The Sound of Your Firewall 232
upside writes "It had to be done. Once The Spinning Cube of Potential Doom gave us a 3D visualization of a firewall, someone was bound to ask themselves 'What does your firewall sound like?'."
This discussion has been archived.
No new comments can be posted.
The Sound of Your Firewall
Related Links Top of the: day, week, month.
If mathematically you end up with the wrong answer, try multiplying by the page number.
Anthem / Midi? (Score:5, Interesting)
Rather than using a Wav. file, maybe this could be written to play a variety MIDI tones to account for all kinds of activity on your network!
Re:Anthem / Midi? (Score:5, Funny)
Re:Anthem / Midi? (Score:3, Funny)
Re:Anthem / Midi? (Score:2, Funny)
Re:Anthem / Midi? (Score:2, Insightful)
Re:Anthem / Midi? (Score:5, Funny)
I got to find out what a router SMELLS like.
You know that never-mistakable smell of electronics on fire?
Yeah, thats what they smell like
Re:Anthem / Midi? (Score:5, Funny)
Re:Anthem / Midi? (Score:2, Funny)
Dobly Surround Sound Quality Firewall!!! (Score:5, Funny)
You need this kind of quality to accurately measure the warfare that your Firewall is waging against anything evil on the cyber-waves. That latest Windows virus? Nope got smacked down by your firewall and you heard it about a minute ago.
Forget games(!?), just listen to your firewall wage glorious battle for the freedom and security of your PC and/or home network(!) in the comfort of your own home! All it would need then is a quality commentary...
"Firewall detected malicious port scan and DOS (Denial of Service) attacks aimed towards IP 19.5.4.10 on port 70. Access denied, commence lockdown and vapourize all opposition!" Forget those war movies folks, you can experience it for yourself now!
Or how about "Reinforcements (firewall updates) have just arrived deploying them as according to operating procedures".
Man, that would be the life, at least now spending hours on your own PC won't be dull again! Only thing left would be to be figure out a way to salute to your firewall and give it medals of honour...Hmmmm, this will take some time to figure out, but at least we got this far ^_^
time.. (Score:3, Funny)
That's great, but... (Score:5, Funny)
Re:That's great, but... (Score:5, Funny)
That's easy... youre firewall feels like swiss cheese.
Re:That's great, but... (Score:5, Funny)
I thought (Score:2)
Re:That's great, but... (Score:2)
>
>I'd say probably just like my wife. Cold and completely inaccessible.
Post her URL to Slashdot. We can fix both of those problems... but not in that order.
Re:That's great, but... (Score:3, Funny)
I'm crying on the inside.
Sincerely,
F.W.
Re:That's great, but... (Score:5, Funny)
Re:That's great, but... (Score:3, Funny)
soft and full of holes, tends to ignore many things and sometimes gives me a burning sensation.
how about... (Score:5, Interesting)
Re:how about... (Score:5, Interesting)
If I set it up to do quarter hour chimes, that would be a rather interesting way to announce network meta-data: The louder the volume, the more stuff going on that I probably don't want. I could make it two dimensional by using sound and pitch, and I wouldn't even have to do any fancy math stuff I don't know. I could just make 8 different pitches and gradiate using that.
Re:how about... (Score:2)
Re:how about... (Score:2)
Hmmm, kinda like a Firewall Theramin!
Re:how about... (Score:2)
(Direct IP on an ancient EDU network.)
Obligatory Quote (Score:5, Funny)
Re:Obligatory Quote (Score:2)
I did that. (Score:5, Interesting)
So, put this in your swatch file that watches your firewall log:
watchfor
exec "/usr/local/site/bin/ping-wave.sh ping.wav"
That script just locks the darned thing so it doesnt pop and crack if i get pinged twice:
ping-wave.sh:
if `grep OPEN
then (echo -n >
ds/$1) && (echo OPEN >
fi
And here's a link to my ping wave for you to use:
ping
I also used the naturalvoices [att.com] website to make a nerdy computer lady announcing new entries in my arp table. You can grab wave file [digitalsushi.com] too if you want. Here's the script I have for that:
put this in your
0-59 * * * * root
and then make the above command contain this:
#!/bin/bash
for each in `arp -n |grep -v "Address"|grep -v "eth0"|awk '{print $3}'`
do
if grep $each
then
else
fi
done
if anyone can improve upon my bash, please, i have no ego.
Re:I did that. (Score:5, Interesting)
IDS (Score:4, Interesting)
Maybe it could be nice on an IDS system though..
Re:IDS (Score:3, Funny)
Waits to be modded down Offtopic by non-Brits.
Sounds like this (Score:5, Funny)
I need to replace the harddrive soon or im going to be without a firewall.
Re:Sounds like this (Score:3, Funny)
That's Pow R Toc H by Pink Floyd, isn't it?
