Hello All,
I was searching for firewall testers and came across this link.
http://www.auditmypc.com/anonymous-surfing.asp
This link tells you what information your pc gives to the website. It shows the ip address which is quite normal, but it also gives an area map of where you are located within Mumbai using google maps.
My query is that how do they find out the area _within_ the city of your ip address? What does the number value immediately after Bombay indicate? Triband users try it out.
"You are from Bombay, XX, in the IN, with an ip of XXX.XXX.XXX.XXX
Your IP Address is XXX.XXX.XXX.XXX "
On 18-Jun-07, at 11:20 PM, Rony wrote:
I was searching for firewall testers and came across this link.
http://www.auditmypc.com/anonymous-surfing.asp
This link tells you what information your pc gives to the website. It shows the ip address which is quite normal, but it also gives an area map of where you are located within Mumbai using google maps.
cool - they found me in Chennai, but the wrong part of Chennai, they missed by about 30 km
Sometime on Jun 18, Rony assembled some asciibets to say:
My query is that how do they find out the area _within_ the city of your ip address? What does the number value immediately after Bombay indicate? Triband users try it out.
It indicates where your ISP is. Not where you are. Whois information on your IP will generally provide that info.
On 6/19/07, Philip Tellis philip.tellis@gmx.net wrote:
Sometime on Jun 18, Rony assembled some asciibets to say:
My query is that how do they find out the area _within_ the city of your ip address? What does the number value immediately after Bombay indicate? Triband users try it out.
Trying to figure out that myself. That number is 16 in my case. The city changes with time, but the number is the same.
It indicates where your ISP is. Not where you are. Whois information on your IP will generally provide that info.
Yeah. It indicates where my ISPs rouiter is. Last night it was a different city, and today it is Bombay.
This seems to be normal stuff, but what strikes me the most is that it is able to see my private IP.
Regards, NMK.
On 19-Jun-07, at 11:28 AM, Nadeem M. Khan wrote:
This seems to be normal stuff, but what strikes me the most is that it is able to see my private IP.
it cant see mine - and it congratulated me for that
Kenneth Gonsalves wrote:
On 19-Jun-07, at 11:28 AM, Nadeem M. Khan wrote:
This seems to be normal stuff, but what strikes me the most is that it is able to see my private IP.
it cant see mine - and it congratulated me for that
Thats because you are using BSNL's ADSL router. Those using ADSL routers have this advantage.
On 19-Jun-07, at 12:44 PM, Rony wrote:
Kenneth Gonsalves wrote:
On 19-Jun-07, at 11:28 AM, Nadeem M. Khan wrote:
This seems to be normal stuff, but what strikes me the most is that it is able to see my private IP.
it cant see mine - and it congratulated me for that
Thats because you are using BSNL's ADSL router. Those using ADSL routers have this advantage.
nope - leased line from net4india - bsnl adsl router discloses the private ip
Kenneth Gonsalves wrote:
On 19-Jun-07, at 12:44 PM, Rony wrote:
Kenneth Gonsalves wrote:
On 19-Jun-07, at 11:28 AM, Nadeem M. Khan wrote:
This seems to be normal stuff, but what strikes me the most is that it is able to see my private IP.
it cant see mine - and it congratulated me for that
Thats because you are using BSNL's ADSL router. Those using ADSL routers have this advantage.
nope - leased line from net4india - bsnl adsl router discloses the private ip
Your IP shows BSNL so N4India must be getting it from them. Ya, I remember, BSNL uses the ADSL in bridged mode with external pppoe.
On 19-Jun-07, at 4:19 PM, Rony wrote:
nope - leased line from net4india - bsnl adsl router discloses the private ip
Your IP shows BSNL so N4India must be getting it from them. Ya, I remember, BSNL uses the ADSL in bridged mode with external pppoe.
this ip from which i am mailing is on bsnl - but my desktop is on net4india which doesnt get it's IP from bsnl - and no, i dont trust anything as insecure as mail to my desktop.
Kenneth Gonsalves wrote:
On 19-Jun-07, at 4:19 PM, Rony wrote:
nope - leased line from net4india - bsnl adsl router discloses the private ip
Your IP shows BSNL so N4India must be getting it from them. Ya, I remember, BSNL uses the ADSL in bridged mode with external pppoe.
this ip from which i am mailing is on bsnl - but my desktop is on net4india which doesnt get it's IP from bsnl - and no, i dont trust anything as insecure as mail to my desktop.
