This is more a privacy question but I could not figure out a forum for
it.

Given that one can track IP addresses of people that visit a website,
and given that IP addresses of all mail, including Usenet posts, is in
the header, is there an automated way of checking all Usenet posts by
IP address? To see if a particular poster who visited a particular
website also posted certain messages on Usenet or elsewhere? This
would be done by the webmaster of the website visited. Is there a
program to do this? Not manually, which anybody can do, but a
software program.

I recall years ago some stock forensic accounting firm working with
the US SEC developed some kind of software--or was it off the shelf?
that's my question--that allowed you to tell, by comparing IP
addresses as well as sentence syntax (sentence syntax is difficult, so
it was probably a custom program) who (by IP address) posted what on
various penny stock bulletin boards and chat rooms. Then they were
able to subpoena the internet provider to find out the real world
identity of the particular person who had that IP address assigned to
them on a particular day of a certain posting (assuming it was not a
permanent static address).

RL

RayLopez99 stated in post
8e29ab55-b91c-4e07-87b5-4a91b1519044...oglegroups.com on 1/3/11
9:00 AM:

> This is more a privacy question but I could not figure out a forum for
> it.
>
> Given that one can track IP addresses of people that visit a website,
> and given that IP addresses of all mail, including Usenet posts, is in
> the header, is there an automated way of checking all Usenet posts by
> IP address? To see if a particular poster who visited a particular
> website also posted certain messages on Usenet or elsewhere? This
> would be done by the webmaster of the website visited. Is there a
> program to do this? Not manually, which anybody can do, but a
> software program.

I have, in my logs, the names of some of the folks in COLA/CSMA labeled.
For example, Steve Carroll used to claim to never visit my site - so I
labeled his IP address. His name pops up in my logs... and he visits often.
I also get visits from others in his area (the IP address can show where
someone is from). He likely goes to neighbors and the library or wherever
to view my site.

> I recall years ago some stock forensic accounting firm working with
> the US SEC developed some kind of software--or was it off the shelf?
> that's my question--that allowed you to tell, by comparing IP
> addresses as well as sentence syntax (sentence syntax is difficult, so
> it was probably a custom program) who (by IP address) posted what on
> various penny stock bulletin boards and chat rooms. Then they were
> able to subpoena the internet provider to find out the real world
> identity of the particular person who had that IP address assigned to
> them on a particular day of a certain posting (assuming it was not a
> permanent static address).
>
> RL



--
[INSERT .SIG HERE]

RayLopez99 wrote:
> This is more a privacy question but I could not figure out a forum for
> it.

Security groups may be what you are looking for.

> Given that one can track IP addresses of people that visit a website,
> and given that IP addresses of all mail, including Usenet posts, is in
> the header, is there an automated way of checking all Usenet posts by
> IP address?
> To see if a particular poster who visited a particular
> website also posted certain messages on Usenet or elsewhere? This
> would be done by the webmaster of the website visited. Is there a
> program to do this? Not manually, which anybody can do, but a
> software program.

No. Many posts don't have the IP of the poster, and even those that have may
not be reliable, as not being the IP of the poster but of some proxy.

I use a anonymizing proxy to post in Usenet, so even if some header has a IP
it will be the proxy's IP and not the system's IP I'm posting from.

Regards.

In article <8e29ab55-b91c-4e07-87b5-(E-Mail Removed)>,
RayLopez99 <(E-Mail Removed)> wrote:
>Path: news.sonic.net!nnrp0.nntp.sonic.net!199.245.68.22.MISMATCH!spool2.nntp.sonic.net!news-xfer.nntp.sonic.net!news.glorb.com!news2.glorb.com!news.glorb.com!postnews.google.com!p8g2000vbs.googlegroups.com!not-for-mail
>From: RayLopez99 <(E-Mail Removed)>
>Newsgroups: alt.comp.hardware.pc-homebuilt,alt.comp.anti-virus,alt.computer.security,comp.os.linux.setup,comp.os.linux.advocacy
>Subject: Tracking IP addresses and Usenet posts?
>Date: Mon, 3 Jan 2011 08:00:40 -0800 (PST)
>Organization: http://groups.google.com
>Lines: 24
>Message-ID: <8e29ab55-b91c-4e07-87b5-(E-Mail Removed)>
>NNTP-Posting-Host: 94.71.18.120
>Mime-Version: 1.0
>Content-Type: text/plain; charset=ISO-8859-1
>X-Trace: posting.google.com 1294070440 29908 127.0.0.1 (3 Jan 2011 16:00:40 GMT)
>X-Complaints-To: groups-(E-Mail Removed)
>NNTP-Posting-Date: Mon, 3 Jan 2011 16:00:40 +0000 (UTC)
>Complaints-To: groups-(E-Mail Removed)
>Injection-Info: p8g2000vbs.googlegroups.com; posting-host=94.71.18.120; posting-account=fRZa_AkAAACE3nlFA9zM1Eq00OKq1Ycq
>User-Agent: G2/1.0
>X-HTTP-UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US)
> AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224 Safari/534.10,gzip(gfe)
>Xref: news.sonic.net alt.comp.hardware.pc-homebuilt:528884 alt.comp.anti-virus:38839 alt.computer.security:77845 comp.os.linux.setup:534874 comp.os.linux.advocacy:1857523
>
>This is more a privacy question but I could not figure out a forum for
>it.
>
>Given that one can track IP addresses of people that visit a website,
>and given that IP addresses of all mail, including Usenet posts, is in
>the header, is there an automated way of checking all Usenet posts by
>IP address? To see if a particular poster who visited a particular
>website also posted certain messages on Usenet or elsewhere? This
>would be done by the webmaster of the website visited. Is there a
>program to do this? Not manually, which anybody can do, but a
>software program.
>
>I recall years ago some stock forensic accounting firm working with
>the US SEC developed some kind of software--or was it off the shelf?
>that's my question--that allowed you to tell, by comparing IP
>addresses as well as sentence syntax (sentence syntax is difficult, so
>it was probably a custom program) who (by IP address) posted what on
>various penny stock bulletin boards and chat rooms. Then they were
>able to subpoena the internet provider to find out the real world
>identity of the particular person who had that IP address assigned to
>them on a particular day of a certain posting (assuming it was not a
>permanent static address).
>
>RL

