Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Tracking an IP address to a location

  • 14-09-2012 8:13am
    #1
    Registered Users, Registered Users 2 Posts: 120 ✭✭


    How did he track the IP to the internet cafe? an IP only gives an idea of where the computer is


Comments

  • Registered Users, Registered Users 2 Posts: 13,295 ✭✭✭✭Duggy747


    You can't, ISPs hold that information which, it seems, somebody has a friend in.


  • Closed Accounts Posts: 7,480 ✭✭✭wexie


    Duggy747 wrote: »
    You can't, ISPs hold that information which, it seems, somebody has a friend in.

    You can resolve an IP address to a hostname though.

    Maybe the hostname came back as : host.joeblogsinternetcafe.ie ???

    just a thought


  • Registered Users, Registered Users 2 Posts: 120 ✭✭winsumlusum


    wexie wrote: »
    You can resolve an IP address to a hostname though.
    how do you do this

    edit found it
    Maybe the hostname came back as : host.joeblogsinternetcafe.ie ???
    that would be where there would be a server? you could not do that to a private address?


  • Registered Users, Registered Users 2 Posts: 37,485 ✭✭✭✭Khannie


    Nice sting operation...using web server logs to get his IP. Very tasty. :)
    The sting operation involved Mr Carroll setting up another Twitter account called @john_cant_type and interacting with Mr Andrews's fake account.

    Mr Carroll then posted a link to an article which was picked up by Mr Andrews, which enabled Mr Carroll to identify the unique IP address of the computer Mr Andrews was using. This was tracked down to a computer in the Amazon internet cafe in Rathmines.

    My guess is reverse DNS. Otherwise you would need a friend in an ISP and I'm pretty sure that would be a fair breach of privacy = sue-tastic.


  • Registered Users, Registered Users 2 Posts: 68,317 ✭✭✭✭seamus


    It's fairly simple as wexie points out, if you can get someone to click on a link, their computer will spit a tonne of information at you, not just the IP address. Depending on how the router/gateway in the cafe is set up, the machine might give the server its full hostname, i.e. computer53.cafenet.amazoncafe.ie

    In some cases, the cafe may have a fixed external address for each of its machines (rare, but it can be done). Or at the very least, a bit of a chat with the owner of the cafe about the matter, and they may assist you in identifying which machine was used.


  • Advertisement
  • Closed Accounts Posts: 7,480 ✭✭✭wexie


    how do you do this
    EDIT http://help.lockergnome.com/linux/resolve-IP-address-hostname--ftopict413770.html

    that would be where there would be a server? you could not do that to a private address?

    You more likely than not can, pretty much everything on the internet will have some form of hostname (whatever it is you're using to access boards at the moment will have one) so it all depends on how the guy was accessing the internet. If the internet cafe was using static IP addresses and had a recognisable hostname it wouldn't have been hard.

    If your hostname is something like laptop then of course it's a lot different.


  • Registered Users, Registered Users 2 Posts: 951 ✭✭✭MiniNukinfuts


    He could have used a site like this: http://www.fuglekos.com/ip-grabber/index.html. I tested it out here on boards a few months ago, I got 100s of hits.


  • Registered Users, Registered Users 2 Posts: 120 ✭✭winsumlusum


    wexie wrote: »
    You more likely than not can, pretty much everything on the internet will have some form of hostname (whatever it is you're using to access boards at the moment will have one) so it all depends on how the guy was accessing the internet. If the internet cafe was using static IP addresses and had a recognisable hostname it wouldn't have been hard.

    If your hostname is something like laptop then of course it's a lot different.
    is the host name the computer name as you get when you right click computer and choose properties in vista?


  • Registered Users, Registered Users 2 Posts: 68,317 ✭✭✭✭seamus


    is the host name the computer name as you get when you right click computer and choose properties in vista?
    Sometimes, it all depends on the network that you're using.

    In some cases it may show that hostname. Where the traffic is being run through a proxy, the proxy set up may filter out hostnames and just report the hostname as "proxy.somecompany.com".


