Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Intrusion Detection For Your PC Case

Hemos posted more than 12 years ago | from the gotta-catch-'em-all dept.

Security 213

Anonymous Coward writes "Ryan du Bois, from genbukan security (aka red0x), has created a chassis intrusion detection system for your computer box: the actual physical case. He also wrote a paper describing three separate implementations of this CIDS system: Contacts, Pressure switchs, and a PLA (programmable microchip). Included in his paper are complete designs for the first two and a promise for the last to come soon. Definitely worth a read. The paper is available in many formats including OpenOffice 1.0, HTML , TEXT and a Tarball of them all. You can also obtain the signatures as well as his Automated Security Tools Project, of which this is a member."

cancel ×

213 comments

Sorry! There are no comments related to the filter you selected.

F1RST P0ST FAGETS (-1)

L0rdkariya (562469) | more than 12 years ago | (#3722305)

Mad props to all logged-in trolls on Troll Tuesday.

Re:F1RST P0ST FAGETS (-1)

Sexual Asspussy (453406) | more than 12 years ago | (#3722328)

if i'm going to get poached, it might as well be by you. nice work.

FP (-1)

Sexual Asspussy (453406) | more than 12 years ago | (#3722310)

first fucking post, again

time for pinball [wms.com]

Re:FP (-1, Troll)

TweeKinDaBahx (583007) | more than 12 years ago | (#3722478)

you lose.

tubgirl [tubgirl.com] loves you.

Nothing New (2, Informative)

thelizman (304517) | more than 12 years ago | (#3722325)

Dell Optiplexes could not be opened without tripping an internal warning that would flash on screen at reboot. You had to reset the bios based warning using a password to turn it off. Packard Bell and Compaq also did this years ago (I had a Compaq 286sx with an internal detection system which used a mercury switch)

Oh yeah, FIRST POST BIATCH.

This is new? (1, Redundant)

UnifiedTechs (100743) | more than 12 years ago | (#3722329)

I remember a plug for an intrusion detection system on my old 486's.

Re:This is new? (3, Interesting)

Jucius Maximus (229128) | more than 12 years ago | (#3722433)

I agree. Old news indeed.

I remember reading about systems in old issues of PC Magazine or such where, if the case was opened incorrectly, something inside would explode and cover everything inside with paint, thus making the computer parts un-sellable on the reller's market. The crook would leave your box behind and you could still get at your HDD to recover your data.

This is news? (5, Insightful)

No-op (19111) | more than 12 years ago | (#3722336)

Pretty much all standard business desktops have intrusion detection devices, as well as bios hooks to inform higher level software apps that it has been tripped. Most server cases have this as well- a whole slew of my compaq racks here have them, and they tie into our management system. Mind you, they lock as well, so I'm not as worried- they have solenoids! *THUNK*

I can't imagine someone cobbling together something that has existed forever is news...

Re:This is news? (1)

FreeQ (139632) | more than 12 years ago | (#3722416)

Is it just me or this is a complicated device to replace the old pieces of tape trick ?

Re:This is news? (2)

colmore (56499) | more than 12 years ago | (#3722643)

yeah but you can replace the tape and still swipe your boss' graphics card and RAM

Re:This is news? (0)

Anonymous Coward | more than 12 years ago | (#3722486)

I managed to open my compaq deskpro 4000 after I have locked it and foolish enough to play with the multiplier jumpers. You can get access to the solenoid by taking off the power supply. Mind you it is alot easier if you have a security bit with your screw driver set.

Ultimate intrusion device - bottle of chlorine/hydrogen mixture (or any light sensitive explosive chemical mixture)... ;)

Re:This is news? (2)

Kintanon (65528) | more than 12 years ago | (#3722591)

All of Dell's desktop machines come with a version of this as well, if the case gets opened it will display a warning to that effect every time you boot the system, unless you disable the message.

Kintanon

Re:This is news? (2)

Lord Omlette (124579) | more than 12 years ago | (#3722608)

A-Bombs have existed for quite some time, but if someone cobbled together a DIY nuke, it would sure be news.

Allah Bomb President!

