Related
Hello
The other day i surfed to google from my XDA exec.
mobile internet rocks!!
i was wondering how does google know that i surfed in from a pda, cause i think it sent me to
www.google.co.uk/pda
the web page probably detected your screen size and redirected you to a page that was more friendly to you PDA browser. i wish more sites would do this.
www.google.com/pda for us US residents.
LOL
Not the screen size but the type of your internet browser, in this case Pocket IE.
Correct--it's not the screen size.
Although a LOT of your information is sent over the wire, much more than most of us realize, your resolution information is unknown to most websites, unless you explicitly allow it to be given via some kind of an executable that transmits such information. An example would be an embedded ActiveX object in IE for Windows.
Back on topic, yes, your browser information is known, not only to Google, but to every other website you visit. Not only that, the website also knows where you came from (i.e. the http addy) and where you went when you left it. There's a whole bunch of information deemed to be private that we would rather keep to ourselves (such as our surfing habits) that's known to any website that installs a cookie (a common thing nowadays) on your computer.
This is also how Google knows where you are. For example, when I log on, Google send me to the local Saudi page at http://www.google.com.sa/ It knows this information by doing a reverse lookup on your IP address, and comparing it against known databases of geographically assigned IPs. Since IP addresses are assigned and tied to geographical locations, it's easy enough to do, although it's still very disconcerting to see.
Be careful folks, even your searching habits are being tracked by Google. I have nothing to hide, so I don't care, but many folks do. Witness the recent Federal inquiry into the searching habits of the users of major search engines. Yahoo and MSN gave up that information quickly enough but Google is resisting. I don't think it will be able to hold out for very long though.
Imagine...now the fact that you searched for p0rn on the 'net is well known to anyone in the know. Scary, isn't it?
This Privacy Newsbyte brought to you courtesy of XDA-Dev's online donation campaign. Donate or be left in the dust!
thanks monakh
so google can detect both my mobile ip address (is there such a thing?) and my browser, correct?
monakh said:
the website also knows where you came from (i.e. the http addy)
Click to expand...
Click to collapse
Correct, through the referrer...
monakh said:
and where you went when you left it.
Click to expand...
Click to collapse
Only if you click a link on the site itself, -and- it is handled via a special handler.
No information is sent to a website when you leave it through e.g. a bookmark in your browser, or by typing in a new URL.
Please correct me if I'm wrong
You are correct.
hey i mailed myself (google account) using my adsl modem and using the gprs/3g connection to check the header to see if i could spot an originating ip address
i found one common ip address
Received: by 10.xy.za.b with HTTP; Sat, 18 Feb 2006 05:34:45 -0800 (PST)
i guess this is the google server, correct?
is there any way to prise the originating ip address from an email
That's why there is a registry hack to set Pocket Internet Explorer works like Internet Explorer 6.0.
Tuningszocske said:
That's why there is a registry hack to set Pocket Internet Explorer works like Internet Explorer 6.0.
Click to expand...
Click to collapse
Not entirely... I mean, you could - of course. But it also means that many sites will fail to send you PDA-specific content - which, with most plans/top-ups, means heavy costs.
Identifying PIE as IE6 is more used for stupid websites who check whether the browser is IE6 or above, regardless of whether that is actually required by the site.
There's three parts, the compatibility bit ('(Default) = Mozilla/4.0'), the browser string ('Version = MSIE 6.0') and the platform ('Platform = Windows NT 5.0'). If you leave the last bit intact ('Platform = Windows CE'), then you should still be able to get into stupid sites, while having PDA-friendly sites send you the PDA content.
oh i had not thought about the popups
i guess we wont get(suffer) popups with mobile ie5?
i just posted to this bulletin board to check my ip address
from the pc it looks like this 82.1a.bcd.efg
and fro my cda it looks like 193.abc.def.ghi
That's fine because presumably your mobile device and your home PC are on different networks so they sport different IPs.
IPs are a dead giveaway. In many cases, your position can be 'somewhat' and primitively triangulated to within 5 square miles of where you are. This may not be necessarily true for mobile networks, but those networks know where you are at all times anyway. In fact, there is now regulation in the US that mandates all handset makers to manufacture hardware with GPS functionality built-in. Between the two and a half dozen GPS satellites and your cellular network, you can run but you can't hide
This is, of course, so emergency services can reach you in time of need (in case you are unable to make the call to 911/999).
Of course...
monakh said:
This is, of course, so emergency services can reach you in time of need (in case you are unable to make the call to 911/999).
Click to expand...
Click to collapse
off-topic...
Technically it's so they can find you if you do call 911/999/112/whathaveyou but are unable (due to injuries, or duress, etc.) to state your location.
