[TOOL] RamSurf for Windows

From: support@securiteam.com
Date: 12/11/01


From: support@securiteam.com
To: list@securiteam.com
Date: Tue, 11 Dec 2001 08:13:03 +0100 (CET)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -

  RamSurf for Windows
------------------------------------------------------------------------

DETAILS

This tool will set up your Windows 9X/2000/XP so that your Internet
Explorer cache, cookies, URL history, and typed URLs are stored in RAM and
never written to disk. This enables you to accept cookies for more
convenient surfing without leaving traces of your comings and goings on
your local machine after re-booting or powering off. This setup will not
assure privacy on a workplace or public computer, which may contain
monitoring software. However, it will be effective on any machine you
own. Not even the most sophisticated forensics tool can re-construct your
surfing history after a computer reboot, if the information is never
written to disk in the first place.

The package can also be used to assign your temporary files, such as those
created when you work on documents in Microsoft Office, to RAM, so that
they will not be left behind when your Windows system inevitably crashes.
Keep in mind that this feature defeats the auto-save feature in Office and
other applications. If you enable this feature, open documents will
revert to the last manually saved version prior to a crash. In addition,
if you set temporary files to the RAM drive, you should disable the RAM
drive before you install an application, as these sometimes require
temporary files on the HDD to complete. Once your new application is
installed and running properly, you can wipe any remaining temporary files
and re-enable the feature.

The package utilizes
<http://www.nlconsulting.com/ftp/RAM_Drives/ram_drive/readme.txt> RamDisk
by Franck Uberto to create the RAM disk that is later utilized to store
the sensitive files.

ADDITIONAL INFORMATION

RamSurf for Win-9x can be downloaded from:
<http://213.40.196.62/media/700.zip> http://213.40.196.62/media/700.zip
RamSurf for Win-2K/XP can be downloaded from:
<http://213.40.196.62/media/701.zip> http://213.40.196.62/media/701.zip

The information has been provided by <mailto:tcgreene@bellatlantic.net>
Thomas C. Greene.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.



Relevant Pages

  • Re: Caching control
    ... |> A feature that would be useful is one where the level of caching can be ... The problem it solves is to avoid flooding RAM with a large number of pages ... of data that are merely going to be written to disk. ...
    (comp.os.linux.development.system)
  • Re: Ram Drive
    ... > its cache in between that and your program, ... If it is cacheing all these temporary files, ... rattling away as the temporary files are written out to disk, ...
    (microsoft.public.windowsxp.general)
  • Re: keeping data in memory not disk
    ... With the huge RAM of modern computers, ... Because everything was already loaded into memory, ... read anything from disk or start up a process to respond to an HTTP ... It is a feature that was possibly ahead of its time. ...
    (comp.lang.forth)
  • Re: Does Windows XP log web sites Ive visited, logged in and post
    ... User has the right to know what his/her programs could do including what his/her browser could reveal because they've paid for them. ... understanding of all such temporary files, registry entries, traces ... system RAM, so a large amount of RAM helps. ... to "read-only" access to hard drives, ...
    (microsoft.public.windowsxp.general)
  • Re: Windows xP cleanup (slow running)
    ... Some of those can be deleted (temporary files, ... others (recycle bin, ... The single most important thing you *need* to do is add RAM. ... but not sure this machine is worth upgrading with a slow processor. ...
    (microsoft.public.windowsxp.perform_maintain)