*ahem*

Yeah, DIY is always cool, especially if you're the first to do it. If Mr. I-don't-want-anyone playing-inside-my-PC's-case isn't cool, could someone show me someone else (a geek, not an assraping corporation) who beat him to the punch, plz?

Compaq has had this... (4, Interesting)

peterdaly (123554) | more than 12 years ago | (#3722338)

Compaq has had something like this for years. Not only that, they have an internal case lock which can be activated/deactivated remotely, or in the password protected bios.

A special tool from compaq is required to defeat the lock...or a drill. But anyway, it can keep track of when the case is opened I believe.

I have seen, but never used the feature, so I don't know the specifics.

-Pete

But.... (1)

dsconrad (532462) | more than 12 years ago | (#3722345)

Why? This seems like a bit of overkill as compared to, eg, a lock.

Re:But.... (2)

morgajel (568462) | more than 12 years ago | (#3722423)

what's worse, think about it- how many of us actually have our cases CLOSED?
locks don't help when you got the side off and a fan pointing in on the processor.

Re:But.... (2)

zangdesign (462534) | more than 12 years ago | (#3722458)

I don't think the intrusion detection system is aimed at your market level. This is not even an average /.'rs level.

This is one of them corporate IT bigwig thingys where the extra expense of an ID system is only a small part of the cost of the overall system itself.

Re:But.... (2)

colmore (56499) | more than 12 years ago | (#3722662)

heh, take the parent's sig as a response to yours.

there was no need for you to reply to that guy.

Interesting, but... (1)

InnereNacht (529021) | more than 12 years ago | (#3722346)

People have been able to do similar things for years. Theres other companies out there right now (dell for instance) that have a warning that pops up saying that the case was removed. Theres also other cases you can buy that have the ability to do the same.

If you wanted to it wouldn't be incredibly difficult to wire up a contact to the inside of your PC case. Using that dry contact you could either trigger an alarm (audible or visual) or just write out a timestamp to a log.

Just imagine... Someone cracks open your PC and a 175Db alarm sounds. Seems like a good idea to me! :)

WOW - this is AMAZING! (-1)

Jon Katz on Tuesday (578508) | more than 12 years ago | (#3722348)

I'll just be redundant much like all the other slashbots and say that this has been done before.

Go a head and mod me down for all I care, I already have 50 karma and can stand to lose some.

Too much time on hands (1)

zyglow (585790) | more than 12 years ago | (#3722350)

Either this individual has too much time, or has been asleep for the past few years.

Since when has anyone actually needed a security system on their case?

Re:Too much time on hands (0)

Anonymous Coward | more than 12 years ago | (#3722378)

The employee's at my work steal everything.

Re:Too much time on hands (0)

Anonymous Coward | more than 12 years ago | (#3722455)

I worked at Dell for a while (biggest cube farm you've ever seen) and everyone could see who was getting upgraded. People were always stealing/swapping each others sound cards/memory/video. Of course it was the little lock you could attach, not the warning, that kept techno penis-envy from corrupting most people.

Re:Too much time on hands (2)

Jucius Maximus (229128) | more than 12 years ago | (#3722457)

"Since when has anyone actually needed a security system on their case?"

Some years ago I was working as a tech in a university as a co-op student. I learned that there were semi-common problems for people to break open the blank 5.25" panels on the front of the cases and reach in and grab the RAM and CPU. And this was on boxes that where physically secured onto the desks.

This is one reason why security on system cases is necessary.

Re:Too much time on hands (0)

Anonymous Coward | more than 12 years ago | (#3722465)

Feel like getting an extra 128MB of RAM? How about another component? I lock all of my computers. Another thing is that you can remove the hard drive and make it a slave on another computer that you have root on. You don't need to hack it if there is no security.

Cant read the article (0)

Anonymous Coward | more than 12 years ago | (#3722353)

it;s already slashdoted

Who Cares. It's been done. (0)

Anonymous Coward | more than 12 years ago | (#3722359)

Who cares? Dell's have had this for years.

Dude, Dell already did it (0)

Anonymous Coward | more than 12 years ago | (#3722360)

My Dell PC here at work has had that for 3 years.

