Comments on: Using Back to My Mac… to Catch a Thief!

By: All Things Dork » Blog Archive » Use Back to My Mac to Catch a Thief!

All Things Dork » Blog Archive » Use Back to My Mac to Catch a Thief! — Wed, 23 Apr 2008 16:21:28 +0000

[…] Full Article Here […]

By: Using Back to My Mac… to Catch a Thief! « Breezeblog

Using Back to My Mac… to Catch a Thief! « Breezeblog — Mon, 21 Apr 2008 18:41:06 +0000

[…] Using Back to My Mac… to Catch a Thief! Using Back to My Mac… to Catch a Thief! […]

By: Using Back To My Mac, to catch a thief | Stan's List

Using Back To My Mac, to catch a thief | Stan's List — Sat, 19 Apr 2008 22:02:32 +0000

[…] Roughly Drafted has a story about tracking down a thief using .Mac’s “Back to My Mac”. The thief did not reformat the MacBook and thus an admin account that connects to .Mac was still available. This made it easy to see the IP address and even take a picture of the thief sitting in front the MacBook. If you need a reason to subscribe to .Mac this is certainly it. Especially if you have an Apple laptop .Mac | Oodles | trackback No Responses to ‘Using Back To My Mac, to catch a thief’ […]

By: WebManWalking

WebManWalking — Fri, 18 Apr 2008 19:08:01 +0000

And (cfexecute …) requires a closing (/cfexecute).

By: WebManWalking

WebManWalking — Fri, 18 Apr 2008 17:42:54 +0000

P.S.: The parens on Now() are actual parens, not angle brackets.

By: WebManWalking

WebManWalking — Fri, 18 Apr 2008 17:35:45 +0000

Here’s a way to do a phone home without understanding Unix, SMTP, etc, quite so much, if you don’t mind running servers: Download ColdFusion 8 from Adobe. Install it to be used under Apache using the developer or 30-day trial options, both of which allow localhost requests in perpetuity. Learn CFML. Then do something like the following. I don’t know how angle brackets are handled here, so using parens instead of angle brackets:

(cfexecute name=”/bin/bash”
arguments=” -c ‘/usr/sbin/traceroute’ ”
timeout=”60″
variable=”Variables.ResultsOfTraceroute”)
(cfmail
to=”myphonehomeaccount@yahoo.com”
server=”smtp.myisp.com”
from=”fromaccountusername@myisp.com”
username=”fromaccountusername”
password=”fromaccountpassword”
subject=”Where my Mac is now”)
Traceroute for #Now()#:

#Variables.ResultsOfTraceroute#
(/cfmail)

NOTE: this assumes that bash is in /bin/bash and that traceroute is in /usr/sbin/traceroute, which is where they are on a non-Mac Unix machine here at work. To find out where they are on your Mac, open Applications > Utilities > Terminal and type “which bash” and “which traceroute” from the command line (without quotes). Then “exit” and File > Quit. You have to give full file system path and utility names for bash and traceroute, because they’re cfexecuted using the login of the Web Server, which may or may not have the same path defaults that you do.

Save your CFML code as, say, phonehome.cfm under the document root of the Apache Web Server.

Then, in ColdFusion Administrator, go to Scheduled Tasks and set

http://localhost/phonehome.cfm

to run once a day, once an hour, once every 5 minutes, or however often you like.

If your Mac is ever stolen, monitor myphonehomeaccount@yahoo.com for e-mails. If you see new ones, you have evidence of where your Mac is now. If not, periodically delete phone-home e-mails from your special account anyway, so that you don’t overflow your account limits and get the account terminated. Also, periodically emptying reminds you that the account’s there.

Of course, the downside is that you have to run the built-in Apache Web Server, JRun J2EE server and ColdFusionServer all the time, which eats up memory, but the upside is that you don’t have to learn how to send an e-mail client request from the Unix command line. CFML is much easier, as you can see.

It might seem that hardcoding your ISP e-mail account’s username and password in the cfmail call is giving the thief too much information, but if they have your Mac, they already have that account configured in Mail or Entourage or whatever anyway. (The thief can already access all your past and current e-mails.) But if it bothers you, you can always just set up a special e-mail account with your ISP for just for outgoing e-mails from cfmail calls. You can also configure it as the default in ColdFusion Administrator and leave the username and password attributes off of the cfmail call.

I composed the CFML above off the top of my head, so no guarantees that it works, not responsible for errors, your mileage may vary, etc.

By: Back to My Mac la aiuta a beccare il ladro - TheAppleLounge

Back to My Mac la aiuta a beccare il ladro - TheAppleLounge — Fri, 18 Apr 2008 14:00:21 +0000

[…] [RoughlyDrafted] […]

By: Cult of Mac » Blog Archive » California Woman Uses Remote Control Software To Track Stolen MacBook

Thu, 17 Apr 2008 14:22:30 +0000

[…] Via Roughly Drafted. […]

By: tvopdx

tvopdx — Thu, 17 Apr 2008 01:23:04 +0000

Really great (and compatible) solution for missing Visio (which sucks by the way) is Omnigraffle. Omnigraffle makes much more visually pleasing charts and diagrams and is at least two orders of magnitude easier to use.

By: elppa

elppa — Thu, 17 Apr 2008 00:01:53 +0000

@miggyb89 — I hate to rain on your parade, but the firmware password is fairly trivial to get around.

Generally you only need to change the RAM configuration (either add a stick, take one out) and then reset the PRAM a few times.

Fortunately most theives may not know this, so your probably fairly secure.

Unfortunately, anyone who knows what they’re doing could be at your data in a few minutes.