except not. with classful addresses, you only lose two nodes for network and broadcast addresses. and something ending in 255 is a perfectly valued IP address, if its bits don't fill the subnet.
about 8 bits, for a start. 192.168.0.0 is a/16. you missed tons of reserved/8s that haven't been allocated and may never be, as well as the "example" network, multicast addresses, and class D addresses.
my experience is that 99.99999999% of drivers on the freeway (as well as off, but that's irrelevant) are horrible, horrible drivers, putting me at a great risk of dying. on my first real trip driving to another state, I tried to start out by staying in the "slow lane." the problem with this was quickly realized. there are a FUCK TON of people who insist on coming up behind you and giving five feet of distance at 70mph, and when you get behind one of them who does the same thing with a truck in front of you, you are in serious danger. the solution isn't to slow down, because you inevitably have another person behind you who's keeping five feet of distance from you. you get boxed in, and there's no fucking other choice. there is no solution to this problem, and you are deluding yourself if you think there is.
it happens over and over, too; it isn't just a one time thing. for hours and hours on end I was constantly subject to fucking retards who endangered themselves and others (particularly including myself) with this kind of ridiculousness. please expound on your solution for that.
and your going to slam on the gas in your Porsche? You won't get 10 meters before you have an accident on the bridge at the best of times... and your going to do during or in the immediate aftermath of an major earthquake...
you do realize that one of your uses of the word "your," highlighted above, is not consistent at all with the others, right? and that's probably because the word "your" means something entirely different than what you have attempted to use it for (twice).
With the option of either typing or writing I'd definately take writing. Sure, with typing on a computer you can erase stuff quickly
but you don't seem to bother anyway. maybe that's why you're so bitter toward computeringzmachines?? I'm going to pretend I didn't see the horrible grammar throughout the rest of your post.
when I want to write a story or something like that, I'd prefer to use my computer. of course, making drawings, doodles, or doing manual arithmetic is easier with a pen and pad, but you realize that we've had tablet technology for some time now? it's only a matter of time before it becomes ubiquitous, and it's only a matter of time before it improves in efficiency and accuracy. I have a similar problem to one of the earlier posters, though: print is tedious and causes hand cramps rather quickly. I don't think I reach that stage after a one page form, but writing a story in print is out of the question. my cursive has degenerated over the years with increased use of computers. but that is okay with me, because I type quite a great deal faster than I could ever write, even in script (130-150 WPM usually, on QWERTY).
well, unless you're talking about GPUs, which don't really have anything to do with generalized computing tasks, and those numbers are dubious, anyway.
it should also be noted that, apparently, the fastest PC processors are up to the 50 gigaflops range now.
Just a note, tunneling through a proxy will not complete obfuscate the source address, it simply overlays them. The original IP, whether on an internal private system or a global IP, will still be decodable within the packet headers.
no, it won't. you have no idea what you're talking about. perhaps you're referring to some very specific, incredibly small subset of "proxy," such as 'this HTTP proxy which records the originating IP address in an HTTP header,' which has nothing to say of lower-level or protocols or other kinds and implementations of proxies.
It is probably possible, actually, to inject data into an IP header, though that would be more of a trick than anything (an interesting experiment on cryptology or stegonography, which I'm now excited to try out, having just really thought of it), but there is nothing "encoding" addresses in anything, apart from some superficial X-Originated-For or whatever headers which some particular proxy decides it wants to add.
as far as differently configured HTTP Proxies and Squids go, or SOCKS proxies, or telnet-based proxies (WinGate), or web proxies (CGI), or anonymizing services (Tor), there is absolutely nothing indicating the origin of communications to the endpoint. in the event of Tor, it would even be impossible for the exit node to KNOW who was the originator of communications, unless it had explicitly contrived to give that information out.
This anonymous company can then setup a mail server using an IP which they can acquire direct from ARIN and even get an internet line. The server can be in a server farm, almost anywhere, I had a California IP in Tokyo... which worked great from some things I needed... Anyway, you can send all the anonymous e-mail, commercial or other you like... privately held businesses do not have to maintain access logs either, ISPs do... So you could lease access to customers without logging and rather than you actually sending any commercially anonymous e-mail, you simply provide a medium for customers to do so...
umm.. it is increasingly hard to get a block directly from ARIN. they don't [generally?] deal with blocks smaller than/16s these days, as far as I know. it is still possible to do, however. but 99.99% of people obtain their netblocks from a lower level ISP. in any case, there is no such thing as a "California IP," which is one of the things this article hinted at, but didn't really get into. that is nothing more than another ridiculous obfuscation. IP addresses on the internet have absolutely nothing to do with physical locations. WHOIS records are only used for contacting the organization which has registered that netblock, and, in the case of a person obtaining his IP addresses from the ISP, it may not even be possible to identify that person's general network, let alone his individual identity, without a subpoena.
