Re: Natted IP
From: winged (winged_at_nofollow.com)
Date: 02/18/05
- Next message: Dazz: "Re: Believe it or not"
- Previous message: winged: "Re: Natted IP"
- In reply to:(deleted message) Jim Watt: "Re: Natted IP"
- Next in thread: Jim Watt: "Re: Natted IP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 17 Feb 2005 21:04:16 EST
Jim Watt wrote:
> On Thu, 17 Feb 2005 18:53:36 -0000, "Stuart M" <dfdgh@fghf.cvgd>
> wrote:
>
>
>>I dont see why the browser would send out the internal ip to the WAN anyway.
>
>
> The website loads an Iframe which in turn loads a Java applet which
> reads the IP address of the machine and returns it to the web server;
>
> Oh wow it knows your machines internal IP address. Not a great deal
> of use really. The javascript is 'encoded' to make reading it harder;
>
> <iframe src="/adt.asp"
> width="200"
> height="80"
> marginwidth="1"
> marginheight="1"
> align="top"
> scrolling="no"
> frameborder="0">
> </iframe>
>
> Iframe content;
>
> <script type="text/javascript">
> document.write('<applet width="1" height="1" code="auditmypc.class">
> </applet>')</script>
>
> Details of the Java applet can be found at
>
> http://m0n0.ch/wall/list/?action=show_msg&actionargs%5B%5D=111&actionargs%5B%5D=34
>
> As the man says, not in itself a problem, but it shows something to
> think about in relation to security.
>
> You get good protection with NAT providing you change the default
> password to the router or ensure that its control interface is not
> available on the WAN side.
>
> --
> Jim Watt
> http://www.gibnet.com
Still trying to figure out why I couldn't reproduce report.
- Next message: Dazz: "Re: Believe it or not"
- Previous message: winged: "Re: Natted IP"
- In reply to:(deleted message) Jim Watt: "Re: Natted IP"
- Next in thread: Jim Watt: "Re: Natted IP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
