tags:

views:

107

answers:

4

I think there are only two ways a application or a server could get your IP.

  1. If it is an application, java/flash, I think it could check your network settings locally and send your IP back to the server. Then the server would know.

  2. The other way it could find is that it could analyze the packet headers. Then find there your IP information.

But if I wanted it to stop doing it.

  1. If it was analyzing locally my IP information I could stop that packet or change its information so the website would be confused about the IP information.

  2. If it was analyzing the packet headers and if knew what packets it was analyzing because it wont analyze every packet, I could stop sending those packets.

Example:

Websites that checks your IP, how does it do it? If you are not downloading any application, you would exclude the 1. scenarion. Then the only possibility is that it was analyzing packet headers but what kind of packets?

It was not one question only but if anyone knows something about it, I would like to know too. :)

Thanks

+8  A: 

You can't prevent a website to know your IP. If you do prevent it, it would be unable to answer your request. If you are really interested in anonymity have a look at proxy servers, especially at high anonymity proxies.

nc3b
+1  A: 

As soon as you establish a connection to a remote host, your IP address is revealed. You can not simply say, "I'd like to connect, and by the way, my IP address is 123.123.123.123".

The webserver will tell what ever script it executes, from which IP address the connection was established (and request made).

aioobe
Yes you can. It's called spoofing.
Konerak
@Konerak: Except then you won't be able to get any return data.
Matti Virkkunen
It'll be harder, true. But sometimes you don't want any return data, or other times you can see all traffic pass by anyway.
Konerak
@Matti Virkkunen I dont want to spoof every packet. Only the packet the website analyses it for IP checking. It wont analyse every packet.
@johnkills: Unfortunately the packet they "analyze" is the same one that they also use to figure out where to send the return data.
Matti Virkkunen
@Matti yeah but what if I dont want that information back but want others back?
@johnkills: The first packet (part of the three-way handshake) is what the server uses to determine your IP address in the first place. All further packets will be sent to that IP, so if you put the wrong address in that one, you'll never get any data back. Stop trying to be a cool hacker kid and just use a proxy if you don't want people to be able to find out your IP address.
Matti Virkkunen
@Konerak: If we're talking about the public Internet, you'd have to be pretty lucky to be able to see all the data the server is sending. Not impossible, but for this guy, highly unlikely.
Matti Virkkunen
@Matti I wont get any data back from that "session" or whetever you call it. if the data back was to say on the website my IP so I could view it. If I had to receive that information and I dont it is fine if I dont receive it. But after, if I download a video from the same website with all my IP information correct, I will receive it. But the server will be confuse ONLY when trying to get my IP and not when it was sending me a video. So if the admin would check the "IP" logs, it would get a different one. It is thinking about how things works that got many things started in MIT.
@johnkills: If I had some videos, I'd definitely log the requests for the videos themselves carefully. If you're going to request the video with your non-spoofed IP address, what's the point of the first request? It's *not going to do anything*. It won't give you any cookies because you don't get the result back, and it won't establish a session with your IP because it's spoofed. The server log might show an extra entry in the logs, but what's the point in doing that? And that last thing about "MIT" and whatnot was just stupid.
Matti Virkkunen
@Matti No, it was not. Then explain why it was "stupid". It is easy to say it was but you dont have an explanation why it was. Try it. People in MIT and caltech are known to think different. Saying someone is trying to be "cool hacker kid", that was stupid. The term "hacker" comes from MIT.
@johnkills: It's stupid because throwing in the name of a famous university isn't going to make *you* seem any smarter. And I used the word "hacker" intentionally here, because most of the cool hacker kids wouldn't know the word's actual meaning. We're straying from the point however, what would you do with that first request of yours, that seemingly doesn't do anything?
Matti Virkkunen
@Matti Sure throwing a name of a famous university helps my argument of thinking different. If they think different then thinking different can only be a good thing. I dont think all your actions you do on a website, you need to get the results for the server to execute it. IF there was a flash application and you had to press a button for it to do something. Do you think you would need to get the packet from the server back? The server would execute it anyway. Java too.
@user354191: You're still missing my point. If all you want to do is download a video, *why try to spoof another request in the first place?*
Matti Virkkunen
A: 

You can't prevent a website from knowing the IP, that sent the request. At best you can route it through a proxy, so the website resolves the IP of the proxy server.

You should read up on TCP/IP. In short, TCP/IP packet contains the originating IP address, because it must conform to the IP protocol and send a valid IP header.

driis
You can prevent the website from knowing the IP that sent the request. It'll just be a bit harder to get the response ;P
Konerak
Why is this -1? +1 back t0 0
Daniel
I dont want to spoof every packet header. Only the packet the website analyses it for IP checking. It wont analyse every packet.
All your packets are "analyzed" (that is, interpreted).
nc3b
Yeah but all information from all packets stored in the server after you finish a connection? Do you think a web server stores all packet headers?
johnkills: actually, most servers have an Access log, and each line of the access log containst the IP address of the user... so yes, they store it.
Konerak
@ Konerak Interesting, I didnt know servers would have an access log for EVERY information sent.
+1  A: 

Your IP address is in every TCP segment. The remote web-server (to which your web browser makes the connection) will make this information available to the hosted site.

To send a different IP address, you have a couple of options. You could use a proxy server and have its IP address transmitted. Alternatively, you could use IP Spoofing, if you don't want to receive any information back!

Johnsyweb
Where in the TCP packet is the IP address? Or did you mean IP packet?
Konerak
Thanks @Konerak. The IP address is in the TCP *segment* or in the IP packet. Typo corrected.
Johnsyweb