Local IP Address bug in some JVMs

by martin 21. October 2008 23:47

This guy from Spi Dynamics (now HP) told me how you can get the local IP address in some browser / JVM combinations a few months back.

window.java.net.InetAddress.getLocalHost();

Click here to see if you are at risk.

Inside an applet, you seem to always be able to get the internal ip address using code like :

String strLocalIPAddress = (new Socket(strWebHost, intPort)).getLocalAddress().getHostAddress();

I haven't been able to get this work via javascript. Go to see Lars Kindermann's MyAddress applet to check if you are at risk: http://www.reglos.de/myaddress/MyAddress.html

I also ran across a cool DNS Pinning applet/service that did port scanning. http://www.jumperz.net/index.php?i=2&a=1&b=9

Now add in CIFS / SMB into your dns pinned applet and ? ?  

Currently rated 1.8 by 46 people

  • Currently 1.804348/5 Stars.
  • 1
  • 2
  • 3
  • 4
  • 5

Tags: , , ,

Java | JavaScript

Chrome browser first impressions

by martin 2. September 2008 23:00

Ok... so the download site wasn't up until afternoon and there was no links on google.com anywhere until afterwards (although http://google.com/chrome did return a 404 uniquely). 

Anyway... it surprisingly works well even thought it is still beta ( version 0.2.149.27 only ).  I heard that it was a pre-release due to a leak which may explain why the site states that there is no download for Linux yet and that the SVN Linux branch does not compile to a working version.

I like the search control, it is even better than Firefox's.  When will IE and other products finally realize that a docked search textbox that is non-intrusive with viewing the results is the way to go.  I'm so tired of always having to move my find dialog around to see if my searched term is hiding underneath it.

I was also disappointed to see that the internets only FREE CA wasn't included in the built in CA cert pack.

The drag tab into a new browser window UI trick is great.  And it looks like Google beat MS to getting incognito mode to the masses before IE 8 is readily available (without a plugin like FF).

Looks like a great start..... kudos Google for a nice job.  Now it is Firefox's turn to get rid of the sluggishness that came with the 3.0 upgrade (I've actually downgraded back to 2.0 on my slower machines) and show that they too can innovate still.  With Safari for Windows available too, there is a lot of great choices now.....

Currently rated 2.5 by 2 people

  • Currently 2.5/5 Stars.
  • 1
  • 2
  • 3
  • 4
  • 5

Tags: , ,

Windows

Welcome

Please contact me if you have a great idea for a project and need technical expertise in designing, developing, or integrating a custom software solution.

Recent Comments

Comment RSS