What are the privacy risks of exposing IP adresses?

Submitted ⁨⁨1⁩ ⁨day⁩ ago⁩ by ⁨ryujin470@fedia.io⁩ to ⁨nostupidquestions@lemmy.world⁩

They only expose approximate, not precise, locations, so they shouldn't be a risk like GPS that exposes precise locations?

source

Comments

Sort:hotnew top

Kolanaki@pawb.social ⁨1⁩ ⁨day⁩ ago
My IP is 127.0.0.1

I dare you to DDOS me.

source
- boydster@sh.itjust.works ⁨1⁩ ⁨day⁩ ago
  Shit I have to change mine
  
  source
  - cicadagen@ani.social ⁨1⁩ ⁨day⁩ ago
    Mine too…
    
    source
- user224@lemmy.sdf.org ⁨1⁩ ⁨day⁩ ago
  My IP is 127.69.69.69
  
  Take that.
  
  source
- slazer2au@lemmy.world ⁨1⁩ ⁨day⁩ ago
  It’s ::1 now.
  
  source
Cricket@lemmy.zip ⁨1⁩ ⁨day⁩ ago
I’m inclined to think that your IP provides powerful cross-reference potential. Imagine someone either buys the data off of all data brokers out there or a law enforcement agency obtains similar kind of data through warrants, etc. They can cross-reference IPs and time-stamps and determine, that you, Joe Blow, age 35, who works at X, volunteers at Y, and lives at 123 main street, browse for some kind of very embarrassing porn every night. It’s a drastic example to illustrate the idea, but I don’t think it’s far-fetched.

This could be taken further by imagining a wider net: say, a large portion of people who have donated to this political candidate or who work for this company browse for that same embarrassing porn every night.

I’m thinking birds-eye view of potential privacy violations here.

source
- BurgerBaron@piefed.social ⁨1⁩ ⁨day⁩ ago
  Example: https://iknowwhatyoudownload.com/
  
  Mine is blank, not even using VPN (don't need to where I live) just NextDNS and required encrypt/anon mode enabled for torrents.
  
  https://iknowwhatyoudownload.com/en/stat/CA/daily
  
  https://iknowwhatyoudownload.com/en/stat/US/daily
  
  source
  - Jimmycrackcrack@lemmy.ml ⁨1⁩ ⁨day⁩ ago
    There’s stuff on there I didn’t download… Hundreds of gigs. Eek.
    
    source
    -> View More Comments
  - muntedcrocodile@hilariouschaos.com ⁨1⁩ ⁨day⁩ ago
    Doesn’t work for starlink just checked
    
    source
    -> View More Comments
Pika@sh.itjust.works ⁨1⁩ ⁨day⁩ ago

They only expose approximate, not precise, locations, so they shouldn’t be a risk like GPS that exposes precise locations?

Be aware, this is VASTLY dependent on your ISP. Smaller ISP’s especially DSL based ones in rural areas are notorious for giving almost exact address when you reverse look up it.

My old ISP used to do that. like I had to try super hard to mask my IP if I went somewhere like IRC or Chatango that disclosed the full address to people joining, because if someone wanted to they could have looked up my address down to the house just by following the remote lookup because it would show my address instead of their nearest hub.

Thankfully now it shows me somewhere in NY which I feel a lot more comfortable with, but still don’t take for granted that it’s only an approximate.

source
- Damaskox@lemmy.world ⁨10⁩ ⁨hours⁩ ago
  How do you reverse lookup?
  
  source
Brkdncr@lemmy.world ⁨1⁩ ⁨day⁩ ago
If you trust your firewall, it’s less of a worry than exposing your license plate.

source
teslasaur@lemmy.world ⁨1⁩ ⁨day⁩ ago
Your ip is the identity of your router.

By using simple tools you can find the manufacturer of your router and potentially use a known security to gain access to your network.

You expose yourself to being targeted by focused network attacks, since they know the address belongs to you.

In ye olden days, it would have been possible to track your ip and what it was accessing online. Its harder to do today due to cryptography and vpn’s, but still a risk.

source
- shalafi@lemmy.world ⁨1⁩ ⁨day⁩ ago
  What?! You need the MAC to identify a router and MACs don’t go over the internet.
  
  it would have been possible to track your ip and what it was accessing online
  
  I’ll let you go ahead and explain that one.
  
  source
  - teslasaur@lemmy.world ⁨22⁩ ⁨hours⁩ ago
    No, of course not the MAC. Just as an example nmap can guess the OS based on fingerprinted behaviours. There are pentesttools that can guess the OS.
    
    Like i said. Old days. You could get access to a distribution switch where the physical security was all that mattered. The town where i grew up had some early variation of cg-nat that meant all devices where in a way on the same network. It created plenty of issues when trying to play online with friends during Quake/WC3 etc.
    
    source
  - credo@lemmy.world ⁨1⁩ ⁨day⁩ ago
    Maybe if you open a browser to it and external management is allowed, it might say linksys?
    
    source
    -> View More Comments
- nao@sh.itjust.works ⁨1⁩ ⁨day⁩ ago
  Are you maybe thinking of MAC addresses? That would be closer being the “identity” of a device and you can typically identify the manufacturer from it. You can’t see the MAC address of a remote router via the internet though unless you are on its local network.
  
