- <div class="title"><a href="http://people.skolelinux.org/pere/blog/Is_Pentagon_deciding_the_Norwegian_negotiating_position_on_Internet_governance_.html">Is Pentagon deciding the Norwegian negotiating position on Internet governance?</a></div>
- <div class="date"> 3rd November 2015</div>
- <div class="body"><p>In Norway, all government offices are required by law to keep a
-list of every document or letter arriving and leaving their offices.
-Internal notes should also be documented. The document list (called a mail
-journal - "postjournal" in Norwegian) is public information and thanks
-to the Norwegian Freedom of Information Act (Offentleglova) the mail
-journal is available for everyone. Most offices even publish the mail
-journal on their web pages, as PDFs or tables in web pages. The state-level offices even have a shared web based search service (called
-<a href="https://www.oep.no/">Offentlig Elektronisk Postjournal -
-OEP</a>) to make it possible to search the entries in the list. Not
-all journal entries show up on OEP, and the search service is hard to
-use, but OEP does make it easier to find at least some interesting
-journal entries .</p>
-
-<p>In 2012 I came across a document in the mail journal for the
-Norwegian Ministry of Transport and Communications on OEP that
-piqued my interest. The title of the document was
-"<a href="https://www.oep.no/search/resultSingle.html?journalPostId=4192362">Internet
-Governance and how it affects national security</a>" (Norwegian:
-"Internet Governance og påvirkning på nasjonal sikkerhet"). The
-document date was 2012-05-22, and it was said to be sent from the
-"Permanent Mission of Norway to the United Nations". I asked for a
-copy, but my request was rejected with a reference to a legal clause said to authorize them to reject it
-(<a href="http://lovdata.no/lov/2006-05-19-16/§20">offentleglova § 20,
-letter c</a>) and an explanation that the document was exempt because
-of foreign policy interests as it contained information related to the
-Norwegian negotiating position, negotiating strategies or similar. I
-was told the information in the document related to the ongoing
-negotiation in the International Telecommunications Union (ITU). The
-explanation made sense to me in early January 2013, as a ITU
-conference in Dubay discussing Internet Governance
-(<a href="https://en.wikipedia.org/wiki/International_Telecommunication_Union#World_Conference_on_International_Telecommunications_2012_.28WCIT-12.29">World
-Conference on International Telecommunications - WCIT-12</a>) had just
-ended,
-<a href="http://www.digi.no/kommentarer/2012/12/18/tvil-om-usas-rolle-pa-teletoppmote">reportedly
-in chaos</a> when USA walked out of the negotiations and 25 countries
-including Norway refused to sign the new treaty. It seemed
-reasonable to believe talks were still going on a few weeks later.
-Norway was represented at the ITU meeting by two authorities, the
-<a href="http://www.nkom.no/">Norwegian Communications Authority</a>
-and the <a href="https://www.regjeringen.no/no/dep/sd/">Ministry of
-Transport and Communications</a>. This might be the reason the letter
-was sent to the ministry. As I was unable to find the document in the
-mail journal of any Norwegian UN mission, I asked the ministry who had
-sent the document to the ministry, and was told that it was the Deputy
-Permanent Representative with the Permanent Mission of Norway in
-Geneva.</p>
-
-<p>Three years later, I was still curious about the content of that
-document, and again asked for a copy, believing the negotiation was
-over now. This time
-<a href="https://mimesbronn.no/request/kopi_av_dokumenter_i_sak_2012914">I
-asked both the Ministry of Transport and Communications as the
-receiver</a> and
-<a href="https://mimesbronn.no/request/brev_om_internet_governance_og_p">asked
-the Permanent Mission of Norway in Geneva as the sender</a> for a
-copy, to see if they both agreed that it should be withheld from the
-public. The ministry upheld its rejection quoting the same law
-reference as before, while the permanent mission rejected it quoting a
-different clause
-(<a href="http://lovdata.no/lov/2006-05-19-16/§20">offentleglova § 20
-letter b</a>), claiming that they were required to keep the
-content of the document from the public because it contained
-information given to Norway with the expressed or implied expectation
-that the information should not be made public. I asked the permanent
-mission for an explanation, and was told that the document contained
-an account from a meeting held in the Pentagon for a limited group of NATO
-nations where the organiser of the meeting did not intend the content
-of the meeting to be publicly known. They explained that giving me a
-copy might cause Norway to not get access to similar information in
-the future and thus hurt the future foreign interests of Norway. They
-also explained that the Permanent Mission of Norway in Geneva was not
-the author of the document, they only got a copy of it, and because of
-this had not listed it in their mail journal.</p>
-
-<p>Armed with this
-knowledge I asked the Ministry to reconsider and asked who was the
-author of the document, now realising that it was not same as the
-"sender" according to Ministry of Transport and Communications. The
-ministry upheld its rejection but told me the name of the author of
-the document. According to
-<a href="https://www.regjeringen.no/no/aktuelt/unga69_rapport1/id2001204/">a
-government report</a> the author was with the Permanent Mission of
-Norway in New York a bit more than a year later (2014-09-22), so I
-guessed that might be the office responsible for writing and sending
-the report initially and
-<a href="https://www.mimesbronn.no/request/mote_2012_i_pentagon_om_itu">asked
-them for a copy</a> but I was obviously wrong as I was told that the
-document was unknown to them and that the author did not work there
-when the document was written. Next, I asked the Permanent Mission of
-Norway in Geneva and the Foreign Ministry to reconsider and at least
-tell me who sent the document to Deputy Permanent Representative with
-the Permanent Mission of Norway in Geneva. The Foreign Ministry also
-upheld its rejection, but told me that the person sending the document
-to Permanent Mission of Norway in Geneva was the defence attaché with
-the Norwegian Embassy in Washington. I do not know if this is the
-same person as the author of the document.</p>
-
-<p>If I understand the situation correctly, someone capable of
-inviting selected NATO nations to a meeting in Pentagon organised a
-meeting where someone representing the Norwegian defence attaché in
-Washington attended, and the account from this meeting is interpreted
-by the Ministry of Transport and Communications to expose Norways
-negotiating position, negotiating strategies and similar regarding the
-ITU negotiations on Internet Governance. It is truly amazing what can
-be derived from mere meta-data.</p>
-
-<p>I wonder which NATO countries besides Norway attended this meeting?
