Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
@lopu that is.... dumb? Security nightmare? ISP will run out of public IP addresses?
It is not the ISP fault, but whoever configured your internal LAN. there should not be a DHCP passthrough to the internal network. -
lopu8796y@magicMirror I'm up to 0.5.151.150 and counting no active ip's found yet.
I'm guessing I won't start finding any again until 100.x.x.x ish -
lopu8796y@iKameo there's a technician coming out tomorrow. The ISP is telstra in australia, melbourne btw :'D
-
lopu8796yI think that maybe....... I'm a bit confused because I'm getting heaps of results from scanning 1.0.0.0 to 255.255.255.255 but those results include pings like 1.0.0.1 which is some dns provider
So I'm not sure if my subnet is actually private and any results I'm getting are normal internet ipv4 addresses, but why would telstra have given us 3825 ipv4 addresses???? or like, I'm so confused about this situation, it might actually not be so bad because the results I got might just be normal public ipv4 addresses??? -
lopu8796ybut that means I wouldn't be able to access public ip's within my x.x.15.255 subnet???
I wonder wtf is going on -
lopu8796ymy device's ip address is 121.2xy.7.96 ..... according to wiki that's in the public ipv4 range, private is
10.0.0.0 10.255.255.255 16777216
172.16.0.0 172.31.255.255 1048576
192.168.0.0 192.168.255.255 65536
so................ how the fuck does that even work, my device is literally public on the internet.... with only my own firewall for protection??????? -
lopu8796ylike how, what in the actual fuck, my hostname was actually changed to something like cpe-121-211-16-77.bwui-cr-001.ken.nsw.bigpond.net.au
so I changed it back to my original one
but like, wtf, they gave my device and all my family's devices public ip addresses?????? -
lopu8796ywe've been assigned public ip addresses for private ip addresses, idek how the lan networking works for that....? like we have no private dns we're just using the internet's dns....????
-
lopu8796ysorry tracert results
Traceroute has started…
traceroute to 121.2xy.7.96 (121.2xy.7.96), 64 hops max, 72 byte packets
1 cpe-121-211-7-96.bwui-cr-001.ken.nsw.bigpond.net.au (121.2xy.7.96) 0.571 ms 0.090 ms 0.062 ms -
lopu8796y@iKameo yeah cause it was my own ip I'm fully retarded
I'm doing one on another ip in my subnet, it's taking a lot longer -
lopu8796y@iKameo yep we have a router but even the tech support of the isp couldn't figure out the router ip, I was told to try 192.168.0.1, it didn't work, and after that they gave up........
how does the whole /x thing work with ips, cause htere's like 1.2.3.4/5 ????? is it a way to extend ipv4 or what? -
@lopu on an unrelated note, what is, version and patch do you run? ....just curious?
-
lopu8796y@iKameo 127.0.0.1 brings up my nginx
well I mean like... idk, my machine is like some server with a public ip, or even more fucky like it's pure device on the internet or some shit
the tracert is at 50 jumps right now for my dads laptop......... -
@lopu ok. your router does not route (L3), it only works as a switch (L2). you are using whatever was provided in the dhcp config for gateway and dns. It is very easy to solve - when you control your own damn router. If you are using the router provided by your ISP as is, then it is thier problem. take down whatever devies you have up, before they get remotly hacked, and stop ping scanning the entire internet. Use Shodan FFS, if you really have too.
Also, you might already be hacked. -
lopu8796y@magicMirror I don't doubt that
I had these ports open
Open TCP Port: 53 domain
Open TCP Port: 445 microsoft-ds
Open TCP Port: 631 ipp
Open TCP Port: 3233 whisker
Open TCP Port: 4644
Open TCP Port: 4645
Open TCP Port: 5432 postgresql
Open TCP Port: 15292
Open TCP Port: 17500
Open TCP Port: 17600
Open TCP Port: 17603
Open TCP Port: 27017
Open TCP Port: 31742
Open TCP Port: 31743
+ some 50xxx ones I think but the scan is taking too long
and yeah lol when I realised I was just pinging the whole internet.......... -
lopu8796yI thought something was fishy when one night my hostname changed from lopu-pro to cpe-121-211-7-96.bwui-cr-001.ken.nsw.bigpond.net.au ......
-
@lopu I don't know what's more concerning: the fact that they would leave you exposed like this, or the fact you are literally broadcasting your IP like that.
It's almost too easy. -
Condor323326yThat is an amazing thing! Be thankful to get an entire subnet until they notice, or pentest the other devices under their (your?) network, choices are difficult indeed! Oh well. The only thing that I'd take away from it is that that ISP is as incompetent as it can be. Other than that, follow your ethical compass really.
-
Condor323326yActually, come to think of it.. probing the ISP network you can probably do regardless of whether you got that subnet.. so don't bother. You can however use it to probe the internet and use it to hide your tracks to remotes' sysadmins (your ISP will have logs though) and confuse remote IDS systems. Or you can use this newly acquired subnet to host a bunch of internet-facing services... Depends on your hat really.
-
@lopu so why exactly did you censor your IP with '2xy' and in the same sentence told us your hostname, which contains the uncensored IP '211'?
Related Rants
so my isp assigned all of our devices WAN ip's instead of giving our router a WAN ip and letting us handle our own lan.
so our subnet is x.x.15.255
but when I subnet scan x.x.255.255 I get 1337 results, no joke 1337
so I can access windows servers, ip cameras, sure a lot of them are locked, I'm scanning 0.0.0.1 - 255.255.255.255 now to see what else there is.
wwyd?
question
1337