LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-04-2005, 05:40 PM   #1
hotstyle765
LQ Newbie
 
Registered: Jan 2005
Posts: 13

Rep: Reputation: 0
ip blocker


Does anyone know about a good IP Blocker like protowall of peergardian for linux?

I know peergardian has one but it is still in alpha and seems to be crap.


Any help will be great!

Thanks
 
Old 01-04-2005, 05:46 PM   #2
Proud
Senior Member
 
Registered: Dec 2002
Location: England
Distribution: Used to use Mandrake/Mandriva
Posts: 2,794

Rep: Reputation: 116Reputation: 116
At a brief glance of the info about protowall and those that use it, I'd say you're all paranoid and don't know how to use a real firewall. Wanna block IP addresses (for baseless reasons..?) ? - Use IPTables, the firewall build into linux's networking stack...

Edit: Ok, that comes off sounding harsh. Just wtf are you trying to achieve??

Last edited by Proud; 01-04-2005 at 05:47 PM.
 
Old 01-04-2005, 05:52 PM   #3
hotstyle765
LQ Newbie
 
Registered: Jan 2005
Posts: 13

Original Poster
Rep: Reputation: 0
well....


I am a huge fan of bit torrent.

And if your new to bit torrent lets just say anyone can find out your IP Addess if your using it.

Those programs have block lists that contain the IP addresses of everything from the RIAA to the FBI to the DOA

Us bit torrent fokes need these programs to stop those people from checkin in on what we are downloading


at least untill someone rewrite the bit torrent protocal to make it more secure


Its nothing like a firewall....

well kinda
 
Old 01-04-2005, 06:07 PM   #4
Proud
Senior Member
 
Registered: Dec 2002
Location: England
Distribution: Used to use Mandrake/Mandriva
Posts: 2,794

Rep: Reputation: 116Reputation: 116
So?
1) Someone hosts a file you shouldn't be downloading.
2) You connect to them via BT and start downloading - they have your IP address.
3) They don't need to 'connect' to your machine, they just ask your ISP for details of which user was assigned that IP at that time, showing their records of you initialising a download.
4) Knowing someone's IP has nothing to do with hijacking their machine, browsing through it, etc. If they want in, they have to find an exploitable service you're running (web/ftp server, etc) or a flaw in the basic networking code.
 
Old 01-05-2005, 07:47 AM   #5
Cerbere
Member
 
Registered: Dec 2002
Location: California
Distribution: Slackware & LFS
Posts: 799

Rep: Reputation: 33
linblock.pl

BTW you could have found an answer more quickly by searching the forum for terms like 'peerguardian', etc.

I've answered this question several times, once within the last week.

Enjoy!
--- Cerbere
 
Old 01-05-2005, 08:06 AM   #6
hotstyle765
LQ Newbie
 
Registered: Jan 2005
Posts: 13

Original Poster
Rep: Reputation: 0
thanks cerbere I did try a search with no luck.


and to Proud....

Maybe you should read a little more into bit torrent before trying to tell someone it is useless to get an ipblocker.

 
Old 01-05-2005, 08:20 AM   #7
Proud
Senior Member
 
Registered: Dec 2002
Location: England
Distribution: Used to use Mandrake/Mandriva
Posts: 2,794

Rep: Reputation: 116Reputation: 116
I reccon you're still kidding yourself. What exactly is stopping someone from say the RIAA hosting a file and catching you download it illegally?
 
Old 01-05-2005, 10:20 AM   #8
hotstyle765
LQ Newbie
 
Registered: Jan 2005
Posts: 13

Original Poster
Rep: Reputation: 0
Ok say....

I have a block list containing The IP address the Riaa is using.

If the Riaa starts to host the file i will not be able to connect the the RIAA and download it from them.

They can still see if i am trying to get the file but i will not get it from them.

So therefore they could not take legal action against me because they do not know what i am actually downloading. I can be getting a single Info file from the torrent instead of the whole torrent.

They would have to come to my house and take my computer to see if i actually downloaded the file or not. Because i did not receive it from them.

They can keep track of what they sent to users, so if they sent me the whole file then they know i downloaded the whole thing.


This is NOT a full proof method but it had been prooven to help.

The blocklists are updated daily from numerous security groups.
People who actually do get caught get a letter in the mail saying who caught them and the IP Address they were using when they caught them. So then that can also be added to the database.
 
Old 01-05-2005, 10:56 AM   #9
Proud
Senior Member
 
Registered: Dec 2002
Location: England
Distribution: Used to use Mandrake/Mandriva
Posts: 2,794

Rep: Reputation: 116Reputation: 116
Surely the letters say the IP address of the offending downloader, not the machine used to catch them.

What about the copyright owner using a normal ISP with dynamic IP addresses allocated, firing up a p2p app and downloading from you? You're ilegally hosting the file, they're just a common ISP's user, and you can't blacklist the IP or range or you'll cut out all their customers from your p2p system.

Basically I dont think there is a way to tack on protection to current p2p apps to hide from those that can request IP->user details from ISPs.

Oh and if you read the linblock blurb you'll see it just submits some new rules to the linux kernel firewall. System which controls network connections to your machine=firewall.
 
Old 01-05-2005, 11:59 AM   #10
hotstyle765
LQ Newbie
 
Registered: Jan 2005
Posts: 13

Original Poster
Rep: Reputation: 0
Quote:
Originally posted by Proud


Oh and if you read the linblock blurb you'll see it just submits some new rules to the linux kernel firewall. System which controls network connections to your machine=firewall.
Correct
 
Old 12-26-2015, 08:58 PM   #11
dkh
LQ Newbie
 
Registered: Dec 2015
Posts: 2

Rep: Reputation: Disabled
Smile proud

you have failed to understand what he is trying to accomplish. hes not trying to hide his ip. he is attempting to prevent connections to well known and potentially hazardous ip's or proxy's or edu. but most of all ad servers. if your just needing it for bt get tixati.deb from tixati.co but as far as a host file manager there are a couple out there but i have not tried any of them. and dont forget to get your lists from iblocklist.
 
Old 12-27-2015, 05:34 AM   #12
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 19,872
Blog Entries: 12

Rep: Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053Reputation: 6053
@dkh: necroposting record! 10 years!
 
Old 12-27-2015, 03:45 PM   #13
dkh
LQ Newbie
 
Registered: Dec 2015
Posts: 2

Rep: Reputation: Disabled
@ondoho

wow, im a little late, roflsmpasl.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Port blocker manoj142 Linux - Software 4 10-18-2005 08:32 AM
IE pop-up blocker watashiwaotaku7 General 7 09-14-2004 08:40 AM
FF Blocker Sucks jmr0311 Mandriva 3 07-28-2004 03:01 PM
Spyware blocker voyciz Linux - Software 8 06-08-2004 01:18 PM
popup blocker meeh Linux - Software 9 01-18-2003 02:45 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:23 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration