Security Concern


log in

Advanced search

Questions and Answers : Web site : Security Concern

Author Message
shegoddess
Send message
Joined: 27 Feb 11
Posts: 1
Credit: 0
RAC: 0
United States
Message 1081977 - Posted: 27 Feb 2011, 9:33:29 UTC

I was a long time supporter until I worked somewhere that seti wasn't permitted. Now when I google seti, the "male performance enhancement drug" shows up on the main google page. How did this happen? I researched it and saw posts from a year ago but why does it still show up? One post asking how to contact seti had a single response: "read the manual"--hard to find the help buried in the arrogant sarcasm. I have serious concerns about participating in a program that seems insecure. I have very powerful systems at my disposal (bless private companies!) but at the same time can't expose them to such risks. I consider this a very interesting and exciting endeavor so can you please try to convince me why I should risk it? Just being up front and candid. Thanks in advance.

Profile ignorance is no excuse
Avatar
Send message
Joined: 4 Oct 00
Posts: 9529
Credit: 44,433,274
RAC: 0
Korea, North
Message 1082057 - Posted: 27 Feb 2011, 15:20:52 UTC - in response to Message 1081977.

what exactly are your concerns? security? I'm not aware of any thread or posting from seti about male enhancement. heck I connect to seti from work. I google seti and it either shows the seti institute first or seti@home.

As far as computing seti/BOINC at work, YOU HAVE TO HAVE PERMISSION. Seti/BOINC will not assist you in running programs on computers for which you do not have permission to run the program. No backdoor nada.

Security. The only thing that I've seen as a security problem is some Antivirus programs think either a file or folder in BOINC Is viral or malware. Neither is true.

All you need to do to run seti/BOINC is to download the BOINC manager, install then attach to seti. its that simple.
____________
In a rich man's house there is no place to spit but his face.
Diogenes Of Sinope

End terrorism by building a school

OzzFan
Volunteer tester
Avatar
Send message
Joined: 9 Apr 02
Posts: 13562
Credit: 29,748,903
RAC: 16,854
United States
Message 1082191 - Posted: 27 Feb 2011, 22:34:38 UTC

When I Google SETI@Home, I don't get anything about male enhancement either. It really sounds like the system you're doing the search(es) on are already compromised.

As a Systems Administrator myself, I can understand the concerns about security that one may have. I can only offer the following assurances:

1) SETI@Home has been running since 1999. I have not seen nor heard of any reports of hacking being done through the SETI@Home client software or BOINC framework.

2) Since joining the BOINC framework, and more specifically BOINC v6.x, the project and applications are "sandboxed" away from the rest of the system. That is, special user and group accounts are created and given very minimal permissions limited to only what a project would need to access on a system (e.g. the project's data folder). Note that this feature is currently not supported on Domain Controller PCs due to the installer's inability to add groups to AD.

3) The few reports of malware being spotted in SETI@Home workunits or the SETI@Home executable have all been verified as false positives. Most heuristics built into anti-virus/anti-malware programs are overly simplistic in that they simply look to see if a single process is hogging all the CPU resources, which can be indicative of a worm or trojan, and will mark the erraneously mark the executable as a potential threat. The workunits themselves all contain recorded noises from space, and the probability of this random digital representation of the noise to look like some virus code is actually pretty high. Since the workunit files themselves are not executable, there is no way they could do harm in the first place, so they can be safely ignored.


I run SETI@Home on my home domain controllers and networked nodes, but I do not run them on the servers that I have control over at my place of employment, simply because the company I work for deals in highly sensitive information and is one of the largest corporations in the world that moves more money per day than most banks. Every hard drive at the company must be encrypted per our security policies. All data traffic is monitored, and the last thing I need is to have my fellow SysAdmins always wanting to point an accusatory finger toward BOINC and SETI@Home when something goes wrong. I know how it is as a SysAdmin, the the first unknown is always to blame.

