flat assembler
Message board for the users of flat assembler.

Index > Feedback > Firefox FASM Board Issues

Goto page Previous  1, 2, 3
Author
Thread Post new topic Reply to topic
LocoDelAssembly
Your code has a bug


Joined: 06 May 2005
Posts: 4633
Location: Argentina
LocoDelAssembly
Quote:

If I try HTTP then I get a blank page and cannot use the board at all with my giant cookie.

Same behavior I commented on that old post then. Rest to investigate whether a transparent proxy on the path is guilty of this or not. Can you tcptraceroute somehow? If you can see a noticeable difference between that and a regular traceroute/tracert then it is very likely you are behind proxies like me.
Post 18 May 2009, 01:16
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17450
Location: In your JS exploiting you and your system
revolution
What do I put for the interface?
Quote:
>tcptraceroute.exe board.flatassembler.net
libnet_init() failed: libnet_if_addr.c(): no network interface found
Post 18 May 2009, 07:02
View user's profile Send private message Visit poster's website Reply with quote
LocoDelAssembly
Your code has a bug


Joined: 06 May 2005
Posts: 4633
Location: Argentina
LocoDelAssembly
revolution, if you will do this on Windows then download http://sourceforge.net/project/showfiles.php?group_id=88080

Here what I get:
Code:
(tracetcp.exe board.flatassembler.net)
Tracing route to 65.254.250.130 [65-254-250-130.yourhostingaccount.com] on port 80
Over a maximum of 30 hops.
1   4 ms    2 ms    2 ms    192.168.1.1     
2   *       *       *       Request timed out.
3 12 ms   12 ms   53 ms   200.51.233.144  [RBRCH01-Gi8-2-3920.mrse.com.ar]
4   Destination Reached in 12 ms. Connection established to 65.254.250.130
Trace Complete.

(tracetcp.exe board.flatassembler.net:443)
Tracing route to 65.254.250.130 [65-254-250-130.yourhostingaccount.com] on port 443
Over a maximum of 30 hops.
1       4 ms    2 ms    2 ms    192.168.1.1     
2   *       *       *       Request timed out.
3 18 ms   16 ms   16 ms   200.51.233.144  [RBRCH01-Gi8-2-3920.mrse.com.ar]
4   14 ms   14 ms   16 ms   200.51.233.135  [RBRCH01-Po11.mrse.com.ar]
5 23 ms   16 ms   16 ms   84.16.10.141    [So4-0-0-0-grtbueba2.red.telefonica-wholesale.net.10.16.84.in-addr.arpa]
6   69 ms   125 ms  70 ms   213.140.49.18   [Xe7-3-0-0-grtlurem4.red.telefonica-wholesale.net]
7 129 ms  129 ms  156 ms  84.16.15.82     [Xe9-3-0-0-grtmiabr5.red.telefonica-wholesale.net]
8 164 ms  164 ms  162 ms  213.140.38.237  [Xe1-0-0-0-grtdaleq1.red.telefonica-wholesale.net]
9 *       313 ms  237 ms  154.54.13.225   [te4-4.ccr02.dfw03.atlas.cogentco.com]
10    197 ms  394 ms  323 ms  66.28.4.133     [te9-1.ccr02.dfw01.atlas.cogentco.com]
11    217 ms  215 ms  258 ms  154.54.5.222    [te8-4.ccr02.mci01.atlas.cogentco.com]
12    241 ms  392 ms  197 ms  154.54.6.254    [te2-1.mpd02.ord01.atlas.cogentco.com]
13    195 ms  211 ms  199 ms  154.54.6.181    [te7-2.ccr02.bos01.atlas.cogentco.com]
14    *       209 ms  211 ms  66.28.5.214     [gi0-2.na21.b006523-1.bos01.atlas.cogentco.com]
15   210 ms  204 ms  227 ms  38.99.213.62    [endurance-international-group.demarc.cogentco.com]
16       206 ms  219 ms  211 ms  207.148.225.36  [36.225.148.207.static.yourhostingaccount.com]
17    Destination Reached in 203 ms. Connection established to 65.254.250.130
Trace Complete.    


As you can see, HTTPS does not enjoy of super-hyper-spatial jump as HTTP does.
Post 18 May 2009, 17:55
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17450
Location: In your JS exploiting you and your system
revolution
I will have to run it another time when I am not on Wifi.
Quote:
C:\Documents and Settings\We are the Borg\Our Documents>tracetcp.exe board.flatassembler.net
ARP::whoHas: no response
It needs Winpcap which is not in my main machine, so this response is from my travelling "unsecure" machine that connects through Wifi wherever I am on the day. And as we know, Winpcap can only work with cable LAN (will it ever be updated?).
Post 18 May 2009, 18:23
View user's profile Send private message Visit poster's website Reply with quote
LocoDelAssembly
Your code has a bug


Joined: 06 May 2005
Posts: 4633
Location: Argentina
LocoDelAssembly
Well, there are other methods, but I'm not so sure how successful could be on your side. Try "telnet 1.1.1.1 80", if it successfully connect then it is very likely you are behind a proxy. Try others IPs that you are sure there is nothing at there or that at least there is no host with TCP port 80 open.