Being able to find you at any time is an added perk but it needs court orders even if you have been reported and officially designated a "missing person". Getting such a court order can take many hours, being declared a missing person can take 24 hours up to 48 hours (depends on the country and exactly what reasons you have to believe the person in question is truely missing).
ZeBoxx said:
monakh said:
This is, of course, so emergency services can reach you in time of need (in case you are unable to make the call to 911/999).
Click to expand...
Click to collapse
off-topic...
Technically it's so they can find you if you do call 911/999/112/whathaveyou but are unable (due to injuries, or duress, etc.) to state your location.
Click to expand...
Click to collapse
Ahh yes, I stand corrected.
It's so we CAN make the call and are unable to state the location. That WOULD make sense. However, like you said, there are legal hurdles, although at least in the U.S., they are fewer and far between.
is there any ip address list out there which tells me which ip addresses are allocated to which country?
are ip addresses bunched like telephone numbers
e.g. +1 is north america
+3 and +4 is europe
+96 & +97 middle east
nope, that's not how they work
organisations can get an IP from their service provider, who get blocks from their service providers, who get bigger blocks from places like RIPE, who in turn get huge blocks from ARIN.
But if it's a specific IP you're interested in, try VisualRoute
Yet another way that your device can be protected is whenever it's able to hit the internet. It would update a dynamic DNS entry on your account at DynDNS.org with hopefully a public IP address it gets and from there, if you have a program like SOTI Pocket Controller Professional, you can instantly gain remote access to the device. That's just one program of many that could benefit from this.
Is there any program for the Pocket PC that updates a dynamic DNS name there?
Any news on programs like this?
Would be very much appreciated!
If you look up posts by OdeeanRDeathshead you will find a discussion somewhere (sorry, don't remember the exact link) that you can't get a public IP over GPRS connection, so unless the phone it self initiates a connection you can not reach it.
This means that unless you device is connected via WIFI a program like this would be useless.
Sorry to be the bearer of bad news.
OK, I understand that.
I found an IP using www.whatsmyip.org. For example 123.123.123.123
I'm using my phone to connect to an Exchange Server. But I only want my phone to reach te server, so I have set up my firewall to forward (NAT) certain ports from source 123.123.123.123 to the Exchange Server. The rest of the IP's are going somewhere else.
But the IP changes of course, guess T-Mobile has more gateways in use. Maybe to another everytime you connect.
Is there a program that sends a query to whatsmyip.org (or another site like this) and then updates the IP address in a DNS record (like dyndns.org). Any help would be appreciated.
Hi guys,
since my Hermes is gone, I couldn't but stay in touch with technology and so...in the meantime...I couldn't resist and I'm trying to set my Windows Server 2k8 domain with DNS, IIS7, Exchange etc, the latter is in trial right now, can you give a little advice to set everything up?
The actual problem is I don't think I understood how to set DNS properly.
I mean, I saw some of you offer Exchange services using DDNS (mine is @ath.cx), so I guess you have a dynamic ip and if I'm not wrong, you don't have problems sending email to gmail, as I was having instead.
How have you solved this?
I found some pages saying I have to set the TXT spf field in DNS and to set a Reverse DNS zone and I've done the first with Microsoft site builder(don't know if in the right manner) but I can't do the latter...some sites say only my ISP can do it...but have to say I'm quite confused AT ALL...
how have you done?advices of any kind (noob simple guides instead of my entire book with 430+)?
Currently, I did -again- a good format and installed Win Server 2k8 std with only DNS Server Role, IIS7 and Exchange prerequisites (found on MS WebSite).
Let's see if there's something wrong in my conf, before going to Exchange again and find it not working:
Code:
*let's call my pc first name "pc"
*dyndns to my IP (under a NAT, router, then a bridge-switch, with DMZ on and working) @ mydns.ath.cx, switched on wildcards for *.mydns.ath.cx;
*domain mydomain.co.cc with a nameserver pc.mydns.ath.cx;
*dns for primary zone mydomain.co.cc with:
MX mail.mydomain.co.cc. ;
NS pc.mydns.ath.cx. ;
TXT (v=spf1 mx ptr ptr:vser.ilmeglio.co.cc mx:mail.ilmeglio.co.cc a:vser.ilmeglio.co.cc include:vser.ilmeglio.co.cc mx:vser.ilmeglio.co.cc -all) [Microsoft did this, I'm quite unsure of what I inserted there though] ;
mail CNAME pc.mydns.ath.cx. ;
www CNAME pc.mydns.ath.cx. ;
[just added] pc PTR pc.mydns.ath.cx. .
Is all this allright?
[more questions coming...]
When I install AD (dcpromo), do I have to use my mydomain.co.cc OR can I use AD only in my home network (let's say myname.mylocalnetwork) and so separate the two things: Exchange & AD?
If I can, are there -hard- additional modifications to make Exchange accept mails from my real web domain and not my local one?