*Some* servers include the IP address of the poster in the header

Your post's header had this line in it

NNTP-Posting-Host: 94.71.18.120

which, unless it was spoofed, should be your address...

Not all servers implement this feature so some postings are less traceable.

Hadron stated in post ifstms$c10$(E-Mail Removed) on 1/3/11 9:32
AM:

> (E-Mail Removed) (Claude V. Lucas) writes:
>
>> In article
>> <8e29ab55-b91c-4e07-87b5-(E-Mail Removed)>,
>> RayLopez99 <(E-Mail Removed)> wrote:
>>> Path:
>>> news.sonic.net!nnrp0.nntp.sonic.net!199.245.68.22.MISMATCH!spool2.nntp.sonic
>>> .net!news-xfer.nntp.sonic.net!news.glorb.com!news2.glorb.com!news.glorb.com!
>>> postnews.google.com!p8g2000vbs.googlegroups.com!not-for-mail
>>> From: RayLopez99 <(E-Mail Removed)>
>>> Newsgroups:
>>> alt.comp.hardware.pc-homebuilt,alt.comp.anti-virus,alt.computer.security,com
>>> p.os.linux.setup,comp.os.linux.advocacy
>>> Subject: Tracking IP addresses and Usenet posts?
>>> Date: Mon, 3 Jan 2011 08:00:40 -0800 (PST)
>>> Organization: http://groups.google.com
>>> Lines: 24
>>> Message-ID:
>>> <8e29ab55-b91c-4e07-87b5-(E-Mail Removed)>
>>> NNTP-Posting-Host: 94.71.18.120
>>> Mime-Version: 1.0
>>> Content-Type: text/plain; charset=ISO-8859-1
>>> X-Trace: posting.google.com 1294070440 29908 127.0.0.1 (3 Jan 2011 16:00:40
>>> GMT)
>>> X-Complaints-To: groups-(E-Mail Removed)
>>> NNTP-Posting-Date: Mon, 3 Jan 2011 16:00:40 +0000 (UTC)
>>> Complaints-To: groups-(E-Mail Removed)
>>> Injection-Info: p8g2000vbs.googlegroups.com; posting-host=94.71.18.120;
>>> posting-account=fRZa_AkAAACE3nlFA9zM1Eq00OKq1Ycq
>>> User-Agent: G2/1.0
>>> X-HTTP-UserAgent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US)
>>> AppleWebKit/534.10 (KHTML, like Gecko) Chrome/8.0.552.224
>>> Safari/534.10,gzip(gfe)
>>> Xref: news.sonic.net alt.comp.hardware.pc-homebuilt:528884
>>> alt.comp.anti-virus:38839 alt.computer.security:77845
>>> comp.os.linux.setup:534874 comp.os.linux.advocacy:1857523
>>>
>>> This is more a privacy question but I could not figure out a forum for
>>> it.
>>>
>>> Given that one can track IP addresses of people that visit a website,
>>> and given that IP addresses of all mail, including Usenet posts, is in
>>> the header, is there an automated way of checking all Usenet posts by
>>> IP address? To see if a particular poster who visited a particular
>>> website also posted certain messages on Usenet or elsewhere? This
>>> would be done by the webmaster of the website visited. Is there a
>>> program to do this? Not manually, which anybody can do, but a
>>> software program.
>>>
>>> I recall years ago some stock forensic accounting firm working with
>>> the US SEC developed some kind of software--or was it off the shelf?
>>> that's my question--that allowed you to tell, by comparing IP
>>> addresses as well as sentence syntax (sentence syntax is difficult, so
>>> it was probably a custom program) who (by IP address) posted what on
>>> various penny stock bulletin boards and chat rooms. Then they were
>>> able to subpoena the internet provider to find out the real world
>>> identity of the particular person who had that IP address assigned to
>>> them on a particular day of a certain posting (assuming it was not a
>>> permanent static address).
>>>
>>> RL
>>
>> *Some* servers include the IP address of the poster in the header
>>
>> Your post's header had this line in it
>>
>> NNTP-Posting-Host: 94.71.18.120
>>
>> which, unless it was spoofed, should be your address...
>>
>> Not all servers implement this feature so some postings are less traceable.
>
> Easily spoofed of course.

Yes... mine has been spoofed on a number of occasions by trolls masquerading
as me. For a while Carroll and crew were posting under different names with
my IP address... and then claiming to be my wife and the like. Utterly
repulsive behavior.


--
[INSERT .SIG HERE]

Claude V. Lucas wrote:
> *Some* servers include the IP address of the poster in the header
>
> Your post's header had this line in it
>
> NNTP-Posting-Host: 94.71.18.120
>
> which, unless it was spoofed, should be your address...

Unless he is using a proxy. In that case it is the proxy's IP that the nntp
server will see and put in the header.

> Not all servers implement this feature so some postings are less
> traceable.

Regards.

On Mon, 03 Jan 2011 17:37:50 +0100, Hadron wrote:

> Snit <(E-Mail Removed)> writes:
>
>> Hadron stated in post ifstms$c10$(E-Mail Removed) on 1/3/11 9:32
>> AM:
>>
>>> (E-Mail Removed) (Claude V. Lucas) writes:
>>>
>>>> *Some* servers include the IP address of the poster in the header
>>>>
>>>> Your post's header had this line in it
>>>>
>>>> NNTP-Posting-Host: 94.71.18.120
>>>>
>>>> which, unless it was spoofed, should be your address...
>>>>
>>>> Not all servers implement this feature so some postings are less traceable.
>>>
>>> Easily spoofed of course.
>>
>> Yes... mine has been spoofed on a number of occasions by trolls masquerading
>> as me. For a while Carroll and crew were posting under different names with
>> my IP address... and then claiming to be my wife and the like. Utterly
>> repulsive behavior.
>
> Sounds like the kind of thing HPT gets up to too.

Yea.
HPT is always slithering around stalking people.

Juan stated in post (E-Mail Removed) on 1/3/11
10:26 AM:

> On Mon, 03 Jan 2011 17:37:50 +0100, Hadron wrote:
>
>> Snit <(E-Mail Removed)> writes:
>>
>>> Hadron stated in post ifstms$c10$(E-Mail Removed) on 1/3/11 9:32
>>> AM:
>>>
>>>> (E-Mail Removed) (Claude V. Lucas) writes:
>>>>
>>>>> *Some* servers include the IP address of the poster in the header
>>>>>
>>>>> Your post's header had this line in it
>>>>>
>>>>> NNTP-Posting-Host: 94.71.18.120
>>>>>
>>>>> which, unless it was spoofed, should be your address...
>>>>>
>>>>> Not all servers implement this feature so some postings are less
>>>>> traceable.
>>>>
>>>> Easily spoofed of course.
>>>
>>> Yes... mine has been spoofed on a number of occasions by trolls masquerading
>>> as me. For a while Carroll and crew were posting under different names with
>>> my IP address... and then claiming to be my wife and the like. Utterly
>>> repulsive behavior.
>>
>> Sounds like the kind of thing HPT gets up to too.
>
> Yea.
> HPT is always slithering around stalking people.

Look at the list of quotes he has *about* me... scavenged over many years
and many are out and out forged (from Carroll socks and the like). He does
that because he *knows* he cannot show me doing as he accuses.

It is reprehensible on his part.

Then again, the fact he and his cohorts target me to such an extent is proof
they know I am right ... or at least mostly so ... in what I write and that
I support my views well. There is no other reason for them to obsess about
me so much.


--
[INSERT .SIG HERE]

On Jan 3, 6:24*pm, Snit <use...@gallopinginsanity.com> wrote:

> I have, in my logs, the names of some of the folks in COLA/CSMA labeled.
> For example, Steve Carroll used to claim to never visit my site - so I
> labeled his IP address. *His name pops up in my logs... and he visits often.
> I also get visits from others in his area (the IP address can show where
> someone is from). *He likely goes to neighbors and the library or wherever
> to view my site.
>

Just visited your site. So I see now why you're against Linux.
Indeed, it would give people without any medical problems a heart
attack, anxiety attack or worse (like epileptic fits trying to install
it). Makes sense.

RL

On Jan 3, 6:25*pm, Lusotec <nom...@nomail.not> wrote:

>
> I use a anonymizing proxy to post in Usenet, so even if some header has aIP
> it will be the proxy's IP and not the system's IP I'm posting from.
>

Good for you Lusotec. You must be really controversial to use an
anonymizer for Usenet...I'll look for your posts in the future.

You advocate Linux I recall... ah, yes, that's why you use an
anonymiser... you and Osama bin Laden have something in common.
Terrorists, in the eyes of all law abiding MSFT Windows users! ;-)

RL