Welcome Guest [Log In] [Register]
Welcome to Yoshi Lighthouse. We hope you enjoy your visit.


You're currently viewing our forum as a guest. This means you are limited to certain areas of the board and there are some features you can't use. If you join our community, you'll be able to access member-only sections, and use many member-only features such as customizing your profile, sending personal messages, and voting in polls. Registration is simple, fast, and completely free.


Join our community!


If you're already a member please log in to your account to access all of our features:

Username:   Password:
Add Reply
Security stuff/studies...
Topic Started: Apr 14 2017, 09:21:15 PM (218 Views)
Posted Image Teawater
Who are you calling an old man?

In the end, this should be a very long topic of studies.... I hope....


Some security-related software do not work in safe mode... I not list which, but just going to list a bunch of programs to study now/in future/ whenever I feel like it. (Just for lulz...)

A lot of these are shareware.

Timers, Filters, etc. to follow... maybe I put them in a particular order at some time.
Might take a really long time to properly do a table (Things like Price, how to get by the trial if known... (e.g. Winrar can be uninstalled/reinstalled to get by it, right? Anyone who just saw winrar should consider 7-zip first = completely free) , Lock-out types, features, possible bugs/whether workarounds like safe mode work ... and how to prevent these workarounds... , etc.),
but I like to study this stuff/even though I probably won't ever need any of these for any actual purposes. (Maybe an April Fools prank. :P)

Makua (Advertises abuout being general purpose: Partner-control, self-control, etc... but mainly known for AIM... Action Intensity)
Time Boss (Has a Protection for Safe mode. / And advertises about working on admin accounts.) I remember trying to run this through ollydbg once, but I guess they didn't allow for that. ? Forget what happened since it was so long ago. However, a decompiler could -probably- work, not sure./I forget. I am curious if they have taken advanced security steps or not, though. Either way, their UI looks horrible.
ComputerTime (Pretty silly, but has its own log-in thing..., also can sometimes (strangely) cause internet issues so uninstalling helps in that case.) - I once wrote a small batch file that could close the program and its counter-part to disable it entirely, but if you set it up so it is admin-elevated from Task Scheduler, then not sure anymore... - Also, end tasking the wrong thing may require log-in from CT's admin to get the user's list.
Qustodio = Does not work in safe mode as far as I know. (Can log in for split second on restricted hours, but instant locks... also has web filter... managed online.) - Be cautious of this one, since I found out it is possible (maybe not at first) that uninstalling could make your internet not work, so you have to reinstall to have it work again.
Norton Family - Similar to Qustodio, but will let you log back in for about a minute (just a couple times), and will translucently cover screen/have a prompt come up instead of locking. (and likely locks after awhile.)
Microsoft Family (Not forced / can opt-out , doesn't work in safe mode, I don't think. But the older version that doesn't even log in at all does. - Did not test web filter portion in safe mode, though... but my guess is that the filter's not running.)
Kidswatch (From when I studied it long ago - Believe it tried to mimic many of Windows past lock-outs, sort of... but had to be logged out to manage settings for said account.)
K9 Web Protection = Managed locally through a browser. - Found to be the popular choice by nofappers on reddit, I'm guessing... Not sure of nosurfers. (Should talk about them at some point, those strange cast of people. :P - Trivial stuff: Some of those nofappers/nosurfers/etc. use futureemail to like send them back their admin pass in the future, but I figure one could easily store passwords on an admin account and block that through command prompt... like allow 6am-7am (or 5am-6am) on mornings only.... (Either all mornings or some)... and possibly blocking a few hours before then on all account just to be sure you go to sleep....(e.g. 2am-6am, maybe you had a party (e.g. New Years) and got back home after 12am? You still have at least an hour.), in case internet breaks, or they get tired or resending to the future. That way, they can be tempted not to stay up so late if they need to do something. And if they don't need to do anything - go ahead and stay up late - you won't be awake to be tempted at the most vulnerable hour. :P - But that's also assuming the time in BIOS is protected. I'm curious if any of them would find that a better strategy or not. (Or anything of the like.).... Depends on the person. If it is someone like me who does alnighters, probably not.)

Edit: While it is obvious that emailing the Parental Control password to a friend is also an option in case of emergencies.... There is the alternative to email time grants instead (that can bypass curfew?) to a friend to be sent to you could work too... Imagine telling them to only give you the password if your screenshot log (also emailed) is clean. / (e.g. gaming, mature content, internet access... no proof of homework, etc.) ; At least with time grants, you don't have to go redoing the email routine.
If doing strict limits and relying on a stranger, you can still set up a few emergency futureme.org mailings (maybe one three days ahead) to yourself that you can cancel if they follow through.

