Yahoo invisible

views:

619

answers:

+4 Q:

Some friends with the help of various sites check and know when i'm invisible on yahoo messenger and keep bragging about this.

Being curious about this I've tested lots of sites that check if a user is invisible on yahoo messenger and all of them sent me a C1 packet type.
From what i've tested I'm(my ymsgr client) not sending anything back. So i only receive 1 packet from the bot that performs the check and that's it, they know if i'm invisible or not.

Next i thought that if i'm not sending anything back then maybe the yahoo server sends something back to i tested on a friend of mine and i sent him a c1 packet but i did not received anything back from nobody (neither the server neither my friend).
So how do they do that? I'm just looking for some hints, not expecting for code or someone else to solve it for me. I just like the thrill in learning and discovering by myself just that now i'm stuck with no idea :)

Thanks.

+1 A:

Is it possible that sending such a packet to someone who's not online results in an error? In that case, sending the packet and not getting an error means that that person is online.

Michael Borgwardt 2009-12-20 13:00:54

I've sent the packet to myself once being Online, once Invisible and once Offline and I did not receive any response or any traffic at all(checked with wireshack) in any of the three cases.

daniels 2009-12-20 13:40:10

Did you send the packet from the same computer? You might be getting around your firewall that way. I think this is the most likely answer - a machine not running the messenger app would fail on the packet delivery.

Andrew 2009-12-29 06:18:26

+2 A:

When you are invisible, basically you are online, but simply their server do not broadcast your real status (online), but a fake one (offline).

Yahoo is not fully able to "hide" your real status, but it has some "holes" in how aggressively tries: see here for details.

Actually there are lot of websites and possible spyware that make it even easier for an end-user to check.

Davide 2009-12-26 21:57:17

+1 A:

From what you are saying, I'd suggest that the bot actually checks somewhere else (if it is true that there are no packets sent at all)

Could it be that there is an online registry of users who are online and the packet that you are sent is just an artifact?

piggles 2009-12-28 22:21:05

+2 A:

This is a new answer because it's too long to be a comment.

I looked around a bit and it would seem that the older versions of yahoo had a deal where if you were invisible and someone tried to start a voice chat with you, it would give you away. The ping packet could be trying that.

One thing I noticed on gtalk was that often a user appears online even after they have disconnected until someone sends them a ping packet. Also, if you are invisible and then you come back, the length of time that you've been online gives away the fact that you were invisible.

Could it be, then, that when you are pinged, your status, online time, etc all update on the yahoo server if you are online and what these services are doing then are checking to see if yahoo takes any action? I would presume that all yahoo is doing is not broadcasting your info if you're online, but you can still see that the server does something.

Instead of monitoring for an incoming/outgoing packet, why don't you check your registry on the yahoo server? I believe there's a url for that.

hope this helps,

Mechko

piggles 2009-12-29 00:34:23

that's what i'm suspecting that they first send the C1 packet and this makes yahoo servers do something that they check afterward and thats how they figure it out but i can't seem to find/think where they're checking

daniels 2009-12-31 00:40:09

i've accepted this answer because of what i explained in the comment above, and because the bounty is about to expire but unfortunately did not found out yet how it's done

daniels 2009-12-31 14:33:52

If you happen to have a yahoo id that is invisible and one that is offline, I'd be happy to keep working on it.

piggles 2010-01-02 23:08:19

http://developer.yahoo.com/social/rest_api_guide/status-resource.htmlI think this might help.

piggles 2010-01-03 00:20:41

This status is something that is showed on your profile page or even in Yahoo Messenger but it does not involve stealth settings, i.e. it does not show if you are online/offline/invisible. I have a user that's offline all the time and a user that i use and i can set it to be invisible. But to be able to test whenever you what you can also register 2 users and just don't login at all on one of them and set invisible the other and test. You can setup wireshack and just go to any site and check you status and you will see that they send packet 0xC1

daniels 2010-01-23 13:07:34

Or instead of wireshack you can use any other packet sniffer like http://www.nirsoft.net/utils/smsniff.html and if you whant to test by sending the packet yourself you can use libyahoo2/libpurple if you know C/C++ or openymsg for java or ymsglib for python

daniels 2010-01-23 13:12:47

+1 A:

I hadn't used Yahoo Messenger is a long time, but something you said made me wonder. You said these testing websites sent you a C1 packet. I'm wondering if it is as simple a firewall rules to block all but the Yahoo servers. I don't know if chat/voice/file transfers are done P2P, if so you would have to update your firewall rules.

Back in the day I used to use my firewall to block the ad banners on the IM clients because they were served on a different URL and failure to connect to the ad server didn't disconnect my IM channel.

Maybe you can have the firewall ask for each connection and see how few connections you need in order to have the messenger work. Then have the firewall drop unsolicited packets. If that doesn't work, you can use the firewall to block the checking sites.

Good luck.

Scott McClenning 2009-12-29 21:51:03

Here are some of the methods you can use to detect if a user is invisible or really offline (some of these depend on earlier versions of the messenger application):

Start a voice chat with the user you want to check. If you get an error, the user if really offline.
Send a message to the user, then change the IMEnviorment. If you see a message saying “waiting for your friend to load the theme”, then the user if really offline.
Download (and pay for, unfortunately) Buddy Check.
Navigate to this URL in your browser: http://opi.yahoo.com/online?m=g&t=2&u=userid (change userid to the user you are testing). (This did not work for me).

There are websites that let you can check the status online, but there is no guarantee they'll work (they're only doing what I am showing you above). Basically, you can use these VIA screen scraping. Here are some of the sites:

http://www.ydetector.com/
http://www.imvisible.info/
http://www.invisible.ir/
http://www.invisible-scanner.com/ (This one has worked best for me)

Gabriel McAdams 2009-12-30 20:44:49

I'm interested in understanding and finding out how it's done and not querying/stealing from other site. Buddycheck does not work. 1) not how they are doing it. 4) with this you can just check if a user is online. if it's invisible it will show up as being offline

daniels 2009-12-31 00:35:34

ansaurus

tags:

views:

answers:

Yahoo invisible

related questions