Reducing java leakage in windows

Arrakis arrakistor at gmail.com
Mon Dec 3 20:02:36 UTC 2007


I can confirm that this code does indeed expose the external IP address,
despite the setting in JCP/deployment.properties.

James Muir wrote:
> phobos at rootme.org wrote:
>> On Sun, Dec 02, 2007 at 11:35:49PM -0800, jacob at appelbaum.net wrote
>> 0.9K bytes in 21 lines about:
>> : I remember these tests. I can't seem to find a copy of the applets you
>> : used. Are you willing to publish them? Or point me in the right
>> : direction should I want to try implementing them?
>>
>> http://exitthematrix.dod.net/matrixmirror/ar01s05.html  Jump down to the
>> "Web bugs" section.  It references
>> http://exitthematrix.dod.net/matrixmirror/misc/superipbug.java from
>> http://www.inet-police.com/cgi-bin/env.cgi
>>
>> There is another more thorough test of a java applet completely ignoring
>> the jvm proxy configuration.  However, my google-fu is weak.
> 
> When I read that example it seems to indicate that the applet reads your
> IP address locally and then submits it back to the originating web site
> through the proxy.  The applet does not seem to ignore proxy settings
> (i.e. it does not seem to open a non-proxied connnection); it just
> submits identifying information through the proxied connection.
> 
> Jacob, Steve: I don't want to publish my complete ready-to-run code on
> the list, but here is an excerpt:
> 
> /***********/
> 
> Socket socket_to_originating_host = null;
> int tcp_port = 80;
> InetSocketAddress originating_host =
>   new InetSocketAddress(getCodeBase().getHost(), tcp_port);
> 
> try {
>       socket_to_originating_host = new Socket(Proxy.NO_PROXY);
>       // timeout is in milliseconds
>       socket_to_originating_host.connect(originating_host, 10000);
>       System.out.println(
>        "Socket Local Address = " +
>        socket_to_originating_host.getLocalAddress().getHostAddress());
> }
> 
> catch (Exception e) {
>       System.out.println("EXCEPTION THROWN:  " + e);
>       System.exit(1);
> 
> }
> 
> /************/
> 
> More details can be found in the paper "Internet Geolocation" on my web
> site.
> 
> -James
> 
> 
> 
> 
> 



More information about the tor-talk mailing list