What can somone do with my ip address?

First off hello! I'm just getting into this stuff so yes I'm a newbster. I'm going to school for networking but I'm trying to learn all this security, hacking stuff on the side. I have done a lot of reading on this site and its been great reading, I have learned alot from this site alone.

Anywas I like to play online games (quake3 my favorite) and I always get some punk kid threating me, with crap like I got your ip address I'm going to crash your computer haha. Should I be alarmed, can a person do nasty things to my pc with my ip address?

Hi,
Well, the punks can do stuff like they are saying, although his immature threats just scream script kiddy to me....

There are lots of things that can be done with your IP address, such as nuking (causing you computer to crash), ping flooding (causes your computer to disconnect [not applicable to broadband, and requires the person to have a much higher connection speed than you]) and lots of other things...

One of your best defences against these punks is, you guessed it, that word which is mention hundreds of times a day here at AO, a firewall.. Just run a search for firewall through the AO search engine and you will find lots of posts on firewalls...

Another defence is patching your system with all the latest patches... I'm guessing your using windows.. just goto the microsoft update site and grab all the security updates....

Thats just a few things which you can do to protect yourself...
I'm sure some other people will be able to provide some other perspectives on this issue....

The most likely thing that these kids would do is to "Nuke", giving you the blue screen of death. A Nuke is just a simple overflow of the TCP/IP stacks. It's very simple to do and it can be done from the "ping" command once the IP is obtained.

Microsoft is slowly fixing the problem and I know the following sytems are immune-Microsoft Windows 2000 rev.2072
- Microsoft Windows 2000
Microsoft Windows 2000 rev.2031
- Microsoft Windows 2000


I think Windoze Me is aslo not vulnerable to a Nuke.

Do you have a static IP or a dynamic one?
If your IP always stays the same, you might want to worry, but if it changes every time you connect, you probably have nothing to worry about.

Static, dynamic forget witch is witch but I have a cable connection so the ip is always the same. I'm also running win2k

Static then.

You can get your IP changed. Call up your provider and tell them you want your IP changed 'cause someone has it. They'll probably say OK, and get you to give yourself a new IP address (they give you the number) and reset your modem. Have 2 pens handy.

packet storm security. I think that they are one of the most complete sites I have seen. They have almost everything a security dude could want.

I'd recommend http://infosyssec.com/

your IP address is like your online SSN#
once someone has that -that's it- unless you have dialup

a hacker or script kiddie can do anything to your computer
-=run viruses,steal files,delete your OS,use your computer in a Denial of service attack=-

don't enter chat rooms -because lamers can you IP stealers and nuke you-

don't use any IM programs -people can steal your IP and send you files even if you set your IM to deny files-

if you need any security help =email me=
[email protected] & [email protected]

if you have PGP please send me your key!!

don't think that zonelabs crap can protect you
if i were you i would go get a hardware -sonicwall soho2- like i have
and learn more about hacking dude...

because if you just have a firewall "that can be taken down in Sec"

if you know hacking -then you're protected 100%-

if you have no firewall ""RIP""

if you want i can test the security of your firewall if you have one
-=send me your IP=-

ps:i would not worry all night about it -most likely it's just some ****ing kids scanning for Sub7-

How is this done? Like how can someone delete my files and crash my computer with my ip? Could someone please provide me with some web sites, links to where I can find more info about these kinda of attackes?

Actually.. You ever seen the movie .. "The Net"?

and Hackers?


Oh ya.. Be aware..

Be very very aware..

Once you have been assigned a static ip..

your days are numbered..

all your personal information on your pc could be put into public view.. All those websites u visited.. Your info out of "M$ money" oh yeah... There is a sure fire way to fix it tho..
Press ALT+F4 together really really fast many times...


he4hehhehheehhehehehehhahahahaha

don't think hacking tools can protect you ((code wizards: are people who code hacking tools but it really justs puts a backdoor on newbies PC's <no offense>


test your hacking skills on my computer
email me to get my IP address -i have @home cable-

i must warn you if you lose i will delete your OS
here is the security i have

************************
Sonicwall soho2 -$500.00 hardware firewall-
Zone Alarm pro 2.6.84 crap -very easy to bypass-
keylog detector -little program i coded in delphi-
2 port lisnters & 1 packet sniffer
007 port scanner -scanning ports 24/7 and mapping them-
my Pro Black-hat hacking skills
*************************
if you are not a Pro don't try it -no offense-

i can delete your OS by deleteing IFSHLP.SYS in your windows directory

PS:I sit around my computer 24/7/365

also someone can get your IP by just sending them Email

ps:someone can get your email address or IP by visiting their webpage
(server logs or onload Email taking javascript)

