Mourning the loss of our friend, WhitPhil.
There's no such thing as a stupid question, but they're the easiest to answer.
JoinTour
Login
Search
 
Tech Tips & Tricks
Tag Cloud
access audio blue screen boot bsod connection crash dell desktop driver dvd email error excel firefox hard drive hardware hijackthis internet keyboard laptop malware monitor motherboard network networking outlook problem processor ram recovery router safe mode screen slow sound spyware tdlwsp.dll trojan upgrade vba video virus vista vundo windows windows 7 windows vista windows xp wireless
Search
Search for:
Tech Support Guy Forums > General Technology > Tech Tips & Tricks >
Tip: Privacy: Check out your computer's timestamp on each packet

Tip: Click here to scan for System Errors and Optimize PC performance
[ Sponsored Link ]

Closed Thread
 
Thread Tools
lotuseclat79's Avatar
Distinguished Member with 14,988 posts.
  
Join Date: Sep 2003
Location: -71.45091, 42.27841
12-May-2006, 08:46 AM #1
Tip: Privacy: Check out your computer's timestamp on each packet
Are timestamps enabled for each packet on your computer?

Take the TCP/IP Analyzer SpeedGuide.net test to find out:
http://www.speedguide.net:8080/
If the Timestamps (RFC1191) = ON, then your computer can be tracked to the ends of the earth on the basis of your Clock Skew.

You can disable the timestamps for Windows with the TCPOptimizer program from speedguide at: http://www.speedguide.net/downloads.php

Or, you can edit the registry.

Clock Skew and your computer's fingerprint:
Read this (dated March 13, 2005) at: http://www.spywareinfo.com/newslette...2005/mar13.php

In other words, in the "Kiss your Anonymity Goodbye" article unless you either falsify the timestamps on each packet or instruct the computer not to attach them to each packet - your computer clock skew can identify your computer.

Story Link: http://www.zdnet.com.au/news/securit...9183346,00.htm
Remote Physical Device Fingerprinting (PDF paper download available at): http://www.caida.org/publications/pa...ingerprinting/ (9.94MB)

-- Tom
__________________
The independence created by philosophical insight is - in my opinion - the mark of distinction
between a mere artisan or specialist and a real seeker after truth. - Einstein 1944
Imagination is more important than knowledge. - Einstein
Register for free to hide this ad!
WhitPhil's Avatar
Computer Specs
Trusted Advisor - Gone but never forgotten with 9,280 posts.
  
Join Date: Oct 2000
Location: Whitby, Ontario
12-May-2006, 09:49 AM #2
Note that it is the identity of the computer that can be seen, NOT the identity of the user of that computer.
brendandonhu's Avatar
Distinguished Member with 15,988 posts.
  
Join Date: Jul 2002
Location: Ann Arbor, MI
Experience: Advanced
12-May-2006, 12:49 PM #3
Remember it would also require your computer to send TCP/IP packets to someone that's trying to track you for them to measure the clock the skew, and those packets would have to be identified as coming from the same computer.
Last edited by brendandonhu : 12-May-2006 12:55 PM.
lotuseclat79's Avatar
Distinguished Member with 14,988 posts.
  
Join Date: Sep 2003
Location: -71.45091, 42.27841
12-May-2006, 05:03 PM #4
Quote:
Originally Posted by brendandonhu
Remember it would also require your computer to send TCP/IP packets to someone that's trying to track you for them to measure the clock the skew, and those packets would have to be identified as coming from the same computer.
Not if "they" are tapped into the Internet backbones and have a way to trap your traffic from listening to everything. "They" probably are using Carnivore surreptitiously anyway - you do know whom I mean by "they" I presume. Assumption is that packets are timestamped.

-- Tom
Last edited by lotuseclat79 : 12-May-2006 05:13 PM.
BanditFlyer's Avatar
Distinguished Member with 12,590 posts.
  
Join Date: Oct 2005
Location: BOT бaHДиT
Experience: (50-6) 44ko, one earlobe
12-May-2006, 06:10 PM #5
Good Info, Tom,

Thanks
brendandonhu's Avatar
Distinguished Member with 15,988 posts.
  
Join Date: Jul 2002
Location: Ann Arbor, MI
Experience: Advanced
12-May-2006, 09:02 PM #6
Quote:
Not if "they" are tapped into the Internet backbones and have a way to trap your traffic from listening to everything.
Also remember that the methods in the study that work on default Windows 2000/XP require communicating with the machine being fingerprinted or modifying packets-- packet monitoring isn't enough to do it. Of course, if all traffic is being monitored, you have bigger problems than clock skew anyway
__________________
-Brendan
Last edited by brendandonhu : 12-May-2006 09:26 PM.
Closed Thread Bookmark and Share

THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Smart Search

Find your solution!


« Previous Thread | Tech Tips & Tricks | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
WELCOME TO TECH SUPPORT GUY! Are you looking for the solution to your computer problem? Join our site today to ask your question -- for free! Our site is run completely by volunteers who want to help you solve your computer problems. See our Welcome Guide to get started.

Thread Tools


Twitter Twitter! | Podcast | Mobile | Advertise
Contact Us - HelpOnThe.Net - Archive - Terms of Service - Top
You Are Using:
Server ID
Advertisements do not imply our endorsement of that product or service.
All times are GMT -5. The time now is 04:19 AM.
Copyright © 1996 - 2009 TechGuy, Inc. All rights reserved.
Powered by vBulletin, Copyright © 2000 - 2009, Jelsoft Enterprises Ltd.
 Powered by Cermak Technologies, Inc.