From owner-freebsd-security Mon Oct 11 8:16: 9 1999 Delivered-To: freebsd-security@freebsd.org Received: from cc942873-a.ewndsr1.nj.home.com (cc942873-a.ewndsr1.nj.home.com [24.2.89.207]) by hub.freebsd.org (Postfix) with ESMTP id 35739159E0 for ; Mon, 11 Oct 1999 08:16:06 -0700 (PDT) (envelope-from cjc@cc942873-a.ewndsr1.nj.home.com) Received: (from cjc@localhost) by cc942873-a.ewndsr1.nj.home.com (8.9.3/8.9.3) id LAA31237 for freebsd-security@freebsd.org; Mon, 11 Oct 1999 11:19:15 -0400 (EDT) (envelope-from cjc) From: "Crist J. Clark" Message-Id: <199910111519.LAA31237@cc942873-a.ewndsr1.nj.home.com> Subject: Identifying an Unresolvable IP To: freebsd-security@freebsd.org Date: Mon, 11 Oct 1999 11:19:15 -0400 (EDT) Reply-To: cjclark@home.com X-Mailer: ELM [version 2.4ME+ PL54 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Connections from two different, but close (consecutive class C nets), IP addresses showed up in some of my daily security logs. The addresses do not reverse-lookup, but I would still like to know who owns the addresses (my guess it is a valid user's 3rd party ISP, but I want to be sure). What tools or references are easily accessible for determining who owns a block of IPs? I have not been able figure out how to coax the info from DNS or whois. A web search, somewhat to my surprise, did not immediately pop up a site that will tell you this info when you slip in an IP address. Thanks for any help. -- Crist J. Clark cjclark@home.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message