Re:Sounds like this (Score:3, Funny)
Re:Sounds like this (Score:2)
I don't know about the firewall, but my monitor (or maybe it's the phone) sounds exactly like this when I hold my nextel phone too close.
What does mine sound like? (Score:5, Funny)
"Ding Dong"..."Not interested"
"Ding Dong"..."Go away"
"Ding Dong"..."Leave me alone"
"Ding Dong"..."porn you say? well come right on in"
Re:What does mine sound like? (Score:2)
I know what my network sounds like... (Score:5, Funny)
My firewall? (Score:5, Funny)
Holy Crap! Help me lord! Bleeep!
Or like (Score:5, Funny)
Hi, step right up.
Wait, let me see your ID...okay...Sasser eh? Alright sounds good.
Alright, I'm going on break now. Time for wifi to shut down
I know what a lack of one sounds like (Score:2)
Yay metaphors!
Do you (Score:5, Funny)
Re:Do you (Score:2)
Absolutely (Score:2)
I can just imagine... (Score:2, Interesting)
Depends on your firewall... (Score:3, Funny)
Norton firewall: "Bahahahaa! You can't get past me! I AM INVINCIBLE!!! *fires the firewall equivilent of fully automatic weapons into the air*"
Re:Depends on your firewall... (Score:2, Insightful)
Re:Depends on your firewall... (Score:2)
Keeping with recent events... (Score:2, Funny)
What does it sound like? (Score:5, Funny)
Bad question to ask of a California admin.... (Score:2, Interesting)
Shadowrun's Matrix here we come (Score:3, Interesting)
Mac Version (Score:2, Informative)
Re:Mac Version (Score:5, Informative)
Don't forget to run it as root.
You don't need root access, you only need to be in the admin group, which I would guess you already are if you have root access.
Plus, I would guess that the default option for playing an aiff file is via Quicktime, which may get intrusive.
Lesson learned, don't mod something as informative unless you know what it says.
Don't know about mine, but theirs sounds like... (Score:5, Funny)
Re:Don't know about mine, but theirs sounds like.. (Score:2)
"Who are these slashdot people... they swept over like Mongol-Tartars!"
- "Latest Chernobyl Motorcycle Photos" [slashdot.org]
It sounds like popcorn popping. (Score:5, Interesting)
I send firewall logs to DShield.org, and you should to. The firewall is set to only log 100 denied packets at a time, so lazy bastard that I am I set a cronjob to reset the counters every hour. That was a few months ago.
Last week I happened to be looking at the logfiles, and I noticed something: an hour was no longer enough. The counter hits 100 within 10 or 15 minutes. I can watch the hits come in, and it's all Windows crap: Port 445. Port 137. Port 139. Port 1026. That's it. Nothing interesting -- you know, no stealthy scans by l33t cr5X0rZ, no probing for open relays, nothing.
Two thoughts before I go:
First, this makes for excellent demonstration material. A coworker mentioned that he was considering moving from Windows to Linux because he was tired of all the viruses and worms. I showed him what tail -f on my firewall logs looked like, pointed out that it was all Windows junk, and he was convinced. Gave him a Knoppix CD and made another notch on my belt. :-)
Second, I'm lucky: my ISP has not yet started firewalling ports yet. A friend's ISP just started, and now his web and mail server, which I'm doing DNS for, are no longer available from outside -- they've started blocking those along with 445, 137, 139, and so on. Sadly, it looks like the ISP has no provision for lifting this if you can prove you're l33t enough, so it looks like he's screwed.
Honestly, though, I'm not surprised. Yeah, it sucks that the Internet is no longer open -- but it sucks that the Internet is no longer friendly, too, and the one is a consequence of the other. As much as I bitch about Windows and Microsoft, I don't think they're entirely to blame...you get that many people joining something, and you're going to have enough asshats to ruin it pretty quickly.
Re:It sounds like popcorn popping. (Score:2)
I'm not sure what my firewall sounds like... (Score:5, Funny)
Already done... (Score:5, Informative)
http://www.usenix.org/publications/library/proc
A close Stargate Iris.. (Score:4, Interesting)
Re:A close Stargate Iris.. (Score:2)
Given that stargate's store the energy required to open/maintain a wormhole, and that the logic to determine whether everything has come through the wormhole is trivial, my guess was that a bounce was more likely.
Re:A close Stargate Iris.. (Score:2)
Basically they have said that since the iris is so close to the surface of the wormhole - the event horizon - it does not allow matter to re-form and the energy of such is dispersed. Basically they cease to exist.
Re:A close Stargate Iris.. (Score:2)
Also, much of the logic in 'normal' stargates is built into the DHD (dial-home device), which the Earth gate doesn't have, and Earth's McGyvered rig (the roomfull of computers) effectively stubs out a lot of the gate control protocol. (This from an episode where somebody is effectively "trapped in the pattern buffers" (in Star Trek terms) when an
my firewall sounds like this (Score:5, Funny)
=)
e.
