[ale] IPs
Ron Frazier
atllinuxenthinfo at c3energy.com
Sat Sep 11 22:35:54 EDT 2010
I don't think the ip can be spoofed if a valid connection is established
since tcp/ip requires a 3 way handshake. If the sender doesn't require a
valid connection, then I guess the IP can be spoofed.
FYI, if I go to grc.com and start his shields up test (simulated attack and
port scan), before I even start it, it pops up this message:
Your Internet connection's IP address is uniquely associated with the
following "machine name":
c-76-97-157-166.hsd1.ga.comcast.net
So, he not only knows I'm in GA, he knows my ISP. Not sure how that's done.
Ron
At 9/11/2010 10:21 PM -0400, Justin Simms wrote:
>Well, maybe not since any ip can be spoofed. But, couldn't traceroute
>or even wireshark do the trick if you want to track a session and
>think it is suspect?
>
>On Sat, Sep 11, 2010 at 10:15 PM, Terry Bailey <terry at bitlinx.com> wrote:
> > Hi,
> >
> > Is there any reliable way to determine which source IPs are coming
> > from Georgia and which are not?
> >
> > Thanks,
> >
> > Terry Bailey
> >
--------------------------
(PS - If you email me and don't get a quick response, you might want to
call on the phone. I get about 300 emails per day from alternate energy
mailing lists and such. I don't always see new messages very quickly.)
Ron Frazier
770-205-9422 (O) Leave a message.
linuxdude AT c3energy.com
More information about the Ale
mailing list