Every managed PC sold by a big name company has it (1)

qurob (543434) | more than 12 years ago | (#3722361)


Compaq, Dell, IBM...they all tell you when someone's opened the case, removed memory, added hard drives, etc etc....

C'mon!

What a bunch of Rubes!... Goldberg, that is (4, Insightful)

L. VeGas (580015) | more than 12 years ago | (#3722364)

All you need is tamper-evident tape [tamper.com] .

Re:What a bunch of Rubes!... Goldberg, that is (1)

qurob (543434) | more than 12 years ago | (#3722432)


Does this tape interface to you computer?

Alerting the sys admin that the user in accounting has been opening their PC?

I remember when I worked at Best Buy, people would come in, with their WARRANTY VOID tape broken on their Packard Bells, and there's no way we could prove they opened their machine up and fucked it up....

Re:What a bunch of Rubes!... Goldberg, that is (2)

L. VeGas (580015) | more than 12 years ago | (#3722454)

Does this tape interface to you computer? Alerting the sys admin that the user in accounting has been opening their PC?

robotic tape does

Re:What a bunch of Rubes!... Goldberg, that is (0)

Anonymous Coward | more than 12 years ago | (#3722534)

Well, by law, you can't void a warranty like that. You have to cause the problem to occur and the burden of proof lies in the manufacturer.

Moderation (3, Insightful)

twoflower (24166) | more than 12 years ago | (#3722373)

I have moderation points, but it won't let me moderate the story itself as "pointless" or "redundant"

It's really too bad when the people running the site know less than the people reading it.

Twoflower

Re:Moderation (2)

garcia (6573) | more than 12 years ago | (#3722447)

everyone keeps saying that this is a REAL site for REAL journalism.

Since when did journalists know more about a topic than the majority of readers? ;-)

Re:Moderation (1)

cheese_wallet (88279) | more than 12 years ago | (#3722488)

"everyone keeps saying that this is a REAL site for REAL journalism."

I've never heard/read anyone make that claim. Usually it is quite the opposite.

Re:Moderation (1, Flamebait)

Lord Omlette (124579) | more than 12 years ago | (#3722644)

Slashdot: News for Nerds

Below that, they should have a little disclaimer: Please leave all pretentious wanking at the door. You can pick it up when you leave. Thank you.

Most of us Karma Whores (I use the power of .NET to Karma Whore for me, I'm cool!) at least take the time and care and love to post the URL to the previous Slashdot story that's identical to the one we're complaining about. Since you included no url, you have no valid reason for the story to be redundant. Since you gave no reasons for the story to be pointless, I'm guessing you have none.

Your mods would have been metamodded out of existence.

Jackass.

It's so nice having four different formats.. (1)

sgtsanity (568914) | more than 12 years ago | (#3722375)

..because it gives us four different ways to slashdot them!

what I learned from the movies (4, Funny)

Marco_polo (160898) | more than 12 years ago | (#3722380)

is that we need lasers set up in an inefficient pattern surrounding the box itself.

Re:what I learned from the movies (2)

L. VeGas (580015) | more than 12 years ago | (#3722434)

It doesn't work. People will just dangle from the ceiling, use an aerosol spray can to see the lasers, then put a mirror between them, then use a skinny robotic arm with a periscope to access the computer.

Happens to me all the time. pesky spies

Re:what I learned from the movies (1)

aclarke (307017) | more than 12 years ago | (#3722612)

You don't have to use aerosol sprays to see the laser beams because they're VISIBLE!! Geez, don't you watch movies AT ALL?! ;-)

(note to those of you who don't get sarcasm - yes I know you can't see laser beams. But you can in the movies. That's my point. So you don't have to respond to say that you can't see laser beams. Thank you.)

More important things to worry about (3, Insightful)

fatwreckfan (322865) | more than 12 years ago | (#3722384)

As interesting as this is, I'd be more worried about someone actually stealing the machine than opening it up for components. Even in a office environment, who is going to check each machine to make sure the employee using it didn't crack it open to swipe some RAM?

Why not just use a chain to the desk which locks the case shut? Then you're safe in both cases.

Re:More important things to worry about (2)

penguinboy (35085) | more than 12 years ago | (#3722581)

With decent remote management software, there's no need to go visit computers individually. It should be easy to configure it to alert someone if something suspicious happens to a machine (cover removed, installed RAM amount decreases, etc.).

