[Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Gaurav Kumar]

-BEGIN PGP SIGNED MESSAGE-Hash: 
SHA1
 
Hello friends!
 
I have found private ip address used by google 
servers. here are thedetails.
 
make sure you have google toolbar 
installed.
 
1. go to www.showmyip.com2. it will show your ip 
address.3. now right click and select Translate Page4. it will now show 
your ip address in this format 1.2.3.4, unknown5. Now again right click and 
select Translate Page6. this time you will get google private ip address. 
the format is10.7.0.73,1.2.3.4,unknown
 
This 10.7.0.73 is google private ip 
address.
 
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=Gaurav KumarChief 
Information Security Analyst
 
E2 Labs Information Security Pvt. Ltd.Road no. 
3 , Banjara HillsHyderbad-34APIndia
 
[EMAIL PROTECTED]www.e2-labs.com
 
PGP public key at-http://mycgiserver.com/~ethicalhackers/pgp.txt
 
Phone(s)-Mobile    +91 40 
31068650Tele/Fax +91 40 23555942 
(ext-24)=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
 
-BEGIN PGP SIGNATURE-Version: 
PGPfreeware 7.0.3 for non-commercial use 
 
iQA/AwUBP0UZKP7pOx+pP+hiEQK3mACdFKQE1ZW8ugMpxgOdjpaMYRayI6UAoOEBnoQh/WR3ZZz2L2CR0ZxzbNls=iryU-END 
PGP SIGNATURE-

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Nicolas Cartron]

On 22/08/03 at 00:40, Gaurav Kumar ([EMAIL PROTECTED]) wrote :

> Hello friends! 
>
> I have found private ip address used by google servers. here are the
> details. 
> [...] 
> This 10.7.0.73 is google private ip address. 

Ouah ! 
Exciting ! 

--
Nicolas Cartron
[EMAIL PROTECTED]

___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

RE: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Bojan Zdrnja]

Title: Message



Excuse 
my ignorance, but what's the point of this?
 
If you 
read that page, you'll see that they use proxy.google.com, which adds 
X-Forwarded-For header, so that's how you got internal IP address, but I don't 
really see any use of this.
 
So 
what, everyone knows they are using *INTERNAL* IPs on their *INTERNAL* 
network.
 
You'll 
also see that IP changes with time, what is obvious as they probably have a 
server farm.
 
Regards,
 
Bojan 
Zdrnja

  
  -Original Message-From: 
  [EMAIL PROTECTED] 
  [mailto:[EMAIL PROTECTED] On Behalf Of Gaurav 
  KumarSent: Friday, 22 August 2003 7:11 a.m.To: 
  [EMAIL PROTECTED]Subject: [Full-Disclosure] Google 
  Private IP is 10.7.0.73 !!
  -BEGIN PGP SIGNED MESSAGE-Hash: 
  SHA1
   
  Hello friends!
   
  I have found private ip address used by google 
  servers. here are thedetails.
   
  make sure you have google toolbar 
  installed.
   
  1. go to www.showmyip.com2. it will show your ip 
  address.3. now right click and select Translate Page4. it will now 
  show your ip address in this format 1.2.3.4, unknown5. Now again right 
  click and select Translate Page6. this time you will get google private ip 
  address. the format is10.7.0.73,1.2.3.4,unknown
   
  This 10.7.0.73 is google private ip 
  address.
   
  =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=Gaurav KumarChief 
  Information Security Analyst
   
  E2 Labs Information Security Pvt. Ltd.Road 
  no. 3 , Banjara HillsHyderbad-34APIndia
   
  [EMAIL PROTECTED]www.e2-labs.com
   
  PGP public key at-http://mycgiserver.com/~ethicalhackers/pgp.txt
   
  Phone(s)-Mobile    +91 40 
  31068650Tele/Fax +91 40 23555942 
  (ext-24)=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
   
  -BEGIN PGP SIGNATURE-Version: 
  PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
   
  iQA/AwUBP0UZKP7pOx+pP+hiEQK3mACdFKQE1ZW8ugMpxgOdjpaMYRayI6UAoOEBnoQh/WR3ZZz2L2CR0ZxzbNls=iryU-END 
  PGP SIGNATURE-

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Servicios de Seguridad Informatica]

El Jue 21 Ago 2003 16:23, Nicolas Cartron escribió:
> On 22/08/03 at 00:40, Gaurav Kumar ([EMAIL PROTECTED]) wrote :
> > Hello friends!
> >
> > I have found private ip address used by google servers. here are the
> > details.
> > [...]
> > This 10.7.0.73 is google private ip address.

has anyone know how this site know my private address?