this was always the case. it is clear to anyone who knows anything about the internet (like the guy who wrote this article does) that there is no such thing as a "California IP" or a "Denver IP," but rather that these are mere conveniences for establishing a chain of authority. there's, in fact, little difference from using a netblock registered by a California-based organization in Tokyo than using a machine on an IP block registered by a California-based organization in Tokyo through a proxy. the major difference is that it would be much harder to find out who you are in the latter case than in the former. BGP doesn't care where you live, but, of course, [the lack of] international cooperation is always helpful in obfuscating things.
it would be incredibly difficult to spoof an IP address over the internet to engage in a TCP session, in a real application. I sincerely doubt anyone has ever been close to doing it.
you don't need to a customer of the ISP to use the ISP provided servers.
uhh.. except that, in many cases (ones where the ISP has properly configured their nameservers), you do.
I have no idea what the rest of your post is supposed to mean.
hopefully the site you're sending mail to has an MX record, unless your MTA is configured to perform the antiquated practice of sending mail straight to IP addresses. I have nothing against that, but I rarely see it these days.
"standard 404 error page"? it wouldn't have to be standard anything; you don't have to parse the page content, unless the web server is doing some really _NOT STANDARD_ mangling (sending a 200 OK with an error page inserted, for instance, which would break a lot of things dependent upon 404s anyway). it only needs to determine the header status code, which squid and other proxies can do.
verizon actually does run two root-servers, though, so maybe using sitefender there would've been an interesting idea (from their perspective). not too many people typo ".com," but, if they did, verizon could've taken ad revenue off the eBay name, for example. I'm sure they would've gotten sued pretty quickly for that, on the other hand.
The most likely scenario is that you're on the same local network as an attacker so that he/she can intercept your DNS traffic and forge replies. This might be the case when you're using the wireless provided at a coffee shop, for instance.
that, of course, requires that you're on a broadcast node and either there's no ARP entry for you in your switch, you're on a hub (broadcast), or you've overflowed the switch into broadcast-only mode. I have done that before with ettercap, dsniff, and dnsspoof. it is not impractical at all, especially in apartment complexes or on intranets at the office or other buildings with lots of residences wired up to the same network.
you forgot the step to determine the nameservers for whitehouse.gov, unless you expect the.gov root servers to be authoritative for it, have it as glue, have it in cache, or recurse for you.
uhh.. what? mafiaboy just DoSed a few random websites. what does that have to do with banks? and he probably didn't even do it. he's an incompetent idiot; I was in the efnet "takeover group" he was in when he did it.
hurricane electric is okay. I started using their service in about 2001 or 2002 or thereabouts as well. there were many, better tunnel brokers around back then, but they seem to have all but vanished. he is still around, but it's got its flaws. for a long time, they seemed to neglect the service entirely (and it's free, so maybe that's ok; whatever). in contact with the administrator, I found out that.. he didn't really know what he was doing, and he didn't really care. I don't think he should, but I wouldn't recommend using the service if isn't all that usable. anyway, they seem to have stuck it out over the years, for better or worse, and it's still fairly reliable. it's just that the interface sometimes break, and sometimes their endpoints do weird things.
at the moment I can't even say; in mid-late 2006 I switched to Charter, whose network unfortunately doesn't route 6-in-4 packets. I might add that tunnels are kind of a hack, anyway; it would be great if more ISPs would start offering last mile IPv6, but we know that won't happen for quite some time, if ever.
I guess it's not that strange that they're not hosting their own websites... but that's a helluva lot of IP addresses that they hold to be "pilfering" from the limited supply that the rest of us have to play with.
it isn't strange at all. how does it follow then that they're not making use of this address space? who wrote the law that says you have to host your webserver inside of IP space you on, and who wrote the logic that makes that necessitates under"utilization" (I hate the word utilize; see dictionary.com)? it was probably a guy by the name of N. Sequitir.
uhh 172.18.0.0/16 falls under 172.16.0.0/12, which is the 1918 reserved network I guess you're referring to. then there are the class E addresses, the multicast addresses, and a multitude of/8s that haven't been allocated since the inception of the internet and may not be any time soon. you can find a list here. also, several/8s in between 1-10 are not reserved, and have been allocated ages ago. 4/16 notoriously belongs to bbn (now assimilated by level 3), 3/8 belongs to GE, 8 also belongs to Level 3, and 9 is owned by IBM.
your numbers on how many IP addresses have been wasted are way off as well. 10/8, for instance, wastes 2^24 - 2 or 256^3 - 2 or 16,777,214 addresses. the maximal decimal value per octet in an IPv4 address is 255, excepting the first octet, but we count from zero -- there are 256 values represented by eight bits. we subtract two for the network number and broadcast address which default in a classful system.
