Spyware in SL

you know what? Its ridiculously easy to write a "bug" that evesdrops on conversations. I can understand why. But I don't know how to detect a bug - of the evesdropping kind - in a script in something I've bought or been given. There are no countermeasures.

If I could open a script I'd be able to see if there was spyware in it or not -- but scripts need to be protected-- OTOH it shouldn't be so easy to spy on people.

s/llListen/ ?

Instead of complaining, it'd be mroe helpful if you had a list of things that are possible and reasonable.

While it is possible for anyone with even basic scripting skills to write a "bug" script (they are dead simple to make) the real question would be: why would you want too?

Seriously, think about the things you normally talk about with your friends in SL. Would they be even remotely interesting to anyone else?

I was thinking a dump of used function calls in the bytecode would be a good idea?

Something like.

Script "New Script" used -> llOwnerSay (4 times), llListen (1 time) , llEmail (1 time) .. etc

Bang! we know something fishy was going on with your anim script.

Well, those all could be legit uses though. Depending on what items is using them I suppose.

Seriously -- how much do you know about what _I_ , or anyone else, _normally_ talk about? Have you been spying on me or other people? And why would you challenge my desire for privacy?

Vares, what I talk about is personal, whether anyone finds it interesting to listen to or not isn't really relavant to me. It's personal. A home without privacy isn't much of a home.

I don't know anyone who does not value their privacy.

I don't really think you disagree with me on this point.

The point I was trying to make -- and I probably didn't make myself clear is:

I want to be able to detect "spy bugs" and kill them. Do you think this is a bad thing?

hmmmm -- it just occured to me that there may be a way to protect your home using the llSensor function. Nah -- it would catch some bugs but not all. Of course -- there is the "no admitance" wall around your property. But it won't stop a trojan horse.

Dude if your so paranoid, I can send you a free script that would detect this stuff...

do you know you can make an ethernet packet logger smaller than a pack of ciggeretts for less than 20 bucks?

do you know you can make a keystroke logger for less than 10 bucks?

do you know that every website you visit logs your ip address , takes statistics , finds out what OS and browser your using ?

do you know that that info can track you down to the city you live in with a click of a button?

do you know every time you use a bank/debit/credit card that info is used in situations never laid out before you on a peice of paper ?

do you know your shopping habbits at the piggly wiggly gets sold to international marketing firms without your knoledge or will?

do you know if you make threating remarks anywhere in the world against the US (or other simmilar , ie UK) government over a telephone / data network is instantly flagged for report?

do you know under current fed law in the US they can wiretap you becuase you said "id like to show bush whatever" without any red tape paper trail?

do you know these same ppl can haull your ass in and detain you for 20+ years while they make up new laws for what you did ? (free kevin)



all i can say is live right and welcome to the world post 1965

LOL

Nothing that you talk about on the internet is private. Everything you transmit from your computer can be, and probably is, monitored.

Besides, no one gives a damn about what you talk about. Get over yourself.

That would be great since you could check your new -mod toy to see if it has any commands that would be required for a grey goo or a orbiter attack.

llRez... and llRemoteLoadScriptPin or llGiveInventory... //Replication
llEmail or llInstantMessage or llOpenRemoteDataChannel //Spying
llGiveMoney()
llAddToLandPassList or llAddToLandBanList or llRemoveFromLandBanList//Yes you can be banned from your own group land.
llModifyLand or llSetParcelFlags (does not exist yet) or the nonexistent llReturnObject()

It would not have to do all the commands, just the ones that are needed to do bad things.

A lot of scripts have to listen or they could not be controlled. We just have to see if it has the commands to send that info to someone or could do something like sell your land or give away your money or return all your objects or grief others.

Note: llGiveMoney() requires the script to get permission and that triggers a dialog box, but some social engineering would get around that.

Don't forget the "changed" event as well, usefull for reporting when you tp/travel from one sim to the next, as well as when you login & out.

No you can't

I have absolutely nothing on my land that I have not got the code for. Then again, I do not have much on my land.