Already Done (1)

slakdrgn (531347) | more than 12 years ago | (#3722386)

Its been done for a while by HP [hp.com] expecially in the Vectra Line of pcs.. I have a few Kayak's and Vectra's, using their DMI/WMI Clients they detect the intrusion detection and even will report it to a central server like HP Toptools. If I'm not mistaken it will even report changes in system states (stuff removed/added) etc.. it stores it in the bios area I think, or atleast in flash.. it'll keep it even after the bios battery has been removed or reset.. (and ofcourse with no power).. I think even some asus boards support this.. anyone know of support outside of HP/Compaq?


~slak

Classified Processing (5, Interesting)

delphin42 (556929) | more than 12 years ago | (#3722388)

I used to work for a defense contractor where many of our computers were used to process classified information. Besides controlling access to the room in which the computers were located, stickers were placed over all the access points to the internals of the machine. The stickers were signed and dated by the security officer when they were placed and if one was broken, the computer had to be carefullly inspected before it would be returned to operation. Needless to say, employees were enouraged to report wear on stickers before they were completely broken, to avoid having to throughly inspect the innards of the device for bugs.

MY CLIENTS ASK THAT ... (-1, Offtopic)

RIAA Lawyer (584520) | more than 12 years ago | (#3722390)

SLASHDOT STOP SPREADING FALSE INFORMATION ABOUT THE PIRACY INVOLVED IN THIS.
My clients pla on putting forth a requierment for all PCs to use this intrusion detection when we get a law passed to stop piracy.

THIS IS OUR FINAL CEASE AND DESIST ORDER.
PLEASE COMPLY, AND IF YOU DON'T THAT'S FINE SINCE I HEARD VA LINUX IS GOING TO BE DE-LISTED NEXT WEEK.

My bios supports it.. (1)

Planetes (6649) | more than 12 years ago | (#3722391)

My bios has support for case intrusion but I've never tried to implement it. I'm using a MSI KT333 (ARU version) motherboard with AMI bios.

1 acronym: EMP (0)

Anonymous Coward | more than 12 years ago | (#3722392)

a small Electromagnetic pulse would disable the whole setup.

And yes, it could likely be rigged not to damage the computer itself.

Something more low-tech... (3, Interesting)

Silverhammer (13644) | more than 12 years ago | (#3722393)

Howsabout a good old fashioned thieves knot [rcarchive.com] ?

Re:Something more low-tech... (2)

grytpype (53367) | more than 12 years ago | (#3722540)

Brilliant. But how many computer thieves know how to tie a proper square knot?

Re:Something more low-tech... (0)

Anonymous Coward | more than 12 years ago | (#3722550)

I do not think that would work. (Score:1 Funny)

How is this secure? (2)

Hollins (83264) | more than 12 years ago | (#3722396)

I'm a little slow here, but what is to keep an intelligent intruder from resetting the software that tells you an intrusion took place?

I'd feel better will tamper-evident tape, but maybe I don't understand this system.

Re:How is this secure? (1)

Jucius Maximus (229128) | more than 12 years ago | (#3722490)

"I'm a little slow here, but what is to keep an intelligent intruder from resetting the software that tells you an intrusion took place?"

If the intruder is smart enough to know how to do this, they will go after big corporate targets with expensive boxen, and not your personal machine.

i'm thinking... (1)

T.Monk (585143) | more than 12 years ago | (#3722398)

that i'll notice my house/business/server room broken into first.. Ok, let's assume that it doesn't matter at home... Let's say your business has legitimate security concerns for servers... The computer room should be secured with cameras, magnetic locks, security, etc.. is there a need to take this down to the individual computer level? If someone is sophisticated enough to break into the server room, they probably have the resources to get around the alarm on the case...

Nothing new (2)

dfenstrate (202098) | more than 12 years ago | (#3722399)

I've worked with a number of PC's that have chassis intrusion detection. Admittedly, it's a simple switch connected to a register that can only be reset in passworded BIOS.

This guy is writing like it's news or something. I read the brief file, and it looks like he just figured out what I first saw years ago.

And also, the classic phrase:
if you don't have physical security, you have no security at all.

Two reasons this doesn't deserve coverage (0)

Anonymous Coward | more than 12 years ago | (#3722400)

  1. This has been around for years
  2. Not many people need it anyway

'hackers' chastity belt (3, Funny)

paradesign (561561) | more than 12 years ago | (#3722401)

this seems kinda funny. First 'hacker' makes case mods so you can see al of his frilly internals. then he puts on a system so you cannot touch or have access to them. this is strangely reminiscent of the lingerie / chastity belt scenerio, see... no touch. see... no touch.

Air pressure (1)

BorgDrone (64343) | more than 12 years ago | (#3722408)

What I would like to contruct some time (don't know how difficult it is tho) is a intrusion detection system that works on air pressure. after turning on the system air is pumped into the case (which is air-tight) randomly to increase the air pressure to a random value (should only be known to the hardware in the box and not readable by the computer or whatever). now, measure the pressure inside with a sensitive air pressure sensor. when the case is penetrated in any way the sensor would register the change in pressure and send the intrusion signal.
since the pressure inside is unknown it would be nearly impossible (depending on the sensitivity of the pressure sensor) to put the case in a pressured box with exactly the same pressure.

any reasons why this is an impossible or crazy thing to do ??

Re:Air pressure (1)

Planetes (6649) | more than 12 years ago | (#3722418)

> any reasons why this is an impossible or crazy thing to do ??

Umm.. well short of a water cooling solution you're going to have serious cooling issues trying this..

Re:Air pressure (0)

Anonymous Coward | more than 12 years ago | (#3722516)

Because it is impossible to have a true air tight computer case. Even baloons leak air. But the main drawback is that a change in pressure causes a change in temperature. Boyle's law and all.

Re:Air pressure (2)

MaxVlast (103795) | more than 12 years ago | (#3722656)

Turn it around, and you have the actual problem: Machine heats up, pressure increases. Compile the kernel, hear a siren?

My idea would be light sensors in the machine. Open the case, flood it with light, hear a siren (send a signal.)

Re:Air pressure (1)

guido_sst (180183) | more than 12 years ago | (#3722607)

You would somehow have to track pressure changes from opening a CD-ROM, the flow fluctuations from a 3 pin smart fan, etc, etc. Sounds interesting, but incredibly impractical.

Re:Air pressure (0)

Anonymous Coward | more than 12 years ago | (#3722646)

umm.. maybe I'm crazy. but why would someone first turn on a system to steal something out of it? As far as desktop systems go, I make it good habit to turn off the system before performing system critical hardware changes..

News from an AC (1)

Shade41 (251507) | more than 12 years ago | (#3722413)

I guess you can't expect much better in news from an AC. Maybe posting news should be restricted to users that are logged in. Has anyone seen useful articles from an AC before? Just curious.

Re:News from an AC (3, Informative)

Jucius Maximus (229128) | more than 12 years ago | (#3722572)

"I guess you can't expect much better in news from an AC. Maybe posting news should be restricted to users that are logged in. Has anyone seen useful articles from an AC before? Just curious."

I suggest you search through the archives of "Ask Slashdot." You'll find many interesting stories where it is clear that if the poster's identity was given away, they would be in trouble with their boss/clients.

Technology Sectors that are Hot or Heating Up Now? [slashdot.org]

Is it Wrong to Accept an Employment Counter-Offer? [slashdot.org]

Technology for Undercover Journalists? [slashdot.org]

Convincing Management of Network Security Issues? [slashdot.org]

Headhunting Laws? [slashdot.org]

And more ...

i wonder how long... (1)

caveat (26803) | more than 12 years ago | (#3722424)

...before the *AA pushes to have all new PCs sold with some setup like this, so we can't screw around with the internals and get around their precious digital "rights" management hardware...

