• Welcome to Valhalla Legends Archive.
 

Fake IP

Started by Luxer, July 18, 2004, 03:32 PM

Previous topic - Next topic

Luxer

Is there a way to tell battle.net that you have a differnt IP Address then it really is? (Going though a router)

DeTaiLs




Luxer

COuld you be more spesific?

Eric


UserLoser.

#4
Hack/modify/patch winsock

iago

It's easy to lie about your ip.  It's like writing the wrong return address on your mail.  Just don't expect a reply from the server :)
This'll make an interesting test for broken AV:
QuoteX5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*


DeTaiLs

If u look at the stmp server the never even send anything back to varifty the ip



iago

Quote from: Twix on July 18, 2004, 08:38 PM
If u look at the stmp server the never even send anything back to varifty the ip

huh? I have no idea what that is or means, but how do you _not_ send something back?  Unless it's udp ("fire and forget"), you need a response.
This'll make an interesting test for broken AV:
QuoteX5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*


tA-Kane

#8
Sending a fake IP when connecting would only generate a mirrored-syn-flood-type of attack (aka mirrored denial of service), though if you try to connect only once, it's more like a fluke of nature than an attack, since nearly zero damage is done to anything.

The only way to "fake" the IP address you're connecting from and be able to use the connection would be to "bounce" it. That is, you connect to some other IP address, and tell that IP address to connect to Battle.net.

One of the easiest bouncer protocols to use are SOCKS 4 and SOCKS 5.

Use google for referencing.
Macintosh programmer and enthusiast.
Battle.net Bot Programming: http://www.bash.org/?240059
I can write programs. Can you right them?

http://www.clan-mac.com
http://www.eve-online.com

Soul Taker

As others have said, without bouncing your connection through another host, you can't actually use the connection for anything productive.  Just to clarify why, if you tell a server you are using a fake IP, the server will respond and send all data to said fake IP.  This makes it impossible for you to get that data unless the data is being routed to you by a middle-man.

iago

Quote from: tA-Kane on July 19, 2004, 01:01 AM
Sending a fake IP when connecting would only generate a mirrored-syn-flood-type of attack (aka mirrored denial of service), though if you try to connect only once, it's more like a fluke of nature than an attack, since nearly zero damage is done to anything.

It wouldn't even do that, since the server would send SYN/ACK to the fake ip, and the fake ip wouldn't know what to do with it so it would get ignored.
This'll make an interesting test for broken AV:
QuoteX5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*


c0ol

you can mirror the packets to a host that you can spy on.  This is however impractical unless you have some control over an internet router or some such of that nature.

idoL

But isn't it like spoofing your IP? You can still connect to things but under a different IP?

iago

Quote from: Snake on July 22, 2004, 04:38 PM
But isn't it like spoofing your IP? You can still connect to things but under a different IP?

You can't spoof your ip.  If you did, how would a server know where to send the data back to?  The best you can do is have an intermediate server that you send stuff to and it forwards the stuff.
This'll make an interesting test for broken AV:
QuoteX5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*


Zakath

Use the postal service analogy. If I write the wrong return address on a letter, any responses to said letter will be sent to that address rather than my own. Unless whoever receives mail at that address knows to forward that mail to me, I will never get it. That is, in essence, what connecting via a proxy accomplishes.
Quote from: iago on February 02, 2005, 03:07 PM
Yes, you can't have everybody...contributing to the main source repository.  That would be stupid and create chaos.

Opensource projects...would be dumb.