EG IP Policies

Discussion in 'Security' started by GRIM, Dec 17, 2012.

  1. chris32

    chris32 Guest

    Local Time:
    9:25 AM
    good stuff.. thanks GRIM
     
  2. slimpickings

    slimpickings Fear the Chihuahua Iron Killer Getting Jacked

    EG Money:
    $9
    Local Time:
    9:25 AM
    Hell yea just keep me safe boss!!!
     
  3. GRIM

    GRIM Administrator Staff Member Security and brotherhood Respect and Loyalty Iron Killer Getting Jacked

    EG Money:
    $853
    Local Time:
    3:25 AM
    ;)
     
  4. Kuntrykok

    Kuntrykok EG Freak Iron Killer Getting Jacked

    EG Money:
    $112
    Local Time:
    2:25 AM
    That's top notch security right there! Thanks Grim
     
  5. hntd

    hntd Guest

    Local Time:
    9:25 AM
    Couple questions about this GriM.

    1. Are you talking your pruning IPs from the web applications? So you go and delete the data from the DB?
    2. I assume you're running apache, have you altered the way apache logs requests out of the standard W3 style (which includes ip)
    3. Iptables logging?
    4. What about other firewall based logging? Is all that turned off?
    5. How about when you yourself SSH into the machine does it log your hostmask/ip from where you SSH in?
     
  6. GRIM

    GRIM Administrator Staff Member Security and brotherhood Respect and Loyalty Iron Killer Getting Jacked

    EG Money:
    $853
    Local Time:
    3:25 AM
    #1 from the forum/data base
    #2 the logs are fully pruned every 2 weeks, for security purposes I can not turn them fully off on the board server..
    #3 Only on errors for general security, to block brute force etc.
    #4 Of course not, I'm not gonna endanger the server / users. Only actual errors, hack attempts, brute force etc are logged and those are pruned as well. Blocks however remain as they should.
    #5 Yes it does so I can assure I'm the last 1 on the machine, I ssh in via numerous different vpn's I control.
     
  7. RS50

    RS50 Mutation Getting Jacked

    EG Money:
    $0
    Local Time:
    3:25 AM
    hell, is your last name jobs or gates
     
  8. hntd

    hntd Guest

    Local Time:
    9:25 AM
    Should setup some cron jobs to automate this process.
     
  9. littlefurious

    littlefurious Guest

    Local Time:
    9:25 AM
    Damn glad there's someone that knows about this crap to help keep me safe. Organic chemistry, I know...this shit, I glad YOU'RE. Thanks again for all the hard work you put in to help keep us safe bro, it's truly appreciated!
     
  10. GRIM

    GRIM Administrator Staff Member Security and brotherhood Respect and Loyalty Iron Killer Getting Jacked

    EG Money:
    $853
    Local Time:
    3:25 AM
    that's how it is set up ;)
     
  11. GRIM

    GRIM Administrator Staff Member Security and brotherhood Respect and Loyalty Iron Killer Getting Jacked

    EG Money:
    $853
    Local Time:
    3:25 AM
    server now removes all ip's 3x a day..
     
  12. dowork

    dowork EG Freak Iron Killer Getting Jacked Board Donator

    EG Money:
    $0
    Local Time:
    9:25 AM
  13. GRIM

    GRIM Administrator Staff Member Security and brotherhood Respect and Loyalty Iron Killer Getting Jacked

    EG Money:
    $853
    Local Time:
    3:25 AM
    I try ;)

    But seriously most admins use this info to sell advertising, keep up on traffic trends etc.

    Well I don't sell advertising, so it's only needed for a short time for the firewall systems.
     
  14. chris32

    chris32 Guest

    Local Time:
    9:25 AM
    as always... thanks for taking care of us :)
     
  15. GRIM

    GRIM Administrator Staff Member Security and brotherhood Respect and Loyalty Iron Killer Getting Jacked

    EG Money:
    $853
    Local Time:
    3:25 AM
    np, someone has to watch out 4 u noobz! :p
     
  16. hntd

    hntd Guest

    Local Time:
    9:25 AM
    This is not necessarily true. IP does not always go directly to you depending how your ISP routes things. Also, if you are on any kind of dynamic ip address (basically most every modern ISP) your IP is changing a lot again based on routing. Also, they can't just track it to you, they have to get subpeona to the ISP who then has to turn it over. And if it's a large apartment or house they have a hard time proving it's you, basically an IP is not a person and it's very hard to prove specific traffic is an individual.
     
  17. GRIM

    GRIM Administrator Staff Member Security and brotherhood Respect and Loyalty Iron Killer Getting Jacked

    EG Money:
    $853
    Local Time:
    3:25 AM
    ip is not a person was ruled on a totally different case, civil supeona's totally different.

    And there have been cases of isp's giving this information over w/o any court order @ all.

    Thousands of cases start off simply from the IP. Will you get arrested just off the IP? No. Will it give LE the warrant they seek? In most cases yes..

    Yes traffic can be routed differently, people can steal wifi, so many variables. The IP however is the starting point, forensics can easily narrow down those nuances and a little bit of detective work does the rest.

    Or are you gonna claim tens of thousands of cases are now null and void, I want to see those links and pyes released as an IP is not a person they had no right to even search him.

    Whoops totally different cases and meanings.

    1 was civil 1 is criminal..

    btw dynamic makes no difference, not sure what your point is there as isps log that info to the customer dynamic or not.
     
  18. hntd

    hntd Guest

    Local Time:
    9:25 AM
    All my information is straight from my lawyer, I'm not interpreting law. An ip is usually not enough to get a warrant, they need more probable cause like in your PMs you mention selling or something of that nature, they claim to be investigating conspiracy to distribute, things of that nature. An IP is increasing becoming less and less useful as the internet becomes more ubiquitous in our lives. As a result, it's becoming harder and harder to prove an IP to a person's actions. Look, I'm not saying don't prune them, I totally agree with pruning, I'm just saying you shouldn't see your IP address being the be all end all.
     
  19. GRIM

    GRIM Administrator Staff Member Security and brotherhood Respect and Loyalty Iron Killer Getting Jacked

    EG Money:
    $853
    Local Time:
    3:25 AM
    Well yeah an IP address and illegal activity...

    http://blogs.wsj.com/law/2012/11/21/court-police-can-locate-wireless-internet-moochers-without-a-warrant/

    an interesting read..and ill see if i can find articles where isps have handed info over w/o even a court order.

    Your lawyer might be telling you this, but I sure see enough articles where illegal conduct and ip address = warrant...
     
  20. hntd

    hntd Guest

    Local Time:
    9:25 AM
    I mean, let's be realistic here. CP is on an entirely new level of horrible. Also, this article basically says that this case is under appeal and highly subjective and not clear cut.
     
Loading...
Similar Threads - Policies
  1. GRIM
    Replies:
    4
    Views:
    82
  2. GRIM
    Replies:
    7
    Views:
    73

Share This Page