Results 1 to 7 of 7
Thread: ip address fraud
-
05-31-2005, 07:35 PM #1New Member
- Join Date
- May 2005
- Posts
- 1
ip address fraud
Web servers everywhere utilize the ability to identify a computer by its ip address. That is, when a user goes to a website, their IP is revealed to the server. Now, that IP is not necessarily the IP of the machine being used to access the server. Proxies can be used, MAC addresses can be changed, etc.
However, assuming that no proxy is being used, the MAC address is the same, and there is no other form of accessing a server being used that involves a real ip, how can a fake IP be created?
I ask because it seems like this is happening on my website. I don't care, as I'm not hurt by it or anything. Just seems like someone is having fun or something (maybe in preparation to vandalize my adsense or something? I dunno...)
I mean, through code. Can someone be, like, randomly generating IP addresses and faking HTTP packets or something?
In short, my question is this. How does my server determine the source IP of a request? In a packet it sent? How? What does it look like?
Thanks,
Jacob
-
05-31-2005, 07:38 PM #2Newbie
- Join Date
- May 2005
- Posts
- 28
Spoofing Ips?
-
05-31-2005, 09:42 PM #3Web Hosting Master
- Join Date
- Aug 2004
- Location
- Australia
- Posts
- 896
The server needs a real ip address to establish a connection with you you cant fake your ip address when connecting to someone.
I could tell you a joke about UDP. But I'm not sure you would get it!
-
05-31-2005, 10:11 PM #4Newbie
- Join Date
- May 2005
- Posts
- 5
Originally posted by Dan541
The server needs a real ip address to establish a connection with you you cant fake your ip address when connecting to someone.
You can't fake your IP address when connecting to a site, but you can use proxy servers that mask your IP and make it impossible to figure out where the person is really comming from.
Kage_
-
05-31-2005, 10:20 PM #5Web Hosting Master
- Join Date
- Feb 2005
- Posts
- 1,141
Originally posted by Kage1
.
You can't fake your IP address when connecting to a site, but you can use proxy servers that mask your IP and make it impossible to figure out where the person is really comming from.
Kage_Daily Updated Web Hosting News Blog
Including an RSS feed that you can syndicate!
Daily Updated Web Hosting News Blog
Unlimited vs. Unmetered bandwidth
-
05-31-2005, 10:27 PM #6Newbie
- Join Date
- May 2005
- Posts
- 5
Originally posted by HostingInsider
But that's not what the thread starter is asking. He is assuming that if no proxies are used, can it be spoofed, and this guy is saying that a legitimate IP is required to establish a connection.
Kage_
-
05-31-2005, 10:29 PM #7Web Hosting Master
- Join Date
- Jan 2003
- Posts
- 1,715
TCP (used for web traffic) does a back-and-forth exchange that makes spoofing quite difficult. If you're on one of the networks in the return route (your server to that IP), you can spoof packets to the server and intercept the replies ("man in the middle" attack). Realistically, that means on the same subnet as one end or the other.
It's possible, but it's easier and safer to just crack into a few hundred Windows boxes and go from there.Game Servers are the next hot market!
Slim margins, heavy support, fickle customers, and moronic suppliers!
Start your own today!