And what about the "pc" name, does it need the network domain or can I leave it the local one? Will Exchange need changes for this too?
P.S. I'm messing with windows server, domains, dns, dcpromo, AD, exchange, ALL this stuff, from 3 days on only, I've learned just a miiinimal part of it all I think, so treat me as a noob
Infinite thanks.
Way off topic to be sure, but DNS is a confusing beast to set up at times.
Check this page out:
http://rscott.org/dns/
You can set up a rdns table yourself, but unless the lookups are set to go your DNS machines, it won't do any good.
Reverse lookups are usually delegated to whoever the IP is assigned to, normally your ISP. Some ISP's will forward the reverse lookups to your name server of choice, some will change their records to what you request, and others will either give you a blank look or refuse to do anything.
Also keep in mind that any kind of server is against the acceptable use policy of many ISP's, check with yours before opening anything up to the world.
As for the records you listed, I don't know how microsoft does theirs (I run bind on UNIX machines and always found the microsoft way of dealing with domains and 'NT domains' to be severely fscked up and confusing), but the basics are the same, and I already see some problems:
You only have a single NS
Your MX points to a CNAME, not an A
PTR records are used only for reverse lookup tables, not forward tables
(Mods, I would imagine that this should go in the general -> Off-Topic forum)
jdc said:
[...] but the basics are the same, and I already see some problems:
You only have a single NS
Your MX points to a CNAME, not an A
PTR records are used only for reverse lookup tables, not forward tables
(Mods, I would imagine that this should go in the general -> Off-Topic forum)
Click to expand...
Click to collapse
Thanks for your answer!
Actually I'm again starting from 0 after having understood it's better to maintain my home domain off the internet
Don't think my ISP policy is good for me, but perhaps I can obtain something about rDNS...not sure though
About NS, how can I have two if this is the unique pc doing the dns server?Is this a problem of RFC rules?
If I set both mydns.ath.cx and pc.mydns.ath.cx (which both point here) at the registrar would it do the trick?
About MX, mmh how can it point to an A if I have a dynamic IP? I mean ok, when it's all working perhaps my ip will stay one, but what if my router disconnects, or simply power goes down...my ip would change and I can't change it manually everytime, that's because I was pointing to an address hopped again from the other CNAME to my DDNS servers...is this, again, a problem of RFC roules or is simply wrong?Don't know how to solve though
Still have to learn much about forwarding, do you mean I should add it into a primary reverse zone?
Thanks again,
sorry, that's OT of course
Okay so the other day I had my note 2 stolen and now I need to find out where it is. The girl told me she had it and she made sure she turned it off so I couldn't track it. She told this to my face. I never saw her again and now I want to know of a way to track it's location from the moment it gets on the internet?
I tried Google Account activity but does that log the ip address of your phone as soon as it goes online but doesn't necessarily access gmail?
I have my Hotmail account on there as well anyway to get account activity of ip addresses that access hotmail?
What about going online with the Android device and get an ip activity log?
This was stolen on the 5th roughly and she is leaving the united states on the 10th. SO THIS IS VERY IMPORTANT TO GET IT DONE ASAP!
I already have the police working on it as well. I'll need to have the police check the cameras at the property to see what car she left in so we can find it logically that way or by tracking via ip address. Calling the ISP with Law Enforcement and getting the physical address to the ip address.
THANKS
Try downloading cerebus from the play store on the web. Although without activating it as a device admin, idk how successful you will be using it
https://play.google.com/store/apps/details?id=com.lsdroid.cerberus .
I've been doing some short investigating around the X2 Pro.
It seems like the device connects to some Chinese servers throughout the day. During my tests, these happened at random times: 18:53, 19:37, 18:47.
The IP it connected to was 223.202.200.150 and the connection was encrypted with TLS so I couldn't see the contents of the packets but I know it was connecting via HTTP.
That IP seems to be an Alibaba Cloud Computing server run by Oppo (ColorOS).
It's around 430 bytes sent each time over different ports. Initially it's 443 (as expected for TLS) but then changes to ports 40634, 40712, 41798, or 42036. It seems to be random.
The server it was connecting to was https://classify.apps.coloros.com/. It seems to fire whenever you install a new app. It's likely fetching an app category and storing it somewhere. This would be how it makes those auto-named app folders in the launcher, I assume.
------------------------------------------------------------------------------------------------------------------------
Following on from this, I adjusted my Wireshark filter to include any server with "oppo", "realme", "coloros", or any IPs in China and found some more servers:
Server Name: guif-eu.coloros.com
Server Name: languagef-eu.coloros.com
Server Name: ifota-eu.coloros.com (OTAs i assume)
Server Name: ifota-eu.realmemobile.com (more OTAs...?)
Server Name: ifsau-eu.coloros.com
Server Name: i6-eu.weather.oppomobile.com (I think we can guess this one...)
