Re: Marketscore technical write-up

[Wyman Miles <wm63 () CORNELL EDU>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

We tested the disconnected storage theory and weren't able to find any
evidence that it was caching reports and would send them later.

We didn't see evidence of such a store on disk and tcpdump certainly didn't
show anything.

It's not impossible or infeasible, but in our testing it didn't seem to
happen.

Wy


- --On Thursday, April 28, 2005 4:21 PM -0700 Mike Iglesias
<iglesias () DRACO ACS UCI EDU> wrote:

> > Cornell's IT Security Office, along with some assistance by CMU, has
> > written up a technical analysis of the functionality of the software
> > distributed by Marketscore.  Our testing uncovered a very broad range
> > of capabilities.  The paper can be found here:
> >
> > <http://www.cit.cornell.edu/computer/security/marketscore/
> > technical.html>
>
> Anyone know what happens to the Marketscore software if it has lost access
> to Marketscore?  Does it keep track of the data it wants to send and
> resend it later, drop it on the floor, start blocking web access, etc?
>
>
> Mike Iglesias                          Email:
> iglesias () draco acs uci edu University of California, Irvine       phone:
> 949-824-6926 Network & Academic Computing Services  FAX:
> 949-824-2069
>
> **********
> Participation and subscription information for this EDUCAUSE Discussion
> Group discussion list can be found at http://www.educause.edu/groups/.



Wyman Miles
Senior Security Engineer
Cornell University, Ithaca, NY
(607) 255-8421
-----BEGIN PGP SIGNATURE-----
Version: Mulberry PGP Plugin v3.0
Comment: processed by Mulberry PGP Plugin

iQA/AwUBQnF7VsRE6QfTb3V0EQKy8wCgu8lvF0saIDTSH6Wt0vv1UOYBA3MAnRGu
iDO4T6dXD/5Y3Kat7UcyXmEJ
=OCtZ
-----END PGP SIGNATURE-----

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/groups/.