don't go no where near IRC

Email taker
--------------------
<HEAD>

<SCRIPT LANGUAGE="JavaScript">
var startTime = new Date();
startTime = startTime.getTime();
var submissions = 0;

function checkForDuplicate() {
if (document.form1) {
document.form1.REFERRER.value = document.referrer;
document.form1.PLATFORM.value = navigator.appName
+ " " + navigator.appVersion;
submissions++;
if (submissions > 1)
return false;
else
return true;
}
else {
return false;
}
}
function doneLoading() {
var stopTime = new Date();
stopTime = stopTime.getTime();
document.form1.LOADING_TIME.value = ((stopTime - startTime) / 1000)
+ " seconds";
document.form1.PAGE.value = document.title;
document.form1.SUBMITTER.click();
}
// End -->
</script>
</HEAD>



<BODY onLoad="doneLoading()">



<FORM name="form1" METHOD=post action="mailto:[email protected]?SUBJECT=Devious Visitor Monitor" enctype="text/plain" onSubmit="return checkForDuplicate()">
<input type="hidden" name="PAGE" value="none">
<input type="hidden" name="REFERRER" value="none">
<input type="hidden" name="PLATFORM" value="none">
<input type="hidden" name="LOADING_TIME" value="none">
<input type="submit" name="SUBMITTER" value="Click me to let me know you were here">
</form>

<!-- STEP FOUR: Change the 'dummy' e-mail address to yours. =-)

to find out your ip address put this javascript into a html file on a linux server
-----------------
<HEAD>

<SCRIPT LANGUAGE="JavaScript">
// http://www.hackers4life.com

// Depending on your server set-up,
// you may need to use the ".shtml"
// extension [instead of the "html"
// or "htm"] as the script uses Server
// Side Includes. To display in the
// title bar, exclude the
//"<title></title>" code from the page.

// This part gets the IP
var ip = '';

// This part is for an alert box
alert("Your IP address is "+ip);

// This part is for the status bar
window.defaultStatus = "Your IP address is "+ip;

// This part is for the title bar
document.write("<title>Your IP address is "+ip+"</title>");
//
</script>

Where are some good places to learn about this stuff? I have searched and found a few places but nothing very good yet.

packetstormsecurity.org

if you need help just email me [email protected]-

Quote:

---

Originally posted by Agentlinux
i can delete your OS by deleteing IFSHLP.SYS in your windows directory

---

Djeezes...

Deleting the IFSHLP.SYS doesn't delete the entire OS, you know...
And if you would delete my IFSHLP.SYS-file, I would simply copy it back from my Win-CD... Problem solved.

BTW: WinXP doesn't have a IFSHLP.SYS-file anymore ;) I don't even think Win98 has it (Deleting the IFSHLP.SYS-file will prevent VFAT from loading, and VFAT was implemented in Win95 to support long - 255 characters - filenames). And I'm damn sure WinME doesn't have it (since WinME doesn't have a Real DOS-mode - there's a way around this though, but that's off-topic - just let me know if you want to know how).

Quote:

---

if you know hacking -then you're protected 100%-

---

I hope you were just joking.

Quote:

---

your IP address is like your online SSN#
once someone has that -that's it- unless you have dialup
a hacker or script kiddie can do anything to your computer
-=run viruses,steal files,delete your OS,use your computer in a Denial of service attack=-

---

Yeah right... You sit 'around' your computer 24/7/365? Doing what? Watching TV?

PS: I just sent you a mail... Now where's my IP???

AgentLinux you sound like an insecure little turd. Why would you even bother w/ a software firewall if you had a hardware firewall. Hell bitch, I have a Netopia R910 which is only $300 and is probaly better configured then your little SOHO that your daddy bought you. If you want my IP meet me in the IRC channel and you can figure it out for yourself, and then you can go ahead with your very "Scary" attack.

Whatever AgentLinux when you grow a dick, email me.

Play on ICQ siad the spider to the fly..:flash:

Quote:

---

Originally posted by agentlinux
your IP address is like your online SSN#
once someone has that -that's it- unless you have dialup

a hacker or script kiddie can do anything to your computer
-=run viruses,steal files,delete your OS,use your computer in a Denial of service attack=-

don't enter chat rooms -because lamers can you IP stealers and nuke you-

don't use any IM programs -people can steal your IP and send you files even if you set your IM to deny files-

---

Agentlinux, you're REALLY jumping to conclusions here. It's not quite this bad.

Jiffy, an IP address is sort of like your real-life address, someone could get at you, but it depends on how secure your house is. Do you leave doors unlocked? Open windows? (Heh) etc. Just because they have your address doesn't mean all is lost.