___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[morning_wood]

Title: Message



i kinda discoverd google's use as a proxy simply by 
doing 
http://translate.google.com/translate?u=http%3A%2F%2Fwhatismyip.com
 
and is essentally the basis of http://exploit.wox.org/tools/googleproxy.html 

 
 
Donnie Werner
Chief Technical Officer
E2 Labs Information Security Pvt. 
Ltd.
http://e2-labs.com 

 
 
 

  - Original Message - 
  From: 
  Bojan 
  Zdrnja 
  To: [EMAIL PROTECTED] 
  
  Sent: Thursday, August 21, 2003 2:19 
  PM
  Subject: RE: [Full-Disclosure] Google 
  Private IP is 10.7.0.73 !!
  
  Excuse my ignorance, but what's the point of this?
   
  If 
  you read that page, you'll see that they use proxy.google.com, which adds 
  X-Forwarded-For header, so that's how you got internal IP address, but I don't 
  really see any use of this.
   
  So 
  what, everyone knows they are using *INTERNAL* IPs on their *INTERNAL* 
  network.
   
  You'll also see that IP changes with time, what is obvious as they 
  probably have a server farm.
   
  Regards,
   
  Bojan Zdrnja
  

-Original Message-From: 
[EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] On Behalf Of Gaurav 
KumarSent: Friday, 22 August 2003 7:11 a.m.To: 
    [EMAIL PROTECTED]Subject: [Full-Disclosure] Google 
Private IP is 10.7.0.73 !!
-BEGIN PGP SIGNED MESSAGE-Hash: 
SHA1
 
Hello friends!
 
I have found private ip address used by google 
servers. here are thedetails.
 
make sure you have google toolbar 
installed.
 
1. go to www.showmyip.com2. it will show your 
ip address.3. now right click and select Translate Page4. it will 
now show your ip address in this format 1.2.3.4, unknown5. Now again 
right click and select Translate Page6. this time you will get google 
private ip address. the format is10.7.0.73,1.2.3.4,unknown
 
This 10.7.0.73 is google private ip 
address.
 
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=Gaurav KumarChief 
Information Security Analyst
 
E2 Labs Information Security Pvt. Ltd.Road 
no. 3 , Banjara HillsHyderbad-34APIndia
 
[EMAIL PROTECTED]www.e2-labs.com
 
PGP public key at-http://mycgiserver.com/~ethicalhackers/pgp.txt
 
Phone(s)-Mobile    +91 40 
31068650Tele/Fax +91 40 23555942 
(ext-24)=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
 
-BEGIN PGP SIGNATURE-Version: 
PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
 
iQA/AwUBP0UZKP7pOx+pP+hiEQK3mACdFKQE1ZW8ugMpxgOdjpaMYRayI6UAoOEBnoQh/WR3ZZz2L2CR0ZxzbNls=iryU-END 
PGP SIGNATURE-

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[idoru]

My message was for Servicios de seguridad informatica :D


Regards ,

-- 

David F. Madrid ,
Madrid , Spain

___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[conde0]

I think that when I published this 

http://www.securityfocus.com/archive/1/317240/2003-04-13/2003-04-19/0

if you used java.net.InetAddress.getLocalHost() , the value returned 
was the public address unless you were behind a nat device , in
that case it returns the private address . You can test it here

http://nautopia.coolfreepages.com/vulnerabilidades/opera_java_js.htm

I don't know if showmyip uses this method , just a possibility


Regards ,

-- 

David F. Madrid ,
Madrid , Spain

___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Valdis . Kletnieks]

On Fri, 22 Aug 2003 09:19:24 +1200, Bojan Zdrnja <[EMAIL PROTECTED]>  said:

> You'll also see that IP changes with time, what is obvious as they
> probably have a server farm.

Actually, they have a number of server farms (at least 6 that I know of), and they
average 15,000 really cheap rack mount boxes a farm.  Or something in that ballpark
anyhow.  Google for it, they've talked a number of times about how they make things
work (stuff like RAM actually being TCO-wise cheaper than disk because the added
speed means they need fewer servers, etc...)


pgp0.pgp
Description: PGP signature

R: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[edp]

This 10.7.0.73 is google private ip address.

Wow! Scary!

Message also signed, so we can trust that valuable info!
 


___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

RE: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Bassett, Mark]

I show 10.5.0.74    (I’m sure they have more than one
server)

 

 

-Original Message-
From: Gaurav Kumar
[mailto:[EMAIL PROTECTED] 
Sent: Thursday, August 21, 2003 2:11 PM
To:
[EMAIL PROTECTED]
Subject: [Full-Disclosure] Google
Private IP is 10.7.0.73 !!

