[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sheflug] Any Explanations ?

To: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Subject: Re: [Sheflug] Any Explanations ?
From: "Chris J" <xxxxx [at] xxxxxxxxxxxx>
Date: Sat, 23 Feb 2002 13:23:10 +0000
Envelope-To: <shef-lug [at] list.sheflug.org.uk>
List-Help: <mailto:shef-lug-request [at] list.sheflug.org.uk?subject=help>
List-Id: Sheflug <shef-lug.list.sheflug.org.uk>
List-Post: <mailto:shef-lug [at] list.sheflug.org.uk>
List-Subscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=subscribe>
List-Unsubscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=unsubscribe>
Reply-To: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Sender: shef-lug-admin [at] xxxxxxxxxxxxxxxxxxx


> Active Internet connections (only servers)
> Proto Recv-Q Send-Q Local Address           Foreign Address         
> State      
> tcp        0      0 172.16.113.1:139        0.0.0.0:*               
> LISTEN      
> udp        0      0 172.16.113.1:137        0.0.0.0:*                 
> udp        0      0 172.16.113.1:138        0.0.0.0:*                 


> Would anyone like to comment on this ?  I'm trying to understand 
> whether this is a surveillance effort or if it's just the normal way 
> of the world with my desktop machine.
> 

What are the IP's of your interfaces on your machine? What this implies to me 
is samba (or similar) has bound only to one interface, and that interface has 
an IP of 172.16.113.1.

The actually network 172.16.0.0/20 is a reserved network - one of the three 
private blocks (the others being 10.0.0.0/8 and 192.168.0.0/16), so it almost 
certainly isn't routable on the internet. Some ISP's may use the private 
ranges for there internal network systems (for instance, blueyonder/telewest 
has a 172.16.0.0/20 address allocated to each CM and digital TV STB, it uses 
10.0.0.0 to sit its DHCP servers on etc ...), but they are only routable 
within the telewest network. Internet routers should (or rather must) drop 
the packets.

If you run a whois over the IP address:

	[1408%][bubbles][chris] >whois 172.16.113.1
	IANA (IANA-BBLK-RESERVED)
	   Internet Assigned Numbers Authority
	   4676 Admiralty Way, Suite 330
	   Marina del Rey, CA 90292-6695
	   US

	   Netname: IANA-BBLK-RESERVED
	   Netblock: 172.16.0.0 - 172.31.255.255

	   Coordinator:
	      Internet Corporation for Assigned Names and Numbers  (IANA-ARIN)  
		res-ip@iana.org
	      (310) 823-9358

	   Domain System inverse mapping provided by:

	   BLACKHOLE-1.IANA.ORG         192.0.32.18
	   BLACKHOLE-2.IANA.ORG         192.0.32.19

	   These blocks are reserved for special purposes.
	   Please see RFC 1918 for additional information.

...you'll see that you should refer to a certain RFC for more information :)

But as it stands, do a ifconfig -a, and see if you've allocated that IP to 
any of your network interfaces.

Chris...

-- 
\ Chris Johnson           \ NP: Leftfield - 08. Inspection (Check One)
 \ cej [at] nightwolf.org.uk    ~-----,   
  \ http://cej.nightwolf.org.uk/  ~-----------------------------------, 
   \ Redclaw chat - http://redclaw.org.uk - telnet redclaw.org.uk 2000 \____


___________________________________________________________________

Sheffield Linux User's Group - http://www.sheflug.co.uk . 
To unsubscribe from this list send mail to 
shef-lug-request@list.sheflug.org.uk with the word
"unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.

Follow-Ups:
- [Sheflug] Re: Any Explanations ?
  - From: Richard Ibbotson
- [Sheflug] Re: Any Explanations ?
  - From: Richard Ibbotson

References:
- [Sheflug] Any Explanations ?
  - From: Richard Ibbotson

Prev by Date: [Sheflug] Dumb terminals on XP
Next by Date: [Sheflug] Re: Any Explanations ?
Prev by thread: [Sheflug] Any Explanations ?
Next by thread: [Sheflug] Re: Any Explanations ?
Index(es):
- Date
- Thread