Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: Good Tracking Solutions For Linux Laptop?

Posted by samzenpus on from the ping-home dept.

First time accepted submitter WillHPower writes "So I have ordered a new Ubuntu-powered laptop. I spent some extra bucks on lots of RAM and a good sized solid state drive. After putting money into it, I'd like to find a way to track this laptop in case it's ever stolen. Are there any good tracking software/services the run on Linux laptops? Also, are there any other techniques besides tracking for dealing with a lost or stolen laptop that I should consider?"

31 of 253 comments (clear)

  1. No by Anonymous Coward · · Score: 5, Insightful

    No, there's no good Linux HW tracking software. Why? Cause there's no good software for other platforms either. It's all "make-you-feel-good-software" which doesn't survive a simple OS reinstallation...

    1. Re:No by fuzzyfuzzyfungus · · Score: 3, Informative

      No, there's no good Linux HW tracking software. Why? Cause there's no good software for other platforms either. It's all "make-you-feel-good-software" which doesn't survive a simple OS reinstallation...

      It doesn't exactly give you the warm-and-fuzzies to know that this is possible; but some models have it baked right into the firmware. A suitably provisioned AMT 6+ device can do entertaining things like phone home and provide 'home' with an IP KVM, regardless of OS state.

    2. Re:No by schnell · · Score: 5, Funny

      No, there's no good Linux HW tracking software

      Of course there is. You just need to tape a note to the laptop asking the thief to compile and install it after doing a code review to make sure it's trusted, and submitting any code patches necessary back to the developers.

      --
      "95% of all Slashdot .sig quotes are incorrect or completely fabricated." -Benjamin Franklin
    3. Re:No by gothzilla · · Score: 4, Informative

      Sure there is. http://www1.euro.dell.com/content/topics/global.aspx/services/prosupport/computrace?c=uk&l=en&cs=ukbsdr3 Computer will ship with the Laptop Tracking and Recovery software agent and a persistence module embedded in the BIOS. The software agent can survive operating system re-installations, hard drive reformats and even hard drive replacements. When a lost or stolen computer connects to the Internet, the software agent contacts the monitoring center to report the computer’s location. For systems with GPS technology included, Laptop Tracking and Recovery has the ability to capture and report more detailed location information. It also provides the ability to track your laptops as they change hands or move around the organization.

    4. Re:No by greg1104 · · Score: 4, Informative

      There's a list of where BIOS level Computrace is available on their BIOS compatibility page.

    5. Re:No by egamma · · Score: 5, Interesting

      Can you point out a free OR open-source implementation of a phone-home BIOS on a laptop? No. No one can, as there ain't one. And a closed-cource security feature is a scam, plain and simple. I'd stay away from laptops that HAVE that feature, even if "deactivated" (how would you know?) by default.

      WillHPower did not make FOSS a requirement; why are you making it a requirement? Can you explain why a closed-source security feature must by a scam?

      WillHPower wants to get his laptop back if it is stolen. He's not asking for ideological purity. He knows that if his laptop has a tracking device that the tracking data could be used by law enforcement against him. That's what tracking software does; it tracks. That is not a bug, that's a feature, and is actually the feature he wants to have. Apparently he doesn't wear tinfoil; he's not required to. It is his right as a thinking person to choose to be paranoid, or not be paranoid.

      The best solution is some form of hardware lo-jack. Maybe a GPS transmitter that can fit in one of the external ports on his laptop, if that isn't built in already.

      --
      Battlemaster--Game with friends in medival realms
  2. Theft prevention: label it "Linux Laptop" by xxxJonBoyxxx · · Score: 5, Funny

    You're probably better off going with theft protection. Your best bet might be to label it a "Linux Laptop" in big bold letters.

    1. Re:Theft prevention: label it "Linux Laptop" by 54mc · · Score: 4, Funny

      This is actually not a terrible idea. Kinda along the lines of how people joke that the best anti-theft an American car can have is a clutch.

      --
      Joy! Beautiful spark of the gods!
  3. Prey by Anonymous Coward · · Score: 5, Informative

    http://preyproject.com/

  4. Free but only partially useful solution by Deathspawner · · Score: 3, Informative

    Writing a bash script that automatically sends the laptop's current outbound IP address to a remote file is one idea. That would at least help you figure out to some degree there the laptop has been used from. It'd require law enforcement to go further than that, though...

  5. Disk encryption by bradley13 · · Score: 3, Informative

    Assuming you have valuable and/or personal data on the machine, don't forget disk encryption. Either encrypt the entire disk, or perhaps just the data partition. Truecrypt is a good solution for this.

    --
    Enjoy life! This is not a dress rehearsal.
    1. Re:Disk encryption by greg1104 · · Score: 4, Insightful

      If you encrypt the boot drive properly, it won't boot to anywhere useful without a password. That means you can't use any of the OS-level tracking solutions, because the thief won't be able to boot into the regular OS. If you've let a criminal boot far enough to track them properly, you've really let them get too close to your data.