-And what exactly was said and done at the meeting? Anyone know?</p>
+ <div class="title"><a href="http://people.skolelinux.org/pere/blog/Simpler_recipe_on_how_to_make_a_simple__7_IMSI_Catcher_using_Debian.html">Simpler recipe on how to make a simple $7 IMSI Catcher using Debian</a></div>
+ <div class="date"> 9th August 2017</div>
+ <div class="body"><p>On friday, I came across an interesting article in the Norwegian
+web based ICT news magazine digi.no on
+<a href="https://www.digi.no/artikler/sikkerhetsforsker-lagde-enkel-imsi-catcher-for-60-kroner-na-kan-mobiler-kartlegges-av-alle/398588">how
+to collect the IMSI numbers of nearby cell phones</a> using the cheap
+DVB-T software defined radios. The article refered to instructions
+and <a href="https://www.youtube.com/watch?v=UjwgNd_as30">a recipe by
+Keld Norman on Youtube on how to make a simple $7 IMSI Catcher</a>, and I decided to test them out.</p>
+
+<p>The instructions said to use Ubuntu, install pip using apt (to
+bypass apt), use pip to install pybombs (to bypass both apt and pip),
+and the ask pybombs to fetch and build everything you need from
+scratch. I wanted to see if I could do the same on the most recent
+Debian packages, but this did not work because pybombs tried to build
+stuff that no longer build with the most recent openssl library or
+some other version skew problem. While trying to get this recipe
+working, I learned that the apt->pip->pybombs route was a long detour,
+and the only piece of software dependency missing in Debian was the
+gr-gsm package. I also found out that the lead upstream developer of
+gr-gsm (the name stand for GNU Radio GSM) project already had a set of
+Debian packages provided in an Ubuntu PPA repository. All I needed to
+do was to dget the Debian source package and built it.</p>
+
+<p>The IMSI collector is a python script listening for packages on the
+loopback network device and printing to the terminal some specific GSM
+packages with IMSI numbers in them. The code is fairly short and easy
+to understand. The reason this work is because gr-gsm include a tool
+to read GSM data from a software defined radio like a DVB-T USB stick
+and other software defined radios, decode them and inject them into a
+network device on your Linux machine (using the loopback device by
+default). This proved to work just fine, and I've been testing the
+collector for a few days now.</p>
+
+<p>The updated and simpler recipe is thus to</p>
+
+<ol>
+
+<li>start with a Debian machine running Stretch or newer,</li>
+
+<li>build and install the gr-gsm package available from
+<a href="http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/">http://ppa.launchpad.net/ptrkrysik/gr-gsm/ubuntu/pool/main/g/gr-gsm/</a>,</li>
+
+<li>clone the git repostory from <a href="https://github.com/Oros42/IMSI-catcher">https://github.com/Oros42/IMSI-catcher</a>,</li>
+
+<li>run grgsm_livemon and adjust the frequency until the terminal
+where it was started is filled with a stream of text (meaning you
+found a GSM station).</li>
+
+<li>go into the IMSI-catcher directory and run 'sudo python simple_IMSI-catcher.py' to extract the IMSI numbers.</li>
+
+</ol>
+
+<p>To make it even easier in the future to get this sniffer up and
+running, I decided to package
+<a href="https://github.com/ptrkrysik/gr-gsm/">the gr-gsm project</a>
+for Debian (<a href="https://bugs.debian.org/871055">WNPP
+#871055</a>), and the package was uploaded into the NEW queue today.
+Luckily the gnuradio maintainer has promised to help me, as I do not
+know much about gnuradio stuff yet.</p>
+
+<p>I doubt this "IMSI cacher" is anywhere near as powerfull as
+commercial tools like
+<a href="https://www.thespyphone.com/portable-imsi-imei-catcher/">The
+Spy Phone Portable IMSI / IMEI Catcher</a> or the
+<a href="https://en.wikipedia.org/wiki/Stingray_phone_tracker">Harris
+Stingray</a>, but I hope the existance of cheap alternatives can make
+more people realise how their whereabouts when carrying a cell phone
+is easily tracked. Seeing the data flow on the screen, realizing that
+I live close to a police station and knowing that the police is also
+wearing cell phones, I wonder how hard it would be for criminals to
+track the position of the police officers to discover when there are
+police near by, or for foreign military forces to track the location
+of the Norwegian military forces, or for anyone to track the location
+of government officials...</p>
+
+<p>It is worth noting that the data reported by the IMSI-catcher
+script mentioned above is only a fraction of the data broadcasted on
+the GSM network. It will only collect one frequency at the time,
+while a typical phone will be using several frequencies, and not all
+phones will be using the frequencies tracked by the grgsm_livemod
+program. Also, there is a lot of radio chatter being ignored by the
+simple_IMSI-catcher script, which would be collected by extending the
+parser code. I wonder if gr-gsm can be set up to listen to more than
+one frequency?</p>
projects / homepage.git / blobdiff