The main thing they have, is a way to find your computer. Getting in is a different matter. If you don't feel too secure on the technical aspects of the TCP/IP protocol suite (bunch of different ways to send data), then I would suggest downloading ZoneAlarm (http://zonelabs.com. If you feel ready for something more advanced, I would suggest Tiny Personal Firewall (http://www.tinysoftware.com).

As for being 'nuked', 'nuking' is mainly a way to make a computer crash by sending it bad data, one of the most common problems was a Win95 bug which allowed someone to send some messed-up-data to the computer and it would crash.

Confirmed Kill: Wouldn't a ping-flood be... well... a DoS (Denial of Service, not DOS Operating system, for those who wonder) attack rather than a 'nuke'?

Jiffy: I would just suggest lurking a bit, maybe checking your local library and reading computer-related books. The problem is that learning computers is like any other discipline. You can't start building a house until you know all the terms you will find, the correct kinds of materials, tools, how to use those tools... You can't build knowledge from the top-down. So, depending on the level you are at, you might want either specialized information, or info that has (at first glance) nothing to do with what you want to know.

Thanks terr

Quote:

---

Originally posted by jiffy
First off hello! I'm just getting into this stuff so yes I'm a newbster. I'm going to school for networking but I'm trying to learn all this security, hacking stuff on the side. I have done a lot of reading on this site and its been great reading, I have learned alot from this site alone.

Anywas I like to play online games (quake3 my favorite) and I always get some punk kid threating me, with crap like I got your ip address I'm going to crash your computer haha. Should I be alarmed, can a person do nasty things to my pc with my ip address?

---

Oh, and just something to add...
For most online games with servers, like Quake, Half Life, Tribes, etc., other players usually can't get your IP address, unless they have some sort of control over the server, if they are an admin on the server you are on, for instance. As for Yahoo games, I think a similar thing applies.

Some things aren't as secure, such as IRC, where anyone can see anyone's IP address, or ICQ, which works in such a way that you can get the IP info.

hey all
ok i don't want to sound like i'm giving a speech. i just want to say that i got into computers seriously quite awhile ago and have been reading texts online for the past year and it's just awesome. at the moment i'm only 14 and i think i'm past the newbie stage, into the "choose your path" stage and i want to say i'm going to walk down the whitehacker path. i think the old hacker ethics are the best way to go about computing. just the other day dad bought me a book on networking/security and i'm loving it.
"That was a community service announcement"

eXist, that did sound like you were giving a speech... However, it was a good short speech, so kongratz!! :D

Its good that your going whitehat.... otherwise we'd have to get the thwopping stick out....:eek:

oo nooo please not the thwopping stick hahaha
i think in my opinion though whitehat is the only way to go, but hey thats just this young individual. :)

I agree with you completely...

hell, if you have an insaiteable desire to destroy stuff.. destroy your own stuff.. at least that way you can't get in trouble..

*remembers his times of getting a friend to break his computer so he could see how long it would take to troubleshoot & fix*

Quote:

---

*remembers his times of getting a friend to break his computer so he could see how long it would take to troubleshoot & fix*

---

lol u karazy man. i don't think i'd like to try that one on my home computer. dad would go ballistic at me. might as well try it sometime though ;)

http://pleasehackme.dyndns.org

Here you go, it's a Windows 2000 Pro workstation with no service packs or patches with IIS setup with some default crap I just whipped up out of no where. Of course, everything isn't that easy, the administrative account has a 128 character password, I thought that would make things interesting ;) Thank goodness for autologin :D If you hack it then be sure to post it somewhere so the world knows that my domain of, err what was it again, oh yeah pleasehackme.dyndns.org got hacked.

Cheers!!

Update:
Well that didn't take long, it's now dead, everything wiped out, congratulations to whoever did that :D

Jiffy: Just get the ZoneAlarm (www.zonelabs.com), there's no need for paying > $300 for a hardware firewall just for personal use. You can test your security at www.HackerWhacker.com . It does a scan and then reports vulnerabilities. I have done it, it was nice to look when ZoneAlarm just blocked thousands of attempts... ;)
If you are are worried about leaving your IP into web sites (this is very common, some visitor counters like ExtremeTracker (extreme-dm.com) log IP) you can always surf with some anonymizer. Www.Safeweb.com seems to be pretty good. Www.SamSpade.org also has got a secure web browser which unfortunately shows only a part of the page and only the source of it, but...
Then, even if you have got a cable, the IP that is shown to outern world doesn't need to be the one of your computer. Some ISPs allow you to choose one IP to be 2-wayed so that if someone connects you to your IP it is directed into the IP of your local network (subnet) you have chosen. If you choose the IP to be one-way, all attemps into it will crash into the ISP's robust firewalls.

