Re:
am 11.11.2009 00:19:04 von Stephen Love
----__JWM__J2513.4c73S.0e2cM
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Content-Type: text/plain; charset=windows-1252
You're getting close. I don't want ANY personal data. Just to know that =
it is really them and that the next time I see them I will see the same =
number. I simply want a REAL visitor and hit count. NO PERSONAL DATA of =
ANY KIND... just GUARANTEED UNIQUE to the user.
See us online at http://www.LOVEnCompany.com.
---------- Original Message ----------
From: Brian Mearns
To: users@httpd.apache.org
Subject: Re: [users@httpd]
Date: Tue, 10 Nov 2009 10:52:18 -0500
On Tue, Nov 10, 2009 at 8:28 AM, Eric Covener wrote:=
> On Tue, Nov 10, 2009 at 8:19 AM, Stephen Love w=
rote:
>> I have set up a routine in my server that logs all incoming IP addres=
ses and
>> parses for duplicates in the same list. HOWEVER...a person posting al=
most
>> NEVER has the same address. I believe I am not using the actual IP Ad=
dress
>> at all. What I WANT is the actual SERIAL NUMBER (If you could call it=
that!)
>> of the HARDWARE (Network Adapter) actually sending the message, or it=
s REPLY
>> TO address... the address it is COMMUNICATING FROM in order to actual=
ly send
>> the message. I am SURE if it is to establish a 2-way link to send and=
>> confirm the message, the receiving end HAS that info, buried deep wi=
thin
>> what it receives. HOW can I get that, so that the route steps inbetwe=
en do
>> not matter?
>
> You don't have access to their MAC address or any other universal
> identifier, no matter how much you use the shift key.
>
> --
> Eric Covener
> covener@gmail.com
>
[clip]
As Eric says, what you're looking for is a MAC address which is a
universally unique identifier that every network device has (though I
think even here, "universally unique" might have some qualifying
conditions). MAC addresses are used in very low level protocols (link
layer protocols, I believe) to send packets to specific devices. MAC
addresses are for point-to-point communications, not end-to-end. You
could set up a packet sniffer, like Wireshark, and capture the source
MAC addresses of incoming packets, but that would probably just give
you the MAC address of your router or modem.
As you've discovered, IP addresses are not valid ways to identify end
users. Most residential internet access is done through a dynamic IP
address, meaning their ISP can change their IP address whenever it
wants. Further, a lot of people access the web through proxy servers,
so that a large number of end users are seen as the same IP address,
and others access through proxy pools or networks like Tor so that the
same person may have a different IP address for every request they
make.
It sounds like what you're looking for is a way to track your
visitors. Google Analytics is a pretty good free service for doing
exactly that, or you can set up your own similar system. The way these
things work is by using cookies to track individual browsers. But of
course, a lot of people don't use cookies. Further, if you're worried
about active menace, cookies are terribly insecure unless you're using
secure connections (and even then through various types of attack), so
a malicious user could snoop other people's cookies and submit it with
their own request, making it look like the request came from the other
user.
If you want to do more strict tracking, something along the lines of
"sorry, you already voted, and you can only vote once.", you'll need
to get much more sophisticated. Some sort of user-authentication
(i.e., "log in") is a must for this, and you'll need to be very
careful about people snooping cookies and log-in date (like, only use
secure HTTPS connections).
-Brian
-- =
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://keys.gnupg.net
------------------------------------------------------------ ---------
The official User-To-User support forum of the Apache HTTP Server Projec=
t.
See for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
____________________________________________________________
Free Copier Price Quotes
Get free copier price quotes from multiple dealers and save!
http://thirdpartyoffers.juno.com/TGL2131/c?cp=3DjZ2grMgTNGhO rcjPvWqZugAA=
Jz1cSR5zxtI8-KAHzBSY23cQAAQAAAAFAAAAAPLSTT4AAAMlAAAAAAAAAAAA AAAAABIVZAAA=
AAA=3D
----__JWM__J2513.4c73S.0e2cM
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Content-Type: text/html; charset=windows-1252
You're getting close. I don't want ANY personal data. Just to=
know that it is really them and that the next time I see them I will se=
e the same number. I simply want a REAL visitor and hit count. NO PERSON=
AL DATA of ANY KIND... just GUARANTEED UNIQUE to the user.
