Hi there,
I am posting to a web-based forum which runs on ASP and uses
JavaScript. I post via a proxy-server which rewrites JavaScript, does
not send cookies back to the forum server, and which changes its IP
address every few minutes within the whole class A network.
The moderator says he banned my IP address (let's put the moral issues
of it aside for the sake of the technical discussion). This means he
banned the whole network of the Class A, within which the IP addresses
of my proxy-server change. It is hard to believe, but it might be
possible. The strange thing is that when I try to do posting through
the proxy-server using the Firefox browser (which I traditionally use),
the forum server returns a message saying that I was banned from
posting. However I could make a posting using the IE6 web browser !
I have a hypothesis that the moderator bans not only my IP address. The
forum might send a JavaScript code to my computer, it computes a hash
based on the computer configuration (using the information about the
installed web browser as well), and sends this hash number (which is
unique for this computer system) back to the forum server. The postings
made with this hash are banned.
However, I looked through the JavaScript code by my non-specialist eye,
and I could not see anything suspicious. Can someone comment on how
this ban was possibly done (and how to overcome it), or at least direct
me at the Internet resource where I could read more ? Thanks.
...
5  2125 
flash objects are a good way to store persistent data on a client
machine. much better than javascript.
You haven't given anything like enough info though to be definite about
the method used in this case however and I'm just guessing.
I find it hard to believe that a proxy with "changing" class A IP,
would be rewriting javascript and not sending cookies, are you SURE
about that?
Anyway the solution to your woes is to use a proxy yourself, as well as
a packet sniffer. If you liek writing c# you could code a filter into
fiddlertool and proceed from there. As with all web traffic it is
entirely possible for you to stop ANY prevention mechanism he uses, you
just have to know how. However if you do so, despite his warnings, you
may well be in violation of real world law, so dont use any techniques
for bad.
When posting an ASP page, quite often the viewstate function which is a
blunt and bloated thing, can be hijacked to send more data about you,
as it is needed to browse the site, my guess is that is where the
persistent data is being wrapped up and sent, look around for the code
that plugs into that.
In order for a hash to be used, it would have to be sent from YOUR
computer through the proxy to them, so you can see and stop it, unless
it is wrapped into the viewstate, or just appended.
shimmyshack wrote:
flash objects are a good way to store persistent data on a client
machine. much better than javascript.
You haven't given anything like enough info though to be definite about
the method used in this case however and I'm just guessing.
I find it hard to believe that a proxy with "changing" class A IP,
would be rewriting javascript and not sending cookies, are you SURE
about that?
I am using an anonymizer. That's what it does.
>
Anyway the solution to your woes is to use a proxy yourself, as well as
a packet sniffer. If you liek writing c# you could code a filter into
fiddlertool and proceed from there. As with all web traffic it is
entirely possible for you to stop ANY prevention mechanism he uses, you
just have to know how. However if you do so, despite his warnings, you
may well be in violation of real world law, so dont use any techniques
for bad.
When posting an ASP page, quite often the viewstate function which is a
blunt and bloated thing, can be hijacked to send more data about you,
as it is needed to browse the site, my guess is that is where the
persistent data is being wrapped up and sent, look around for the code
that plugs into that.
I am not an IT person. However, I found on the Internet that if
ViewState sends anything back to the forum server, then I should find
the following piece of code in the HTML webpage code:
<input type="hidden" name="__VIEWSTATE"
value="dDwxNDg5OTk5MzM7Oz7DblWpxMjE3ATl4Jx621QnCmJ 2VQ==" />
In the forum's code, there is no mentioning of "ViewState". Does that
mean that this is not the culprit ?
Any other suggestions ? (Thanks for those you gave, so far they were
the most informatve).
...
>
In order for a hash to be used, it would have to be sent from YOUR
computer through the proxy to them, so you can see and stop it, unless
it is wrapped into the viewstate, or just appended.
minnesøtti wrote:
Hi there,
I am posting to a web-based forum which runs on ASP and uses
JavaScript. I post via a proxy-server which rewrites JavaScript, does
not send cookies back to the forum server, and which changes its IP
address every few minutes within the whole class A network.
The moderator says he banned my IP address (let's put the moral issues
of it aside for the sake of the technical discussion). This means he
banned the whole network of the Class A, within which the IP addresses
of my proxy-server change. It is hard to believe, but it might be
possible. The strange thing is that when I try to do posting through
the proxy-server using the Firefox browser (which I traditionally use),
the forum server returns a message saying that I was banned from
posting. However I could make a posting using the IE6 web browser !
I have a hypothesis that the moderator bans not only my IP address. The
forum might send a JavaScript code to my computer, it computes a hash
based on the computer configuration (using the information about the
installed web browser as well), and sends this hash number (which is
unique for this computer system) back to the forum server. The postings
made with this hash are banned.
However, I looked through the JavaScript code by my non-specialist eye,
and I could not see anything suspicious. Can someone comment on how
this ban was possibly done (and how to overcome it), or at least direct
me at the Internet resource where I could read more ? Thanks.
..
Nah, I doubt it could be JavaScript alone that is doing it.
It's not that powerfull, try disableing JS and see what happens.
