Free Republic
Browse · Search
News/Activism
Topics · Post Article

To: RebelTex; fire_eye; Gigantor
I have been discussing this situation offline with a knowledgable friend with a packet sniffer in his pocket, and he told me that rfny.us checked for the "referrer" and would only pass the pix if the request came from an approved range of IP addresses. That's a common security measure, I believe (Hey, I wrote a Perl script once!), so I really don't have a problem with that.

Also, when I copy and paste the URL from one of those picture directly into my browser, I get a "forbidden" message...even with Zone Alarm disabled.

Now regarding Zone Alarm, there was at least one FReeper other than you who was able to see the pix with ZA active. But we don't know his or her settings, so that really doesn't tell us anything.

What fire_eye said in the post above yours makes sense to me, and possibly the explanation is there.

I've set up my Zone Alarm to block incoming TCP Ports in the 32xxx range. It's a "custom" setup in the "Internet Zone" of the "Firewall" tab.

So maybe whoever set up the Apache Webserver at rfny.us just tried to get fancy by using some unusual port with unintended results. Or maybe not...

But with "Alert Notification" active, I get no alert that anybody was trying to access port 32xxx when I try to view any of those pictures. So I really still don't know what's going on.

I am still surprised that FR sends our IP address to any remote site to which we are "redirected". I wasn't aware that IP forwarding was going on, and if true, the management might want to add that to their privacy statement.

This is probably all innocent, but I sure wish Gigantor would chime in here before my paranoia builds further...

132 posted on 01/24/2005 4:37:07 AM PST by snopercod ( We as the people no longer truly believe in liberty, not as Americans did -- Dayfdd ab Hugh)
[ Post Reply | Private Reply | To 114 | View Replies ]


To: snopercod; RebelTex; fire_eye
This is probably all innocent, but I sure wish Gigantor would chime in here before my paranoia builds further...

Gigantor here,

A. I copied the JPEGs to a folder I created on one of my web site ISPs. I posted a standard "img src=..." link for each picture.

B. When I reached the bandwith limit on that web site I copied same JPEGs to my other web site ISP and linked to them.

All I do is pay $7 bucks a month to have my domain hosted, anything beyond that - is beyond me.

Personally, I think we're dangerously close to tin-foil hat territory.

Al Franken wasn't this suspicious - and I was wearing several Bush/Cheney buttons and pins when I approached him!

133 posted on 01/24/2005 6:40:49 AM PST by Gigantor (W2 - Oh yeah!)
[ Post Reply | Private Reply | To 132 | View Replies ]

Free Republic
Browse · Search
News/Activism
Topics · Post Article


FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson