Hi people,I was wondering if there is a program out there that can hide my ip address.I hate it when I go to a web site like grc and it shows my ip address...any help appeciated....
thks yanner :confused:
Printable View
Hi people,I was wondering if there is a program out there that can hide my ip address.I hate it when I go to a web site like grc and it shows my ip address...any help appeciated....
thks yanner :confused:
Look up Proxy servers on google. A proxy server acts as a middle-man that connects to the website itself. Requests go from your computer (IP), to the proxy, then the request goes from the proxy (proxies ip) to GRC.com. Grc.com sends the data to the proxy, then the proxy sends that data to you. GRC.com will only see the proxies ip.
cheers
x
Umm...try a proxy. I'm not sure if you can FULLY hide your ip. The website can tell your ip because you have established connection to it on port 80 or one of the other webconnection ports.
Thanks for your time~
Proxy is probably as good as you're gonna get. The only other option is spoofing, which is beyond me, and requires a *nix, nt, 2000, or XP system. Any system with raw socket access made available to the user. Just try proxies, proxies have differing levels of privacy, one might not do anything, another may work wonders. There are also anonamizer services, though I do not know how reliable they are.
A good proxy program for free, you can give miltiproxy a try; (but i would read up on what proxys do and how they work first :)
www.multiproxy.org
Multiproxy doesn't seem to work anymore since I have the latest one and I've been trying to configure this thing for a whole hour. Don't know why, but it use to work before.
spoofing will get ya in hella trouble with ur ISP....remember, all that stuffs logged
I agree with bob, spoofing has no legal purpose behind it and will only get you in trouble. Proxies are legal and are good for anonymous surfing. IMO
x
Jus' as well, dunno how ta edit tcp packets anyways.
Corect me if I am wrong but not all proxys are anonymous, I think what you need is an anonymous proxy, this way the ip address in the outgoing packets from the proxy server is the ip address for the proxy and not your computer. But I think there are proxy servers which do not hide your actual ip address, I know that my ISP has a proxy server but it is not anonymous.
I totally agree that spoofing is NO GOOD!! And you will get caught thats why i said "read up on them" ...But if he really just wants to be a "bit" more anoymous while surfing a proxy would help a little. I didnt no multiproxy didnt work anymore... how about "the proxomitron" i heard good stuff about that... :)
Right up front, I have not tried this, but it may be a viable option in this situation. I have been told that Tiny Personal Firewall, offered by www.tinysoftware.com , has the ability to mask your IP addy. Again, I haven't tried it personally but I do consider the gentleman who gave me this information to be fairly reliable. I hope this helped!!
Oh yea, I forgot to mention NAT (Network Address Translation). NAT is another way to hide your true ip. NAT is part of some hubs, routers, etc.. Basically the NAT device replaces your IP with its own. So do a google search on NAT as well.
x
Thanks People for all of your suggestions....I'll will read up on proxies and see if the can help...I have been using ZA along with my linksys router to hide it but it still will not mask it...time to go do some reading
thanks yanner
Uhh, Proxomitron is said to have problems. You can check it out yourself at: http://search.aol.com/redirect.adp?a...22%94%df%b4%7c
also if you go to altavista and click the translator type in your url
then altavista retrieves the page for ya kinda like a free proxy
yeah, Good work ele5125.
i totally agree with it.
proxys are anonymous,so get anonymous proxy, this way the ip address in the outgoing packets from the proxy server is the IP address for the proxy and not your computer. But I think there are proxy servers which do not hide your actual IP address.
Finally,i think there is a progra in which you can use to change ya identity of ya computer, i cant really remember the name right now, but will when i do will get back to you.
it's me V-I-R-U-S.
Wow, I see a lot of bad advice along with a lot of misleading statements and just general misunderstanding flying around here.
Let's see if we can fix some of it.
1) Proxies are ONE way to hide your IP address, and probably the simplest. Hiding your IP address doesn't actually give you any real advantage though, because anyone with a simple portscanner can see your computer is up and connected unless you've got a well-configured firewall. Indeed, not all Proxy Servers are anonymous. Some are simply there to offer lower latency (and thus speedier service).
2) Spoofing the source IP address will not allow you to actually receive any information, therefore, it is not possible to use it to hide your IP address, and again therefore is irrelevant to this discussion.
3) Few, if any, ISPs log network traffic. If they did, they would have terabtyes of logfiles after only a day, possibly a week, depending on the size of the ISP. If you don't understand this, just get a linux box, put it on any network with even simple Win9x boxes, and run tcpdump, and you'll see what I mean.