True. You seem to be using some hops for mail but all your ips are available in your header anyway. So it is not that secure. The only secure emailing available as of today is gmail as it does not reveal the ip of your isp. It only shows the unimportant private ip of the sender and google's own ip. You can never find out the country of origin, let alone city.
On 19-Jun-07, at 5:33 PM, Rony wrote:
this ip from which i am mailing is on bsnl - but my desktop is on net4india which doesnt get it's IP from bsnl - and no, i dont trust anything as insecure as mail to my desktop.
True. You seem to be using some hops for mail but all your ips are available in your header anyway. So it is not that secure. The only secure emailing available as of today is gmail as it does not reveal the ip of your isp. It only shows the unimportant private ip of the sender and google's own ip. You can never find out the country of origin, let alone city.
dream on - any sysadmin in google, and there must be thousands of them, and anyone else with clout can read your mail - big brother owns you.
Kenneth Gonsalves wrote:
On 19-Jun-07, at 5:33 PM, Rony wrote:
this ip from which i am mailing is on bsnl - but my desktop is on net4india which doesnt get it's IP from bsnl - and no, i dont trust anything as insecure as mail to my desktop.
True. You seem to be using some hops for mail but all your ips are available in your header anyway. So it is not that secure. The only secure emailing available as of today is gmail as it does not reveal the ip of your isp. It only shows the unimportant private ip of the sender and google's own ip. You can never find out the country of origin, let alone city.
dream on - any sysadmin in google, and there must be thousands of them, and anyone else with clout can read your mail - big brother owns you.
I was referring to third parties who receive your mail. I have no doubts about what you said about google and thats the reason why I don't use it. The point is that if you want to make multiple hops for your email so that your original source is not known then at least wipe your tracks at the final delivery point in your network.
On Tue, 2007-06-19 at 17:33 +0530, Rony wrote:
True. You seem to be using some hops for mail but all your ips are available in your header anyway. So it is not that secure. The only secure emailing available as of today is gmail as it does not reveal the ip of your isp. It only shows the unimportant private ip of the sender and google's own ip. You can never find out the country of origin, let alone city.
Let me correct you. GMail doesn't reveal your IP as long as you use their web based client. The moment you switch to POP, it reveals it :)
Rony wrote:
Kenneth Gonsalves wrote:
it cant see mine - and it congratulated me for that
Thats because you are using BSNL's ADSL router. Those using ADSL routers have this advantage.
That feature is not inherent in ADSL routers.
If you are really concerned about protecting your IP, use Tor [1]. In fact, I would highly recommend it.
-- Anant
On Tuesday 19 Jun 2007 11:28:24 Nadeem M. Khan wrote:
This seems to be normal stuff, but what strikes me the most is that it is able to see my private IP.
Ever wondered how dynamic DNS works even behind a NATed connection?
On 6/19/07, Mrugesh Karnik mrugeshkarnik@gmail.com wrote:
Ever wondered how dynamic DNS works even behind a NATed connection?
Yes. The difference being, I install some software on my system (ddclient). Hell, even some MUAs show private IPs in their headers ( ehlo 192.168.0.10).
Regards, NMK.
On Tuesday 19 Jun 2007 13:55:16 Nadeem M. Khan wrote:
On 6/19/07, Mrugesh Karnik mrugeshkarnik@gmail.com wrote:
Ever wondered how dynamic DNS works even behind a NATed connection?
Yes. The difference being, I install some software on my system (ddclient). Hell, even some MUAs show private IPs in their headers ( ehlo 192.168.0.10).
Ever wondered how the clients are able to contact your web server on a private address behind your ISP's NAT, when the A record actually points to the ip address of the ISP?
Question: Has anyone used/implemented DNS_ALG? Apparently BIND supports it.
On Tuesday 19 Jun 2007 14:19:14 Mrugesh Karnik wrote:
Question: Has anyone used/implemented DNS_ALG? Apparently BIND supports it.
RFC 2694 [1]
Btw, check out rfcutil[2]. Neat little package.
[1]: http://www.ietf.org/rfc/rfc2694.txt [2]: http://www.dewn.com/rfc/
On 6/19/07, Mrugesh Karnik mrugeshkarnik@gmail.com wrote:
Ever wondered how the clients are able to contact your web server on a private address behind your ISP's NAT, when the A record actually points to the ip address of the ISP?
