IP address and backtrace

[Johnny]

Is the software that backtraces IP address information - postal address
etc - for arbitarily selected individual emails readily avaliable?
Cheers,
Johnny

 

[Conor]

Is the software that backtraces IP address information - postal address
etc - for arbitarily selected individual emails readily avaliable?[/QUOTE]

You'll only get as far back as the originating ISP and thats assuming
its not gone through an anonymouse remailer.

 

[Johnny]

Is the software that backtraces IP address information - postal address
etc - for arbitarily selected individual emails readily avaliable?

You'll only get as far back as the originating ISP and thats assuming
its not gone through an anonymouse remailer.
[/QUOTE]

eh? Certainly Prevx does better than that in the things it traces, as it
often gets postal address - so why shouldn't there be software of more
'unorthodox' origin that gets all the info on IP address? and what about
guys in this and in more specialist groups - I mean, do they have a
directory as to what the numbers in IP addresses precisely signify?

Johnny

 

[Ant]

Certainly Prevx does better than that in the things it traces, as it
often gets postal address

Usually available from "whois" records.

- so why shouldn't there be software of more
'unorthodox' origin that gets all the info on IP address?

You can get the info legitimately.

and what about
guys in this and in more specialist groups - I mean, do they have a
directory as to what the numbers in IP addresses precisely signify?

It all starts here:
http://www.iana.org/ipaddress/ip-addresses.htm

Apart from the various registries providing a web interface to whois,
there are useful sites such as this: <http://dnsstuff.com/> which
provide a few other on-line tools as well.

Many people use a whois program (or client) to get the information
about who owns an IP or domain. MS Windows doesn't come with one, but
there are plenty of free ones available.

 

[Max Mustermann]

You'll only get as far back as the originating ISP and thats assuming
its not gone through an anonymouse remailer.

eh? Certainly Prevx does better than that in the things it traces, as it
often gets postal address - so why shouldn't there be software of more
'unorthodox' origin that gets all the info on IP address? and what about
guys in this and in more specialist groups - I mean, do they have a
directory as to what the numbers in IP addresses precisely signify?
[/QUOTE]

Well, I've never heard of "Prevx", so I'll have to google it
later. In the meantime, the only postal address that you can
hope to get when tracing an ip address is that of the person (or
more likely, organization / business) that is assigned the ip
address block that it's a part of. to get more than that you
would need to contact the isp and have them go through their
logs and find out which of their customers were connected to
that particular dynamic ip address when the post in question was
done. This would probably take a court order or two.

Now if, Like this post for example, the poster is using an
anonymous remailer and a mail2news gateway you should save time
and give up now. their message arrives at the first remailer
and all their identifying info is stripped out, and then the
body is sent on.. this ususally involves a chain of 5 to 8
remailers. each one only knows about the one before it and the
one after. they do not keep logs, and messages are 're-ordered'
so that 'first in, first out' does not apply and there is also a
random delay at each step. the result is then (in the case of
this msg) sent to a mail2news gateway. the gateway verifies
that i have included a valid hashcash token and then passes the
msg on to usenet.

also, because the first hop (from my computer to remailer #1) is
sent via Tor, somebody packet sniffing my traffic wouldn't even
know that i was sending email, never mind to whom or the
content. All they can find out is that encrypted data was
exchanged with a tor server. because this is using ephemeral
keys, the session keys are destroyed after use, so session can
never be decrypted if snooped.

 

[Steve]

Is the software that backtraces IP address information - postal
address etc - for arbitarily selected individual emails readily
avaliable? Cheers,
Johnny

Johnny:

SamSpade.org
http://www.samspade.org/

Steve

 

[Steve]

Is the software that backtraces IP address information - postal
address etc - for arbitarily selected individual emails readily
avaliable? Cheers,
Johnny

Johnny:

SamSpade.org
http://www.samspade.org/

Steve

 

[Johnny]

A friend of mine was saying how he was reading a thread from a hackers' NG
in which a poster was bragging that he was anonymous; he said 'They can't
find out where my posts are coming from'. The reply he received was a post
giving his ISP, his postal address and his phone number, with just the
sentence appended 'Yes, they can.'.
J

 

[Anonymous via Panta Rhei]

A friend of mine was saying how he was reading a thread from a hackers' NG
in which a poster was bragging that he was anonymous; he said 'They can't
find out where my posts are coming from'. The reply he received was a post
giving his ISP, his postal address and his phone number, with just the
sentence appended 'Yes, they can.'.
J

Interesting claim.

This post is sent via a chain of anonymous remailers and a
mail2news-hashcash gateway.

Question: What is my I.P. address? or the name of my ISP?



-----BEGIN PGP MESSAGE-----
Version: N/A

qANQR1DDDQQJAwIWHnWUyXol32DSQAGa+yn5QLp8NCiwPcZYsM2tveuesWW3qglm
zqEl+0PCCpHCZbJdy6GnjuIaf5W1AMEbGzFYzOBX0lU0hJQwQJ8=
=HMuf
-----END PGP MESSAGE-----


~~~~~~~~~~~~~~~~~~~~~
This message was posted via one or more anonymous remailing services.
The original sender is unknown. Any address shown in the From header
is unverified. You need a valid hashcash token to post to groups other
than alt.test and alt.anonymous.messages. Visit www.panta-rhei.dyndns.org
for abuse and hashcash info.