Internet users that try to hide their real IP-address behind a proxy, can still be identified thanks to a new tool. Through a combination of client-side technologies and self developed services the Metasploit Decloak Engine will get the real IP-address. The first version was launched in June of 2006 , but could not beat the Torbutton Firefox extension and adaptations of the Flash plugin. The newer version has a series of improvements, does not use Javascript and supports iTunes, QuickTime and Microsoft Office technologies. Whoever has one of these plug-ins installed, runs the risk of loosing his or her anonimity. The tool could send a parameter out to the QuickTime plugin to set up a direct connection, that ignores the browser settings.
Developer H.D. Moore had to admit that a well configured combination of Tor, Torbutton together with Privoxy will still quarantee user anonymity, but all others fail. “Decloack is unique while it establishes the DNS server address used by the browser, combined with the results of various application models.” Websites that want to know the real IP-address of their visitors can implement the Decloaking Engine via this page: http://decloak.net/
Bob, does that mean that you are willingly and abjectly abandoning your hard won rights in that great document, the US Constitution, that the government should not investigate your private activities without the due process of the law?