Slashdot Mirror
except not. with classful addresses, you only lose two nodes for network and broadcast addresses. and something ending in 255 is a perfectly valued IP address, if its bits don't fill the subnet.
about 8 bits, for a start. 192.168.0.0 is a /16. you missed tons of reserved /8s that haven't been allocated and may never be, as well as the "example" network, multicast addresses, and class D addresses.
my experience is that 99.99999999% of drivers on the freeway (as well as off, but that's irrelevant) are horrible, horrible drivers, putting me at a great risk of dying. on my first real trip driving to another state, I tried to start out by staying in the "slow lane." the problem with this was quickly realized. there are a FUCK TON of people who insist on coming up behind you and giving five feet of distance at 70mph, and when you get behind one of them who does the same thing with a truck in front of you, you are in serious danger. the solution isn't to slow down, because you inevitably have another person behind you who's keeping five feet of distance from you. you get boxed in, and there's no fucking other choice. there is no solution to this problem, and you are deluding yourself if you think there is.
it happens over and over, too; it isn't just a one time thing. for hours and hours on end I was constantly subject to fucking retards who endangered themselves and others (particularly including myself) with this kind of ridiculousness. please expound on your solution for that.
more like 10mph at monteagle mountain.
it sure is.
you do realize that one of your uses of the word "your," highlighted above, is not consistent at all with the others, right? and that's probably because the word "your" means something entirely different than what you have attempted to use it for (twice).
try 'prodigies.' and try not putting the parenthetical statement in front of the wrong word.
but you don't seem to bother anyway. maybe that's why you're so bitter toward computeringzmachines?? I'm going to pretend I didn't see the horrible grammar throughout the rest of your post.
when I want to write a story or something like that, I'd prefer to use my computer. of course, making drawings, doodles, or doing manual arithmetic is easier with a pen and pad, but you realize that we've had tablet technology for some time now? it's only a matter of time before it becomes ubiquitous, and it's only a matter of time before it improves in efficiency and accuracy. I have a similar problem to one of the earlier posters, though: print is tedious and causes hand cramps rather quickly. I don't think I reach that stage after a one page form, but writing a story in print is out of the question. my cursive has degenerated over the years with increased use of computers. but that is okay with me, because I type quite a great deal faster than I could ever write, even in script (130-150 WPM usually, on QWERTY).
well, unless you're talking about GPUs, which don't really have anything to do with generalized computing tasks, and those numbers are dubious, anyway. it should also be noted that, apparently, the fastest PC processors are up to the 50 gigaflops range now.
the number 500 supercomputer has an Rmax of 9 teraflops; it wasn't long ago (~4 years) when half a teraflop would get you on this list.
I think you've got your assignment and equality operators mixed up (well, I guess the first one is okay, if you really meant "assume").
that should be <= 1 minute.
according to my web browser, it was = 1 minute.
no, it won't. you have no idea what you're talking about. perhaps you're referring to some very specific, incredibly small subset of "proxy," such as 'this HTTP proxy which records the originating IP address in an HTTP header,' which has nothing to say of lower-level or protocols or other kinds and implementations of proxies.
It is probably possible, actually, to inject data into an IP header, though that would be more of a trick than anything (an interesting experiment on cryptology or stegonography, which I'm now excited to try out, having just really thought of it), but there is nothing "encoding" addresses in anything, apart from some superficial X-Originated-For or whatever headers which some particular proxy decides it wants to add.
as far as differently configured HTTP Proxies and Squids go, or SOCKS proxies, or telnet-based proxies (WinGate), or web proxies (CGI), or anonymizing services (Tor), there is absolutely nothing indicating the origin of communications to the endpoint. in the event of Tor, it would even be impossible for the exit node to KNOW who was the originator of communications, unless it had explicitly contrived to give that information out.
umm.. it is increasingly hard to get a block directly from ARIN. they don't [generally?] deal with blocks smaller than /16s these days, as far as I know. it is still possible to do, however. but 99.99% of people obtain their netblocks from a lower level ISP. in any case, there is no such thing as a "California IP," which is one of the things this article hinted at, but didn't really get into. that is nothing more than another ridiculous obfuscation. IP addresses on the internet have absolutely nothing to do with physical locations. WHOIS records are only used for contacting the organization which has registered that netblock, and, in the case of a person obtaining his IP addresses from the ISP, it may not even be possible to identify that person's general network, let alone his individual identity, without a subpoena.
