• Setup: sfogie and TBookman's Music are shared lists that provide music from their corresponding iTunes shared lists. The illustrated iTunes program is running on a third computer. The coLinux box is running on a fourth computer. All commands sent from the coLinux shell are seen by the illustrated iTunes machine and ALL OTHER computers running iTunes on the network.
• First Attack: Change the TBookmans' Music entry name to sfogie and then change sfogie to TBookman's Music. This essentially switches the playlists as seen by other iTunes programs. Note: The name was changed while sfogie was listening to a streaming song.
• Second Attack: Remove sfogie (renamed to TBookman's Music) from the iTunes shared music list while it is streaming a song. This is a quick and sudden disconnect resulting in no more shared music.
• Third Attack: Remove TBookman's Music (renamed to sfogie) from the iTunes shared music list.
• Fourth attack: Spoof 10 entries with a TTL of 10 seconds at a rate of 1 per second. The result is a slowly growing list peaking at 10 entries, at which point the list slowly disappears.
• Fifth Attack: Spoof 10 entries with a TTL of 10 seconds at burst speed. The result is an almost instant list that appears, lasts 10 seconds, and disappears just as fast.
• Sixth Attack: Spoof 50 entries with a TTL of 10 seconds at burst speed. Results in a long list, that disappears in 10 seconds.

As illustrated, the Shared Music function in iTunes has some issues. All traffic was spoofed at the IP and MAC address layer, which means there is little chance of tracing it.