Re:my firewall sounds like this (Score:4, Funny)
Nee!
(shhh!)
The Sound of Silence (Score:3, Funny)
Maybe now if I listen closely.....
Re:The Sound of Silence (Score:4, Informative)
Just in case you mean it (and I missed the joke):
Start -> Setting -> Control Panel -> Network Connections, right-click on the network connection that you want to "firewall", select Properties, then on the third tab, Advanced, select the check box for Protect my computer and network by limiting or preventing access to this computer from the Internet.
from Use the Internet Connection Firewall [microsoft.com]
Re:The Sound of Silence (Score:2, Insightful)
"Hello"
"How nice to meet you"
"come in"
Peep / Network Auralizer (Score:2, Informative)
Peep [auralizer.com] is a great tool to hear what's going on out there... where the hackers play !
It plays sound whenever an connection is made on a designated port (smtp, domain (DNS), http...) but also can play specific sounds based on events (keywords on log file -> snort, auth.log etc.)
Great new virus opportunity (Score:2)
"all your base are belong to us", anyone?
PEEP the Network Auralizer (Score:3, Informative)
My firewall sounds like... (Score:2)
Will nothing cure my ails short of packet-sniffing at the ISP level to determine who is infected and cut them off?
Re:My firewall sounds like... (Score:2)
No shit. YTF is Code Red *still* out there, filling my error logs. Maroons. . .
My firewall sounds like... (Score:5, Funny)
o/~ Ohhh, a worrrm, oh noooo it's a worrrrrm o/~
Now try your SMTP server (Score:2)
Spam...
Spam...
Spam...
Spam...
Lovely Spam!...
etc.
Re:Now try your SMTP server (Score:2)
Then it could talk and tell me I have email.
In the end it was Monte Python's "spam spam spam" yelling at me with any new email. One day, while walking in, the computer started to scream at full volume and scared the hell out of the wife.
Now the PowerMate just silently pulses.
PS: my average rejection time is once every 15-20 seconds with a new inbound (not rejected yet) hitting every 2-3 minutes and 1-2 actually getting past all spam filters and showing up i
The sound of silence? (Score:2)
My firewall? (Score:5, Funny)
bump-bump-bump-bump-bump-bump-bump-bump-bump
Then maybe a few attempts at an SQL worm on 1433-1434 so i get the second layer of the track; that's sound like 'dittlit-bump' so the track now becomes
bump-bump-bump-dittlit-bump-dittlit-bump
Now we've got some rythem going, but we there's always that annoying yet musical sound that comes interrupts the song the first time you hear it, but then you get used to it. We'll call that a portscan. ports 135-137-445-3127-5000
dah-dah-dahdah-dah-dah-dahdahdah
But at just that moment I get a fresh IP from my DSL provider, and the last guy who had it was running eDonkey, AIM file transfers, and bittorrent (as happened to my a couple days ago) and all the crap clients for said programs don't realize the old client died, so they keep trying said addresses.....we'll call that a big-ass bass hit that starts the loop over again.
BOOOOOOOOOOOOOM-BOOOOOOOOOOOOOM-BOOOOOOOOOOOOOO
Holy crap, my firewall sounds exactly like the Strong Bad techno song, minus the 'the system is down' quote. (ahhh the benfits of coyote linux. or IPcop.)
http://www.homestarrunner.com/sbemail.html
Sounds like something I've heard before... (Score:2, Funny)
-m
How soon before we get the sound of Slashdotting? (Score:3, Funny)
I guess they are now wondering what a Slashdotting [wikipedia.org] sounds like?
Anyone wants to guess?
So, what is visually interesting? (Score:2)
What I want to see is when a machine on the inside or a DMZ has a port open to it, say port 80 & 443 - I want to see when somebody who JUST walked my net with a lawnmower then starts sending ADDITIONAL packets to the open ports. Maybe you could do that with sound. The code could take a src-ip that just mowed you, and assign a sound to it. Then, any additional data to open ports would create a sound, m
Different sound options (Score:4, Funny)
Firewall penetration -- Breakout or Arkanoid with lasers
Block All Traffic -- Mario with a star
Geiger counter (Score:2)
Denied (Score:2)
Anyone ever see that movie, "Sexy Beast"? (Score:2)
Combine with Snort! (Score:2)
Interesting concept (Score:3, Interesting)
I seem to remember a similar concept being used in fighter aircraft. The pilot would hear certain directional sounds to indicate inbound missiles. The advantage of using sound over a visual display was that the human mind is apparently very good a detecting the direction where a sound is coming from, and it avoids overloading the visual display further.