 



-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1





 





Hello friends!





 





I have found private ip address used
by google servers. here are the
details.





 





make sure you have google toolbar
installed.





 





1. go to www.showmyip.com
2. it will show your ip address.
3. now right click and select Translate Page
4. it will now show your ip address in this format 1.2.3.4, unknown
5. Now again right click and select Translate Page
6. this time you will get google private ip address. the format is
10.7.0.73,1.2.3.4,unknown





 





This 10.7.0.73 is google private ip
address.





 





=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Gaurav Kumar
Chief Information Security Analyst





 





E2 Labs Information Security Pvt.
Ltd.
Road no. 3 , Banjara Hills
Hyderbad-34
AP
India





 





[EMAIL PROTECTED]
www.e2-labs.com





 





PGP public key at-
http://mycgiserver.com/~ethicalhackers/pgp.txt





 





Phone(s)-
Mobile    +91 40 31068650
Tele/Fax +91 40 23555942 (ext-24)
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=





 





-BEGIN PGP SIGNATURE-
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>





 





iQA/AwUBP0UZKP7pOx+pP+hiEQK3mACdFKQE1ZW8ugMpxgOdjpaMYRayI6UAoOEB
noQh/WR3ZZz2L2CR0ZxzbNls
=iryU
-END PGP SIGNATURE-






Omaha World-Herald Company computer systems are for business use only.
This e-mail was scanned by MailSweeper

RE: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[MacDougall, Shane]

Yeah I’m a top poster – deal with
it…

 

While people are piling on Gaurav, we should consider that the issue here is that an
attacker could map out Google’s internal
network.

Not earth shattering but not a completely
useless finding. 

 



=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

Shane MacDougall

Lead Security Officer

ID Analytics

San Diego, California USA

Direct: (858) 427-2860

Toll Free: 866-240-4484 x
2860

Fax: 858-427-2899



 

 

-Original Message-
From: Gaurav Kumar
[mailto:[EMAIL PROTECTED]] 
Sent: Thursday, August 21, 2003 2:11 PM
To:
[EMAIL PROTECTED]
Subject: [Full-Disclosure] Google
Private IP is 10.7.0.73 !!

 



-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1





 





Hello friends!





 





I have found private ip address used
by google servers. here are the
details.





 





make sure you have google toolbar
installed.





 





1. go to www.showmyip.com
2. it will show your ip address.
3. now right click and select Translate Page
4. it will now show your ip address in this format 1.2.3.4, unknown
5. Now again right click and select Translate Page
6. this time you will get google private ip address. the format is
10.7.0.73,1.2.3.4,unknown





 





This 10.7.0.73 is google private ip
address.





 





=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Gaurav Kumar
Chief Information Security Analyst





 





E2 Labs Information Security Pvt.
Ltd.
Road no. 3 , Banjara Hills
Hyderbad-34
AP
India





 





[EMAIL PROTECTED]
www.e2-labs.com





 





PGP public key at-
http://mycgiserver.com/~ethicalhackers/pgp.txt





 





Phone(s)-
Mobile    +91 40 31068650
Tele/Fax +91 40 23555942 (ext-24)
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=





 





-BEGIN PGP SIGNATURE-
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>





 





iQA/AwUBP0UZKP7pOx+pP+hiEQK3mACdFKQE1ZW8ugMpxgOdjpaMYRayI6UAoOEB
noQh/WR3ZZz2L2CR0ZxzbNls
=iryU
-END PGP SIGNATURE-






Omaha World-Herald Company computer systems are for business use only.
This e-mail was scanned by MailSweeper

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[micah mcnelly]

someone personally believed that this was valuable and now because you
obviously take yourself to be a judge of valuable information why not
enlighten us on something worthwhile.

/m

len rose is a muppet.

- Original Message -
From: "edp" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, August 22, 2003 5:36 AM
Subject: R: [Full-Disclosure] Google Private IP is 10.7.0.73 !!


> This 10.7.0.73 is google private ip address.
>
> Wow! Scary!
>
> Message also signed, so we can trust that valuable info!
>
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
> 
> This email has been scanned for all viruses by the MessageLabs Email
> Security System. For more information on a proactive email security
> service working around the clock, around the globe, visit
> http://www.messagelabs.com
> 
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>

___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[morning_wood]

Title: Message




i kinda discoverd google's use as a proxy simply by 
doing 
http://translate.google.com/translate?u=http%3A%2F%2Fwhatismyip.com
 
and is essentally the basis of http://exploit.wox.org/tools/googleproxy.html 

 
 
Donnie Werner
Chief Technical Officer
E2 Labs Information Security Pvt. 
Ltd.
http://e2-labs.com 

