Topic: Tracing IP address help!
View Single Post
  #101 (permalink)  
Old 04-04-2005, 03:15 PM
zhugeliang's Avatar
zhugeliang zhugeliang is offline
Senior Member
  

Join Date: Nov 2003
Location: Washington, USA.
Posts: 149
zhugeliang is on a distinguished road (10)
Send a message via AIM to zhugeliang Send a message via MSN to zhugeliang Send a message via Yahoo to zhugeliang
The last several posts about IP addresses are not all entirely correct so I'm here to set the records straight.

1). ISP's do not "drop" a user because someone said that they are doing something illegal. ISP's must have proof before kicking you off.

2). Spoofing an IP is rather easy but all that is good for is sending spam/doing a DoS attack. There really isn't much else that is good with spoofing an IP. Also reporting that IP as doing illegal activity (ie. a yahoo user recording the IP and telling that IP's ISP about it doing illegal activity) will do nothing. ISP's only do something to a user (ie kick them off) if they are deffinately doing something they shouldn't. They won't kick someone off with no proof of illegal activity or any activity that violates the agreement made with the ISP. And an ISP can tell if a user is or is not doing illegal activity.

3).

Quote:
If you're on a constant connection, leave your computer on, and run Windows OS...they're already 90% of the way in.
That statement is very far fetched. Yes Microsoft is somewhat insecure but you pretty much have to do something to make yourself that insecure. Windows as it stands (which goes pretty much unchanged by most non-advanced users) isn't necessarily vulnerable to a "hacker" trying to gain access by means of just "using the IP address." If there isn't a trojan already on the system then chances of someone getting in are not that great. Not to mention, DSL/Cable modems have a built in firewall that is on by default.

You have to realise that most insecurities with Microsoft involve Internet Explorer and how vulnerable it is. Most break in attempts made against an operating system are based on the use of Trojans not on just someone trying to hack in. You also have to keep in mind that anyone with any capability of doing so wouldn't waste their time hacking people on Yahoo! You don't have anything important that they would need/want so why would they bother?

Also, just because you are on a Broadband connection with a static IP doesn't mean that you are any more vulnerable than someone on Dial Up who's IP changes.

Quote:
Why dont you try netstat before sending an IM and after sending an IM, that way you will see a new IP add. the new one will be the direct connection you have made.
IM's don't necessarily establish a direct connection. In fact, the chances of it doing so are probably 100/1. Not to mention they have to be on your buddy list. You're most likely to just get the yahoo servers.

Quote:
anyhow, i have a netstat question. i typed netstat after private messaging a buddy in yahoo. I've noticed several hosts names pop up in the list. How do i know which one is the persons using netstat to find their ip addres? i noticed dos prompt doesn't support DNS lookup to find ip that way. If you can help let me know, i wanna scare some lamer who got my ip address and visualroute his ip to his address to scare him off. thanks.
Try netstat -n. That shoes the IP address rather than the hostname. Also, you can't tell if someone is using netstat to find someone's IP. If you're worried about someone trying to get yours, don't use direct connections. Also, don't bother with scaring some lamer by doing a visual route. It won't do you much good. Chances are he/she knows about that too and thinks you can get a home address from the IP address. Just ignore him and forget that he exists.

Well, that's it for my ranting and raving for now.