The risk is completely up to you, but do make sure you get permission first. There has been some history with employees running BOINC on machines for which they did not have permission, and the company promptly terminated the employee's services and proceeded with a lawsuit for stolen resources (CPU cycles, network bandwidth, internet bandwidth, etc.).

If you're concerned about security at all, then simply don't run SETI on any server of importance. In fact, if you're interested in running SETI@Home, I would recommend only running it on your home PCs.

As a matter of fact, I would suggest running it on your home PCs first so you can observe the behavior of the program before making your decision to run it on any servers at your workplace.

And as always, feel free to ask any questions you may have and there's an entire community waiting to help answer them as best they can.

Profile ignorance is no excuse
Avatar
Send message
Joined: 4 Oct 00
Posts: 9529
Credit: 44,433,274
RAC: 0
Korea, North
Message 1082202 - Posted: 27 Feb 2011, 22:54:14 UTC - in response to Message 1082191.
Last modified: 27 Feb 2011, 22:54:41 UTC

There was the one guy wayyyyy in the Pre-BOINC era that added S@H to a viral infection as I recall. basically he was forcing people to run seti against their will and on his account. Needless to say that didn't last long
____________
In a rich man's house there is no place to spit but his face.
Diogenes Of Sinope

End terrorism by building a school

John McLeod VII
Volunteer developer
Volunteer tester
Avatar
Send message
Joined: 15 Jul 99
Posts: 24224
Credit: 519,558
RAC: 57
United States
Message 1082256 - Posted: 28 Feb 2011, 1:57:26 UTC - in response to Message 1082202.

There was the one guy wayyyyy in the Pre-BOINC era that added S@H to a viral infection as I recall. basically he was forcing people to run seti against their will and on his account. Needless to say that didn't last long

There was also one guy that did the same for BOINC. He was banished and his account destroyed (which means that there are BOINC installations that hit the servers and are rejected because the account is gone).
____________


BOINC WIKI

OzzFan
Volunteer tester
Avatar
Send message
Joined: 9 Apr 02
Posts: 13562
Credit: 29,748,903
RAC: 16,854
United States
Message 1082258 - Posted: 28 Feb 2011, 2:03:54 UTC - in response to Message 1082202.

While that may be true, that isn't the same as compromising a system through SETI@Home or BOINC. That would be evidence of someone hacking a computer through other means and then putting SETI on the system.

From a security standpoint of the application itself, BOINC nor SETI@Home have been using to infiltrate a system by leaving insecure ports open, primarily because they use the web standard TCP port 80 and secure port 443 on some projects for communications. If someone hacks your machine through port 80, it's more likely you have a major flaw elsewhere and it wasn't because of SETI@Home or BOINC.

Profile BilBg
Volunteer tester
Avatar
Send message
Joined: 27 May 07
Posts: 2614
Credit: 5,950,801
RAC: 3,733
Bulgaria
Message 1082275 - Posted: 28 Feb 2011, 3:57:57 UTC - in response to Message 1081977.
Last modified: 28 Feb 2011, 4:26:12 UTC

... Now when I google seti, the "male performance enhancement drug" shows up on the main google page...


No! It is NOT:
http://www.google.com/search?q=seti






If you see something different on your computer/browser you may have some malware
(Browser Toolbar/Browser Helper Objects/UrlSearchHooks/Browser Extensions/Add-ons)
which modifies the search results (I have seen this happen!).

Give us a screenshot.


____________



- ALF - "Find out what you don't do well ..... then don't do it!" :)

Profile ignorance is no excuse
Avatar
Send message
Joined: 4 Oct 00
Posts: 9529
Credit: 44,433,274
RAC: 0
Korea, North
Message 1082355 - Posted: 28 Feb 2011, 13:27:01 UTC - in response to Message 1082275.

thats fine from your PC but obviously her computer has a problem. Most likely its got malware that is redirecting searches for any site to the bogus sites shes mentioned
____________
In a rich man's house there is no place to spit but his face.
Diogenes Of Sinope

End terrorism by building a school

Questions and Answers : Web site : Security Concern

Copyright © 2014 University of California