VPN porn accident. Nauga's fault.

SixPapaCharlie

SixPapaCharlie

May the force be with you
Joined
Aug 8, 2013
Messages
16,020
Display Name
Display name:
Sixer
Let's say a user changed his avatar. We will take Nauga for example.

Lets say I laughed at said avatar and then said "I wonder where he found that"

suppose I used tineye to find the image and it brought back like 100 websites.

Lets say I just clicked on one randomly

Now perhaps I was presented with a barrage of videos of porn

Let's assume I have an RDP connection to my office open.

Did I just visit a porn site on my employer's network?




*not insinuating Nauga got his avatar from a porn site.
Tineye just locates instances of an image.
I happened to click on one where a user also had the same avatar.


...And the same user name... kidding.:no:
 
SixPapaCharlie said:
Let's say a user changed his avatar. We will take Nauga for example.

Lets say I laughed at said avatar and then said "I wonder where he found that"

suppose I used tineye to find the image and it brought back like 100 websites.

Lets say I just clicked on one randomly

Now perhaps I was presented with a barrage of videos of porn

Let's assume I have an RDP connection to my office open.

Did I just visit a porn site on my employer's network?




*not insinuating Nauga got his avatar from a porn site.
Tineye just locates instances of an image.
I happened to click on one where a user also had the same avatar.


...And the same user name... kidding.:no:
Click to expand...

If you were accessing the internet VIA the browser on the remote computer then I would say YUUUUUP....

If it was your browser on your computer then probably not...:dunno:

Although you mentioned VPN in the subject line, so if it is a thin client direct VPN then you may be running the remote computer....then it would be YUUUUP again....
 
Last edited:
Accidental click looking for somethong else...re....something else.......now, if you hit multiple clicks, well then, you have a problem.
 
It was my own machine. I have RDP connection open in the background on this machine.

I didn't know if really any website I go to on my machine would be registered as activity on my work network but especially given the diverse array of content that was suddenly presented to me.

That would be an awkward conversation with the boss tomorrow.
 
SixPapaCharlie said:
It was my own machine. I have RDP connection open in the background on this machine.

I didn't know if really any website I go to on my machine would be registered as activity on my work network but especially given the diverse array of content that was suddenly presented to me.

That would be an awkward conversation with the boss tomorrow.
Click to expand...

What's to worry about....

You are getting fired in a few months anyway....;)
 
SixPapaCharlie said:
It was my own machine. I have RDP connection open in the background on this machine.

I didn't know if really any website I go to on my machine would be registered as activity on my work network but especially given the diverse array of content that was suddenly presented to me.

That would be an awkward conversation with the boss tomorrow.
Click to expand...

Post once in this thread while connected to the VPN

Disconnect from the VPN and post again.

Then I'll tell you. Put in each post if you were connected versus not connected.
 
Does not appear they're hijacking all your traffic with the VPN, so quite unlikely it went through them.

Possible the DNS requests might have went through them..you on a mac or pc?
 
I am not using a VPN connection.
If I connect to VPN, my local internet is disabled.

I just RDP to my work machine w/o connecting to VPN
 
N801BH said:
What's to worry about....

You are getting fired in a few months anyway....;)
Click to expand...

Yes but I can leave with a chunk of change or I can be excused and leave with nothing.

Daddy likes to drink the good stuff!
 
RDP to a work machine without VPN? Is RDP open to the internet??? Yikes! That's no bueno.

-Brian
 
We have 2 methods. one requires us to connect to VPN and then use mstsc to remote to the machine. That old way, would kill my local (home) network

They did away with that and now I just have an RDP link on my home PC what I click and it remotes me into the work machine but allows my local internet and home network to keep on functioning
 
It is single click but has 2 steps that it handles
1. connects to RD gateway server
2. connects to my computer on the network

No prior connection to VPN required.
 
B17Rex said:
RDP to a work machine without VPN? Is RDP open to the internet??? Yikes! That's no bueno.

-Brian
Click to expand...

Yeah that was my first thought too. I just got back from a security conference in Austin and as a direct result I've withdrawn all my cash from my FI and stuffed it in my mattress. :hairraise:
 
iflyvfr said:
Yeah that was my first thought too. I just got back from a security conference in Austin and as a direct result I've withdrawn all my cash from my FI and stuffed it in my mattress. :hairraise:
Click to expand...

