How to exactly determine country of an exit node
Hi all, I've visited http://torstatus.all.de to get some tor servers from germany. I thought it's enough to look on the country flag, but I've noticed a strange entry on this page. I found a router with name bleakgadfly5 file:///C:/Users/Nico%20Weinreich/Desktop/TOR/router_detail.php?FP=f1a05306b76358908111e15396e663344a186888 which belongs to germany (at least all.de claims so) with ip 217.114.215.227 and the hostname of this server is hosted-by-vps-hosting.co.uk. You can see the .co.uk domain and a whois for this ip gave a GB for country. So, do I have to check ever the whois for an ip or is there another way to be sure to use a german server? So long, Nico *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: How to exactly determine country of an exit node
Nico Weinreich wrote: So, do I have to check ever the whois for an ip or is there another way to be sure to use a german server? what do you consider a German server? - a server with a German ip address according to the ripe db - a server physically located in Germany - a server with an ip address reverse resolving to a .de domain - a server operated by a German individual Recently I dumped my own dns cache into a perl script and compared the ip addresses stored with those from an open danish dns server poisoned with the danish dns blocklist. I found a lot of blocked servers within the Chinese tld .cn using ip address space from the US. Olaf *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: How to exactly determine country of an exit node
Olaf Selke schrieb: what do you consider a German server? - a server with a German ip address according to the ripe db - a server physically located in Germany - a server with an ip address reverse resolving to a .de domain - a server operated by a German individual I think the first and third arguments are the interesting one for me. Resolving an ip to a domain isn't possible all the time, because some ip addresses don't resolve. Recently I dumped my own dns cache into a perl script and compared the ip addresses stored with those from an open danish dns server poisoned with the danish dns blocklist. I found a lot of blocked servers within the Chinese tld .cn using ip address space from the US. OK, but there are german ip addresses which resolve to a .net domain or so. A check against ripe db would be the best. So there is the whois for all ip addresses again. *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: How to exactly determine country of an exit node
Nico Weinreich schrieb: I've visited http://torstatus.all.de to get some tor servers from germany. I thought it's enough to look on the country flag, but I've noticed a strange entry on this page. I found a router with name bleakgadfly5 file:///C:/Users/Nico%20Weinreich/Desktop/TOR/router_detail.php?FP=f1a05306b76358908111e15396e663344a186888 which belongs to germany (at least all.de claims so) with ip 217.114.215.227 and the hostname of this server is hosted-by-vps-hosting.co.uk. You can see the .co.uk domain and a whois for this ip gave a GB for country. So, do I have to check ever the whois for an ip or is there another way to be sure to use a german server? I supposed all.de using a stale GeoIP db version. https://torstatus.blutmagie.de using a more recent GeoIP database correctly shows GB for this tor node. Olaf *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: How to exactly determine country of an exit node
Nico Weinreich schrieb: Olaf Selke schrieb: I supposed all.de using a stale GeoIP db version. https://torstatus.blutmagie.de using a more recent GeoIP database correctly shows GB for this tor node. OK. Could it be that this ip address changed the owner in the past and because of this your GeoIP db shows the correct country and all.de shows the wrong country? yes, I think so. Since the new /26 GB net is part of the much larger /20 DE network I assume it to be recently assigned to a customer from the uk. I thought about to cache the whois query for an ip address locally in a file. So I have to renew the local cache after a given time to be sure, changes in ripe db are taken into account. why do you want to reinvent the wheel instead of sticking with Maxminds GeoIP db? BTW: do the tor status homepages show the available servers in real time? yes it does, as well as the other tns servers are supposed to ;-) Olaf *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
Re: How to exactly determine country of an exit node
Olaf Selke schrieb: why do you want to reinvent the wheel instead of sticking with Maxminds GeoIP db? hehe, you're right. thanks for this hint. and thanks for all your fast replies, my problem is solved. *** To unsubscribe, send an e-mail to majord...@torproject.org with unsubscribe or-talkin the body. http://archives.seul.org/or/talk/
