[mdlug] [Fwd: [opensuse-offtopic] And now the Manchurian microchip]
David Lane
dcl400m at yahoo.com
Mon Feb 2 16:01:46 EST 2009
With an IP address you can do a reverse DNS look up to find the Host(Computer Name). A lot of times that is xyz.ispprovidorpath.net.
Some of the Client/Server and middleware application I developed takes the connecting computer's IP address, then it gets it's DNS name and that is a part of authentication.
Example:
Your private network is 10.0.1.XXX
You only accect connections from hosts that begin with 10.0.1, then you contenue with authentication.
But Out going connections are harder to control, with out severly limiting flexablity.
David C. Lane
________________________________
From: Joseph C. Bender <jcbender at bendorius.com>
To: MDLUG's Main discussion list <mdlug at mdlug.org>
Sent: Monday, February 2, 2009 3:32:56 PM
Subject: Re: [mdlug] [Fwd: [opensuse-offtopic] And now the Manchurian microchip]
David Lane wrote:
> If you have a firewall then you can track all in and outbound connections.
>
And gets you what, exactly? Unless you know where, when and what to
look for, you're never going to see it. And in such a scenario, you
design things such that "phoning home" doesn't directly point at you,
the originator of such things.
There are ways of defending against such things, but firewall
connection tracking isn't it.
-JCB
_______________________________________________
mdlug mailing list
mdlug at mdlug.org
http://mdlug.org/mailman/listinfo/mdlug
More information about the mdlug
mailing list