This is probably something you all have discussed already, but I couldn't find the thread on it. So, I wanted to pose it to those of you that are more experienced than I.
Ok, so along comes some Tracker spy. The post a post with a link in it like this:
http://www.HonestGuy.com/yourPrettyPicture.jpg
Now, that link is not what it seems. It doesn't go to where it says it does, but that isn't the issue. Even if it did go to where it says it goes. What happens when you click on it. Well, a POST message is sent to that server to load the JPG (either for download or into your browser). In this case, they link is fake so it gives you an error.
Still, in every one of those cases (including the apparent error) your IP is made known to the URL you connect to.
For instance, there is a popular site for getting your IP at:
http://www.whatsmyip.org/
Here is the same link, but hidden by some fake text:
http://www.HonestGuy.com/PrettyPicture.jpg
When you click on that, they will tell you your IP. That is, they know your IP to tell you that. Now, imagine that instead of it going to www.whatsmyip.org the link took you to some tracker spy site. Well, that means that you just told the tracker spy your IP. Moreover, you might not even know it since he actually does show you some pretty picture like you expected to see.
They don't even have to host the image on their own servers. You can host images on servers like PhotoBucket and either that server will tell them all the IP's that viewed their image or they could use a PhotoBucket tracker to track the IP's that view their image.
Now, for those of us with VPN's there isn't much problem so long as we don't browse this site with the VPN on (but use the VPN only for the torrenting). But for anyone without a VPN then clicking on one of these links would give away your IP even if you used a different computer to do it.
Ok, so that is easy enough. People just have to be careful about clicking on any external links from this site. Well, maybe that will work, and maybe not.
Embedded images, avatars, banners, etc....these are all often images that are kept on external servers. The question is, when your client browser runs into such an image, does the IP that is used to get these image come from the TorrentInvites server or does it come from the clients computer. I suspect that it would come from the clients computer, but I don't know for sure. In any case, if it does come from the clients computer then even if you just view a thread that contains any such image that a Tracker spy posted then they will know your IP.
Like for instance, there is a thread in the Lounge called "100 Numbers". The person who started that thread has since been banned. If any of those images that are posted are hosted by a tracker spy (even if they are hosted on some other server) then just by going to that thread you will have given your IP away. Unless, of course, if those images are instead linked to the TorrentInvites server IP, but it seems to me that they wouldn't be. I would think that they would be linked to the client's IP address.
Anyone want to clue me in on this one? I'm probably just being paranoid, but where have I gone wrong in my thinking?