[Dshield] DShield Update

Johannes B. Ullrich jullrich at euclidian.com
Wed Nov 21 14:25:30 GMT 2001


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


> Nope - still isn't figuring out my IP.  I think NTL is doing something
> fancy, but I've no idea what.

The method I use only works with squid like caches. They add a header
'HTTP_X_FORWARDED_FOR which indicated the 'real IP' (however, this
can be switched off). 

I setup a test page at
http://www.dshield.org/client_info.php
which will dump the header information. See if you find your real IP in it 
and send me a copy of the output if you do.


- -- 
- -------
jullrich at sans.org                    Join http://www.DShield.org
                          Distributed Intrusion Detection System

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE7+7ldVOIizK5pIDMRAsEhAJ9EtwKT3qFROvoC02qjG4QFYD+boACfcimy
8Ag0e0iD6cVzC6SSMq3yh9g=
=8UEs
-----END PGP SIGNATURE-----




More information about the list mailing list