Security Basics mailing list archives

RE: Nmap Online

From: "Shain Singh" <shain.singh () aapt com au>
Date: Tue, 5 Dec 2006 18:56:15 +1100

the_loser55 () hotmail com wrote:


Great site. I really like having web-based nmap access. I 
have one question though. In the your ip box on the top of 
the page it show my firewall ip and local ip. I have seen 
sites as whats my ip that will show my firewall ip but how 
does it know my 192.168.1.205 ip address? How does this pass 
my firewall and obtain my private ip address.


Have a Google for the HTTP_X_FORWARDED_FOR that can be used in Apache. It
can be forged, but is still a fairly reliable method of getting client IP
addresses.



--
Shaineel Singh
MakePeace Media LTD
 
http://mpm.org.au/shsingh
pgp id:  0xA9D8D351
fp: 38 0D A8 C8 74 A2 33 5E CE 0E 5A FA D5 A0 04 7C
 
This message was written entirely with recycled electrons.


---------------------------------------------------------------------------
This list is sponsored by: ByteCrusher

Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.

http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
---------------------------------------------------------------------------

Current thread:

Re: Nmap Online ascii (Dec 01)
- <Possible follow-ups>
- Re: Nmap Online Cor Rosielle (Dec 01)
- Re: Nmap Online Zapotek (Dec 01)
  - RE: Nmap Online Tony Mihaljevic (Dec 04)
    - Re: Nmap Online Tasos Laskos (Dec 04)
- RE: Nmap Online Shain Singh (Dec 06)
- Re: Nmap Online Craig Van Tassle (Dec 06)
  - Re: Nmap Online Sean Swayze (Dec 07)
    - RE: Nmap Online Shain Singh (Dec 12)
    - Re: Nmap Online Sean Swayze (Dec 12)
    - RE: Nmap Online Shain Singh (Dec 12)
- RE: Nmap Online Dolan, Patrick (Dec 06)
  - Re: Nmap Online etropos (Dec 07)