So you can use it to debug, but you can use it for other purposes too like getting to print a star wars banner line by line, crawling like the Star Wars banner. #bangbangcon
-
Show this thread
-
How can you do this without commercial grade routing equipment? we need to understand how routing works first. [ed: it's
@tetrakazi speaking -- got it from another livetweeter]#bangbangcon2 replies 0 retweets 0 likesShow this thread -
We don't know how to get to each exact place, but we know how to get closer. We ask a friendly stranger at each step to get closer and closer to our destination address.
#bangbangcon1 reply 0 retweets 0 likesShow this thread -
It all works fine as long as there aren't loops. We can run into trouble if there are loops that go forever and get stuck. So we add a time-to-live counter that decrements at each hop.
#bangbangcon1 reply 0 retweets 0 likesShow this thread -
We can send a TTL expired message back to the source if we give up due to reaching 0. So how do we get breadcrumbs of where we've been?
#bangbangcon1 reply 0 retweets 0 likesShow this thread -
If you set ttl=0, you get a response back immediately from your first hop saying TTL expired. then you set ttl=1 to get one step further. and so forth.
#bangbangcon1 reply 0 retweets 0 likesShow this thread -
So that's how traceroute works normally. But we can hack it by configuring ourselves to send back a TTL expired message even if you were supposed to send a normal response.
#bangbangcon1 reply 0 retweets 0 likesShow this thread -
And we can also spoof who we send the ttl expired message from. which will send a different numerical ip address. But we want to tell a story, not a set of numbers.
#bangbangcon1 reply 0 retweets 0 likesShow this thread -
So we need to understand how DNS works. It normally translates forward from http://karla.io to an address like 107.170.239.194, but we also have rdns which reverses the octets, postfixes .in-addr.arpa and does a lookup. But we can... lie in our response.
#bangbangcon1 reply 0 retweets 1 likeShow this thread -
You can set rDNS on addresses that you control (e.g. have rented from a provider), but some providers are strict about mapping it so pick a permissive provider. Each line of the story is going to cost $3 per month for the distinct IP address.
#bangbangcon1 reply 0 retweets 0 likesShow this thread
Cheat: Use ipv6 and they're free. Especially if you use 6to4 encapsulation - then you get permissive rdns free too, under your own auth dns control.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.