Server Name: state.dc.oppomobile.com
Server Name: confe.dc.oppomobile.com
There's even more than this which I've included in my full list in the 2nd post.
Some of these refuse to connect in the browser, and others return 401 unauthorised headers. It would be interesting at least to know exactly what data is being sent to each of these servers. Each of the servers are AWS Cloud Compute servers based in France. I'm not sure if the location is whichever is closest to the user, but I'd assume so.
The issue is that the Chinese gvmt can request the data on any server that is hosted in China. For all we know, the AWS servers could just be a non-suspicious front end which forwards all the data to their actual servers in China, trying to hide that from us. We just don't know.
(Thanks to Gamr13 on the Realme Discord for giving me the idea )
classify.apps.coloros.com
Request sent when an app is installed. Likely to check what 'category' it is for auto-naming folders on the stock launcher.
********
guif-eu.coloros.com
Unknown.
********
languagef-eu.coloros.com
Unknown.
********
ifota-eu.coloros.com
Request sent when checking for new system updates. Unknown why there's two servers -- maybe a remnant from ColorOS?
********
ifota-eu.realmemobile.com
Request sent when checking for new system updates. Unknown why there's two servers -- maybe a remnant from ColorOS?
********
ifsau-eu.coloros.com
Unknown.
********
i6-eu.weather.oppomobile.com
Weather service.
********
i6.weather.oppomobile.com
Weather service.
********
file-eu.weather.oppomobile.com
Weather-related. I hope this isn't what it sounds like it could be... (file?)
********
state.dc.oppomobile.com
Unknown.
********
confe.dc.oppomobile.com
Unknown.
********
smartcardf-eu.apps.coloros.com
Unknown.
********
proxyeu.apps.coloros.com
Unknown. Sounds like it could be an EU-based proxy for forwarding connections to China.
********
clonephonefs.coloros.com
Unknown. Seems to correspond with the Clone Phone notification when you first set up your phone.
********
guifsf-coloros-com.oss-ap-southeast-1.aliyuncs.com
Unknown. Alibaba Cloud Computing service.
********
wow ! that is nice to discover .. i noticed my phone keep uploading something specially at night !
Yes, they 100% collect, forward (between jurisdictions) and store information located on their servers in the People's Republic of China.
Information includes, and is not limited to, usage behaviour, face/fingerprint ID, voice, financial info (when you buy products), location, sleep patterns etc. Pretty much everything you can think of.
All of this is explained in their Privacy Policy and they state everything they are allowed to take.
Go to About Phone>Legal information.
When you use this Colour or Realme UI Operating System, you agree to these terms.
And according to the User Agreement, one is technically not even allowed to analyze the software (i.e. O.P.'s post information) or have pornography on the phone.
You can (probably?) negate this by switching to another OS, but unless you do it straight out of the box, it might already be too late: For entering your information even once, like during 1st day startup, will have your information stored in the PRC servers for an undisclosed amount of time (probably forever).
Anyody know how to stop this from happening?
onnoêzeler said:
Anyody know how to stop this from happening?
Click to expand...
Click to collapse
no, you can't prevent it, privacy no longer exists, profiling is the market of the new century, big brother Google knows it well
Somebody pointed out on telegram their image thumbnails are getting stored in logs Folder and getting uploaded as well.
Might be for their face matching and sorting algorithm in stock gallery, because this is the first phone or app which i see does on device machine learning by sorting pics According to their faces (in the case if it doesn't upload images for)
Be it google photos, Xiaomi gallery ,etc, all identify faces after you upload the pics on their cloud.
I wish I had seen this thread before I ordered the phone…
If the phone is rooted, you could probably use AdAway to block those domains and IP address, but will fingerprint and face unlock still work? Or even without root you could use DNS66 or DNSfilter, both available on F-Droid, to block those domains and IP address. When my phone arrives, I will test this solution.
Can I use adb to remove certain offending apps without unlocking the bootloader? (Thinking about Widevine L1 vs L3)
nuserame said:
I wish I had seen this thread before I ordered the phone…
If the phone is rooted, you could probably use AdAway to block those domains and IP address, but will fingerprint and face unlock still work? Or even without root you could use DNS66 or DNSfilter, both available on F-Droid, to block those domains and IP address. When my phone arrives, I will test this solution.
Can I use adb to remove certain offending apps without unlocking the bootloader? (Thinking about Widevine L1 vs L3)
Click to expand...
Click to collapse
If you care this much about privacy, you could unlock and use N no of custom roms available for this device.
Everything will work, except L3.
As for files which are uploaded, all from the ColorOS folder(don't know how it is in rui as I was using it for few hours while it was in beta stage) that's in internal storage are being uploaded. Some of files there are encrypted which leads my thoughts to be very sensitive data.