| I was farting around one day, with my tracer.... When what do my wandering fingers find? Tapping in random addys, I happened upon: 11.211.30.257
The actual range of the server is: 11.0.0.0 - 11.255.255.255 I thought that the results were 'intersting' to say the least. I then entered the addy into my browser To determine if it was a 'public information' server A Google of the addy reveals that it was until about 1982 it was a Chess (game) results site for the military/government recently: it shows no results at all for the addy Have you tried this by now? Are you suprised that I got a '404' error? "Page Not Found" Hereafter are the 'whois' results: 11.211.30.257 OrgName: DoD Network Information Center OrgID: DNIC Address: 7990 Science Applications Ct Address: M/S CV 50 City: Vienna StateProv: VA PostalCode: 22183-7000 Country: US NetRange: 11.0.0.0 - 11.255.255.255 CIDR: 11.0.0.0/8 NetName: DODIIS NetHandle: NET-11-0-0-0-1 Parent: NetType: Direct Allocation Comment: DoD Intel Information Systems Comment: Defense Intelligence Agency Comment: Washington, DC 20301 US RegDate: 1984-01-19 Updated: 1998-09-26 TechHandle: MIL-HSTMST-ARIN TechName: Network DoD TechPhone: +1-703-676-1051 TechEmail: [email protected] OrgTechHandle: MIL-HSTMST-ARIN OrgTechName: Network DoD OrgTechPhone: +1-703-676-1051 OrgTechEmail: [email protected] # ARIN WHOIS database, last updated 2005-01-12 19:10 # Enter ? for additional hints on searching ARIN's WHOIS database. OrgName: DoD Network Information Center OrgID: DNIC Address: 7990 Science Applications Ct Address: M/S CV 50 City: Vienna StateProv: VA PostalCode: 22183-7000 Country: US Comment: RegDate: Updated: 2003-07-03 AdminHandle: MIL-HSTMST-ARIN AdminName: Network DoD AdminPhone: +1-703-676-1051 AdminEmail: [email protected] TechHandle: MIL-HSTMST-ARIN TechName: Network DoD TechPhone: +1-703-676-1051 TechEmail: [email protected] # ARIN WHOIS database, last updated 2005-01-12 19:10 # Enter ? for additional hints on searching ARIN's WHOIS database. I have tried the range, randomly; all have met the same 'whois' results... You do as you please with the info; I only thought that it was interesting... ALSO: this may prove useful, as well... A scan is performed over some region of the Internet, searching for web servers accepting TCP connections on port 80. A specially formed "HTTP GET" request is then sent over the accepted connection to the server: GET /scripts/..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\ This command returns the contents of the system's C: drive to the requester, although any other valid command could be chosen. If the IIS server has received the latest patches, the response will be "HTTP/1.1 500 Server Error", telling the malicious hacker that this server is secure. But a successful response of "HTTP/1.1 200 OK" causes the server's IP address to be logged for future use . . . and the scan continues now with one additional Windows IIS machine in "inventory". ping.exe -n 9999999 -l 65500 -w 0 This command instructs the computer to send 9,999,999 maximum size (64k) ICMP Echo Requests, as fast as possible, to the target IP address. (Not to imply that DoD is vulnerable) Peace & Pot Over-Grow the government! Bush is a TRAITOR! |
| D.o.D. |
 |
 |
|
|