Addressing some theories about DoD snooping

Update Nov. 10: The mystery has been solved. Sprint’s borrowing DoD IP addresses, most likely without DOD’s knowledge. It appears to be entirely harmless.

A few of my friends have weighed in with their theories as to why I was seeing my phone traffic coming from a DoD network. Many of these theories point out how the DoD is the owner of vast stretches of IP address space, many of which aren’t advertised as public routes. Some organizations treat these addresses as non-routable addresses, making it appear traffic originates from the DoD. One blogger discovered the IPs of the UK Ministry of Defence being used similarly by T-Mobile.
Continue reading →

DoD IP address mysteriously unreachable

I decided to see if I could find out more about this mysterious IP address that apparently belongs to the Department of Defense.

One of the best ways to do this is to run a traceroute, which shows the path back to the IP through the Internet’s routers. I also wanted to see if I could find any evidence that my router or my ISP’s router was compromised or broken.

Performing a traceroute from my home computer to the IP provides me this output:

root@maestro:# traceroute 28.191.58.169
traceroute to 28.191.58.169 (28.191.58.169), 30 hops max, 60 byte packets
1 wireless.tonsler (192.168.3.252) 0.971 ms 1.419 ms 1.634 ms
2 user-0c2h181.cable.mindspring.com (24.40.133.1) 14.064 ms 13.993 ms 24.788 ms
3 66.26.46.13 (66.26.46.13) 18.689 ms 18.942 ms 19.029 ms
4 * * *
5 * * *
6 * * *
7 * * *
8 * * *

It’s not unusual that the traceroute dies on the way back: many hosts and/or networks go down and the packet trace stops. However, it is interesting that the traceroute dies on Time Warner’s network. That last router, 66.26.46.13, belongs to Road Runner:
Continue reading →

Why is the Defense Department snooping on my phone?

Update Nov 9 11:00 AM. Mystery solved! Sprint is apparently squatting on the DoD addresses, using them for their internal phone network. Sprint understandably wants to firewall these phones from the wild and wooly Internet, so it NATs the phone traffic from these supposedly-private IPs to the phone’s public IP address. SIP packets have the internal IP embedded in them, however, and aren’t easily NATted. This address slipped through Sprint’s firewall, causing me alarm (fortunately undue alarm!)

Break out your tinfoil hats because this will blow your mind.

I found something quite disturbing today while trying to get my Virgin Mobile LG Optimus V phone talking completely through Voice-Over-IP (VoIP). For reasons not entirely clear yet, I discovered that voice packets from my phone are being routed to an IP address belonging to the Department of Defense.

Some background

I had long been a “dumb phone” kind of guy when it comes to mobile phones but finally bit the bullet and got an Android phone from Virgin Mobile when the right plan came along. I am also a VoIP enthusiast and have been sending phone calls over the Internet for almost ten years now. I’m also a cheapskate, so naturally when I got my Android phone one of the first things I wanted to do was to figure out how to make calls with it completely over VoIP – using my unlimited data plan instead of burning my limited voice minutes. That’s what hackers do, you know.
Continue reading →

Iran assassaination plot

Over the past few days, the US claims it uncovered a clumsy plot by Iran’s Quds Force to assassinate the Saudi Arabian ambassador to the United States. The Iranians supposedly approached an informant posing as a Mexican drug cartel member in an effort to bomb a DC-area restaurant that the diplomat frequents.

I’m having some trouble buying into this plot. Yes, Iran engages in terrorism and assassination but this plot that officials have called “amateur hour” isn’t keeping with Iran’s history. This is the same Iran who allegedly carried out truck bombings in the past which obliterated the bombing vehicles to the extent that only scraps of metal were recovered (with no serial numbers)? How could this Iran suddenly have gotten so sloppy? Iran has shown that it is perfectly capable of carrying out its own bombings. Why would it need to enlist a supposed member of a drug cartel?

I’m a little wary of these charges until I learn more.

Appliance rental ripoffs

Highway robbers

I spent Saturday afternoon emceeing the second annual East Raleigh Community Day, which went better than I expected considering it was the make-up day for the original August date. Anyway, I returned to my car to find a yellow paper stuffed under the windshield wiper.

