* [9fans] IP geolocation bug
@ 2007-04-03 3:47 Alex Kritikos
2007-04-03 4:00 ` Russ Cox
0 siblings, 1 reply; 7+ messages in thread
From: Alex Kritikos @ 2007-04-03 3:47 UTC (permalink / raw)
To: 9fans
Hello,
I have a fresh install of Plan 9 on QEMU, and networking (hget, ssh) works.
When I do a "9fs sources", I get:
srv tcp!sources.cs.bell-labs.com!9fs: mount failed: restricted remote access
Looking at sys/src/cmd/fossil/9p.c, this error occurs when the IP
address maps to a country where cryptography export is prohibited by
U.S. law. However, I am in Kansas.
For reference, my IP is currently 66.45.153.204, and my ISP only
changes it once every couple months.
If I am correct, can the /mnt/ipok at sources.cs.bell-labs.com be
changed to allow connections from Kansas?
If I not correct, this will be a very silly email.
Thanks,
Alex Kritikos
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [9fans] IP geolocation bug
2007-04-03 3:47 [9fans] IP geolocation bug Alex Kritikos
@ 2007-04-03 4:00 ` Russ Cox
2007-04-03 5:29 ` Lyndon Nerenberg
0 siblings, 1 reply; 7+ messages in thread
From: Russ Cox @ 2007-04-03 4:00 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
> srv tcp!sources.cs.bell-labs.com!9fs: mount failed: restricted remote access
Fixed, sorry. The DNS process had died and been restarted,
but the external program that checks IP addresses still had the
old one in its name space.
Russ
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [9fans] IP geolocation bug
2007-04-03 4:00 ` Russ Cox
@ 2007-04-03 5:29 ` Lyndon Nerenberg
2007-04-03 6:29 ` Bruce Ellis
0 siblings, 1 reply; 7+ messages in thread
From: Lyndon Nerenberg @ 2007-04-03 5:29 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
On Apr 2, 2007, at 9:00 PM, Russ Cox wrote:
> Fixed, sorry. The DNS process had died and been restarted,
> but the external program that checks IP addresses still had the
> old one in its name space.
Out of idle curiosity, what is the algorithm for determining the
country of origin?
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [9fans] IP geolocation bug
2007-04-03 5:29 ` Lyndon Nerenberg
@ 2007-04-03 6:29 ` Bruce Ellis
2007-04-03 7:35 ` Lyndon Nerenberg
0 siblings, 1 reply; 7+ messages in thread
From: Bruce Ellis @ 2007-04-03 6:29 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
the code is very cool. presto wrote it. not sure if it's public
tho i have a limbo version.
brucee
On 4/3/07, Lyndon Nerenberg <lyndon@orthanc.ca> wrote:
>
> On Apr 2, 2007, at 9:00 PM, Russ Cox wrote:
>
> > Fixed, sorry. The DNS process had died and been restarted,
> > but the external program that checks IP addresses still had the
> > old one in its name space.
>
> Out of idle curiosity, what is the algorithm for determining the
> country of origin?
>
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [9fans] IP geolocation bug
2007-04-03 6:29 ` Bruce Ellis
@ 2007-04-03 7:35 ` Lyndon Nerenberg
2007-04-03 7:41 ` Bruce Ellis
0 siblings, 1 reply; 7+ messages in thread
From: Lyndon Nerenberg @ 2007-04-03 7:35 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
On Apr 2, 2007, at 11:29 PM, Bruce Ellis wrote:
> the code is very cool. presto wrote it. not sure if it's public
> tho i have a limbo version.
I guess I'm more curious about how to validate the database of source
IP addresses in the face of tunneling. The Nanog crowd simply foams
at the mouth when this subject comes up.
Has someone come up with a way to characterize packet flows through
tunnels in a way that makes it possible to fingerprint the origin?
That can fingerprint the client on the far end of Tor a pipe?
--lyndon
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [9fans] IP geolocation bug
2007-04-03 7:35 ` Lyndon Nerenberg
@ 2007-04-03 7:41 ` Bruce Ellis
2007-04-03 8:23 ` Lyndon Nerenberg
0 siblings, 1 reply; 7+ messages in thread
From: Bruce Ellis @ 2007-04-03 7:41 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
it scrounges around, as would the author, and makes a good guess.
the ozinferno http service uses the algorithm. it blocks kansas
(only kidding).
brucee
On 4/3/07, Lyndon Nerenberg <lyndon@orthanc.ca> wrote:
>
> On Apr 2, 2007, at 11:29 PM, Bruce Ellis wrote:
>
> > the code is very cool. presto wrote it. not sure if it's public
> > tho i have a limbo version.
>
> I guess I'm more curious about how to validate the database of source
> IP addresses in the face of tunneling. The Nanog crowd simply foams
> at the mouth when this subject comes up.
>
> Has someone come up with a way to characterize packet flows through
> tunnels in a way that makes it possible to fingerprint the origin?
> That can fingerprint the client on the far end of Tor a pipe?
>
> --lyndon
>
^ permalink raw reply [flat|nested] 7+ messages in thread
* Re: [9fans] IP geolocation bug
2007-04-03 7:41 ` Bruce Ellis
@ 2007-04-03 8:23 ` Lyndon Nerenberg
0 siblings, 0 replies; 7+ messages in thread
From: Lyndon Nerenberg @ 2007-04-03 8:23 UTC (permalink / raw)
To: Fans of the OS Plan 9 from Bell Labs
On Apr 3, 2007, at 12:41 AM, Bruce Ellis wrote:
> it blocks kansas
That's easy -- there's nobody there.
^ permalink raw reply [flat|nested] 7+ messages in thread
end of thread, other threads:[~2007-04-03 8:23 UTC | newest]
Thread overview: 7+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2007-04-03 3:47 [9fans] IP geolocation bug Alex Kritikos
2007-04-03 4:00 ` Russ Cox
2007-04-03 5:29 ` Lyndon Nerenberg
2007-04-03 6:29 ` Bruce Ellis
2007-04-03 7:35 ` Lyndon Nerenberg
2007-04-03 7:41 ` Bruce Ellis
2007-04-03 8:23 ` Lyndon Nerenberg
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).