I.P. adress

pekebaz3 · Mon Jul 18, 2005 6:18 am

How long are ip adresses loged on this server?

primathon · modified

They're kept track of as long as you're logged in, but just tied to your session IP. Other than that, they're not tied to any posts, PMs, ban lists, votes, etc. At first I had them being hashed through MD5, but I decided to just not keep records of them at all. Seemed more secure, seeing as how it's possible (though difficult) to go backwards from an MD5 hash.

unixtroll · Sat Sep 17, 2005 4:58 pm

If you're using Firefox, I recommend http://www.roundtwo.com/product/switchproxy.

RoundBottom · Sat Sep 24, 2005 10:49 pm

Tor (http://tor.eff.org) is an anonymizing relaying proxy system provided by the EFF (www.eff.org) to allow anyone to surf to any web site and not have their IP revealed. useful for chinese dissidents, or other freedom seeking types.

it works by creating a dynamic circuit between your browser and the web server you are going to. this circuit is at least 3 hops, and changes at least every 10 minutes. IPs are never logged. it can be used with the above mentioned switchproxy, or by creating 2 different accounts in your browser, or by installing a second browser (my preference.)

f you want provable anonymity, set up Tor and go to any IP reporting site. make a note of the IP it reports, then try again in 15 minutes, it should be a different IP, both of which are not your real IP.

highly recommended.

also, if you are concerned about what happens if your computer is siezed...

1) don't keep a history set it to 0 days
2) don't keep a cache, set it to 0MB
3) don't allow cookies whenever possible, or have them clear after you close the browser
4) don't put a site in your allow cookies or disallow cookies file (shows that you've been there, duh!)
5) don't bookmark any site you wouldn't want your mom to see

RB

loki · guinea pig

md5 is not reversible, but sha1 is. (it was cracked recently)

i am very happy to hear that these details are not being logged by the forum software. is the webserver's logs likewise being purged or deactivated? the webserver log records every get and put command sent to it along with IP addresses too.

i use tor fairly consistently, occasionally i turn it off cos the damn lag shits me too much but i usually turn it back on again after a few days.

something else which can be good to do is to get one of those portable firefox things, which lets you run your web browser entirely off a usb key. a usb key is a very small object and a good pounding with a hard object would render its contents unrecoverable, as would throwing it in a fire or something similar. i think high intensity magnetic pulse will do it too but that's not so accessible. one doesn't have to run it off the key, it is possible to move one's firefox profile to the key (run it as 'firefox -p' to bring up the profile management interface and define a profile which resides on the key)

RoundBottom · Sun Sep 25, 2005 10:10 am

> a good pounding with a hard object would render its contents unrecoverable

actually, i wouldn't bet your life on that (ok, or mine.) flash is one of the more resilliant memory devices. they have survived tsunami (people found cameras trashed on the beach, but the cards were readable), volcanos (used in robots that go into > 250C conditions for prolonged periods), and, of course, space (most probes carry flash storage.)

if you encrypt your files using GPG, or the whole drive with loop-aes, then it doesn't matter what medium you use, as long as your passphrase is up to snuff it will be safe for at least 10 years (not forever, think about that, too.)

if you have a spare machine (like a PIII 500 or something), make a linux server and put loop-aes (loop-aes.sf.net) on it, and use that to store your mozilla profile on a shared samba drive. also, your lab notes, pictures, etc. but remember, encryption isn't a panacea (isn't da bomb), it's one tool in a tool chest.

cheeerist, i sound like a nice hey-man.

slynx · Tue Sep 27, 2005 8:18 am

if you're concerned about your IP addy being logged, there's a very nice freeware proxy system called JAP. JAP is also multiplatform, as it is written in java.

URL: http://anon.inf.tu-dresden.de/index_en.html