4) A NAT device (AKA Router) is not an efficient way to hide your IP Address, mainly because you generally need to be plugged into the device. I'm unaware of any services that provide NAT for free (or for money, for that matter) online. If you have a cable or DSL 'modem', it is really simply a router, and all it does is NAT, as well as a few other simple things (DHCP, etc).
Actually I don't see the irrelevance of spoofing in this discussion, he said he wanted to hide hid IP, he never said what for. Second you don't actually know if they do or don't log network traffic, I am not saying they do, but perhaps they use some kind of monitor and log what it finds.
You can browse the Internet anonymously by using some legal anonymous surfing services. There are some sites that offer this for free. Its looks just like a search engine and you can type in the name of a site you want to browse anonymously and you will be sent there. you can use anon.de or
idmask.com
Actually, I've worked for an ISP, and know several people who work for various ISPs. Logging is most often seen as a waste of time, and the only time it's done is if someone is suspected of some kind of illegal activities.Quote:
Originally posted here by khakisrule
Actually I don't see the irrelevance of spoofing in this discussion, he said he wanted to hide hid IP, he never said what for. Second you don't actually know if they do or don't log network traffic, I am not saying they do, but perhaps they use some kind of monitor and log what it finds.
As I said, few, if any, ISPs log because it's just too demanding on their resources.
As for the spoofing his IP address, he did say for what. He said he didn't want it to show up on websites etc., therefore you know he wants to look at them, and spoofing your IP address won't let that happen...
> 2) Spoofing the source IP address will not allow you to actually receive any information,
> therefore, it is not possible to use it to hide your IP address, and again therefore is
> irrelevant to this discussion."
i know i'm going against the grain here (i'm generally the one discrediting spoofing)...but there _are_ methods/conditions that do allow for two-way communication under a spoofed address. it's not an impossibility, just an improbability, depending on external configurations and the resources at hand.
How does one "spoof" ip in windoze Xp? Do you have to download a program or change some settings?
If you establish two-way communication using a spoofed address, then the address is no longer 'spoofed', it is your real address, or at least an acceptable borrowed address. In either case, the data can be tracked back to you.Quote:
Originally posted here by droby10
i know i'm going against the grain here (i'm generally the one discrediting spoofing)...but there _are_ methods/conditions that do allow for two-way communication under a spoofed address. it's not an impossibility, just an improbability, depending on external configurations and the resources at hand.
Spoofing both doesn't work a lot of the time, unless your ISP is total crap, and also isn't a 'good' thing. The only real reason you'd want to spoof your source IP address is if you were trying to launch some kind of illegal attack on another computer. In any event, I don't know anyone here who would answer your question.Quote:
Originally posted here by shelobo
How does one "spoof" ip in windoze Xp? Do you have to download a program or change some settings?
but moving farther up you admitted that...Quote:
If you establish two-way communication using a spoofed address, then the address is no longer 'spoofed', it is your real address, or at least an acceptable borrowed address. In either case, the data can be tracked back to you.
so i guess my question is then what measures would you employ to track the original source? every log on a target service contains invalid references to another host (the spoofed address) and if a no-logging by default attitude is taken by the provider, where would you move from there to gather information that would provide a valid origin?Quote:
Actually, I've worked for an ISP, and know several people who work for various ISPs. Logging is most often seen as a waste of time, and the only time it's done is if someone is suspected of some kind of illegal activities.
Notice the word 'CAN' in that sentence. It is possible that it can be tracked back to you, not that it is.
The whole idea of spoofing and receiving a reply is bollocks anyways, it isn't spoofing at that point.
good point, an oversight on my part.Quote:
Notice the word 'CAN' in that sentence. It is possible that it can be tracked back to you, not that it is.
care to clarify the difference? the only reason i'm hounding about this is because of the lack of clarification around the term. i know you're probably thinking "no it's just you that lacks clarification on the term" and that's fine...i'll be the first to admit when i'm wrong. but first you're going to have to provide evidence that contradicts the validity between blind-spoofing and two-way spoofing.Quote:
The whole idea of spoofing and receiving a reply is bollocks anyways, it isn't spoofing at that point
i guess there's not going to be any takers, so i'll pick it back up by explaining spoofing in the light of both possibility and probability. i've argued it from both angles and usually take a similar stance to the one presented by chsh - but with less definative terms. i'll pre-empt this with the notion that i'm not here to discredit anyone in any of their statements. but i do hope to open the minds of those who give the impression that ip spoofing is always one way; or isn't possible in the realm of tcp.
