|
|||||||
 |
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
09-10-2002, 02:49 PM
|
#1 |
|
Canadian Content
Premium Member
Join Date: Dec 1999
Location: Vancouver Island , BC, Canada
Posts: 1,594
|
Resolve IP Address
If I have an IP adress how can I tell who or where it came from?
__________________
The older I get, The better I was! |
|
|
|
09-10-2002, 04:48 PM
|
#2 |
|
Telcom Tech
Join Date: Feb 2002
Location: Western, Pa.
Posts: 5,409
|
You could run a command called netstat and may get a bit of info that will clue you in, but my question is what are you connected to and where could you get your IP address from?? How are you connecting to internet or private network. Is there a dhcp server or is this just your home PC and your just wondering when you dial into your isp how you get your IP address???
__________________
If it ain't broke, "TWEAK IT" |
|
|
|
|
09-10-2002, 04:53 PM
|
#3 |
|
Canadian Content
Premium Member
Join Date: Dec 1999
Location: Vancouver Island , BC, Canada
Posts: 1,594
|
I have set up an ftp server and I now find Some one is trying to log on from different IP's than I have allowed. I only gave this information to a select few. But, it seems a lot of others have found it!
|
|
|
|
|
09-10-2002, 04:59 PM
|
#4 |
|
Member (13 bit)
Join Date: Jul 2000
Location: Fullerton, CA
Posts: 7,030
|
|
|
|
|
|
09-10-2002, 05:07 PM
|
#5 |
|
Canadian Content
Premium Member
Join Date: Dec 1999
Location: Vancouver Island , BC, Canada
Posts: 1,594
|
Didn't expect this. It came from Hanaro Telecom in Seoul Korea. Don't know what to make of that!
|
|
|
|
|
09-11-2002, 06:48 AM
|
#6 |
|
Forum Administrator
Staff
Premium Member
Join Date: May 2000
Location: Joplin MO
Posts: 37,771
|
Port scanners are finding you. Make sure you have adequate security on your server.
|
|
|
|
|
09-11-2002, 08:42 AM
|
#7 |
|
Premium Member
Join Date: Jun 1999
Posts: 9,231
|
http://www.apnic.net/apnic-bin/whois.pl (APNIC Whois Database)
Read this for resolving IP addresses: http://www.cert.org/tech_tips/whois_by_ipaddr.html |
|
|
|
|
09-11-2002, 08:45 AM
|
#8 |
|
Premium Member
Join Date: Jun 1999
Posts: 9,231
|
And look to see for the leak amongst those that you shared the information with. A good idea would be to change the port #; then give the information off. Also run a sniffer to see if you are being consistently scanned, rather than just assuming that your FTP port is being targetted. And if you must run your FTP daemon, then verify that your server software is updated with all vulnerability fixes. Something I recommend for home-FTP-users is to change the default login report & message and set it so that NOT TO DIVULGE name of software and version number.
|
|
|
|
|
09-12-2002, 10:27 PM
|
#9 |
|
Member (6 bit)
Join Date: Dec 2001
Location: Northern Illinois
Posts: 60
|
Port Scanner
I don't mean to sound dumb, but what is, and how can you find a port scanner?
Steve |
|
|
|
|
09-13-2002, 07:17 AM
|
#10 |
|
Member (9 bit)
Join Date: May 2000
Location: Lexington, Michigan
Posts: 353
|
ports are used for services on the internet, some of the most used ports are 80 for web services, 23 for telnet, 21 for ftp,
25 for smtp, 110 for pop mail. the list goes on and on. a port scanner is used to find what ports an ip address has open. so if you have port 21 open to the internet, and i run a port scan against your ip, it will tell me that you have a ftp server running. i can then try to connect to your ftp server. just because you dont tell somebody that you have an ftp server running, doesn't mean i cant find it, as you found out. one of the most popular port scanners is NMap. it is available here: http://www.nmap.org/
__________________
Certifiable =========================================== Cisco CCNA,CCDA CompTIA A+, Network+,Inet+,Security+ CIW Associate IBM AIX certified IBM Certified Specialist - p5 and pSeries Administration and Support for AIX 5L V5.3 IBM Certified Systems Expert - p5 and pSeries Enterprise Technical Support AIX 5L V5.3 |
|
|
|
|
| Bookmarks |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Linear Mode