Another approach that works is to set, say, www.google.com:80 as your HTTP proxy in Firefox and then browse some sites, it it still works then you are under proxy for sure.

Finally, via telnet (or Quetannon, download it from the fasm's examples site), you can TRACE requests like this example:

Code:
Connected.
TRACE / HTTP/1.1
Host: board.flatassembler.net
Max-Forwards: 0

HTTP/1.1 405 Not Allowed
Server: nginx
Date: Mon, 18 May 2009 18:35:04 GMT
Content-Type: text/html
Content-Length: 166
Connection: Keep-Alive

<html>
<head><title>405 Not Allowed</title></head>
<body bgcolor="white">
<center><h1>405 Not Allowed</h1></center>
<hr><center>nginx</center>
</body>
</html>
Disconnected.
Connected.
TRACE / HTTP/1.1
Host: board.flatassembler.net
Max-Forwards: 0

HTTP/1.1 200 OK
Date: Mon, 18 May 2009 18:57:00 GMT
Content-Length: 98
Content-Type: message/http
Server: NetCache appliance (NetApp/6.0.7)

TRACE http://board.flatassembler.net/ HTTP/1.1
Host: board.flatassembler.net
Max-Forwards: 0

Disconnected.

Connected.
TRACE http://board.flatassembler.net/ HTTP/1.1
Host: board.flatassembler.net
Max-Forwards: 0

HTTP/1.1 200 OK
Date: Mon, 18 May 2009 22:20:51 GMT
Content-Length: 98
Content-Type: message/http
Server: NetCache appliance (NetApp/6.0.7)

TRACE http://board.flatassembler.net/ HTTP/1.1
Host: board.flatassembler.net
Max-Forwards: 0

Disconnected.
    


The first attempt was to 1.1.1.1 and reached the board's server but the second directed to 1.1.2.1 was replied by a proxy. As you can see the configuration of the proxies is not homogeneous (not even the same brand actually, I have determined in the past that the ISP is running both, NetCache and BlueCoat proxies).

Note that 1.1.1.1 and 1.1.2.1 are not the real proxies IPs, they just intercept whatever TCP port 80 packet that is routed to them and by some unknown (to me) hashing function the traffic is distributed among them based on the destination IP. (This was verified by methods that currently are not possible to apply anymore because of configuration changes they made, I was even able to unmask their public IP before)

PS: The third attempt was to board.flatassembler.net IP address.
Post 18 May 2009, 18:43
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17450
Location: In your JS exploiting you and your system
revolution
Telnet won't connect:
Quote:
C:\Documents and Settings\We are the Borg\Our Documents>telnet 1.1.1.1:80
Connecting To 1.1.1.1:80...Could not open connection to the host, on port 23: Co
nnect failed
The google proxy only works for google searches, with other sites I get an error from google saying link not found.
Post 18 May 2009, 18:55
View user's profile Send private message Visit poster's website Reply with quote
LocoDelAssembly
Your code has a bug


Joined: 06 May 2005
Posts: 4633
Location: Argentina
LocoDelAssembly
It is "telnet 1.1.1.1 80" not "telnet 1.1.1.1:80".

The error you mention about Google may indicate you're not behind proxies (though, it could still be, as maybe them honor the destination IP unlike my proxies that always connects to whatever the header Host says).

Try again with telnet to ensure there is nothing there. Also, to be sure 1.1.1.1 is not blocked due to the fact it is not allocated yet, try "telnet 201.255.1.1 80" or some IPs of the 201.255/16 network (those are costumer IPs of my ISP so it is very likely that there is no HTTP server there).

There could be some other tests, but I think I'll not take paranoia any further for now...
Post 18 May 2009, 19:35
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17450
Location: In your JS exploiting you and your system
revolution
I have deleted my over-sized cookie. It is just too confusing with all the unread threads.

I will have to try the telnet thing again later. I don't know how I thought there was a colon in there Embarassed
Post 19 May 2009, 06:19
View user's profile Send private message Visit poster's website Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17450
Location: In your JS exploiting you and your system
revolution
I have tried this on my main connection. The results are below:

fasm board HTTP:
Code:
C:\Documents and Settings\We are the Borg\Our Documents>tracetcp board.flatassembler.net

Tracing route to 65.254.250.130 [65-254-250-130.yourhostingaccount.com] on port 80
Over a maximum of 30 hops.
1       2 ms    2 ms    2 ms    10.9.8.2 <internal VPN IP>
2       4 ms    2 ms    2 ms    192.168.1.1 <VPN exits to a LAN router>
3       Destination Reached in 4 ms. Connection established to 65.254.250.130
Trace Complete.    
fasm board HTTPS:
Code:
C:\Documents and Settings\We are the Borg\Our Documents>tracetcp board.flatassembler.net:443

