tag:blogger.com,1999:blog-2962276924342174960.post7303520343165387397..comments2023-10-18T10:25:47.859+02:00Comments on Emergent Patroller: TRS - Shadow Warfare - Spying in EVE Online Part 2Emergent Patrollerhttp://www.blogger.com/profile/01210394924909245177noreply@blogger.comBlogger10125tag:blogger.com,1999:blog-2962276924342174960.post-67768768008210588932022-07-27T17:38:30.249+02:002022-07-27T17:38:30.249+02:00Hello mate greeat blog postHello mate greeat blog postFlorin Animal Controlhttps://www.animal-control-removal.com/us/animal-removal-california/florin-animal-control.shtmlnoreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-23751641208649254752014-02-19T19:46:57.444+01:002014-02-19T19:46:57.444+01:00Sure, they can get all that IP information, I stil...Sure, they can get all that IP information, I still don't see how they would find out that I am spying. After all, I am just some guy playing on their side. The account that interacts with the opposition will never ever interact with them (and should not post on forums etc.)<br /><br />I also remember the thing where the Goons were collecting IPs by using a forum signature that would link back to them when the post was loaded IIRC.<br /><br />It is a problem that only affects people who run spies and are members of an enemy corp at the same time. Sure, If I have an account in BL and I post on Kugu, they can cross reference my login data there with my login data on their own forums. Only I would never do that.<br /><br />I guess I could have included that in my guide, but then again, it does not apply to people playing a spy the way I propose here.Anonymoushttps://www.blogger.com/profile/01088902803812337777noreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-76687158153047545072014-02-19T10:27:29.314+01:002014-02-19T10:27:29.314+01:00Here's an actual example of this happening and...Here's an actual example of this happening and the consequences:<br /><br />http://themittani.com/news/cfc-destroys-alleged-titan-spyAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-39366508728873935362014-02-19T10:25:08.609+01:002014-02-19T10:25:08.609+01:00Right... so lets say the Alliance you're spyin...Right... so lets say the Alliance you're spying on requires full API keys to register for their services. Now they know all the characters tied to that account, and the IP address that registered them. They can also see the IP connected to your account for hosted alliance services like Forums, Jabber, Mumble, Teamspeak, etc.<br /><br />Now lets say you use a public service, like Kugutsumen or posting on TheMittani.com, where your IP is logged, and the people who run the site can associate it with your in-game name. If you post using your actual account name and not your spy account, that will get associated eventually over time.<br /><br />If you use a third party service for your legit account where they store API information, such as Fleet-up.com (hosted by Noir.) or possibly GARPA (Goonswarm), that's another place they can harvest API information for IP cross referencing. I have no idea if any of the other tools that require APIs "phone them home" or can be trusted completely. Noir has said they won't look at the API data Fleet-up stores, and I have to take their word for it.<br /><br />Now they can put all the accounts tied to that IP address together, they'll know if you have characters in a hostile corporation. Bam - Commissared.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-25566759566300183442014-02-19T08:01:12.512+01:002014-02-19T08:01:12.512+01:00Well, I never used the same API for any online or ...Well, I never used the same API for any online or third-party app that I used for corp applications. Also, I never used anything online with my agent/bank account connected to it. So I don't see how people could connect the two ever?<br /><br />Just because they know my IP (through forum posts let's say) they still don't know I'm doing dodgy business on the side. How would they?Anonymoushttps://www.blogger.com/profile/01088902803812337777noreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-8150593820125723202014-02-19T03:14:36.277+01:002014-02-19T03:14:36.277+01:00When you use some public EVE sites or applications...When you use some public EVE sites or applications that take API keys, you can expect that they are saving the IP address you are connecting from, and associating them with your EVE characters. If they run their own services as well, they can cross check the connecting IP addresses and see if it raises a flag with characters that shouldn't be allowed to connect.<br /><br />Here's a public example of how some of the services being tracked this way can cause problems, if you don't take the proper precautions:<br /><br />http://www.reddit.com/r/Eve/comments/1ubtjk/story_banned_from_n3_for_rooming_with_a_bl_dude/<br /><br />Would something like Tor be a good way to avoid suspicion? I figure you'd be changing your connecting IP a lot so it would make it hard to track - whether that's good or bad I don't know.<br /><br />A VPN program would let you keep your IP addresses for connecting to legit vs spying stuff completely separate.<br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-82116637818485124592014-02-19T02:12:22.442+01:002014-02-19T02:12:22.442+01:00TBH I never went that far with my planning. Then a...TBH I never went that far with my planning. Then again, I was sorta protected by someone who is extremely paranoid about IT stuff.<br /><br />One thing I can say is, stay clear of the Goons and the Russians. Both groups have some serious hacker types among their membership.<br /><br />Then again, working for the Russians can be very lucrative, while working for the Goons is largely impossible. They simply don't trust you if they don't know you.Anonymoushttps://www.blogger.com/profile/01088902803812337777noreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-68065630700955253282014-02-19T02:10:52.110+01:002014-02-19T02:10:52.110+01:00This comment has been removed by the author.Anonymoushttps://www.blogger.com/profile/01088902803812337777noreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-10236574402066453672014-02-18T23:55:37.296+01:002014-02-18T23:55:37.296+01:00Knowing your IP address does not mean they know yo...Knowing your IP address does not mean they know your browser history. Its not like Corp A and Corp B are going to share login data with each other (that probably infringes on several privacy laws in some countries). If it really bothers you, you can easily change your ip address every month or so.<br /><br />Also, api keys only record the last 8k or so journal transactions... if you really need to clean it up, go station trade for a week or two.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-2962276924342174960.post-37875815361120936682014-02-18T23:23:39.948+01:002014-02-18T23:23:39.948+01:00Very good articles, I've read both so far. I&...Very good articles, I've read both so far. I'd be interested in some of the technical methods used to avoid spy detection. <br /><br />The majority of this seems to be good IT security. Keeping your characters and APIs clean and separate just seems like it would take some organization and forethought, but once you're using alliance authorized resources out of game, it gets trickier.<br /><br />Do you need to use a VPN program or browser anonymizer when accessing alliance websites or resources in case they track IP Addresses and match to other common EVE sites? Short of having a completely separate machine to avoid reporting back statistics, how else can you protect yourself from detection?<br /><br />Anonymousnoreply@blogger.com