Okay. Let me put it this way. Why do I have to install a client like ddclient to update my IP. Why can't the private IP be updated simply by visiting some pre-determined website. Why doesn't dynamic dns work without installing any package on my system? I could just schedule a cron job to visit a particular website and that should update my IP.
After visiting Rony's link, it seems the above is possible. It gets my public IP, and it gets my private IP, without me installing any client on my system.
Regards, NMK.
On Tuesday 19 Jun 2007 14:32:02 Nadeem M. Khan wrote:
Okay. Let me put it this way. Why do I have to install a client like ddclient to update my IP. Why can't the private IP be updated simply by visiting some pre-determined website. Why doesn't dynamic dns work without installing any package on my system? I could just schedule a cron job to visit a particular website and that should update my IP.
Eh, use no-ip.com then. It's just more convenient to have the client update the ip automatically.
On Tue, 2007-06-19 at 13:33 +0530, Mrugesh Karnik wrote:
On Tuesday 19 Jun 2007 11:28:24 Nadeem M. Khan wrote:
This seems to be normal stuff, but what strikes me the most is that it is able to see my private IP.
Ever wondered how dynamic DNS works even behind a NATed connection?
Umm...AFAIK, Dynamic DNS doesnt have any relation to NATing. The reason why you're able to contact a webserver which is NATed by a firewall is because there is a rule in the firewall's configuration which forwards port 80 to your private IP. Dynamic DNS still points to the public IP itself.
So, if you have a public IP like 59.x.x.x and run a webserver on a private IP 192.168.x.x port 80. Then, the Dynamic DNS will still resolve to 59.x.x.x. When the web browser of the client contacts this IP on port 80, the request is forwarded to the private IP 192.168.x.x
The private IP which Rony and others saw on that site was because the system which was NATing their machine sent an HTTP header mentioning the private IP.
Dinesh Joshi wrote:
The private IP which Rony and others saw on that site was because the system which was NATing their machine sent an HTTP header mentioning the private IP.
My private ip was not visible. I have no port forwarding setup.
Abhishek Amberkar wrote:
My private ip was not visible. I have no port forwarding setup.
Is ``httptunnel'' solution to hide private IP ?
No idea. I use MTNL ADSL so it does it naturally through NAT and routing.
Is ``httptunnel'' solution to hide private IP ?
No idea. I use MTNL ADSL so it does it naturally through NAT and routing.
I also use MTNL ADSL... but my internal ip ``192.168.1.1'' was visible to that TEST.
NMK dropped bits saying:
This seems to be normal stuff, but what strikes me the most is that it is able to see my private IP.
That's not surprising at all. There's probably a HTTP proxy between you and the internet. It will most likely set the X-Forwarded-For HTTP header.
Philip Tellis wrote:
Sometime on Jun 18, Rony assembled some asciibets to say:
My query is that how do they find out the area _within_ the city of your ip address? What does the number value immediately after Bombay indicate? Triband users try it out.
It indicates where your ISP is. Not where you are. Whois information on your IP will generally provide that info.
True, but how does google map that area? What inputs is the website feeding to google? What does the number next to Bombay indicate? It does not show up in the whois. My favourite www.whois.sc
On 6/19/07, Rony ronbillypop@yahoo.co.uk wrote:
True, but how does google map that area? What inputs is the website feeding to google? What does the number next to Bombay indicate? It does not show up in the whois. My favourite www.whois.sc
Your public IP gives the city and country. It feeds this information to google maps. Seach google maps for "mumbai india" and you would get the same map.
Regards, NMK.
Heh, Lol i am in bombay and it is showing me the map of delhi... Apparently i am somewhere near connaught place :-)
gaurav chaturvedi wrote:
Lol i am in bombay and it is showing me the map of delhi... Apparently i am somewhere near connaught place :-)
Heh, last time I checked with a Reliance connection, I was supposedly in Australia :)
That was before Reliance got fined by the TRAI of course.
-- Anant
-
Abhishek Amberkar -
Anant Narayanan -
Dinesh Joshi -
gaurav chaturvedi -
Kenneth Gonsalves -
Mrugesh Karnik -
Nadeem M. Khan -
Philip Tellis -
Rony