      It sucks in a way that a locked down system can't also phone home easily to find the thief, but realistically that's the trade-off here. I'm willing to write off the cost of a laptop if it's stolen, as long as the thief doesn't also get access to any personal data I have on the drive. Recovering from a case of identity theft costs a lot more than any single device.

  6. Re:Have it log in with DynDNS and open a VPN to yo by carlhaagen · · Score: 3, Informative

    A plethora of solutions already do this, without the overhead of reinventing the wheel. Check out http://preyproject.com/

  7. Stop Theft Plates by kullnd · · Score: 4, Informative

    I'm a big fan of these - - They deter the actual theft before it happens.

    http://www.stoptheft.com/

    --
    +++ATH0 NO CARRIER
  8. Here is what you could do: by stewsters · · Score: 4, Insightful

    Get internal gps. Dual boot with a no-password windows xp account. The thief will have a much higher chance to log into that. Make it spam a home server with its coordinates every second its on and has access to the internet. Encrypt your linux partition. The key is you want the thief not to just wipe it and sell it, they need to power it on.

    1. Re:Here is what you could do: by CanHasDIY · · Score: 3, Insightful

      The key is you want the thief not to just wipe it and sell it, they need to power it on.

      Depends on the style of thief; your typical, garden-variety tweeker looking for something to sell to the pawn shop probably won't even crack the top, let alone try and boot the thing... a pro or semi-pro identity thief, on the other hand...

      Then there's the ever-present bored-teenage-vandal types (especially prevalent this time of year)... those kids are likely going to break into the machine to see what kind of "cool" (read: pornographic) stuff you've got on there, shortly before they completely trash the hardware.

      --
      An enigma, wrapped in a riddle, shrouded in bacon and cheese
  9. Insurance by L4t3r4lu5 · · Score: 4, Informative

    Encrypt the hard drive. Insure against theft. Forget about it if it's stolen.

    --
    Finally had enough. Come see us over at https://soylentnews.org/
    1. Re:Insurance by auric_dude · · Score: 3, Informative

      Please don't forget to make and test backups every now and then otherwise you may well have your insurance payout but no data.

    2. Re:Insurance by bill_mcgonigle · · Score: 5, Interesting

      Encrypt the hard drive. Insure against theft. Forget about it if it's stolen.

      Right, your data integrity is almost always worth more than the hardware itself. In order to install a tracker, you have to permit the attacker access to your filesystem. Don't do that.

      If my laptop is stolen, they'll see a grub screen, and then dracut asking them for a password. I'm SoL on ever seeing it again but I don't have to go explain to clients how their security may have been compromised.

      I guess ... you could try to bait them with a Windows boot option in grub. Maybe even make it the default if you think it's really likely that your laptop will be stolen. Install the tracker there, perhaps. One could continue along that train of thought with silent grub options and delays to make a deadman's switch of sorts, that would automatically bring up wireless, connect to any routable AP and send a help packet. Hey, there's an opportunity for the next guy who wants to make a new micro linux distro that does something unique - the more silent, slim, and faster the better. Maybe even a fake Windows splash screen while it's doing its business.

      --
      My God, it's Full of Source!
      OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
  10. Nice Try, NSA by Anonymous Coward · · Score: 3, Funny

    You'll have to try harder than that to get me to help you track people.

  11. Linux OS likely to be erased offline by advid.net · · Score: 4, Insightful

    The first thing the theft will do: an offline OS installation.

    I bet the stolen Linux laptop will have its OS erased to either to run MS Windows or an other Linux distro.

    1. Re:Linux OS likely to be erased offline by whoever57 · · Score: 3, Informative

      The first thing the theft will do: an offline OS installation.

      Exactly. My daughter's Ubuntu laptop was stolen some years back. It was configured to start OpenVPN on boot-up. The VPN never connected after the theft, so I can safely conclude that it was never connected to the Internet while the original Linux install was present.

      --
      The real "Libtards" are the Libertarians!
  12. CompuTrace by DigiShaman · · Score: 4, Interesting

    Depending on the laptop (in BIOS), you can use CompuTrace with Dell laptops.

    http://www.absolute.com/en/products/absolute-computrace

    --
    Life is not for the lazy.
  13. Prey by readingaccount · · Score: 3, Insightful

    Apologies if this sounds like I'm some sort of shill, but I'm not. Just a happy customer:

    http://preyproject.com/

    * Free and open source
    * Completely passive
    * If the laptop is reported missing (and has net access to know this), Prey will report its geo-location via Google Maps, take passive captures of the user with the laptop's webcam, take screenshots of their activity, and if necessary completely lock down the computer (though you'd normally do this manually and as a last resort - once locked, the thief will probably ditch it very quickly). Does other things as well.
    * Works on Win/OSX/Linux/iOS/Android