Tracing route to 65.254.250.130 [65-254-250-130.yourhostingaccount.com] on port 443
Over a maximum of 30 hops.
1       2 ms    2 ms    2 ms    10.9.8.2 <internal VPN IP>
2       1 ms    2 ms    14 ms   192.168.1.1 <VPN exits to a LAN router>
3       4 ms    6 ms    4 ms    <The fixed IP, WAN side>
4       16 ms   19 ms   *       <Local ISP at exit point of the VPN>
5       21 ms   56 ms   43 ms   <Local ISP at exit point of the VPN>
6       21 ms   14 ms   63 ms   <Local ISP at exit point of the VPN>
7       16 ms   14 ms   289 ms  <Local ISP at exit point of the VPN>
8       71 ms   15 ms   23 ms   <Local ISP at exit point of the VPN>
9       235 ms  231 ms  229 ms  <Local ISP at exit point of the VPN>
10      233 ms  *       231 ms  154.54.12.65    [gi2-8.mpd01.sjc04.atlas.cogentco.com]
11      235 ms  231 ms  235 ms  154.54.7.173    [te8-2.ccr02.sfo01.atlas.cogentco.com]
12      254 ms  254 ms  250 ms  154.54.24.118   [te9-2.ccr02.mci01.atlas.cogentco.com]
13      280 ms  280 ms  278 ms  154.54.25.78    [te7-2.mpd02.ord01.atlas.cogentco.com]
14      279 ms  303 ms  283 ms  154.54.7.170    [te8-1.ccr02.bos01.atlas.cogentco.com]
15      282 ms  279 ms  279 ms  66.28.5.214     [gi0-2.na21.b006523-1.bos01.atlas.cogentco.com]
16      279 ms  316 ms  280 ms  38.99.213.62    [endurance-international-group.demarc.cogentco.com]
17      376 ms  303 ms  305 ms  207.148.225.36  [36.225.148.207.static.yourhostingaccount.com]
18      Destination Reached in 288 ms. Connection established to 65.254.250.130
Trace Complete.    
fasm boad from normal tracert:
Code:
C:\Documents and Settings\We are the Borg\Our Documents>tracert board.flatassembler.net

Tracing route to board.flatassembler.net [65.254.250.130]
over a maximum of 30 hops:

  1     *        *        *     Request timed out.
  2     1 ms     3 ms     1 ms  192.168.1.1 <VPN exits to a LAN router>
  3     5 ms     2 ms     2 ms  <The fixed IP, WAN side>
  4   143 ms     *      235 ms  <Local ISP at exit point of the VPN>
  5     *        *        *     Request timed out.
  6     *        *        *     Request timed out.
  7     *        *        *     Request timed out.
  8     *        *        *     Request timed out.
  9     *        *        *     Request timed out.
 10     *        *        *     Request timed out.
 11     *        *        *     Request timed out.
 12     *        *        *     Request timed out.
 13     *        *        *     Request timed out.
 14     *        *        *     Request timed out.
 15     *        *        *     Request timed out.
 16     *        *        *     Request timed out.
 17     *        *        *     Request timed out.
 18     *        *        *     Request timed out.
 19     *        *        *     Request timed out.
 20     *        *        *     Request timed out.
 21     *        *        *     Request timed out.
 22     *        *        *     Request timed out.
 23     *        *        *     Request timed out.
 24     *        *        *     Request timed out.
 25     *        *        *     Request timed out.
 26     *        *        *     Request timed out.
 27     *        *        *     Request timed out.
 28     *        *        *     Request timed out.
 29     *        *        *     Request timed out.
 30     *        *        *     Request timed out.

Trace complete.    
Question What can I make of that? The HTTPS has more hops than a rabbit in heat! So I guess there is a proxy right in the LAN at my VPN exit point. I will have to talk to those guys and ask them what they are up to! Evil or Very Mad

NOTE: I have masked some of the IP's. My VPN provider prefers not to be identified.
Post 19 May 2009, 10:40
View user's profile Send private message Visit poster's website Reply with quote
LocoDelAssembly
Your code has a bug


Joined: 06 May 2005
Posts: 4633
Location: Argentina
LocoDelAssembly
If you are interested in determining what proxy they are using try doing the TRACE request I've shown above, that may tell something (like some of the proxies of my ISP). Nmap may say something also by analysing packets signatures but don't remember know how I used it nor if the identification was successful.
Post 19 May 2009, 13:26
View user's profile Send private message Reply with quote
revolution
When all else fails, read the source


Joined: 24 Aug 2004
Posts: 17450
Location: In your JS exploiting you and your system
revolution
No need for me to go discovering which proxy software, I can just ask them next time I am there. I'll probably buy them lunch in return for extracting some information about what they are using the proxy for. Evil or Very Mad

Maybe I can also convince them to configure me for no proxy access. Twisted Evil
Post 19 May 2009, 16:36
View user's profile Send private message Visit poster's website Reply with quote
Display posts from previous:
Post new topic Reply to topic

Jump to:  
Goto page Previous  1, 2, 3

< Last Thread | Next Thread >
Forum Rules:
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Copyright © 1999-2020, Tomasz Grysztar. Also on YouTube, Twitter.

Website powered by rwasa.