It was an ad for Rent-A-Center, a rental appliance store at the other end of the shopping center. On the paper were the smiling mugs of Hulk Hogan and Troy Aikman, flashing thumbs up signs from the screen of an LG 60″ HDTV. Folks who don’t know any better could have this TV delivered for the special rental price of only $29.99 per week (regularly $39.99 per week). Yes, $29.99 per week. That’s supposedly a deal.
Continue reading →

Science. It works, bitches.

Today is a reminder to me that steel-framed buildings don’t simply collapse. They just don’t, no matter how patriotic I might be feeling.

The “Mugged in London” scam

I was sifting through my Gmail spam folder when I found a message purporting to be from my friend. Let’s call him Bryan:

Date: Tue, 30 Aug 2011 02:02:13 -0700 (PDT)
From: Bryan bryan@bryansHackedEmailAccount.edu
Reply-To: Bryan scammersFakeEmailThatLooksLikeBryans@ymail.com
Subject: Urgent help…Bryan
To: Bryan bryan@bryansHackedEmailAccount.edu

How are you doing? This has had to come in a hurry and it has left us in a devastating state. My family and I had a visit to (UK) for a short vacation unannounced some days back, but unfortunately we were mugged at the park of the hotel where we stayed by some thugs, all cash, cell phones and credit cards were stolen off us but luckily for us we still have our passports with us.
Continue reading →

Quake “foreshock” quote censored by Washington Post?

This Washington Post story ran yesterday with this quote from USGS Director Marcia McNutt (according to the International Business Times):

Minutes after the quake, the director of the USGS, Marcia McNutt — who watched objects falling from the shelves in her office — cautioned that the shaking might not be over.

“What the concern is, of course, is that this is a foreshock. If it’s a foreshock, then the worst is yet to come,” McNutt told The Washington Post.

Curiously, today the Post’s version of the article has removed that quote and substituted a much more mundane one:

Minutes after the quake, Marcia McNutt, USGS director — who watched objects falling from the shelves in her office — concerned about aftershocks, cautioned that the shaking might not be over.

“When something like this happens, remember what to do in the case of a seismic event. Duck, get under something sturdy like a desk or a doorway, get away from falling glass. Make sure that you are not in the way of falling objects like pictures, bookshelves, books, anything that’s not firmly connected the wall.”

The Post has provided no explanation for the change in the quote.

via Virginia Earthquake 2011: USGS Warns it May be a Foreshock – International Business Times.

LinkedIn responds to social media privacy concerns

I got an email from Hani Durzy, LinkedIn’s Director of Communications, alerting me to a LinkedIn blog post by LinkedIn’s Ryan Roslansky, clarifying LinkedIn’s use of social media advertising. Hani said:

Heads up that we just published a blog post on the issue around social ads that has come up over the last few days. In it, we clarify a few inaccuracies that we’ve seen in some of the recent media coverage, and detail a change we are making to part of our social ad offering — specifically, the use of individual names and images associated with certain actions in ads served to their networks.

http://blog.linkedin.com/2011/08/11/social-ads-update/

The description of this feature on LinkedIn’s account settings page (and referenced above) remains pretty vague, leaving open its interpretation. After reading Ryan’s post I feel much more comfortable with LinkedIn’s approach. I would hope LinkedIn would better describe its intentions on the settings page, too.

Also, kudos to LinkedIn’s PR department for its swift and proper reaction to the backlash. Well done.

LinkedIn quietly sells your info

A new “option” appeared in the accounts of LinkedIn users, providing LinkedIn permission to sell their users’ names and photos in “social media” advertising without asking its users about it first.

Here’s what the option says:

LinkedIn may sometimes pair an advertiser’s message with social content from LinkedIn’s network in order to make the ad more relevant. When LinkedIn members recommend people and services, follow companies, or take other actions, their name/photo may show up in related ads shown to you. Conversely, when you take these actions on LinkedIn, your name/photo may show up in related ads shown to LinkedIn members. By providing social context, we make it easy for our members to learn about products and services that the LinkedIn network is interacting with.
Continue reading →