I noticed that in your profile, you have a link to your company...or the one you work for.

So does this mean that you want to go after other companies stuff? Hmm,,, takes guts. Go for it.

Some advice, though:

If you go after a lot of urls, in rapid succession, you will get caught, and possibly recieve an email regarding what you were doing...

If you just want to get at the information behind the cloaked pages, simply check out the other threads in this forum. I think we've already covered a lot of ground on this, especially given the google options you have...

Spoof an HTTP_USER_AGENT, and that will get you through some filters. Which means you don't need to try and spoof an ip.

Short of that, to really get by a filter based on REMOTE_ADDR, you need to be either from that address or spoofing, which is thoroughly illegal.

And if you're paranoid about others getting your hard worked templates, etc. don't be. Anybody can get at your strategy without the templates, and since things are now based more on themes, individual pages don't matter so much.

There are perl scripts that can change your user agent, there is a book from O'Reily called, "Learning Perl." At one point it talks about creating a client with perl, and tells you how to specify your user agent.

Another option, if you just want to appear to be a spider, is to set up a page, and call yourself a "search engine in process" and tell people "the activity you detected on your server was from out bot, and we are putting together a search engine based on 4th generation technology." That would fool some people, and you don't need to mask IP that way.

Hope this helps...I think I might surf your site a little...;)

Cheers,
Han Solo

Well, it you like you could try my script here [cgi-fun.hypermart.net]. Turn off your javascript though. Yet, I have to say that user agent spoofing is rapidly becoming useless for detective work.

Say, on a side note, have any of you seen someone come at you with HTTP_REMOTE_ADDR? I've been hit with it a couple of times. It is more useless than UA spoofing. It is kind of an entertaining attempt at IP spoofing by throwing up an IP address in the header information. If IP spoofing were that simple we all would be doing it.

How illegal is IP spoofing? Is it illegal like metallica mp3s are illegal? Are you likely to get in trouble for it?

As I understand it, IP spoofing is more illegal than downloading napster files...because then there is no accurate way of telling where a request came from if something happens...though my logic might be off.

Cheers,

Han Solo

>>How illegal is IP spoofing?

How illegal does it have to be? ;)

Illegal enough to convince me not to do it if I can. Speeding is illegal, too, but I do it sometimes, don't you? ;)

let's put it this way - Kevin Mitnick was a big IP spoofer.

Thanks for answering, Oilman. Could you elaborate a bit on what you know about IP spoofing? I thought Kevin Mitnick went to jail for hacking into systems, which is not the same thing as IP spoofing. I am just wondering what the reality about this is. I have no idea how so this is a rhetorical question, but I would like to fill this gap in my education. So if you know, could you tell me: is it a big deal or not? Do people do it or not? What is the likelyhood that someone could be doing it to me? Will a swat team arrive at your house if you try it or do people do it all the time?

>Will a swat team arrive at your house if you try it

As far as I know, the swat team will only come to your house if you are using hidden text.

To tell you the truth robrob I don't really know how illegal it is but it is definitly highly unethical.

Yes, Mitnick went to jail for hacking - his basic method of gaining entry was IP spoofing (from what I've read).

There are lots of article on IP spoofing out there. Just do a quick search on any SE and you'll have lots of reading to do. ;)

More to the point, bi-directional IP spoofing is very hard to do. If you have the know-how to do it, you probably could make a very good living without having to worry
about breaking the law.

Here is a little ditty WRT IP spoofing if anybody is interested.

[fc.net...]

c