Thought: (Not foolproof)
If preventing against safe mode in W10 = Could do Task Scheduler (Run as System with elevated privileges.), and make it run a batch file that is basically:
net user (username) /time:Su-Sa,12am-12am - Link the task to this with Log on / Unlock Workstation....
and have a different Task Scheduler event that set that (to open the account) on the log in screen.... (an event "on start up"/ Lock Workstation / etc...)
Hm. But then one can just reboot their computer after getting tothe login screen, so nevermind? (However, could work on kids if they didn't know about it?)
Then again, kind of curious if using Account Expires instead would make it fool proof. (Takes time to get to safe mode.) --- But then, I think it was just a date variable. No time variable... :( - Love logic puzzles.
Most of this is assuming Task Scheduler is not loaded in safe mode? I do not know for sure. You could probably add it to be loaded (Probably done through the registry), but this is assuming you wouldn't want to edit anything about safe mode directly.
My hunch is expiry date is in registry, and if one edits it there, then they may be able to fool-proof from safe mode? (Also curious if running a shutdown script with a timer continuously (Assuming that resets the timer, I don't know.) could further help foolproof malfunctions. Although it too wouldn't be foolproof... unless the specific shutdown app could only be executed by this script?. But in the end, someone could likely attach a memory editor and change anything they want...?? so...) But all this is more just logic puzzle thinking than anything.....


Actually, there's a ton, I forget most of them, though.... So many differences, eh?


Could also include exam/kiosk -related software/etc.


Edit: KidsWatch has Lockout/Suspend feature... one could set up settings and "Suspend" them until their birthday or New Years. Theory about making a video message to the future (That should pop up automatically, if possible.) wishing yourself a Happy Birthday and mentioning the applied settings as if it were a birthday gift (Maybe even saying that it was a priceless gift/and had no other gift ideas/etc. Example dialogue: "Give you back your time", "You'll thank me later", etc...) ... (Theory is that from the point of setting up the settings, to the time they are applied... and up until you get the password..., the settings wouldn't be editable.) ... and then theory about a password being mailed the following birthday after... I'd have to organize this post... But it's more of an artistic dare concept, then anything.

Except that if you know all about computers, *most*(if not all) of the time you can disable it, anyway. :P And that's what I'm hoping this topic will eventually be about.
For example, something about start-up repair > Make cmd.exe become sethc.exe, ... restart, Do Sticky Keys (Shift 5 times) at login screen... cmd pops up with admin access. And such things like that.


For places that do email for password reset, you can allow a partner to manage your time without risk of their accessing the email. Bonus if managed online like Norton, or bonus if you can just "add a parent". (TODO: List these places, Norton as mentioned and a few others may be examples.) - Theory here is the password to the eail is locked behind futureemail or something... to be used as a fail-safe. While your partner has the password to the parent control.


---
And if multiple accounts are used. One could set one of the "non-limited" accounts to expire on the first birthday, and the password for the other "non-limited" account could be mailed on the next birthday. Not sure if expiry does auto-logging, though. But task scheduler could likely be used for that, anyway? (But then if you use that, might as well just have it modify the expiry date to avoid unnecessary account... Erm.)


---
For short time-frame limits == If doing multiple days, or if doing curfew (with curfew bypass), a +1 hour time grant could be done.... where the password for it could be e.g. "please" (kinda like an easter egg).... that could be used in the event of an emergency... use your emergency, and you get no more...
Or 5 minute keys like that. (I'm thinking how it compares to a kid wanting five more minutes before bed. :P However, this time you're doing it to yourself.... with a limited number of times you could do that...)




----
Theory:
-A parental control could require internet connection once a week . (Parent/admin setting.) (Like if wanting to send history data of usage across internet, checking time, and other such things.)
-If time is set forward to exploit allowed time.... then...
1. The block will occur once the week of being offline happens.(Required connection.)
2. Once connected, the time could be updated, and the block could occur until the internet time catches up with the user-set time. (Or just 7 days after the last internet time???) - I think it'd be based on hours spent offline. (So check is either 7 days after last online, or on re-connection.)
(Or until a parent "resets" the block.)

Thinking....
Edited by Teawater, Oct 15 2017, 08:56:25 AM.
If you ever find an error in any of my reference materials, PLEASE let me know.
Posted ImagePosted ImagePosted ImagePosted ImagePosted ImagePosted Image

Don't mind me, I'm nothing but a spoiler.
Offline Profile Quote Post Goto Top
 
1 user reading this topic (1 Guest and 0 Anonymous)
ZetaBoards - Free Forum Hosting
ZetaBoards gives you all the tools to create a successful discussion community.
Learn More · Register Now
« Previous Topic · Tech, Gaming, and Entertainment · Next Topic »
Add Reply

↓ It's not the truth (or is it?) Come back tomorrow to find out! (Joke.) ↓