Is your mattress protected by Smith and Wesson or another security company? LOL

David
 
SixPapaCharlie said:
Let's say a user changed his avatar. We will take Nauga for example.

Lets say I laughed at said avatar and then said "I wonder where he found that"

suppose I used tineye to find the image and it brought back like 100 websites.

Lets say I just clicked on one randomly

Now perhaps I was presented with a barrage of videos of porn

Let's assume I have an RDP connection to my office open.

Did I just visit a porn site on my employer's network?




*not insinuating Nauga got his avatar from a porn site.
Tineye just locates instances of an image.
I happened to click on one where a user also had the same avatar.


...And the same user name... kidding.:no:
Click to expand...

Mm hmm yeah, I believe you
 
bartmc said:
Mm hmm yeah, I believe you
Click to expand...

hahaha

I'll give you the steps and you can retrace them.
And I promise you nothing I was presented with was anything I personally would voluntarily seek out.

There are a lot of "genres" out there of which I need not be aware.
 
I can't imagine working for a company that couldn't laugh off an accidental porn click. :D

I think if I got reprimanded for it, I'd be so incensed that I'd dedicate my remaining (limited) time at the company making sure everyone ELSE was treated to my personal, choice selections of porn links.

s/choice/horrifying
 
schmookeeg said:
I can't imagine working for a company that couldn't laugh off an accidental porn click. :D

I think if I got reprimanded for it, I'd be so incensed that I'd dedicate my remaining (limited) time at the company making sure everyone ELSE was treated to my personal, choice selections of porn links.

s/choice/horrifying
Click to expand...

I am not overly worried about it, I just want to make sure for my remaining days I am perceived as the golden boy they all think I am (be it true or not) Leaving on good terms is good for my airplane fund.
 
schmookeeg said:
I can't imagine working for a company that couldn't laugh off an accidental porn click. :D

I think if I got reprimanded for it, I'd be so incensed that I'd dedicate my remaining (limited) time at the company making sure everyone ELSE was treated to my personal, choice selections of porn links.

s/choice/horrifying
Click to expand...

We kept seeing tons of gay porn come across websense. We filtered nothing but rather let people hang themselves. The offender was one of the straightest guys at the company. Nine of us wanted to confront him. We drew straws and Greg had the honor of confronting him. He turned purple and went into a fit of rage. We found out, he'd hired a late night security guard and give him his credentials to get on the network. He never again passed out his logon info to anyone else.
 
As long as it's in an FDIC account it's fine. If ever the FDIC doesn't honor their obligation, all the cash in your mattress will be worthless as well, everything will have collapsed by that time.
 
bartmc said:
We kept seeing tons of gay porn come across websense. We filtered nothing but rather let people hang themselves. The offender was one of the straightest guys at the company. Nine of us wanted to confront him. We drew straws and Greg had the honor of confronting him. He turned purple and went into a fit of rage. We found out, he'd hired a late night security guard and give him his credentials to get on the network. He never again passed out his logon info to anyone else.
Click to expand...

Haha, awesome.

I'm using that line if I ever get called out. Trouble is, I've been on the net too long and it takes some way out-there nonsense to get me curious enough to click, so I may not be able to frame Antwoine the night guard effectively.
 
I just don't care, "You watching porn?" "Hell yeah, here, watch this guy's elbow disappear..."
 
bartmc said:
We found out, he'd hired a late night security guard and give him his credentials to get on the network. He never again passed out his logon info to anyone else.
Click to expand...
I couldn't imagine doing that. We treat sharing credentials as a termination offence.
 
SixPapaCharlie said:
Lets say I just clicked on one randomly...
Click to expand...
tallies.jpg


Nauga,
and fish in a barrel ;)
 
SixPapaCharlie said:
I am not using a VPN connection.
If I connect to VPN, my local internet is disabled.

I just RDP to my work machine w/o connecting to VPN
Click to expand...

If you can RDP directly into your work machine without having to do it via a vpn connection then that means your work network has diddly squat for security and is likely already pwned by numerous hackers. Placing a windows machine directly onto the Internet is like shooting fireworks while fueling your car at a gas station. Even if it's behind a nat router with port forwarding for RDP, that's only pretend security. Windows software firewall is no real security either.
 
You must log in or register to reply here.
Back
Top