Se=
e us online at http://www.LOVEnCompany.com.
---------- Original M=
essage ----------
From: Brian Mearns <mearns.b@gmail.com>
To=
: users@httpd.apache.org
Subject: Re: [users@httpd]
Date: Tue, 10 =
Nov 2009 10:52:18 -0500
On Tue, Nov 10, 2009 at 8:28 AM, Eric Cov=
ener <covener@gmail.com> wrote:
> On Tue, Nov 10, 2009 at 8:=
19 AM, Stephen Love <stephenlove@juno.com> wrote:
>> I ha=
ve set up a routine in my server that logs all incoming IP addresses and=
>> parses for duplicates in the same list. HOWEVER...a person =
posting almost
>> NEVER has the same address. I believe I am no=
t using the actual IP Address
>> at all. What I WANT is the act=
ual SERIAL NUMBER (If you could call it that!)
>> of the HARDWA=
RE (Network Adapter) actually sending the message, or its REPLY
>&=
gt; TO address... the address it is COMMUNICATING FROM in order to =
actually send
>> the message. I am SURE if it is to establish a=
2-way link to send and
>> confirm the message, the recei=
ving end HAS that info, buried deep within
>> what it receives.=
HOW can I get that, so that the route steps inbetween do
>> no=
t matter?
>
> You don't have access to their MAC address or =
any other universal
> identifier, no matter how much you use the s=
hift key.
>
> --
> Eric Covener
> covener@gmail.=
com
>
[clip]
As Eric says, what you're looking for is a =
MAC address which is a
universally unique identifier that every netwo=
rk device has (though I
think even here, "universally unique" might h=
ave some qualifying
conditions). MAC addresses are used in very low l=
evel protocols (link
layer protocols, I believe) to send packets to s=
pecific devices. MAC
addresses are for point-to-point communications,=
not end-to-end. You
could set up a packet sniffer, like Wireshark, a=
nd capture the source
MAC addresses of incoming packets, but that wou=
ld probably just give
you the MAC address of your router or modem.
>
As you've discovered, IP addresses are not valid ways to identify e=
nd
users. Most residential internet access is done through a dynamic =
IP
address, meaning their ISP can change their IP address whenever it=
wants. Further, a lot of people access the web through proxy servers=
,
so that a large number of end users are seen as the same IP address=
,
and others access through proxy pools or networks like Tor so that =
the
same person may have a different IP address for every request the=
y
make.
It sounds like what you're looking for is a way to tra=
ck your
visitors. Google Analytics is a pretty good free service for =
doing
exactly that, or you can set up your own similar system. The wa=
y these
things work is by using cookies to track individual browsers.=
But of
course, a lot of people don't use cookies. Further, if you're=
worried
about active menace, cookies are terribly insecure unless yo=
u're using
secure connections (and even then through various types of=
attack), so
a malicious user could snoop other people's cookies and =
submit it with
their own request, making it look like the request cam=
e from the other
user.
If you want to do more strict tracking,=
something along the lines of
"sorry, you already voted, and you can =
only vote once.", you'll need
to get much more sophisticated. Some so=
rt of user-authentication
(i.e., "log in") is a must for this, and yo=
u'll need to be very
careful about people snooping cookies and log-in=
date (like, only use
secure HTTPS connections).
-Brian
>--
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70=
848
Available from: http://keys.gnupg.net
--------------------=
-------------------------------------------------
The official User-T=
o-User support forum of the Apache HTTP Server Project.
See <URL:h=
ttp://httpd.apache.org/userslist.html> for more info.
To unsubscri=
be, e-mail: users-unsubscribe@httpd.apache.org
" &n=
bsp;from the digest: users-digest-unsubscribe@httpd.apache.org
For ad=
ditional commands, e-mail: users-help@httpd.apache.org
______________________=
______________________________________
hOrcjPvWqZugAAJz1cSR5zxtI8-KAHzBSY23cQAAQAAAAFAAAAAPLSTT4AAA MlAAAAAAAAAA=
AAAAAAABIVZAAAAAA=3D target=3D"_blank">Free Copier Price Quotes
Get f=
ree copier price quotes from multiple dealers and save!
----__JWM__J2513.4c73S.0e2cM--