this was always the case. it is clear to anyone who knows anything about the internet (like the guy who wrote this article does) that there is no such thing as a "California IP" or a "Denver IP," but rather that these are mere conveniences for establishing a chain of authority. there's, in fact, little difference from using a netblock registered by a California-based organization in Tokyo than using a machine on an IP block registered by a California-based organization in Tokyo through a proxy. the major difference is that it would be much harder to find out who you are in the latter case than in the former. BGP doesn't care where you live, but, of course, [the lack of] international cooperation is always helpful in obfuscating things.
it would be incredibly difficult to spoof an IP address over the internet to engage in a TCP session, in a real application. I sincerely doubt anyone has ever been close to doing it.
uhh.. except that, in many cases (ones where the ISP has properly configured their nameservers), you do. I have no idea what the rest of your post is supposed to mean.
hopefully the site you're sending mail to has an MX record, unless your MTA is configured to perform the antiquated practice of sending mail straight to IP addresses. I have nothing against that, but I rarely see it these days.
"standard 404 error page"? it wouldn't have to be standard anything; you don't have to parse the page content, unless the web server is doing some really _NOT STANDARD_ mangling (sending a 200 OK with an error page inserted, for instance, which would break a lot of things dependent upon 404s anyway). it only needs to determine the header status code, which squid and other proxies can do.
verizon actually does run two root-servers, though, so maybe using sitefender there would've been an interesting idea (from their perspective). not too many people typo ".com," but, if they did, verizon could've taken ad revenue off the eBay name, for example. I'm sure they would've gotten sued pretty quickly for that, on the other hand.
that, of course, requires that you're on a broadcast node and either there's no ARP entry for you in your switch, you're on a hub (broadcast), or you've overflowed the switch into broadcast-only mode. I have done that before with ettercap, dsniff, and dnsspoof. it is not impractical at all, especially in apartment complexes or on intranets at the office or other buildings with lots of residences wired up to the same network.
you forgot the step to determine the nameservers for whitehouse.gov, unless you expect the .gov root servers to be authoritative for it, have it as glue, have it in cache, or recurse for you.
uhh.. what? mafiaboy just DoSed a few random websites. what does that have to do with banks? and he probably didn't even do it. he's an incompetent idiot; I was in the efnet "takeover group" he was in when he did it.
hurricane electric is okay. I started using their service in about 2001 or 2002 or thereabouts as well. there were many, better tunnel brokers around back then, but they seem to have all but vanished. he is still around, but it's got its flaws. for a long time, they seemed to neglect the service entirely (and it's free, so maybe that's ok; whatever). in contact with the administrator, I found out that .. he didn't really know what he was doing, and he didn't really care. I don't think he should, but I wouldn't recommend using the service if isn't all that usable. anyway, they seem to have stuck it out over the years, for better or worse, and it's still fairly reliable. it's just that the interface sometimes break, and sometimes their endpoints do weird things.
at the moment I can't even say; in mid-late 2006 I switched to Charter, whose network unfortunately doesn't route 6-in-4 packets. I might add that tunnels are kind of a hack, anyway; it would be great if more ISPs would start offering last mile IPv6, but we know that won't happen for quite some time, if ever.
it isn't strange at all. how does it follow then that they're not making use of this address space? who wrote the law that says you have to host your webserver inside of IP space you on, and who wrote the logic that makes that necessitates under"utilization" (I hate the word utilize; see dictionary.com)? it was probably a guy by the name of N. Sequitir.
uhh 172.18.0.0/16 falls under 172.16.0.0/12, which is the 1918 reserved network I guess you're referring to. then there are the class E addresses, the multicast addresses, and a multitude of /8s that haven't been allocated since the inception of the internet and may not be any time soon. you can find a list here. also, several /8s in between 1-10 are not reserved, and have been allocated ages ago. 4/16 notoriously belongs to bbn (now assimilated by level 3), 3/8 belongs to GE, 8 also belongs to Level 3, and 9 is owned by IBM.
your numbers on how many IP addresses have been wasted are way off as well. 10/8, for instance, wastes 2^24 - 2 or 256^3 - 2 or 16,777,214 addresses. the maximal decimal value per octet in an IPv4 address is 255, excepting the first octet, but we count from zero -- there are 256 values represented by eight bits. we subtract two for the network number and broadcast address which default in a classful system.