spoofing can fall into several categories; with relation to the thread topic we're talking about ip spoofing. this, in it's most basic form, means providing false information for the source address in ip headers. this can be very useful/dangerous with connectionless transports and control messages (ie. udp, icmp, igmp, etc.)...and even more dangerous when used successfully in tcp communications.
what some have stated is that spoofed transactions are one way; being from the host providing the false information (we'll say a 'client') to the host receiving the false information ('server'). if a response is required from the server, it's going to go to the address that was provided by the client - in the case of spoofing this wouldn't be you it would be the spoofed address. with this understanding, you could feasibly forge requests to dns services, but you wouldn't get the responses back.
the measures that go into connection-oriented transports (ie. tcp) make spoofing a much more difficult task, by itself. in order to establish and carry on tcp communications, the forging host must be able to predict the isn (initial sequence number) of the server's response [which under our current assumptions isn't possible because they're going somewhere else]. a few years back, isn prediction was relatively easy - some tcp/ip stacks even used a static increment for each requested connection. so by querying the service to retrieve an isn value, you could immediately follow up with a spoofed connection request with the predicted next isn. again this was still a one-way communication; so multi-transactional tcp connections that were spoofed were considered 'blind': they required quite a bit of premeditation, and even then had a pretty shotty success rate. when it finally became widely known that this was a vulnerability, network stacks were implemented with more sophisticated algorythms for generating isns. because of this change, most, including me, will tell you that tcp spoofing with isn prediction is no longer a feasible. but that's not to say that it can't be done - the odds are simply against it right now.
so we've summed up why there is a strong position that spoofing in general is one way. and we've calculated against tcp spoofing as we cannot read the isn's and isn prediction requires time, energy, and precision that don't exist in tcp communications.
===============================================================
but, there is always more than one approach to any problem. internets are still based on routing and router discovery protocols (rip, ripv2, bgp, ebgp, rdp, etc.) and network protocols (ip); combined they provide smart failovers for traffic flooding, control messages to indicate status, utilize connectionless one-way communications to transmit said messages, play by the rules (rfcs), and listen to what they are told by trusted and neighboring hosts. route redirection/manipulation can come in many shapes and sizes; and i'm not here to discuss each one at length. but they do exist, this is a known encompassing vulnerability; which does yield the ability to spoof any host in the effected routable area _and_ receive the replies - in addition to a whole myriad of other types of attacks.
as users there's really not much you can do on your end because the attack is not based on anything within your control.
but, if you own or manage a filtering router/firewall, it might be worth the time to do some homework on filtering by ip source routing options, as this will deter some of the more common and less distinguishable methods used to determine remote routes (ie. tracerouting through an external source). i would also read up on enforcing locale isolations for rip/bgp broadcasts, router solicitations and advertisements, in addition to the filtering of icmp source-quench and route/host-redirect messages.
=================================================================
that's it i'm done...questions and comments are welcome as always.
A better, yet expensive way is to install a firewall and assign an NAT address between the proxy or ISP and your machine.
Big Bucks expense as you need at least 3 machines to do this.
I never asked how I could "spoof" MY Ip!! I asked how it is done as In several chat's I see some saying that they have "spoofed"THIER Ip.I only asked because I wanted to know IF they was b/sing me or what.Simple question.Because many say they are "unhackable" due to the fact they use Xp.Only one way to find out IF they are b/sing is to ask people with "KNOWLEDGE"I won't ask such a dumb question again.T/Y/V/M tho
Very true, which was why I said it was irrelevant in the first place. :)Quote:
Originally posted here by shelobo
I never asked how I could "spoof" MY Ip!! I asked how it is done as In several chat's I see some saying that they have "spoofed"THIER Ip.I only asked because I wanted to know IF they was b/sing me or what.Simple question.Because many say they are "unhackable" due to the fact they use Xp.Only one way to find out IF they are b/sing is to ask people with "KNOWLEDGE"I won't ask such a dumb question again.T/Y/V/M tho
People who claim they are unhackable because they use Windows XP are idiots. There are already about a dozen or more vulnerabilities in XP (UPnP had three patches the day the boxes hit the shelves). It's well on track to becoming the next Win2K (something like 300+ vulnerabilities and counting).
With the way the internet works, if you surf to a website, they will know your IP address.