    * Allows you to run it in two ways:
    1. Make an account on the website, install the software and link it to your account, so that should your laptop go missing you can report its absence via the site and it'll do its thing once the laptop goes online elsewhere. Free accounts all you to link up to 3 devices, pro accounts allow more in addition to more features, but you'll easily be fine with a free account.
    2. If you want to be completely independent, you can run Prey stand-alone. No account needed - it works by monitoring for the existence of a URL when online, and if said URL reports a 404 error, it triggers and sends reports via email. Hence, you set up some free hosting with a dummy file, point Prey to the full URL of said file, then if laptop goes walkies, remove the file from the host to trigger Prey. No reliance on accounts or anything. Bit much for a regular user but easy enough for advanced users and not dependent on a company for the software to keep working.

  14. Since you're running Linux ... by MacTO · · Score: 3, Interesting

    Since you're running Linux, you will probably discover that any thief will reformat the hard drive to install Windows. This leaves two options:

    1) Look into software that may already be baked into the firmware.

    2) Have it automatically, and preferably transparently, boot into Windows then follow some of the other advice found here.

    Neither route will help you recover a laptop once it has passed through the hands of professionals.

    Overall, you'd probably be better off detering theft in the first place: don't use it in overly public places, never leave it alone in public places, invest in a good lock, and make it look undesirable. (One thing that I like about my ThinkPad is that it looks 10 years older than it actually is. Stickers, especially "non-removable" ones, make more identifiable and harder to resell without a cleanup effort. Scratches and dings will reduces its apparent value. Heck, smashing the slot for the lock will probably deter most thieves since it would be harder to sell.) Remember, the best way to avoid being a target is to avoid looking like a target.

    Oh, and write down every serial number on the system.

  15. DDoS by DougOtto · · Score: 4, Insightful

    Configure it to launch a DDoS against the NSA and FBI if your password isn't entered within 30 seconds of booting.

    --
    Solving Unix problems since 1989...
  16. How about a C4 "Deadman" Switch by Anonymous Coward · · Score: 4, Funny

    You're a slashdot guy, so you must be pretty talented. Open the thing up and find some unused GPIO (or serial port) that you can tap into and hook a small block of C4 and a detonator up to it [1]. Then, create a cron job that runs daily to check that you've been logged in at least once, and if it doesn't it should assume the laptop was stolen and trigger the detonator. No. Wait. Better make the cron job run every 12 hours. You can never be too careful. Just make sure you never sleep in on weekends or leave your house without your laptop.

    Next, to be extra safe, you'll want to somehow monitor failed login attempts and trigger the C4 whenever too many happen. Not sure how to do this as I'm a hardware guy myself, but I'm sure you can figure things out on your own or with your frienemy Google. I'd say that allowing one failed login attempt should be a safe threshold, but I'd recommend against allowing any more than that, as you're just asking for trouble. In fact, unless you're some kind of pussy that can't type, you can probably get away without any grace login attempts.

    If you were really paranoid, you could try to implement some sort of retina scan or proximity sensor using the built-in webcam, but that's an advanced topic probably better left for some future "Ask Slashdot" post.

    [1] If you have sort sort of issue with using C4, maybe you should consider somehow using a thermite charge instead. Less "bang", yes, but definitively more colourful, and would give new meaning to the term "toasted skin syndrome".

  17. Simple solution by PPH · · Score: 4, Funny

    Put a Windows 8 sticker on it. Nobody will touch it.

    --
    Have gnu, will travel.
    1. Re:Simple solution by danomac · · Score: 3, Funny

      And make sure it's a bright pink laptop. People will pay you to take it back!

  18. PREY by Jeremiah+Cornelius · · Score: 4, Informative

    Prey is great. It is more effective than "Find My Mac" and runs on may platforms, including most Linuces. :-) Android, MacOS and iOS - besides teh usual vanilla from Redmond.

    http://preyproject.com/

    From the FAQ:

    Can Prey be removed by a thief?

    Not unless he has your administrative password.

    And what if he formats the computer?

    That's a different story. We encourage you to add a BIOS password and disable booting from removable devices on your PC, so that the thief will be forced to boot into the previous installation and thus, not be able to format your hard disk easily.

    If you have a Mac, there's a firmware password utility on your Tiger/Leopard Mac OS installation DVD (look for it in in Applications/Utilities). On OSX Lion you'll find the utility by booting from the recovery partition.

    --
    "Flyin' in just a sweet place,
    Never been known to fail..."
  19. Re:Just ask the NSA by Anonymous Coward · · Score: 5, Funny

    No, just enter the following URL:

    www.nsa.gov/applications/search/index.cfm?q=I lost my laptop could you tell me where it is

    I have to admit I was freaked out when the result came back and said, "You're ON your laptop. Stop fucking around, Robert"