Slashdot Mirror

← Back to Stories (view on slashdot.org)

Skip The IP Address

Posted by Hemos on from the who-needs-'em dept.

j0hnyb1423 writes "Have you ever wanted to be able to connect to that stackless Snort or Hogwash box without walking over to it and plugging in a monitor and keyboard? Well, at last here's your answer - noiptun. Yes, it requires an IP stack to be compiled into the kernel but no IP addresses necessary on the real interface(s). And if stealth IDS setups aren't your bag, then you can at least use it to browse /. without having an IP bound to your linux workstation."

3 of 24 comments (clear)

  1. Is it just me.. by mivok · · Score: 3, Insightful

    or does this sort of defeat the whole point of having a box that you can't connect to over the network in the first place? Whats to stop an attacker connecting through the tunnel to the noip'd box?

  2. It's backwards client server by Animats · · Score: 2, Insightful
    That's an amusing approach.

    The author must be a X-windows fanatic. He uses the terms "client" and "server" backwards. The end that sits there passively waiting for someone to connect is called the "client", and the end you run when you want to talk is called the "server".

    Note that the "client" opens an Ethernet interface in promiscuous mode, so if you put this on a machine on a busy network, it's going to spend most of its time discarding packets.

    Send this guy a roll of duct tape.

  3. Re:arp -s anybody? by teqo · · Score: 2, Insightful
    Re-reading the documents available on the noiptun site, it seems that you need some kind of IP-addressable machine that works as a proxy to reach the actual noiptun'ed box bearing no IP address, in case you want to connect from outside the same network segment (speaking of layer 2 here), because ARP will not be routed... If I understood this correct, this in fact is nothing a permanent arp'ing machine couldn't do, maybe it would feel a bit less convenient when using arp -s proxies, though. Which is not the fault of noiptun itself...

    Then, if I can connect to a machine using arp -s (maybe throught some alike proxy), I can use whatever protocol I want, including SSL, SSH etc.

    I don't want to diss the noiptun people, every idea being made reality has some value for somebody, and I guess this will be of some use for hidden snort users... But in fact, I am not as excited as some others among the /. croud, because it just does not feel as rocket-science-ish for me as the headline suggests...