My IDS... (5, Funny)

Bonker (243350) | more than 12 years ago | (#3722429)

Gracie, the gray tabby cat sleeps atop my PC case. If her bed is disturbed... and I do mean in any way... she cries for days on end. She can't be consoled. I have no choice but to hunt down the man what tried to jack my HDD and present his head to the cat like she does when she brings me mice.

prevention? (2)

!splut (512711) | more than 12 years ago | (#3722430)

Well, I could wrap a case in duct tape and *detect* an intrusion by checking if anyone had cut back the tape... or rig it with C4 and listen for loud exploding noises. But I would think that intrusion *prevention* or good chassis access control would be a more useful technology. Or case mod, as it were.

-ks

simple enough (1)

Jacer (574383) | more than 12 years ago | (#3722439)

i use an indescrete piece of scotch tape, if the seal is broken, it's been tampered with!

Medeco locks / tamper evident cases (2)

fw3 (523647) | more than 12 years ago | (#3722456)

Hmm nice idea, tho I generally prefer lock-down cases where gaining physical access requires either the key, or breaking something.

IBM used to (and I imagine still does) build thier rs/6000 cases this way. The thing that always pleased me most was the use of a Medeco biaxial lock & key. Medeco's are effectively not pickable, in contrast to virtually all other pin-tumbler locks.

I don't know what other vendors use this or similar methods for the cases. the usual 3-4 pin lock incorporated in all the other cases I've seen (including some pretty expensive ones from Compaq / HP) were trivial to open. Even the use of mushroom pins is not going to be proof against a reasonably skilled intruder.

Nothing New... (1)

TweeKinDaBahx (583007) | more than 12 years ago | (#3722459)

Dell computers and other computers have been doing this for some time in an attempt to disallow the 'ultimate' rootkit: a screwdriver and basic knowledge of PC Building.

Great intrusion detection (5, Funny)

wowbagger (69688) | more than 12 years ago | (#3722462)

Leave a fake grenade, with the pin pulled and the spoon held down by the outside of the case in the computer.

Identify intrusion by the stain on the floor.

For bonus points, replace the fake grenade with a real one.

Re:Great intrusion detection (0)

Anonymous Coward | more than 12 years ago | (#3722648)

For bonus points, replace the fake grenade with a real one.

Identify intrusion by the tiny bits of computer and intruder embedded in the walls.

Dell had it (1)

racerx509 (204322) | more than 12 years ago | (#3722470)

Dell or would that be phoenix has had this for a while. Basically its a small sensor over the chasis and cover. When set in the bios, it will detect if the cover was removed and tell you upon bootup. Some models even featured an audible alarm.

Umm mine did this years ago (1)

nurb432 (527695) | more than 12 years ago | (#3722472)

This is pretty old stuff.. Nice idea for retrofiting an clone case.. but still whats the big deal, pretty old news..

power off (1)

jpc (33615) | more than 12 years ago | (#3722479)

Doesnt rreally work if you turn the power off before opening the case. Of course you may have another alarm for this, but it doesnt help you know whether the case was opened.

Ala James Bond in Dr. No (2)

Publicus (415536) | more than 12 years ago | (#3722483)

Take a single hair, wet it in your mouth, and place it across the crack between the removable side panel and the rest of the case. Anyone trying to break in will not see a single hair - or think anything of it if they do - and you'll know whether someone has cracked it open.

And it costs nothing.

G4 Towers (3, Informative)

krugdm (322700) | more than 12 years ago | (#3722491)

I like the system that Apple has put into their G4 Towers. There's a spring-loaded clip with a hole in it that pulls out of the back of the case. You can slip a cable/padlock/whatever through this which prevents the clip from springing back into the case.

When the clip is out, the EZ-flip-down-door on the side of the case is locked, preventing unnoticable intrusion.

Fiber trip (2)

macdaddy (38372) | more than 12 years ago | (#3722496)

The best option I saw was a fiber optic strand pulled through the case and the desk it was installed in. When the case was removed (or possibly tampered with) the fiber was broken. You could rig it with an alarm or a watch dog. Beware though, the cheap version using plastic optics rather than a good length of 62.5m MMF or 10m SMF. The plastic fiber gave many false positives. The ends wouldn't fit right so jiggling the case caused the LED light to be disrupted. If you're protecting nice Sparcs or SGIs, this is the answer for you. Don't skip on this though. You get what you pay for.

