Ability to kill connections

[virus man]

Should be implemented since it is one of the many tools of a hacker protecting their own turf.

[sovietpride]

a little bit more information please?

[virus man]

Ok lets say you are actively watching your logs etc for any unauthorized connections.
You see someone connect
You can run a software (in linux it is a command) and put in their IP to boot them from your system.

Of course on their side they could use the IP cloak to possibly hide the fact they are there so it would take perhaps a watch dog software program to catch them or something of the sort.

On a side note another way a hacker could combat this is the way a real life hacker named FA-Q did.  He would install a worm using a, at the time, Secure Shell bug that would actually cause the Secure Shell to actively hide all of his activity even programs he was running himself on the system.  I helped him fine tune back when I was dealing with him so I know a little bit about it.

[siremi]

Hm, that's pretty good idea... some new software type called Disconnector or something, and then when you spot the intruder, you would open up the Disconnector and boot him out of the system, maybe also take his admin access.

This should work like the scanner, you just input his IP and the program checks if the hacker has your admin access / connection and disconnects him. Of course there will also be an Anti-disconnect program that he will run in order to hide from the Disconnector.

This should have to be instant with no waiting time, input IP, quick check, found or not, disconnect or not.

Could be done, good idea 

[plubius]

i thought that admin access was a password? so you couldnt do that unless you had admin access to their computer. oh, and you should be able to do that. get rid of their password database. or just your own

[siremi]

i thought that admin access was a password? so you couldnt do that unless you had admin access to their computer. oh, and you should be able to do that. get rid of their password database. or just your own

Admin access is something you have in the IP Database on a server. If you cracked the server then you have it. Admin access means many things, it's not just a password, it could also be a weakness in the OS or a bug in the system that granted you access, but to make it simple we just call it admin access on the target.

You can lose admin access if the target changes the pass or his IP. This Disconnector software may be a tool to disconnect the intruder and erase his admin access on your gateway. This will give you time to change the password or maybe hack him yourself while he tries to crack again.

[plubius]

but when you change your password it takes away admin access to people as well.

[virus man]

but when you change your password it takes away admin access to people as well.

And it takes 20 minutes to do along with work arounds to stop it like killing it etc.

[Zyzzyx]

Opportunity to be broken if you have someone that runs it nearly constantly.  Watch out.

[virus man]

Hm, that's pretty good idea... some new software type called Disconnector or something, and then when you spot the intruder, you would open up the Disconnector and boot him out of the system, maybe also take his admin access.

This should work like the scanner, you just input his IP and the program checks if the hacker has your admin access / connection and disconnects him. Of course there will also be an Anti-disconnect program that he will run in order to hide from the Disconnector.

This should have to be instant with no waiting time, input IP, quick check, found or not, disconnect or not.

Could be done, good idea 

Refreshing as it as Titam was going to work on it.