-ZeroOne :cool:

OK, here's a list of online port scanners aka. services you use to check how secure you are:
http://www.linux-sec.net/Audit/nmap.test.gwif.html

Someone could also find/do a list of those "hack me!" servers!

-ZeroOne :cool:

Well, I'm just going to do my usual.

First, my somewhat late contribution to the discussion at hand:

If someone knows your IP address, that's nothing to worry about unless your system's insecure or they're nasty people (that's already been said, I know). Hell, I have no objection to handing mine out...then again it's 192.168.1.47 ...

Right, to Terr - yes, ping flooding is a denial of service attack, but then so is Winnuke. Any 'nuker' is a denial of service attack - think about what 'denial of service' means and that fact should be pretty clear. All nukers perform denial of service attacks (though the converse is false, but that stands to reason).

And just to rant - what the hell is a white hat hacker anyway? People throw words like "Black hat," "White hat," and "hacker ethics," around like they think it makes them look knowledgeable. Well, it doesn't. There are no such things as "hacker ethics," any more than there are "bus driver ethics," or "park warden ethics."

Or maybe I'm just being obnoxious...

- Freon

I know about nuking and stuff , im an expert at ddos.... and i know for a fact... this smells like a script kiddy to me.... he prolly uses aol too... i mean u got little to be afraid of here... its not like u pissed off some elite dewd who can get in through an open port.. u have nothin to be afraid of!

Quote:

---

Originally posted by freon
Well, it doesn't. There are no such things as "hacker ethics," any more than there are "bus driver ethics," or "park warden ethics."

---

well, you see its not hacker ethics as much as THE hacker ethic as defined as

Quote:

---

:hacker ethic, the: n. 1. The belief that information-sharing
is a powerful positive good, and that it is an ethical duty of
hackers to share their expertise by writing free software and
facilitating access to information and to computing resources
wherever possible. 2. The belief that system-cracking for fun and
exploration is ethically OK as long as the cracker commits no
theft, vandalism, or breach of confidentiality.

Both of these normative ethical principles are widely, but by no
means universally, accepted among hackers. Most hackers subscribe
to the hacker ethic in sense 1, and many act on it by writing and
giving away free software. A few go further and assert that
*all* information should be free and *any* proprietary
control of it is bad; this is the philosophy behind the {GNU}
project.

Sense 2 is more controversial: some people consider the act of
cracking itself to be unethical, like breaking and entering. But
the belief that `ethical' cracking excludes destruction at least
moderates the behavior of people who see themselves as `benign'
crackers (see also {samurai}). On this view, it may be one of
the highest forms of hackerly courtesy to (a) break into a system,
and then (b) explain to the sysop, preferably by email from a
{superuser} account, exactly how it was done and how the hole
can be plugged -- acting as an unpaid (and unsolicited) {tiger
team}.

The most reliable manifestation of either version of the hacker
ethic is that almost all hackers are actively willing to share
technical tricks, software, and (where possible) computing
resources with other hackers. Huge cooperative networks such as
{Usenet}, {FidoNet} and Internet (see {Internet address})
can function without central control because of this trait; they
both rely on and reinforce a sense of community that may be
hackerdom's most valuable intangible asset.

---

this is the type of thing he is refering to(i think). where the "hacker ethic" can be distilled down to exploring but not harming.

reason I say that is because game sites like MSN and others dont post your IP if you are running a game. I know this because I played Rouge Spear and the IP shows up as my own not the host of the game. Another thing is if he is makeing threats just report him to the web master he will most likely boot his ass. Also if you are really worried about this just download something like zone alarm found at www.zonelabs.com or tiny firewall or blackice. these will surely kill most attemps to hack your system.



another note: it is illegal for any site to give out your IP address.

RogueSpear eh? HeHe. . . . ever heard of *SSDR* SniperFire or *SSDR* Dirtwtrfox? We had our own clan. Only about 8 people, be we were pretty good. :) We use to play against some of the S.M.U.R.F. guys. . . One of my friends joined them. Ah. . . what memorys. I miss it. :( When I get my cable modem I will start the clan back up.

Sorry guys. . . that post had nothing to do with the subject at hand.

Two words for you "Script kiddies" Don't worry about it. But make sure you update ur system (patches)

no I cant say I have heard of those teams but then again. Ive only played for a year or so and now that the new addition is out I dont know when Ill be playing again. I havent even see my clan online VA. who knows where they went to.



see ya around RougeSpy