Two Words (1)

JohnHegarty (453016) | more than 12 years ago | (#3722498)

Two words ... BIG LOCK...

if its not removed they can't get the case open
...

its a lot cheaper and simplar then this system...

Useless, useless, useless (5, Insightful)

marxmarv (30295) | more than 12 years ago | (#3722507)

This "design" is completely obvious to anyone the least bit skilled in the state of the art, and frankly doesn't add much information at all. There's ZERO reason you would need a PLA for this project when 7400 series TTL has many available multi-input OR gate functions. What's worst, none of this works anyway because all you need to do is unplug the PC or otherwise disrupt the power to the gate or PLA to break into it (the normal state is, after all, active low).

So what we have here is some fourteen year old with his own "security" organization, a metric buttload of super glue and an utter lack of clue who writes a frankly useless article so that he can pretend he's important whilst slinging around big acronyms like "PLA" and "VHDL" when the tools they represent are useless to the task at hand. In other words, a snake-oil salesman.

-jhp, smacking down dim-bulbs everywhere

Re:Useless, useless, useless (1)

FatSean (18753) | more than 12 years ago | (#3722600)

Right on the money. How'd this waste of bits sneak through? Doesn't he know that all the VC has dried up?

old school thinking required. (0)

Anonymous Coward | more than 12 years ago | (#3722526)

mouse traps. And none of your rodent-friendly ones, neither. Attach metal prongy bit to a large voltage capacitor for good measure.

Still doesn't beat... (0)

Anonymous Coward | more than 12 years ago | (#3722539)

...a tinfoil hat for protection against Unseen Threats.

Security Through Alternativity (1)

RAMMS+EIN (578166) | more than 12 years ago | (#3722544)

When the world was shook up by the news about security holes in laptops, I was happy I ran Apache.

Now that the world is shook up by the news of hackers breaking into PC towers and desktops, I'm happy I have a laptop.

Now let's hope my manufacturer fixes any holes in my laptop as quickly as the Apache people came up with their patch...

Big deal (0)

Anonymous Coward | more than 12 years ago | (#3722546)

Mercury switch, blasting cap and a power source, big fucking deal! What a genius! Like most of you
Slashdot readers.

I promise I didn't open that box! (0, Offtopic)

1000101 (584896) | more than 12 years ago | (#3722556)

"Promises, Promises" - Naked Eyes

It's the 80's baby! Yeah!

This is news?!? (1)

mrdogi (82975) | more than 12 years ago | (#3722567)

I'm trying to figure out why this is news. I mean, find a contact switch and throw it on the connector. Why does this take 3 different formats of 'documentation' to say that?

I figured there would be something more interesting, like creating a whole subsystem that could figure out what more than just "case open". I figured there'd be something like using the serial port to talk to this system, and perhaps using the mb connection to let it know that there was an event to look into. HOW disappointing!

I find this feature annoying... (0)

shakamojo (518620) | more than 12 years ago | (#3722575)

My Dell at the office has this, and everytime I open it I get that blasted error until I go into the BIOS and turn it off... I finally just disabled the damn thing. I also question the usefulness of this feature, I mean once someone has broken into your box isn't the damage done?

why is this news? (0)

Anonymous Coward | more than 12 years ago | (#3722579)

I'd like to quote a line from Jay and Silent Bob:

"Here's the pulse, and here's your finger, shoved way up your ass."

Nothing new here! (2)

NanoGator (522640) | more than 12 years ago | (#3722597)

Nope, I'm going to sound like I'm so smart that nothing seems new to me. Ah, somebody wrote up a description of how to make your own detection system. Wait a minute, alarms using pressure switches have been done before!! Geez, can't they work spooky interaction into it or something?

Damn. This must be a slow news day if I can't be entertained by a a description of what is involved. No siree, I wouldn't want to learn anything. If Compaq and Dell can build stuff into their systems that sounds the same, then it isn't worth me knowing about. Hmm my computer doesn't have one of these. I guess I never thought about that when I built my own computer. Pity, I don't have an intrusion detection system.

