Ipchains and or socks can be set up so that no client information is reported back.
Since most NAT implementations vary, it's extemely difficult for a single technique to detect Masq'd packets. Rather most of these things rely on information passed by the host itself to the remote. Web Browsers, etc. can report things like IP address, hostnames, etc. if queried or sent by the client. Squid can be configured to report itself as a simple browser. Once done remote systems relying upon the characteristics of the requestor are unable to tell the difference. BTW: If you got to the point that the Mac list (as in Apple?) could tell your IP, then your provider does not seem to be blocking proxies and NAT at all. Check out MSN's new web page. It determines the browser you are utilizing based upon initial info sent by the client. Konqueror ALMOST fools MSN... -JMS |-----Original Message----- |From: Anke & Max [mailto:[EMAIL PROTECTED]] |Sent: Thursday, October 25, 2001 8:27 PM |To: [EMAIL PROTECTED] |Cc: [EMAIL PROTECTED] |Subject: Re: [newbie] Security for Mandrake | | | |Jose M. Sanchez answered Brian's questions on Thursday, |October 25, 2001 | |> |Living in a very rural area of Pennsylvania, I have a choice of |> |exactly one cable access provider, and they're a bit |paranoid, to put |> |it mildly. They've managed to configure their access |systems in such |> |a way as to (deliberately!) prevent use of a router as a hardware |> |firewall, unless you buy their much more expensive "commercial" |> |access. |> | |> |> If Linux can access the internet, there is really no way for them to |> detect it's usage as a IPCHAINS/NAT MASQ host. |> |> Many ISP's are set up to only authorize a specific host, etc. Since |> MASQ makes all the trafic appear to come from one host, it will work |> where other systems fail. | |Which tells me, then our system must be set up wrong. When I |subscribed to a Mac list last week, they could tell me which |internal win98 PC IP address the request came from. I thought |this was wrong but haven't had time to look further. We are |running 2.2.15-4mdksecure and Mandrake 7.1. Where do I start |looking to stop this information from going out and masq |properly? Thanks in advance | |Max | |
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
