boxst

Hello

The company that I am currently working for doesn't like Yahoo messenger. I think that I can get it to work, but I need the proxy IP address, which they wont give me. Sigh.

Can I find out from Internet Explorer? I have to tick "Automatically detect settings" to get to the internet, which presumably picks up the IP from somewhere. Can I see what it has picked up?

Thanks for your help.

Steve.

ozzy

It's not stored in IE or even the local registry. It does an autodiscovery every time you start a web session.

Have a look here for some explanation of how they may have the automatic discovery configured.

You could always run a "arp -a" command and try each of the IP addresses. You maybe lucky and one is the proxy.

Best way would be to install something locally such as Ethereal to see where all your http traffic is going.

That may be a sackable offense as it may breach your companies security policy.

It's also worth mentioning that they'll monitor the proxy and will probably spot your Yahoo messenger traffic. In fact they may already block it on the proxy anyway.

Stefan

cong

just do a google search for a ip and port scanner and you should see it you have to do a scan on the same range so find out what your ip is by typing cmd in the run menu then type ipconfig then you should get your ip address then do a scan from XXX.XXX.XXX.1 - XXX.XXX.XXX.255, x should be your pars of your ip then change your ip address to a free ip address which is not configured for any computer the ip scanner will tell your if that ip address is being used or not, hope this helps this is the way i use to bypass the administrator

darlodge

If anyone on my network installed these programs and deliberately tried to get around company policy and procedures they be out the door.

Is it really worth the risk?

Darren

boxst

Hello

Thank you all for the replies. I will try and install something to look at where the traffic is going. They are not explicitly blocking Yahoo, just that it "isn't compatable with the firewall".

Darren: I am one of the directors, so unless I do something else wrong, they probably wont sack me ...

Steve

ozzy

Steve,

the port scanner won't work. It'll only report your public IP address and if IT have any brains it won't be the same as the internal web proxy.

If you're a Director go tell the IT dept to give you the IP address of the proxy. There should be a chain of command - so use it

Stefan

P.S. Download Ethereal from here - http://www.ethereal.com/distribution/win32/

You'll need both winpcap_3_0.exe and ethereal_setup-0.10.6.exe files.

Once installed, click Capture -> Start -> OK
Go launch your web browser and go to any site.
Go back to the Ethereal app and stop the capture.
Look at the list of packets and click on the Protocol column to sort them
Look for http stuff
Source should be your workstation IP address, destination is likely to be a proxy (if same network range as your own)

Cold Turkey

open IE and browse to an internet web page

then open a DOS CMD window and type netstat -an

look for line(s) like below ... port 8080 is most commonly used for web traffic

TCP A.B.C.D:1401 W.X.Y.Z:8080 ESTABLISHED

where A.B.C.D is your IP address

and W.X.Y.Z will be the IP address of your proxy server.


As others have mentioned Yahoo/MSN type traffic is likely to be blocked depending on your companies policy / size / IT dept. If you work for a big company a dedicated SOCKS server is better for this type of traffic as HTTP proxies normally have short TCP timeouts and you will keep getting dropped/logged out.


Certainly DO NOT download a port scanner to your internal network! Us IT security types don't like it

unfeasablylargegonads

iTrader: (3)

just to back up cold turky, use netstat -an, do not install any scanning or sniffing tools, any half decent company will have an acceptable use policy that forbids this.

You may not get the sack, but do you want slaped wrists/ IT department thinking right this guy is a right ****, lets watch every thing he does?

ozzy

Steve's a Director of the company. He probably set the usage policy, LOL.

ChristianR

iTrader: (1)

even if he does find the ip address, it looks like the port is blocked on the firewall anyway, if yahoo messenger wont work.

cong

true. any way the scanner already on one of the network drives and and every has rights to access it so im only using soft ware which is already on the sytem! hehe

boxst

Hello

Well, I work for an American company, so director actually comes quite low down in the food chain. It goes something like CEO, Senior Vice President, Vice President, Director.

So enough to keep me out of trouble, but not high enough to actually have any influence on those things!

Steve

Cold Turkey

I work for a rather large investment bank, which has bought several US banks, and every tom dick and harry seems to be a director or vp of something or other !

gutter-rat

haha, I'll just say 'snoop'
Standard command on sensible operating systems!
So it wouldn't get you into any trouble!

(sorry, not helpful I know but I couldn't resist )

ozzy

American's know nothing about security anyway

Cold Turkey

snoop on sensible (but bloody expensive) operating systems!

tcpdump on sensible operating systems!

gutter-rat

It's free !!!

O/T : Cold Turkey, what car have you got by the way, I live in Luton.

gutter-rat

Show me an OS that wasn't derived from the yanks!
They got all the money unfortunatlely

Cold Turkey

Hey gutter-rat!

only ever used snoop on Solaris! and that ain't free (purlease don't mention solaris x86, I mean real OS's )

Just done a search for your posts and noticed your 'Was it You' post from Tuesday - I've responded......