Author Topic: Ping ping ping (Read 583 times)

Manedew · « **on:** September 23, 2003, 06:23:00 PM »

Funny sign eh? ... found it from another board I read

Chairboy · « **Reply #1 on:** September 23, 2003, 06:45:55 PM »

Hey, how dare you have MY IP address? Are you a hacker? HACKER!

JB73 · « **Reply #2 on:** September 23, 2003, 06:54:40 PM »

dude thats fuged up lol.

like i thought though it only showes the addy to me router.

i wonder what it shows when you go to it from inside a firewalled intranet @ a high security corporation.

Chairboy · « **Reply #3 on:** September 23, 2003, 06:59:09 PM »

It depends on the setup. For example, it shows my real IP address, and I am definately behind a high security corporate firewall setup, but that's ok, because you need to be able to GET to the IP. It just uses basic environment variables that are defined with every HTTP request. The user-agent: is how it figures out your browser, and the IP is just another http environment variable.

It's neat because he's generating an image on the fly. Nothing earth shattering, just neat because it scares the normals.

Manedew · « **Reply #4 on:** September 23, 2003, 06:59:24 PM »

ya a good firewall will stop it .... just uses something like nmap and whois etc ...

Chairboy · « **Reply #5 on:** September 23, 2003, 07:11:25 PM »

Nope. It doesn't need to use anything fancy like NMAP, all it needs to do is use the info in the http environment headers that's defined on almost any web server.

The only way a firewall would stop that would be if it modified all our HTTP GET requests to strip off the user-agent headers and spoofed your source IP, and that's just not practical from a user convenience standpoint.

Go to my security check site to see an example:

http://security.symantec.com

Manedew · « **Reply #6 on:** September 23, 2003, 07:23:37 PM »

ya think your right.. not nmap

Sandman · « **Reply #7 on:** September 23, 2003, 08:51:29 PM »

That's kinda cool...

Tarmac · « **Reply #8 on:** September 23, 2003, 08:55:53 PM »

Whoa he even got the meat popsicle part right.

vorticon · « **Reply #9 on:** September 23, 2003, 08:58:28 PM »

those have been around for over a year on the AA:O boards

Udie · « **Reply #10 on:** September 23, 2003, 09:17:09 PM »

wow that's amazing! We all have the same ip address, how wierd!

AcId · « **Reply #11 on:** September 24, 2003, 08:15:01 AM »

Quote

Originally posted by Chairboy
The only way a firewall would stop that would be if it modified all our HTTP GET requests to strip off the user-agent headers and spoofed your source IP, and that's just not practical from a user convenience standpoint.

Practical or not it's not hard to do.

It didn't get my IP

Just the Firewalls

not NATed either

Chairboy · « **Reply #12 on:** September 24, 2003, 11:45:54 AM »

I suspect you mean that it got the IP of your router. If you are NATed, then it'll show the IP of the last thing it can get to. It has nothing to do with it being a firewall, it has to do with you being NATed.

AcId · « **Reply #13 on:** September 24, 2003, 11:49:18 AM »

A firewall can also be a router

Chairboy · « **Reply #14 on:** September 24, 2003, 01:04:01 PM »

Of course, you're right, silly me. And in addition to that, an old lady can be a policewoman, so if you are regularily in the company of old women, then you should be well protected against criminals.

In case that bounced off your finely tuned shields, understand that a router != a firewall. They can both be on the same device or machine, but saying that your IP didn't show up because you were behind a firewall shows a gross misunderstanding of the words 'firewall' and 'router' as they pertain to IP traffic.