  An IP address is usually a temporary lease provided by your ISP, and residential connections usually get a new one every once in a while (like every 24 hours).
  
  source
  - BootLoop@sh.itjust.works ⁨1⁩ ⁨day⁩ ago
    My Starlink provider changed every few days but my new fiber connection has been unchanged for 6 months since I got it. I have taken advantage of that and have hosted some stuff on a domain that’s pointing back to that address and port forwarded.
    
    source
cyberpunk007@lemmy.ca ⁨1⁩ ⁨day⁩ ago
If you do something sus, the police can likely request who had which IP at which time and lead them right to your door.

source
- sem@lemmy.blahaj.zone ⁨15⁩ ⁨hours⁩ ago
  If the Police can come right to your door, I assume that your ISP has your home address linked to your IP. Could anyone else access it?
  
  source
  - DrDystopia@lemy.lol ⁨11⁩ ⁨hours⁩ ago
    Not really, AFAIK the closest external actors can access is the general area based on the central you’re connected to.
    
    Have you tried an IP lookup like What’s my IP?
    
    source
    -> View More Comments
Enoril@jlai.lu ⁨1⁩ ⁨day⁩ ago
Depends of where you lives. if you have only 1 house per km² around you and your isp box provide predictable SSID name, you could be easily found.

Google street cars capture also the wifi network around them when taking street photos.

And getting your ip can connect the people directly to your box. A trace route command to this IP could return intermediate equipment of your isp, helping to pinpoint your town or even your street.

source
- kevincox@lemmy.ml ⁨1⁩ ⁨day⁩ ago
  I think this is a little confused. Unless your WiFi is open someone seeing your network can’t find out what the WAN IP is.
  
  And getting your ip can connect the people directly to your box
  
  “Connect” is a strong word here. Yeah, they can send traffic at it. But that shouldn’t do anything.
  
  A trace route command to this IP could return intermediate equipment of your isp, helping to pinpoint your town or even your street.
  
  This is the most reasonable concern. Depending on your ISP and location the IP itself or packet tracing you can get a pretty good idea of the user’s location.
  
  source
  - Enoril@jlai.lu ⁨14⁩ ⁨hours⁩ ago
    I don’t know for you but, by default, all our ISP box here broadcast an “open” SSID that allows any customers of this ISP to login with their ISP credentials on the ISP box around them (except if the customers switch off this function). That allow a customer with a dead box or in travel to still have internet. (traffic is of course segregated).
    
    So if you know the ISP brand via the IP range and find a isolated home with this provider ssid visible, you found the address of the IP. Again that work only with low number of houses or not often use ISP.
    
    Connect
    
    source
    -> View More Comments
drmoose@lemmy.world ⁨1⁩ ⁨day⁩ ago
Theres definitely some risk especially in semi-anonymous forums like Lemmy. For example Lemmy.world is blocking VPNs so they know everyone’s IP addresses and given post history etc its very easy to actually identify who’s who. Especially now with AI forensics.

That being said, as a security expert, I think it’s not always productive for casual people to be obsessed with this and you if you can you should use a VPN or a mobile network which due to how cell towers work is much more anonymous than anything else in practice (datacenter IPs work too as well as TOR but those are blocked in practice)

source
- user224@lemmy.sdf.org ⁨1⁩ ⁨day⁩ ago
  I don’t think they block VPNs, they just use Cloudflare which often ends up being shitty. I iust tried 2 servers from Mullvad, and it works fine.
  But I think it kept blocking me when I used Lifecell SIM card, like many other websites behind Cloudflare.
  
  At this point if I see CF page I iust leave. It’s not worth waiting to see if the captcha let’s you in (most likely not).
  
  source
foggy@lemmy.world ⁨1⁩ ⁨day⁩ ago
It depends if you have any reverse proxies. If not? Really nothing.

If yes, lots.

Potentially everything on your network could become hacked. That’s not likely but is a worst case scenario.

source
hexagonwin@lemmy.sdf.org ⁨1⁩ ⁨day⁩ ago
it could enable targeted attacks. just use a vpn if you can afford one.

source
- DeathByBigSad@sh.itjust.works ⁨21⁩ ⁨hours⁩ ago
  ProtonVPN is free, funded by paid users, but you can’t torrent on free servers and its gonna make your internet slower (I mean obviously they aint gonna give you the fast servers for free).
  
  source
TheLeadenSea@sh.itjust.works ⁨1⁩ ⁨day⁩ ago
Also my IP changes every time the router restarts, so that’s a thing too.

source
ohshit604@sh.itjust.works ⁨1⁩ ⁨day⁩ ago

so they shouldn’t be a risk like GPS that exposes precise locations?

Yes, they only provide country, province/state and city. As others mentioned if you’re worried about this information get yourself a reliable VPN provider, route all your devices through said VPN provider (ideally through your router).

When picking a VPN provider it is highly recommended to read their Privacy Policy before signing up, ensure they don’t log data.

source
- horse@feddit.org ⁨1⁩ ⁨day⁩ ago
  In my experience the city information is not particularly reliable. If you geolocate my IP the city is always wrong.
  
  source
  - ILikeTraaaains@lemmy.world ⁨1⁩ ⁨day⁩ ago
    I get targeted ads based on IP location… for different regions of my country.
    
    source