On Mon, 23 May 2005, tim wrote:
> Is there a quick convenient way to translate DNS numbers, 234.123.567.1 and
<font color=purple> > the like, into <a style='text-decoration: underline;' href="http://www.whatever.com?</font" target="_blank">www.whatever.com?</font</a>>
Well, ignoring the fact that 234.123.567.1 is invalid (255 is the maximum
for any octet), there are a number of ways you can get *a* domain name if
a reverse DNS (abbr: rDNS) record has been created for that IP address.
However, if fifty domains are hosted on the same machine, you can usually
only get *one* of them.
1. Go to "SamSpade.org Tools" at:
<a style='text-decoration: underline;' href="http://samspade.org/t/" target="_blank">http://samspade.org/t/</a>
and enter the IP address in the top field. You'll get a hostname
if rDNS has been configured for that IP address. An example lookup
made some time ago:
<a style='text-decoration: underline;' href="http://samspade.org/t/lookat?a=24.71.223.147" target="_blank">http://samspade.org/t/lookat?a=24.71.223.147</a>
: whois
:
: Whois: ______________________________
: @whois. [Magic...............]
: Whois
:
: Server Used: [ whois.arin.net ]
: [1] 24.71.223.147 = [ [2] px6so.cg.shawcable.net ]
^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^
IP address hostname
:
: OrgName: Shaw Communications Inc.
[snip whois info]
2. Download Sam Spade for Windows and use that. See:
<a style='text-decoration: underline;' href="http://samspade.org/ssw/" target="_blank">http://samspade.org/ssw/</a>
3. Try:
nslookup 234.123.567.1
and see if you get lucky. Your version of nslookup may not be able
to look up IP addresses directly.
4. Reverse the byte order of the IP address and tack on ".in-addr.arpa"
("234.123.567.1" becomes "1.567.123.234.in-addr.arpa" for example)
and use that with nslookup:
nslookup 1.567.123.234.in-addr.arpa
5. There are other things you can try. Quoting from
<a style='text-decoration: underline;' href="http://samspade.org/d/ipdns.html" target="_blank">http://samspade.org/d/ipdns.html</a> (well worth reading in its entirety):
[snip]
: Reverse lookup
:
: Finding the hostname given the IP address is very useful. If
: you're tracing spam you need the domainname to be able to find
: whois information.
:
: So you just need to do an 'nslookup w.x.y.z', right?
:
: D:\>nslookup 199.170.88.39
: Server: penfold
: Address: 192.168.1.1
:
: Name: www-01.io.com
: Address: 199.170.88.39
:
: Sometimes yes...
:
: D:\>nslookup 151.196.75.10
: Server: penfold
: Address: 192.168.1.1
:
: *** penfold can't find 151.196.75.10: Non-existent domain
:
: Sometimes no...
:
: Just because a host has forward DNS from name to address
: there's no guarantee or requirement for it to have reverse DNS
: from address to name. Many sites do, many sites don't.
:
: [Note: Some nslookups don't accept reverse lookup on the
: command line. If you get caught with a braindead tool and need
: to do a reverse lookup you can do this: nslookup
: z.y.x.w.in-addr.arpa will do a reverse DNS lookup for address
: w.x.y.z. Don't ask...]
:
: If there's no reverse DNS you need to resort to guerrilla
: approaches. If there's a web site that's a good bet. Do a view
: source to look at the HTML source, particularly for forms and
: mailto links.
:
: Sometimes telnetting to the machine will give a banner
: identifying the machine. Or telnetting to other ports on the
: machine (25, 110, 119) can sometimes give a banner. Then you
: can use forward DNS to confirm that the address maps back to
: the right IP.
:
: A port-scan tool can scan a range of ports on a machine, to see
: which are providing services. Then you can telnet to each one
: in turn to see if any leak information.
:
: What if the site is being coy, and trying to hide their
: domainname? Most virtual web-hosting companies require
: customers to have a domain name, but if it's not used anywhere
: and the website is advertised using it's IP address rather than
: domain name it's hard to find.
:
: On some virtual web servers accessing <a style='text-decoration: underline;' href="http://w.x.y.z/stats" target="_blank">http://w.x.y.z/stats</a> or
: <a style='text-decoration: underline;' href="http://w.x.y.z/logs" target="_blank">http://w.x.y.z/logs</a> triggers a redirect that can give you the
: name.
[snip]
--
">> consider moving away from Front Page...."
">To what? Any suggestions?"
"Naked bungee-jumping. It's less humiliating <g>"
-- Matt Probert in alt.www.webmaster, March 20, 2005<!-- ~MESSAGE_AFTER~ -->
>> Stay informed about: DNS - numbers into plain language 
FAQ
Profile
Private Messages
Log in