I've also heard of using sound in the monitoring systems for mechanical equipment. Operational events are assigned a certain sound, and a "normal" state of the equipment would have certain patterns and frequencies that an operator would recognize as normal. The operator doesn't have to know what each individual sound means. If something abnormal happens, the operator get a "sense" that something is wrong by the change in tempo / frequency, etc.
If done properly, I think that adding sound feedback to a network / firewall monitoring application could be useful.
Re:Interesting concept (Score:2, Interesting)
When you combine visual and audio cues together however you get the greatest response from the user. If a pilot with good situational awareness momentarily focuses on another display while the missle
Totally useless (Score:4, Interesting)
If you make a diferent sound for every port/address/whatever packet you receive it becomes easy to recognice when the traffic is anormal.
Sounds My Firewall Makes (Score:2, Funny)
But that could be because my dog is named Firewall.
Project (Score:2)
(the website is a bit down right now so it seems, see google, you know the drill)
It's been on slashdot before...
I Would Love To Read This Article... (Score:2)
but I can't bring myself to do so, knowing that they have tried to screw [slashdot.org] over the REAL Linux Gazette [linuxgazette.net].
Sorry, but I just can't support SSC.
Worth a try (Score:3, Interesting)
[I'll include a side note for those who do not know what a line-impact printer is. Do you remember dot-matrix printers? No? Ok, no help for you. But for those of you who do remember them, you probably realized how having a single print-head that had to travel back and forth across the page contributed to their relatively slow printing speed. No doubt some of you came to the same conclusion the developer of the line-impact printer did: instead of having a tiny print head move back and forth across the page, simply create a huge print head (well, very wide but not very high) that could print an entire line at a time. That makes for a faster printer, and also a much more reliable printer (far fewer moving parts). Hence you can still find them in industrial applications where people need large volumes of low quality prints. This also happened to be ideal in an 1980's computer lab visited by uber geeks who needed to print out their code, and psychology students who needed to dump pounds and pounds of statistical data to a printer somehow. Anyway...]
The helpdesk office at this particular computer lab was attached to the lab with the line printer. So it was close enough you could hear it running. With normal, plain text like you'd see in a printout from a computer program, the printer (being an impact printer) made a recognizable sound. Mostly a wavering, roaring sound. However, when some idiot decided to dump a PostScript file to the printer - and with the printer just being designed for plain text (i.e. no freakin' PostScript like all the signs said) - the sound would change to a solid, angry roar as each entire page would be filled up by PostScript code. The difference in sound proved to be incredibly useful. Anyone sitting in the helpdesk office, even if they were concentrating on some other task and thus seemingly oblivious to the faint sound of the printer, would somehow hear the change in the sound. They'd know that someone had screwed up and that they needed to go and stop the job before the printer blew through an entire box of fan-fold paper.
As I say, we'd just tune into the change in the sound automatically. It wasn't even an especially conscious thing. You'd be working away on some task, completely engrossed in homework or something, and all of a sudden your brain would tune into the fact that the background sound had changed. With normal printing it was completely tuned out. You never noticed it until there was a problem. How fantastic is that? This is a great feature of the human brain - you can be giving your full attention to one task, but some other part of your brain is still somehow listening out for changes in your environment and will let you know if something's changed. I would find this so useful for a firewall. The sounds would have to be low volume and carefully chosen so as not to drive me insane in either instance (normal operation or "uh oh" mode), but I'd really love to give this a try.
It's such a coincidence
Re:It goes... (Score:3, Funny)
*Obligatory Old School quote*
I thought that was Bad Boys 2?
Re:Like a ping? (Score:3, Funny)
Not sure about the firewall, but that LinuxGazette server is sounding like *crash*.
Re:My firewall sounds like the wind (Score:2, Insightful)
My (home) iptables based firewall only allows incoming traffic on port 80, and only to machine inside the network. The other poor Windows machines are not receiving 'a whole hell of a lot of traffic.'
It may be true that some Windows based firewall software is ineffective but I really have no idea having not used any.
Re:My firewall sounds like the wind (Score:3, Informative)
You must be joking. Nobody uses BlackICE to protect large corporate networks.
Re:My firewall sounds like the wind (Score:2)
If you're running firewalls on several machines I suggest getting or making a standalone firewall to go in-between those machines and the internet. Then you won't have to worry too much about internal security and can remove the standalone firewalls or leave them with the existing holes. Network security is next to impossible to do properly with Windows anyway in my opinion.
OpenBSD gets a lot of flame bec
Re:My firewall sounds like the wind (Score:2)
Just be sure not to run OpenSSH on it. It's not had a good track record over the past year.
Re:My firewall sounds like the wind (Score:2)
Re:My firewall sounds like the wind (Score:2, Funny)
Hi Bobby W! Fancy seeing you here.