  • Closed Accounts Posts: 7,480 ✭✭✭wexie


    is the host name the computer name as you get when you right click computer and choose properties in vista?

    hmmm....it'll be part of it. It depends on the network setup. The hostname you see listed there will be the first part of the FQDN. Or (usually in more structured environments) you might see the full hostname listed where it says ...err....full computer name.

    EDIT, or what Seamus said


  • Advertisement
  • Registered Users, Registered Users 2 Posts: 120 ✭✭winsumlusum


    He could have used a site like this: http://www.fuglekos.com/ip-grabber/index.html. I tested it out here on boards a few months ago, I got 100s of hits.
    but it does not give the persons address does it? Just the ip. I tried it and there is nothing in the log only name of the image and folder. edit was doing it wrong. Got it to work, gives host nake as ip and eircom and says
    Note: You will not find the name of the person or his/her street address here.
    MAP LOOKUP usually shows the location of the internet service provider, and not the actual street address of the user of that particular ip address. This means that MAP LOOKUP usually only narrows down to the nearest city.
    It tells little more than email headers

    So he must have known someone in isp


  • Registered Users, Registered Users 2 Posts: 37,485 ✭✭✭✭Khannie


    So he must have known someone in isp

    Not so. Reverse dns may have given the cafe domain.


  • Registered Users, Registered Users 2 Posts: 120 ✭✭winsumlusum


    Khannie wrote: »
    Not so. Reverse dns may have given the cafe domain.
    you mean like it gives me as eircom cos they are my host. ?


  • Registered Users, Registered Users 2 Posts: 37,485 ✭✭✭✭Khannie


    A bit like that. Sometimes when I do a reverse dns on an IP (admins need to do it sometimes) I get "<blah>.company.com" for example.


  • Registered Users, Registered Users 2 Posts: 120 ✭✭winsumlusum


    He could have used a site like this: http://www.fuglekos.com/ip-grabber/index.html. I tested it out here on boards a few months ago, I got 100s of hits.
    how do you send the link to someone else. i sent it to myself and got activation email with a link. Is that the libk you send the other person?


  • Registered Users, Registered Users 2 Posts: 951 ✭✭✭MiniNukinfuts


    how do you send the link to someone else. i sent it to myself and got activation email with a link. Is that the libk you send the other person?

    All I did was create a link that when clicked, it shows a victim some image or fake website, but in the background, the ip logging tool gets activated.


  • Registered Users, Registered Users 2 Posts: 120 ✭✭winsumlusum


    All I did was create a link that when clicked, it shows a victim some image or fake website, but in the background, the ip logging tool gets activated.
    i just uploaded a jpeg but do not see how to send it to anyone. I wanted to send to a friend as a joke edit worked it out
    But won'tpeople catche on when they look at just http://www.fuglekos.com/ as distinct from the full url


  • Closed Accounts Posts: 1,324 ✭✭✭RGDATA!


    interesting story!



    "Mr Carroll compiled a 35-page dossier on his sting -- which some in FF thought was excessive in itself -- and submitted it to party bosses."
    :)

    "In her statement, Ms Byrne said her husband "spent in total five to six hours spread over several months on this discovery"."
    yeah right, 5 to 6 hours total. including staking out the internet cafe? including compiling the 35 page dossier? :rolleyes:


  • Closed Accounts Posts: 1,455 ✭✭✭RUCKING FETARD


    Penelope%20Garcia.jpg


    I was watching an ep where Garcia traced someone back to their second floor bedroom, definitely possible alright.


  • Registered Users, Registered Users 2 Posts: 120 ✭✭winsumlusum


    Penelope%20Garcia.jpg


    I was watching an ep where Garcia traced someone back to their second floor bedroom, definitely possible alright.

    Garcia would be able to access the isp. Do you know what episode?

    http://ask-leo.com/what_can_people_tell_from_my_ip_address.html

    here's a good one


  • Advertisement
Advertisement