 

Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Jordan Wiens]

fyi, the googleproxy will only proxy html, not images or other files.  So
for example, checking my logs after testing the proxy produces:

216.239.39.5 - - [24/Aug/2003:17:40:50 -0400] "GET / HTTP/1.0" 200 1556 "-" 
"Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a) Gecko/20030401,gzip(gfe) 
(via translate.google.com)"
my.re.al.ip - - [24/Aug/2003:17:40:50 -0400] "GET /style.css HTTP/1.1" 200 796 
"http://216.239.39.104/translate_c?hl=en&u=http://psifertex.com/&prev=http://translate.google.com/language_tools";
 "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a) Gecko/20030401"
my.re.al.ip - - [24/Aug/2003:17:40:50 -0400] "GET /images/psifertex.jpg HTTP/1.1" 200 
7264 
"http://216.239.39.104/translate_c?hl=en&u=http://psifertex.com/&prev=http://translate.google.com/language_tools";
 "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a) Gecko/20030401"

Plus, google does pass along X-Forwarded-For headers:

GET / HTTP/1.0
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4a) 
Gecko/20030401,gzip(gfe) (via translate.google.com)
Accept-Language: en
Accept-Charset: utf-8,*
Accept: text/html, text/plain, */*
Via: 1.0 translate.google.com (TWS/0.9), 1.0 proxy.google.com:80 (Squid/2.3.STABLE4)
X-Forwarded-For: my.re.al.ip, unknown
Host: psifertex.nerdc.ufl.edu
Cache-Control: max-age=259200
Connection: keep-alive

Interesting that they're using squid for their translation.

-- 
Jordan Wiens, CISSP
UF Network Incident Response Team
(352)392-2061

On Sat, 23 Aug 2003, morning_wood wrote:

> Messagei kinda discoverd google's use as a proxy simply by doing
> http://translate.google.com/translate?u=http%3A%2F%2Fwhatismyip.com
>
> and is essentally the basis of http://exploit.wox.org/tools/googleproxy.html
>
>
> Donnie Werner
> Chief Technical Officer
> E2 Labs Information Security Pvt. Ltd.
>
> http://e2-labs.com
>
>

___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Re: R: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Edward Rustin]

OH MY GOD

You mean that google uses private non-world-routable IP addresses on its
network??!!!?!?! How lame and insecure are they?!

(or we could go and read RFC-1918 instead ;)

On Fri, 22 Aug 2003, edp wrote:

> This 10.7.0.73 is google private ip address.
>
> Wow! Scary!
>
> Message also signed, so we can trust that valuable info!
>  
>
>
> ___
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
>

___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Re: [fd] Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Mike V]

- Original Message - 
From: "Servicios de Seguridad Informatica" <[EMAIL PROTECTED]>


El Jue 21 Ago 2003 16:23, Nicolas Cartron escribió:
> > I have found private ip address used by google servers. here are the
> > details.
> > [...]
> > This 10.7.0.73 is google private ip address.

>has anyone know how this site know my private address?



Google has apparently hacked your network, and stolen your own private IP
address. SCANDALOUS!
I'd hire a good lawyer.  Maybe if you're *real* lucky you can get it back.
IP theft!  I hear it's the next big thing.


___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

RE: [fd] Re: [Full-Disclosure] Google Private IP is 10.7.0.73 !!!!!!

[Andre Ludwig]

Its all a part of googles plans to gobble up all the Ips in the w0rld!!!

WITH OUT OUR 1PZ W3 W1LL N0 L0NG3R H4V3 TH3 INT4W3B!


OH NOEZ W3 H4V3 b33n H4X0RZ3D!!!

Th3Y H4v3 ST0L3N 0UR M3G4HURTZ


Sorry im bored at work again :)

Andre Ludwig


-Original Message-
From: Mike V [mailto:[EMAIL PROTECTED]
Sent: Thursday, August 21, 2003 4:34 PM
To: [EMAIL PROTECTED]
Subject: Re: [fd] Re: [Full-Disclosure] Google Private IP is 10.7.0.73
!!


- Original Message - 
From: "Servicios de Seguridad Informatica" <[EMAIL PROTECTED]>


El Jue 21 Ago 2003 16:23, Nicolas Cartron escribió:
> > I have found private ip address used by google servers. here are the
> > details.
> > [...]
> > This 10.7.0.73 is google private ip address.

>has anyone know how this site know my private address?



Google has apparently hacked your network, and stolen your own private IP
address. SCANDALOUS!
I'd hire a good lawyer.  Maybe if you're *real* lucky you can get it back.
IP theft!  I hear it's the next big thing.


___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html