Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: IPCOP Firewall Audit...

IPCOP Firewall Audit... 11 years 7 months ago #8103

  • ideep
  • ideep's Avatar
  • Offline
  • New Member
  • Posts: 3
  • Karma: 0
Hi Guys,

It’s my very first post.. Hope you’ll get what I’m saying..
I got Ipcop 1.4.5 Firewall and I was just doing a audit to see how strong my firewall is.. I've gone to www.auditmyfirewall.com website and as I did the audit it showed my Internal IP address. I thought IPCOP is NAT enabled and should net be showing my Internal IP address..

Any ideas…
:(
The administrator has disabled public write access.

Sorry guys 11 years 7 months ago #8104

  • ideep
  • ideep's Avatar
  • Offline
  • New Member
  • Posts: 3
  • Karma: 0
The administrator has disabled public write access.

Re: IPCOP Firewall Audit... 11 years 7 months ago #8113

  • LooseCannon
  • LooseCannon's Avatar
  • Offline
  • Frequent Member
  • Posts: 64
  • Karma: 0
From what I have read about this site they use a java applet that runs on your computer and displays your internal IP address, just like doing an ipconfig or winipcfg would do. The remote site itself is not actually probing your computer to get this IP address as it would just return your public IP if that was the case. Also, I am pretty sure that the IP is just displayed on your computer because if it was sent back to auditmypc.com a java warning window would appear asking if you wanted to send that information to a potentially unsafe source.
The administrator has disabled public write access.

Re: IPCOP Firewall Audit... 11 years 7 months ago #8116

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Posts: 613
  • Karma: 0
Well assuming the site would be interested in geting this information, the internal IP address could easily be queried and stored in a cookie via a javascript. Also, if a proxy is used, it is common behaviour to set the "HTTP_X_FORWARDED_FOR" field in the http header, making the internal address directly available through the HTTP server enviromental variables. ;)
The administrator has disabled public write access.

Re 11 years 7 months ago #8124

  • ideep
  • ideep's Avatar
  • Offline
  • New Member
  • Posts: 3
  • Karma: 0
Thanks for your reply guys..
As you said LooseCannon "the site use a java applet that runs on my computer and displays my internal IP address" mean they are not really seeing my Ip address... it's just the applet showing the Internal Ip address on the scree.

Bottomline.. No one can see my Internal Ip.. RIGHT :D
The administrator has disabled public write access.

Re: IPCOP Firewall Audit... 11 years 7 months ago #8278

In the security realm there is no such thing as 0 risk or a 100% guarantee. In the case that nske is right, then you would have to use some more advanced firewalling techniques to prevent a tricky cookie like that from pulling sensitive information on your computer. No firewall in the world can prevent you entirely from the threat of hackers, but it can stop a lot of the immature ones dead in their tracks. My suggestion is even if you have some holes in your system, don't freak, but add an extra layer of security in your defenses and always play it safe on the internet.

Sometimes the addition of strict security can make using a system for pleasure very difficult(try using openBSD as your desktop....) so you have to weigh out the risk factor using some intuitivness and common sense
"He who breaks something to find out what it is, has left the path of wisdom."

Gandalf the Grey
The administrator has disabled public write access.
Time to create page: 0.080 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup