five.jacobbraun.com

So my laptop was stolen on September 23rd (A 2.26GHz 13" MacBook Pro, 4GBs RAM, 500GB 7200rpm HD...my baby) and it had my entire life on it. It was in the process of making a full backup and while I was at work someone broke into my apartment and stole it. It's probably gone forever along with most of my precious photos, documents and other data, and I'm kicking myself for not coming up with some way to track it. So I made a way. Hindsight is 20/20. *sigh*

I used to use a script I had modified based on this hint from MacOSXHints.com, but it only took photos on wake from sleep and didn't record the IP address...I would have to check my server provider to get the logs to check for access. So I found this other hint from MacOSXHints.com that would log the IP address and take a picture every six minutes, but it seemed a bit too complicated for what I wanted.

So I combined the ideas of the two and rolled my own. This is my very first bash script I've really worked on and I'm quite proud of it. It takes a picture from the iSight camera, records the IP address and time it was taken, and also takes a screenshot, uploading all of it to a folder in my web server where I can track it, and using bolGallery makes a nice little photo gallery of what's been uploaded.

It has three parts: a script called stolen.sh that I put in /etc/.stolen/, a LaunchAgent property list file, and a text file called whatever you want (ReturnFilenameHere in the script) with the words "true" in it.

So here we go. To do this on your own laptop make a folder called .stolen under /etc by using this command under Terminal

Then using your favorite text editor (I prefer Textmate) make a new file and paste in the following script, filling out the variables at the beginning of the script:

Save the script as stolen.sh and change mod to executable and readable to 755:

Next we have the LaunchAgent Property List. Create a new text file called com.jacobbraun.five.stolen.plist, paste in the following code, and place this file in /Library/LaunchDaemons/

To run this immediately without rebooting type in the Terminal:

You should be good to go. Now every six minutes your laptop will check for internet connectivity, and if it finds it upload an iSight capture and screenshot to your server along with the IP address it came from. You can remove the screencapture line to improve bandwidth usage (1280x800 pngs are around 500KB or more) or change the type it's outputting to a JPEG.

Note that this can easily be modified to upload just a textfile with this information (if you don't have an iSight...i.e. mini or Mac Pro) and this script should work on 10.5 and 10.6. I don't know about 10.4. If it works with 10.4 please let me know.

If you have any suggestions on how to improve this please leave a comment. I am going to add a way to include the wifi access point's name in the filename string, and have some other improvements in mind.

Edit: I'm getting progressively more evil. I wrote this script while waiting for my friends at a restaurant. It checks to see if it's stolen by checking a textfile on my website. If the textfile has "true" in it, it performs the following:

• Kicks you to the login window using fast user switching. I have the guest account enabled and highly restricted using parental controls, so they can still login and open Safari.
• This part is really annoying. It the text to speech say command to say "This computer has been stolen from Jacob Braun. Please call *phonenumber* for cash reward, no questions asked. It pauses for two seconds then repeats, each time setting the volume to maximum (so they can't hit mute).
• After 10 times it checks again to see if it is stolen. If it still is, repeat above. If not, shut up.

I also planning on having my name and phone number, along with "Stolen From" engraved on the bottom of my next MacBook Pro (or my old one if I ever get it back).