Communities

Writing
Writing
Codidact Meta
Codidact Meta
The Great Outdoors
The Great Outdoors
Photography & Video
Photography & Video
Scientific Speculation
Scientific Speculation
Cooking
Cooking
Electrical Engineering
Electrical Engineering
Judaism
Judaism
Languages & Linguistics
Languages & Linguistics
Software Development
Software Development
Mathematics
Mathematics
Christianity
Christianity
Code Golf
Code Golf
Music
Music
Physics
Physics
Linux Systems
Linux Systems
Power Users
Power Users
Tabletop RPGs
Tabletop RPGs
Community Proposals
Community Proposals
tag:snake search within a tag
answers:0 unanswered questions
user:xxxx search by author id
score:0.5 posts with 0.5+ score
"snake oil" exact phrase
votes:4 posts with 4+ votes
created:<1w created < 1 week ago
post_type:xxxx type of post
Search help
Notifications
Mark all as read See all your notifications »
Q&A

Welcome to the Power Users community on Codidact!

Power Users is a Q&A site for questions about the usage of computer software and hardware. We are still a small site and would like to grow, so please consider joining our community. We are looking forward to your questions and answers; they are the building blocks of a repository of knowledge we are building together.

How effortlessly can universities check where you logged in? What other IT details can they determine?

+0
−6

Assume you're accessing your university Canvas LMS and Intranet (is this the correct term?) — e.g. your university email, library website, etc... — normally, without VPN or proxy. Assume you haven't revealed anything about your locations or Internet details to university staff.

How readily or handily can university staff on their own deduce which city you logged in, if they can do this at all?

And how much can university staff deduce? IP address? ISP?

History
Why does this post require moderator attention?
You might want to add some details to your flag.
Why should this post be closed?

2 comment threads

x-post https://academia.stackexchange.com/q/176626/149803 (1 comment)
Off Topic: Not about software (1 comment)

1 answer

+3
−0

Accessing any server involves sending from a particular IP address to a particular IP address; the exchange of packets includes the sender so that the recipient can send packets back.

An IP address belongs to an Autonomous System (or AS) which is generally a large entity on the Internet. Any IP address can immediately be linked with the AS.

Most AS assign specific IPs to specific geographical areas. They give IPs names in the DNS that reflect those areas. The names can be looked up from the DNS (via a reverse DNS query).

A traceroute command can show the current path between an originating IP and a target IP. Here's one, which I'm abbreviating:

HOST: DNSChecker.org

  • 2.|-- 10.74.8.40
  • 3.|-- 138.197.248.236
  • 4.|-- 138.197.248.56
  • 5.|-- 138.197.244.24
  • 6.|-- eqix-ny1.imperva.com (198.32.118.20)
  • 7.|-- 45.60.75.209

The 10.74.8.40 address is an RFC1918 address which is purely internal. 138.197.248.236 can be looked up and shows that it belongs to Digital Ocean. So do the next two. eqix-ny1 is almost certainly a router that talks to the Equinix network in New York City. Finally, the 45.60.75.209 address belongs to Imperva. Imperva is a DDOS protection company, and so our story ends, somewhere in New York City.

It is common for consumer ISPs to have DNS names that are significant down to the city, town or, sometimes, neighborhood.

So: your university staff can likely tell which ISP you are using in what city, but not necessarily your precise address. For that, they would have to ask the ISP who used that IP at a given time, and the ISP would almost certainly ask for a valid subpoena or court order.

History
Why does this post require moderator attention?
You might want to add some details to your flag.

0 comment threads

Sign up to answer this question »