Log in

View Full Version : Anonymity challenge for a newbie


spamal
February 21st, 2001, 18:57
Here is a tough one for me. I was trying to connect anonymously to Hacker Radio's IRC channel via a web page java form (not through an MIRC client) here:
http://www.hack3r.com/irc/index.html

I used an http:// proxy program. Testing it at anonymizer.com, cyberarmy and shieldsup all showed that I was masked and anonymized. So far so good.

However, when I connected to the hacker radio IRC channel via the web form, it says that I am using a spoofed IP and it stamps my domain name for everyone to see!

When I connect it says it found my hostname (domain name) "cached" on my system. However, I have turned off cache in Netscape, and disabled cookies.txt and cleared it. Where on my system could it be caching my domain name?

I then wrote a c++ program to search every file on my hard drive, including binary, to search for a text or hex string, to see if I could find where my domain name is being cached. A few places came up on Win2K pro:

drwtsn32.log
Adobereg.db
Scrap.shs
Memory.DMP (obviously)
AppEvent.evt
NSMad6M.tmp
CIM.Rep
NetSetup.log

Which did not point me in the right direction. If anyone can help me figure out how to get through this java applet anonymously I would be grateful! I know I can use http2socks with the real MIRC client, but I would rather figure out how to get through this java door anonymously!

Thanks in advance,
spamal

Again the URL is:
http://www.hack3r.com/irc/index.html

+SplAj
February 22nd, 2001, 05:17
Hey nice challenge ...

My approach :-

I usually wait for the Java to load it's own cab file on yer PC then switch to SI and HBOOT. This makes sure they don't clear the files when you exit the site.

On reboot you can usually find this file zipped/tarred etc in the IE cache as well as the htm source page.

(in this case jirc_mss.tgz)

Then I would analyse the .class files within with the give-away java tools ???

maybe this helps maybe not............

SplAj

spamal
February 23rd, 2001, 19:02
Thanks! Its worth a try!

BTW is anyone else able to connect to
http://www.hack3r.com/irc/index.html

through a http:// proxy and remain anonymous?