Oh I know, I don't need one! My friends all shout 'First Post!'.

common. (1)

BenTheDewpendent (180527) | more than 12 years ago | (#3722602)

seen it on dells for years
and more recently motherboards comming with jumpers/connectors for such intrustion dection switches on the case.

not really much news hear.

maybe if he did something cool with his like make it shock the hell out of who ever was attempting to access the case with out authorization.

what's it good for? (2)

e40 (448424) | more than 12 years ago | (#3722605)

OK, your case is comprimised. So what? What are they going to do, remove your hard drive while the power is on? Attach remote listening devices inside your case, so they can listen to your disks spinning?

If a thief breaks into your computer room they're going to hit the power switch. Then, if they don't carry away the entire computer, they'll open it up and remove what they want. AFTER the CIDS has been power disabled.

You need a PLD for that? (0, Flamebait)

alienw (585907) | more than 12 years ago | (#3722618)

Is that guy a moron or what? Why the fuck would you use an FPGA / PLD for that? Just hook a few normally closed switches up in series. That's what happens when a moron takes a digital electronics class. Soon, some "genius" will think up of a way to make a microprocessor-controlled power switch for their goddamn case.
Wow, I never knew slashdot editors were THAT stupid.

This kind of sucks... (1)

crawdaddy (344241) | more than 12 years ago | (#3722627)

For those overclockers that don't close their cases out of fear of overheating!

I can design something better in my sleep... (0)

Anonymous Coward | more than 12 years ago | (#3722649)

From the article: Write some VHDL code that will take a series of active low imputs and output a logic 0 if all is well and a logic 1 if the case is open. This is simple in concept, but may be hard in practice, especially to make is scalable. But given time, any electrical engineer with a chip programmer should be able to do this. Why bother with that? just use an OR gate! Here's one from fairchild semiconductor: http://www.fairchildsemi.com/pf/10/100201.html OR if you want to get fancy and avoid the problems he has with outside grounding to get around the security, simply run a pulse gen (good old 555 timer) through the contacts, and compare the output from the 555 with the output from the alarms. Now instead of grounding the leads to break in, you'll have to keep them connected somehow. And what about light? Why hasn't he included something that goes off if a light goes into the box? Just position a photosensitive resistor so that it can't "see" the light from the fan or wahtever otehr holes you have in your case, and if it changes value too much then someone is breaking into your case! What's more, such a resistor could look exactly like all the other resistors on the mother board, so you would never be able to isolate it. Also i would recommend adding either a light sensor or a pressure contact on the bottom (or both), which would go off when the machine was picked up for movement. By the way, notice that his "pressure sensors" are actually identical in function to the contact sensors. Real pressure sensors would notice things like someone pushing on the sides of the case. Finally to add some way of checking if someone is fooling around in the system - add something that registers the level of dust and writes it to some flash memory periodically - a low intensity diode shining towards a reciever will do. Just put it someplace where a lot of dust accumulates. If someone comes in, they will surely upset the dust that exists in every computer. If the level changes by too much, then have the alarm go off. Notice that I'm just an electrical engineer student right now, so there are most likely better ways of checking for intrusion, and some of mine may be too sensitive / subjective to be workable.

So Basically... (3, Insightful)

Ribald (140704) | more than 12 years ago | (#3722653)

...some 15 year old kid noticed the CI connector on his motherboard, his chassis didn't have a microswitch to connect it to, so he superglued one on. Then he comes up with an idea to make it sound complicated, throws in some acronyms (for devices/protocols that would make it _very_ much more complicated than needs be), invents his own security company, and offers to license some code to run it for a small fee. Brilliant.

If you can't tell from all the other posts, this has been implemented for a great number of years on nearly all business-grade desktops, usually accompanied by a provision for a physical lock.

If this kid actually gets someone to buy into this and pay him to license his "software", I've gotta give him at least a little respect. At least he's not the one paying for it.

--Ribald

Don't worry, Microsoft already takes care of this. (1, Funny)

Anonymous Coward | more than 12 years ago | (#3722655)

Don't worry about it if you have Windows XP.

1) If someone breaks in and doesn't change anything inside, you don't care.

2) If someone DOES break in and change anything in the hardware configuration, Windows XP will think it is no longer running on the same computer and stop working until you contact Microsoft for a new activation key.

Load More Comments
Slashdot Login

Need an Account?

Forgot your password?

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>