Sounds interesting. I think any alternatives that might make things tougher for MS to identify should be explored.
interesting, i like the sound of it, i will prob apply later on down, as my school schedule is a bit hectic right now, but this would tie in nicely with my computer networks course. Will get back to you on this tho. But I'M DEFINITELY liking the idea PS: Subbed
Sounds good. Loaders are starting to get pretty old so some new 'angles of attack' certainly cant hurt...
But doesn't a company/school usually buy windows? The normal home user can affort running windows illegal, but with a company or school I think that lies different? And how many home users have a server to insert slic?
@ Everyone, looks like there is some interest, i will work collecting all the steps. Right now it does not look easy enough for non-networking types to deploy yet, I will see if I can't include an .INI file to automate some of the steps. But it definitely won't work if someone sets it up on a network that already has DHCP (the two DHCP will fight). @ Stannieman, this is just for proof of concept. While it will be scalable to hundreds if not thousands of machines per server. You are right, no sanely governed school or company would risk the lawsuit that M$ would bring, bankrupting them in legal fee's. Also, I think you are misunderstanding, when I say server, I mean in the Server/Client sense, not in the "Microsoft Server Products" sense. Like how your desktop is the server, when your laptop browses shared folders, or how your router is actually a small linux server. Any spare computer can function as the server. @ Phazor, actually this angle of attack is almost as old as we are, when it finally goes public you will be surprised to find it can be served from linux or possibly even DOS. @ Rode Warrior, If WAT cannot identify local loaders, this will certainly pass. No evidence of any boot sector tampering or any local files will be found using this method. @ King Jay, good luck with the schooling, once you get out that is when life gets complicated.
Thanks Jinje, Tell me about it, but enjoying none-the-less, Im doing with Networking till next academic year, right now we are focusing on programming. But let us know wats going on for this method, i'll pitch in where i can.
SLIC from W2K8-R2 WDS (Windows Deployment Services) Get your spare machine (or VM), install W2K8-R2 with both DHCP + WDS roles. (or Domain Controller + WDS) Inside the WDS RemoteInstall share find the Wdsnbp.com files (both of them) and rename them to Wdsnbp.com.bak. One in each of these folders. (did not test IA64 - have no hardware) D:\RemoteInstall\Boot\x86\ D:\RemoteInstall\Boot\x64\ Then copy GRLDR into both of these folders and rename it Wdsnbp.com When your machines boot up, set the bios to boot from the network first and HDD second (or third if need DVD), and they will get GRLDR directly from the WDS server and it will chain bootmgr on the HDD.
Maybe to help out some people you could make 2 vm's (1 with the server, 1 the client) (I would make them but don't have the DL limit to upload them )
Here is dead link. Instruction are to boot from the ISO, right click file at "/Tftpd32/tftpd32.exe" > select "Open With", type "WINE", check box to save preference when opening files of this type, and hit OK. Wait for tftpd32 window to appear. Then boot other machine from PXE/Network (usually F12 on some BIOS'es). Warning: VM's with blank HDD don't seem to play nice (black screen blinking cursor - does not pass off to CDROM bootmgr), but VM's will work fine after OS is installed. All of my laptops on the other hand, do pass off from PXE to CD-ROM (real machines), so maybe you can host this from a VM, and serve PXE to clients that are real. All while having SLIC 2.1 emulation during the install like a real BIOS mod. You know, just in case Microsoft decides to start recording the BIOS/SLIC state during the installation to determine if a SLIC is being added after the initial install or not. The included GRLDR is the inferior vstaldr with ACER slic. Change it to anything you like, as long as it doesn't require any external files (no custom menu.lst)