be arsed or it just fizzles. I'd say this is a case where an ounce of prevention is worth a pound of cure, lock it down, keep it in sight and put your time and effort towards it not getting stolen in the first place.
Live today, because you never know what tomorrow brings
http://www.intel.com/go/anti-theft
as someone else said.... this.
Don't have data that needs contant backup and protection on the laptop, but edit the files on your home/office computer via ssh or even better a remote Linux desktop server which is quite handy and it works fine if you're just writing text remotely and have 2Mbit Internet speed. ThinLinc and No Machine for example; they aren't open source, but free for small users.
It's simple,
1. buy such a cheep thing: http://www.ebay.com/itm/360690992346 ...
2. strip plastic case
3. insert into laptop-case (there should be enough space... maybe remove mini-pci-e card)
4. piggyback 5V from usb-port
profit!
He's asking about how he can protect his exisitng equipment that represents a significant invenstment, not what he coulda/shoulda done before he made it.
Just "sudo apt-get install openssh-server" & "sudo apt-get install ddclient" and you can do whatever you want to recover the lost laptop.
Survives OS reinstall and all.
Too bad it's closed-source and there's no clear information on what exactly it does. And what you do when it misfires.
Actually, it's much better suited for tracking you and/or enforcing planned obsolescense than for doing something about stolen laptops.
I have a compatible laptop, and I'm pretty sure I am NOT installing any GSM card that allows this thing to work.
Read here... http://www.freakyacres.com/remove_computrace_lojack
Just set up your laptop to post crap about bombs, etc, if you don't reset a timer after a period of time. The NSA will find it for you right quick!
SIM card and gps tracker all ready to dial back home after not being reset after a given time frame.
The best feel-good elixir you can acquire for your shiny new toy is to be aware of how much your deductible is for your homeowners / renters insurance, and encrypt any sensitive information. Anyone serious enough to steal a laptop knows a guy who knows a guy that can re-install a bootleg OS on one simply for the purpose of fencing it. If it does get stolen, you've only got a 50/50 chance the theif will NOT be smart enough to wipe it before connecting to the internet, so laptop lo-jack systems that run on top of the OS are a joke at best.
-5 pts for not purchasing it (cheaper) with windows pre-installed and then wiping the partition to install Ubuntu (or whatever your favorite distro is) yourself. Seriously, you're posting on /. Now I remember why I wanted to petition CmdrTaco to make attribution in some GNU project a prerequisite for membership here...
The real problem is that no one (practically) is gonna steal your PC and then use Linux, the first thing they are gonna do is install windows 7, probably a pirated version, or maybe XP.
Whilst not necessary cost effective as a demo for our IT department we hid a 'Geogram One' arduino device in a laptop. runs off usb power so works whenever the theft powers on the laptop. GPS antenna is hidden in the screen you can get the location by sending a 'Text Message' to the device and it responds with the co-ordinates.
1. laptop stolen
2. IT department sends sms/textmesage with password and instruction to hidden device
3. when laptop is next powered on it starts periodically sending sms messages with location to within 2-4m in our tests.
4. ring cops with location.
will survive any hard drive swap or format and with the corect epoxy if they find it they will atleast brick the laptop in the process as it takes the smd components with it.
downside is time to install and price. also ultrabooks have little space to hide it but any larger laptop you can often find a spot.
It may take a day or two, but it usually shows up there
For it to work though you would need to have it on a separate installation you can boot without password.
if he wants a tracking solution he should solder in a tracking solution.
more than that, even if he knew where the thief was.. THE FUCK WOULD HE DO ABOUT IT??#1= short of the thief being his cousin, he's not going to go front some hoodlums in da hood - nor would the police give a shit about it unless you get your billion dollar ceo to call the police and lie that it's worth millions.
world was created 5 seconds before this post as it is.
Just call the NSA. They will find it for you.
Should do the trick.
...With some simple software any sysmin could setup.
https://www.youtube.com/watch?v=U4oB28ksiIo
Video shows the details of a hacker named "zoz" who had his Mac stolen, and between a setup of DynDNS, protected keyring, SSH, and a few other details and tricks, was able to lead the police to arresting the thief and recovering his stolen computer, from another state. Can be easily applied to *nix, and as others suggested, disk encryption, BIOS passwords, and some simple custom software could help out a lot. Go overboard and even setup a VPN client to connect to your network to avoid any network issues it might find itself in!
Maybe PRISM would work for you.
Slightly off topic, but I think plumpergeddon http://plumpergeddon.tumblr.com/ deserves a mention in this thread :-)
It gripped her hand gently. 'Regret is for humans,' it said.
Any time dogma takes precedence over reality, you're going to fall like the Soviet Union.
Futurist Traditionalism
Install Windows because I don't know what the hell Linux is.
Stuff in your own arduino or raspberry pi based device (it *must* be small), and dump in firmware with your gmail address, IP address, etc. Every day it phones home with GPS coordinates. Stolen? On Friday it was exactly: HERE. On Saturday it was exactly: HERE. At some point it stays home for more than a day. Call the cops, tell them to get a warrant. Door kicked in, laptop finds home. Doesn't matter the OS, it just grabs power from the laptop, borrows the network connection (even if its wireless).
There is no such thing as perfect security. Full disc encryption? Yeah, it will keep your data safe, but it won't keep your computer safe. The disc can be reformatted. Some systems have bios/flash enabled security where you need a password or fingerprint scan to unlock the hardware. That is pretty decent, until you need to give/sell it to someone else... IMO, the only real way to deal with theft is to have a GPS chip installed on the system board in a way that is very difficult (impossible) to remove, and that can then be used to track the hardware itself. AFAIK, no one is doing that yet. Everything else is bogus!
Then most people will not care to steel it.
The first thing that will happen is removal of the SSD to be repurposed or sold on Craigslist. The second thing will be installation of a standard HDD with a pirated copy of Windows, since that will reach a wider customer base when getting rid of the stolen property.
What tracking solution can survive that? Maybe something that's firmware-based...?
would someone actually purchase windoze for a stolen laptop?
gosgog: Get a concealed weapon license, chain the laptop to your non-gun hand wrist, and shoot any son-of-a-bitch that tries to rip it off, move to Texas or Oklahoma and the cops won't bother you,they don't care what race the perp is!