Howard Kraikow wrote:Is it a security issue if one reveals theport numbers and IP addresses for a system?
Not if you mean the local LAN IP numbers as those outside your network ie. on the WAN Internet can't access those IPs anyway.
Correctly configured firewalls do a good job of protection and should be used by all.
Howard Kraikow wrote:I ask because Kaspersky has a tool called GetSystemInfo that lists a bunch of info about a system.
The list includes Opened TCP/UDP ports and associated IP addresses.
Should this info be made available to others?
Not unless you want to give it to them and once again if it is local IP addresses then they are useless to anyone from outside your network.
As a test try and access a local IP from the Internet by asking a close friend perhaps or using:http://hexillion.com/co/DomainDossier.aspx
Here's a couple of sites with security info:http://www.diamondcs.com.au/http://www.grc.com/default.htm
Internet IPs, your ISP provided IP, is public knowledge and these Internet IPs are used to locate all domain names on the Internet.
dmphotography wrote:If I saw you posting my IP after visiting your site, I wouldn't ever go back because I first would want to know why you want that information and secondly, you COULD pose a risk to me by having that made public.
This information is readily available to a server when you access it from the Internet using just these few server variables:ipaddr = REMOTE_ADDR, browser = HTTP_USER_AGENT, referrer = HTTP_REFERER
and the information gleaned can easily be included in a HTML file for viewing when you access a web page.
Those are also used in the Apache access log file so they are known to just about anyone who wants to know, but as always, firewalls will help keep out the burglars.
This method is used by many including those Who Am I
kind of web sites and is used by just about every PayPal type payment gateway site, so they know where you are coming from, they also link that info to your credit card details for fraud prevention - which fails if you use a VPN or an anon proxy.
dmphotography wrote:Many ISP's have dynamic IP's and I recently discovered AT&T even rotates IP's every 8 hours to ensure better safety for their DSL users since so many people don't understand the value of good firewalls.
Oh If only that were true, as the real reason for this IP change is to help prevent or rather make it very difficult to have an unauthorized web server and or file sharing server (torrents comes to mind here) on your Cable, DSL or ADSL style Internet connection.
dmphotography wrote:...in some cases can even be illegal to store IP's and user information for more than a small given period.
This is also incorrect, as you should know the Internet is a lawless place and as yet there are no laws that prevent you either from obtaining an IP related to a domain name nor is there a law that prevents you from keeping another's IP or any of the demographics you collect from visitors for as long as you see fit.
and find all the info you want about just about anyone on the Internet - not illegal by the way.
Ask Google about this or any other web site that collects and stores your information, with or without your permission, or indeed without you even knowing they are collecting it.