JS and proxies.

B

Billy

Does anyone know how often JS is used to grab someone's IP address even
if they are using a proxy?

For example if they are using a proxy with webmail such as Yahoo,
Hotmail or Lycos.

Or is this just an example of paranoia!?
 
C

Christopher J. Hahn

Billy said:
Does anyone know how often JS is used to grab someone's IP address even
if they are using a proxy?

For example if they are using a proxy with webmail such as Yahoo,
Hotmail or Lycos.

Or is this just an example of paranoia!?
Click to expand...

So far as I know, JavaScript has no way of accessing the IP address of
the client machine, regardless of proxies.

I believe VBScript can, though. You might want to inquire in a VBScript
group about that one, because it's effectually little different. If
it's possible, a simple protection is... use something other than
Internet Explorer.
 
R

Randy Webb

Danny said:
Can't do with js, no access to it per se, is usually done on the
server end, quite easy on the server, there's a global variable you can
use to get it, $REMOTE_ADDR.
Click to expand...

And that variable is totally useless when trying to get my IP address.
 
C

Christopher J. Hahn

Danny said:
Can't do with js, no access to it per se, is usually done on the server
end, quite easy on the server, there's a global variable you can use to
get it, $REMOTE_ADDR.

Danny
Click to expand...

That would be sufficient for anybody not using a proxy, yes. But the OP
is worried about whether there's a client-side way to obtain his local
IP even when he is behind a proxy.

The REMOTE_ADDR, in this case, would be the IP address of the proxy
server. Use of proxies is common to try to hide one's IP from a remote
machine, either for privacy or traceability reasons.
 
V

VK

Does anyone know how often JS is used to grab someone's IP address even
if they are using a proxy?
Click to expand...

Not with JavaScript (all browsers exept IE).

Possible with JScript (IE 5.0 and higher) using it as a transport to
VBScript over
execScript().
*But* only if user is stupid enough to click Yes on "this page contains
potentially dangerous content".
If you move security settings to High, when nothing to worry about at
all (popup will not appear, script not executed). Lesser users take
security decisions - better for company :)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

const and proxies of objects 17
Using JS to verify registration info? 1
Ajax / Native XMLHTTP and Proxies 0
urllib2 and proxies support ? 1
Encapsulation and js, html, css 12
There is something weird going on my instagram and i need to know if it was done on purpose by someone else 2
Help with Python Flask on PI as server SSE to website 0
lwp POST and proxies 4

Members online

No members online now.
Total: 45 (members: 0, guests: 45)
Robots: 155

Forum statistics

Threads
473,754
Messages
2,569,528
Members
45,000
Latest member
MurrayKeync

Latest Threads

Top