I would say it's done useing a server side script and a Cookie placed
on the clients web browser, the cookie would contain the IP addie and
the web browser, so just delete cookies and refresh the browser a few
times before posting, I bet you that it works.
--
Regards Chad. http://freewebdesign.cjb.cc
I am afraid that in order to track down the reason you will need to be
an IT person, you will need to know not just what anon. says it does
but what it is actually doing, after all, you claim that anon. fails to
protect you when in FF, but somehow does in IE. This made me suspicious
that you were using anon. at all. I would question your info on other
grounds as well - how for instance does the forum keep track of who is
logged in, of your session - without using either javascript, headers,
a postback, hidden inputs on a form, or some other method that gets
through your anon. proxies - or you wouldnt be able to log in. And how
once you have logged in using IE can it let you post unless you use
another username - which again supports it being js. That is assuming
you log in of course, what self respecting forum owner attempts to ban
people when his forum requires no authentication!
You haven't given enough info I'm afraid, and the whole IE/FF thing
really says that it must be js, a web bug or flash. because there can
only be two other main reasons: user-agent, and different proxy IP. not
picked up by the forum for the duration of your IE session
the user-agent thing is too gross a solution,
the diff anon. IP would be a reason, but I assume youve tried it more
than once! so I discounted this.
It is probable that a decent forum owner bans many of these types of
anon. proxies. But has some he misses - after all they are all pretty
easy to track down!!
Unless you are willing to get your hands dirty and packet capture you
wont find the answer, and even if you do its possible that the stuff is
going via UDP anyway. This is a pretty easy one to solve! - but not
without there being a transference of info from you to us.
As for javascript not being advanced? There are implementations of AES
and other encryption algos, as well as a host of other things which are
capable of sending data from your browser to the server without YOU
being able to decrypt it. Of course these things are rarely implemented
CPU constraints, however javascript is a very advanced language indeed,
and is more than capable of keeping tabs on a non IT person. XSS
attacks etc.. - js!
minnesøtti wrote:
I am posting to a web-based forum which runs on ASP and uses
JavaScript. I post via a proxy-server which rewrites JavaScript, does
not send cookies back to the forum server, and which changes its IP
address every few minutes within the whole class A network.
Hard to believe in it taking into account that class A networks (as
well as B and C) do not exist for more than 10 years by now. The ban
can be set to a particular IP, to the server cross-range IP pair or to
the entire server IP range. Respectively any anonymizer can switch IP
only withing the range of its own IP addresses; on many hight grade
solutions there are updating lists of IP ranges of known anonymizing
services (anonymizer.com, anonymouse.net etc) banned by default.
The fact that you can still use some UA for posting suggests that the
admin used "soft ban" by particular IP(s), not killing the entire
range. As suggested clean your cookies and try again. This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Alexander N. Spitzer |
last post by:
If I have a machine with 3 virtual IP addresses (192.168.1.), how
can I start 3 instances of the same RMI application (each started with
different properties/configs), each listening on the port...
|
by: YAN |
last post by:
Hi,
I want to get the mac address from a machine, which i have the IP address of
that machine, how can i do that?
I know how to get the mac address of the local machine from the following
code:
...
|
by: Privacy Advocate |
last post by:
//crossposted to: comp.lang.javascript, alt.comp.lang.javascript in an
effort to get factual answers from JavaScript experts//
Simply put; Is it possible to obtain the real (actual) IP address of...
|
by: baumann.Pan |
last post by:
hi all,
i want to get the address of buf, which defined as
char buf = "abcde";
so can call
strsep(address of buf, pointer to token);
|
by: andreas.w.h.k. :-\) |
last post by:
How do I change the address location in the wsdl
<wsdl:port name="SearchSoap12" binding="tns:SearchSoap12">
<soap12:address location="http://searchservices/engine/search.asmx" />
</wsdl:port>
...
|
by: Phoenix_ver10 |
last post by:
I have a mailing list with multiple names going to the same addresses.
I need one address with all the names for that address on it. I checked
out the example on microsoft's site, but A: It doesn't...
|
by: Jamie J. Begin |
last post by:
I'm very new to the world of Python and am trying to wrap my head around
it's OOP model. Much of my OOP experience comes from VB.Net, which is
very different.
Let's say I wanted to create an...
|
by: Nicolas Noakes |
last post by:
Hello,
I would like to convert to following process to code. Any advice is
welcome.
I have a hardware device which requires the this procedure to set it's
IP address. First create an static...
|
by: Julienne Walker |
last post by:
Ignoring implementation details and strictly following the C99
standard in terms of semantics, is there anything fundamentally flawed
with describing the use of a (non-inline) function as an...
|
by: saravanatmm |
last post by:
I need javascript code for validate the email address.
Email address field cannot allowed the capital letters, special characters except '@' symbol.
But can allowed the small letters, numeric...
|
by: taylorcarr |
last post by:
A Canon printer is a smart device known for being advanced, efficient, and reliable. It is designed for home, office, and hybrid workspace use and can also be used for a variety of purposes. However,...
|
by: aa123db |
last post by:
Variable and constants
Use var or let for variables and const fror constants.
Var foo ='bar';
Let foo ='bar';const baz ='bar';
Functions
function $name$ ($parameters$) {
}
...
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
| |
