Re: Internal IP exposed
From: Peter Greenwood (peterg_at_reel.demon.co.uk)
Date: 03/11/05
- Next message: Coenraad Loubser: "iptables question"
- Previous message: Robert Braeutigam: "Re: Assigning IP Range to Wildcard MAC-Adresses with ISC dhcpd"
- In reply to: Jennifer: "Re: Internal IP exposed"
- Next in thread: Michael Heiming: "Re: Internal IP exposed"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Fri, 11 Mar 2005 13:16:36 +0000 (UTC)
In article <1110538082.812984.173180@l41g2000cwc.googlegroups.com>,
"Jennifer" <francesca.x@libero.it> writes:
> I disabled the script execution of Java applets in my browser (Internet
> Security tab), but the problem persists.
Are you sure? AFAICT the java applet is downloaded by javascript, so if
either is turned off the page should not work at all. Do you need to
restart your browser or something after making that change?
The java applet appears to open a connection to www.testmyfirewall.com on
port 80 (I deduce this from the fact that browser proxy settings are
ignored for this connection). However although the "internal IP exposed"
message comes up, tcpdump does not show it being passed over that
connection; instead it goes out as a parameter in the next request,
which includes a cookie.
In other words it's finding your IP address out locally and sending it in
a legitimate HTTP GET request. Maybe there is some personal firewall thing
that would guard against that one, but iptables won't.
HTH
-- Peter Greenwood peterg@pgid.co.uk http://www.pgid.co.uk +44 1253 821678
- Next message: Coenraad Loubser: "iptables question"
- Previous message: Robert Braeutigam: "Re: Assigning IP Range to Wildcard MAC-Adresses with ISC dhcpd"
- In reply to: Jennifer: "Re: Internal IP exposed"
- Next in thread: Michael Heiming: "Re: Internal IP exposed"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
