When you are assigned an IP address by your ISP it does pinpoint you to a geographical location as they know what end node was assigned that ip address. The then cross reference that with their accounting database and they have your address.
Printable View
When you are assigned an IP address by your ISP it does pinpoint you to a geographical location as they know what end node was assigned that ip address. The then cross reference that with their accounting database and they have your address.
Dumbass.Quote:
Originally Posted by Net2Infinity
The IP still does not identify you geographically.
It is no different than a phone number... just because you can look up the address it goes to, does not mean that there is any relation between the address and the assigned phone number, short of a very general location.
That is correctQuote:
every mail sent ( by any computer using whether an pc or laptop , using either lan,internet connection or wireless connection) has an ip address i.e. from which ip address it is origianting or sent to any body.
from this ip address one can find out the exact location of the ip address.
as all ip address are registered.
That is also correctQuote:
When you are assigned an IP address by your ISP it does pinpoint you to a geographical location as they know what end node was assigned that ip address. The then cross reference that with their accounting database and they have your address.
However, both premises are oversimplifications, as they are only a partial view of the real World of the internet.
In the first proposition, it is true that the contact can be resolved to the IP, but that will normally only get you as far as the provider (ISP). You would need access to the ISP's logs and other records to get any further.
So, this (the ISP logs) will get you as far as a compromised machine, a wireless hotspot, a public library............... but no idea of the identity of the user at that point in time.
In the second proposition, there is an underlying assumption that the ISP actually "knows" the user.
Certainly, they will know who the provided the service and IP address to, at that point in time, but how useful is that?.
1. Compromised computer
2. Stolen identity
3. Free wireless node
4. Unsecured wireless node
5. Public Libraries
6. False name and address to open a genuine account
7. Internet cafe
8. Anonymous proxy
9. Webmail providers
10. Anonymous mailers
and so on........................ sure they all point to somebody, but to who? ......... not the person who actually did it :D
Nihil, there is still a critical distinction between being able to pinpoint a geographic location from an IP, and being able to subpeona some records as to what physical location recieved that IP.
THe fact of the matter is, the IP does not resolve to anything more than a very general area, if that is even correct. The fact that you can get ISP records to match it with a physical location is another matter entirely, that has nothing to do with the addressing scheme.
Not clarifying this, only perpetuates the myth that an IP is some "magicaL" address that needs to be kept "secret" at all costs. It is simply a network address... nothing more, nothing less.
Quote:
Originally Posted by D0pp139an93r
How does this make me a dumbass? Heck you agreed that I was right ... lol.
You are correct that people shouldn't perceive an IP address as a guarded secret.
That is exactly the point I was trying to support your argument on. The first poster was talking about the first point and the second about the records trail? Obviously they are separate concepts, though might be connected, given the right circumstances?Quote:
Nihil, there is still a critical distinction between being able to pinpoint a geographic location from an IP, and being able to subpeona some records as to what physical location recieved that IP.
Let's try some examples that people can look at for themselves? [ Sorry for those who know all this, but we do have students, newcomers to the subject, and the like who might benefit from developing this discussion a bit further]
My provider is BritishTelecom, I guess they are the largest in the UK. As my profile states I live in Bridlington............. that is on the bit to the left of this post, and in my profile.
It is a town of about 32,000 on the East Coast of Northern England (about half way up, and on the right, to our putative US Army types :lildevil:)
My IP address is : 81.152.9.99
Now, just go check that:
Here are some links to tools and resources:
http://www.dnsstuff.com/
http://samspade.org/
Then look at a map of the UK :D
//aside
Any good links to lookup facilities that are current, folks? //
EXAMPLE #2
Try checking an AOL account e-mail. Because of their network architecture, you will be sent to one of their switching centres. No locational relevance; as they seem to use some sort of load balancing system (well that is a little while back, but the architecture is still there)
EXAMPLE#3
Road Runner........... (beep! beep!) that resolves to Virginia :D try it folks................
I am sure that fellow members will provide other examples?
Hey, Doppy, I guess this thread is talkin its way into "Forensics"? :D
I did not agree with you.Quote:
Originally Posted by Net2Infinity
Nihil... I've seen IPs resolve to completely different continents. :P
You agreed you can determine a physical address based on subpoenaing the ISP records for an IP address.
You have to subpeona the records because the IP does not correspond to a geographic location.Quote:
Originally Posted by Net2Infinity
Oh yes! ........... sometimes mine will resolve to Fernando del Rey (California?) which must be at least 6,000 miles away :DQuote:
Nihil... I've seen IPs resolve to completely different continents. :P
Another thing to consider is the ISP's architecture and modus operandi. The closest you would get to me is about 70 miles, as that is the nearest "node", but a lot of ISPs have some sort of load balancing, so you don't always get connected to the same node.
Yes, the point I would make is that although you appear to get a geographic location, it is actually an administrative address belonging to the ISP, and NOT the user.Quote:
You have to subpeona the records because the IP does not correspond to a geographic location.
Basically, the internet was designed for communication, rather than traceability. In that respect it is rather like snail mail........... you can initially tell the sorting office that processed the item, but that is all.