On Tue, 09 Oct 2001 11:27:52 -0500 Samuel W. Heywood" <[EMAIL PROTECTED]> wrote: >Hello Arachnids: >I just tried to access the URL named below. What happened is >that I got a 404 error which identified my browser, in this case >Arachne 1.70, rev 3, my operating system (DOS), my ISP, and my IP, >the resolution of my monitor, and the fact that I had a WATTCP.CFG >configuration file, and the date/time of my access. Up until just >now I didn't know that a web site could determine so much info on >you simply by your accessing a URL, unless you have a JavaScript >enabled browser. Nothing fancy there! That's the way Arachne identifies herself over the net (when issuing the "GET" command to a web server) This is how the request to localhost from localhost looks like in case of Linux Arachne: connect to [127.0.0.1] from localhost [127.0.0.1] 1067 GET / HTTP/1.0 User-agent: xChaos_Arachne/4.1.66;beta (Linux i386; svgalib; 800x600,HiColor; www.arachne.cz) Accept: */* Host: localhost Referer: http://localhost/ Accept-Charset: ISO-8859-2,* And the same thing for Netscape 3.04 GET / HTTP/1.0 Connection: Keep-Alive User-Agent: Mozilla/3.04 (X11; I; Linux 2.2.12-20 i486) Host: localhost Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */* Host is your actual internet address (may be your URL or your IP).The above information is ussualy written in the web server logs. The 404 error page showed you all the above. In conclusion they did not scan your machine; they only sent you back the stuff you passed them on when requested the page. Cristian Burneci