Proxy server would be the way to go. The only problems I forsee are. There pretty much has to be a second machine in the mix, and it will have to have 2 NIC cards one for your REAL IP address, and the other to pass out the private IP addresses for you "Network". The other problem I see is that most ISP's provide IP addresses Dynamically which mean you dont have the same IP adddress for too long and this poses a problem for your proxy server which needs a STATIC IP address. You can get static IP addresses from most ISP's but at a price.
Do you really need to hide your IP that bad in a home environment?
Any thoughs are great.
very true also..
First off shelobo there is no such thing as a dumb question. Well actually there is, it is one that is left unasked. As far as answers go there can be some that are misinformed.Quote:
Originally posted here by shelobo
I never asked how I could "spoof" MY Ip!! I asked how it is done as In several chat's I see some saying that they have "spoofed"THIER Ip.I only asked because I wanted to know IF they was b/sing me or what.Simple question.Because many say they are "unhackable" due to the fact they use Xp.Only one way to find out IF they are b/sing is to ask people with "KNOWLEDGE"I won't ask such a dumb question again.T/Y/V/M tho
DHCP is used to dynamically serve IP addresses. The M$ DHCP server keeps track of the IP addresses it doles out for a determined length of time. (Determined by the SysAdmin) I am sure that most *nix boxes do the same however, I have never used that server so I couldn't tell you with authority. Perhaps someone else can.
If you find someone's IP address you can easily find out who the address belongs to. Not the individual that is using it but the ISP that is serving it. You can find the ISP by using a WHOIS server such as the one found at:
http://www.geektools.com/cgi-bin/proxy.cgi
Then you can go to that ISP and ask who is/was using an IP address at a given point in time. Most likely you will not get that info from the ISP unless you are with the the Police or FBI or some other government agency. I could go on but this really isn't the correct venue for such a lengthy discussion.
As far as the other ideas about having additional equipment such as a router, a firewall or a proxy server, while technically correct you can hide your "computer" IP address from the internet, one of those devices will still have an IP address and that IP address is yours as you got it from your ISP. So realistically you are not hiding your IP address nor are you spoofing an IP address
If someone is telling you that they are spoofing their IP address while they are online. They are b/sing you. It isn't considered spoofing at that point it is actually surfing anonymously. There used to be websites that would allow you to surf anonymously, I don't know if they are still around though.
As far as "unhackable" goes...the only true way to be unhackable is to not be online in the first place.
Thank you woody for a "nice" reply.I often wonder when i have been told or seen chatters say they are "spoofed' just what they meant.You answered my question very nicely.Thank you
I don't know why anyone would want to use a proxy to hide their ip address, though. I mean, all they can do is a whois, and a portscan if they do get it. But, if you've been bad, they can track you down via your ISP, and even if you do use a proxy, it just makes it harder to track you down, and probably not much harder. But, if you didn't do anything bad, what's the sense of doing that?
Poor Yanner!
Talking about digression. Some of you made some very nice points, but whatever happened to the original question. Yanner try GhostSurf 1.7 at Major Geeks.com. It's shareware. Try it out, if you like it -by it. Some nice features.
http://www.majorgeeks.com/article.php?sid=1278
[glowpurple]Cheers.[/glowpurple]
I can see the front page: Man sent to the pen because he did a SPOOFY!!!!!!!!!!:)), ... Sorry, just wanted to be funny here :D
Proxy servers really are the way to go, but if you're thinking about hacking a machine proxies won't help. All they have to do is check through the proxy's logs.
That might stop a script kiddie, which is most likely the only person trying to do anything to your machine anyway. Your computer probably isn't a server or hold any large amounts of valuable data.
Those people may be using BNCs or vhosts to hide their host name/IP address. They are bs'ing you. I know that it is possible to have 2 way communication when spoofing an IP as my friend was showing off to me, though he can't do it for anything as complex as web surfing. And as for proxies, here is the thing. Like chsh said, not all hide your IP address. The ones that do not are called transparent proxies and the ones that do are called non-transparent proxies. Maybe a search on google would yield some non-transparent proxies for you to use. And as for tiny hiding you IP address, I have used tiny and I have never seen it hide my IP address, I have tried going to sites and seeing if tiny made my machine use some kind of proxy or something in an attempt to see if it was trying to hide my IP address, well, nothing. I didn't think it would have.Quote:
I asked how it is done as In several chat's I see some saying that they have "spoofed"THIER Ip