PDA

View Full Version : proxy questions



Carrot Soup
12-05-2002, 08:25 AM
I have a couple of questions about anonymous surfing that I havent seen asked before:

Youre using an anon proxy, so maybe the site you visit thinks youre comming from Japan, but....

*. What about all the comps that the page youre visiting goes thru b4 it gets back to you - can't they "see" or log what youre looking at? I'm talking about trace route here. I mean, untill your comp gets thru all the servers before it gets to the proxy and then the site, all the comps in between know who your real IP don't they? Can they log where youre going, what url you requested, what your doing when you get there etc? The target site might be fooled, but doesn't the rest of the trace route know "everything"?

2. Then, whos to say the "anon" proxy isn't some set-up designed specificaly to log anon proxy users. Like, the CIA or some spam set-up? --- "Here's another one, chief. This guy is using our anon proxy to visit sadamisagoodguy.com. Lets bust him for terrorism!" Know what I mean?

One other question: I've got all my scripting etc turned off in IE and am curently using a Hungarian anon proxy. Am I safe enough? Here's the results of a check I did. Please tell me, anyone, if you see any "holes".

DOCUMENT_ROOT=/usr/local/apache2/htdocs
GATEWAY_INTERFACE=CGI/*.*
HTTP_ACCEPT=*/*
HTTP_ACCEPT_LANGUAGE=en-ca --OK, I REALY AM IN CANADA
HTTP_CONNECTION=close
HTTP_HOST=thor.prohosting.com ---SITE I GOT THIS CHECK FROM
HTTP_USER_AGENT=Mozilla/4.0 (compatible; MSIE 5.0*; Windows *8) ------ SO WHO CARES IF I USE IE5.0*? IT ALSO USED TO SHOW THE NAME OF MY ISP, BUT I PLUCKED THAT OUT WITH REGEDIT.
PATH=/bin:/usr/bin
QUERY_STRING=
REMOTE_ADDR=**5.70.*2.2*4 ---MY PROXY. NOT MY REAL IP.
REMOTE_PORT=2646
REQUEST_METHOD=GET
REQUEST_URI=/%7Etcpip/cgi-bin/env.cgi
SCRIPT_FILENAME=/usr/home/web/t/tcpip/cgi-bin/env.cgi
SCRIPT_NAME=/~tcpip/cgi-bin/env.cgi
SCRIPT_URI=http://thor.prohosting.com/~tcpip/cgi-bin/env.cgi
SCRIPT_URL=/~tcpip/cgi-bin/env.cgi
SERVER_ADDR=65.***.***.*44 ---SITE I GOT THIS CHECK FROM.
SERVER_ADMIN=web******@prohosting.com
SERVER_NAME=thor.prohosting.com
SERVER_PORT=80
SERVER_PROTOCOL=HTTP/*.*
SERVER_SOFTWARE=Apache/2.0.4* (Unix)

Any feedback would be great - thanks.

No1
12-05-2002, 12:25 PM
>*. What about all the comps that the page youre visiting goes thru b4 it gets back to you - can't they "see" or log what youre looking at? I'm talking about trace route here. I mean, untill your comp gets thru all the servers before it gets to the proxy and then the site, all the comps in between know who your real IP don't they? Can they log where youre going, what url you requested, what your doing when you get there etc? The target site might be fooled, but doesn't the rest of the trace route know "everything"? <

Yes.

>2. Then, whos to say the "anon" proxy isn't some set-up designed specificaly to log anon proxy users. Like, the CIA or some spam set-up? --- "Here's another one, chief. This guy is using our anon proxy to visit sadamisagoodguy.com. Lets bust him for terrorism!" Know what I mean? <

Right again.

Consider getting something to hide your USER_AGENT.

sigkim-its me
12-05-2002, 12:35 PM
First of all hello forum, it's good to be back on the net and at all-nettoolos!

The life story is my computer crashed....agian and I had to reload Blindows a few times and then it got ugly! After updateing Microsoft's Internet crasher I discovered that the newest version was included in the update...I didn't see this in the update's documentation and I was pissed...how rude! However, I'm now able to use a proxies in IE where I couldn't before. I thought that my isp cox cable was blocking all proxies not just ports 8000,8080 and 80. Proxies now work and I had wasted two months on and off trying everything. After reloading Opera, proxies now work in it also?!?!..go figure!

To Carrot...Wow man your really getting into the proxy thing...my hat's off to you for typing all that text. As far as traceing a connection to it's original source....I haven't a clue why a trace cannot get back to the source but I think that with all the "*********" guys that use and study this aspect of computer use, I think that word would have gotten out if proxies just plain don't work..........however.......for casual use (use your own definition here) one should be fairly anonymous (spell check). ...however agian...If one is swiping Gov't secrets or hacking Nasa or something....you can be sure that the guys in suites and dark sunglasses will be knocking on your door. They have the resources to find you.....joe surfer hacking into porn site .com probly has nothing to worry about eccept a nasty email from theire isp. I have friends that do this on a regular basis useing proxies and the isp just don't care. ANother friend of mine was an in house tech for microsoft at one point and she showd me how to "ping" various sites in DOS. She pinged Nasa (here boyfriend shot here a mean glare from the sofa when she did this) and the info she recieved after a few tries revealed...they didn't like that.
She stated that she wouldn't do that agian for a while.
She said that I can "learn" other things on my own :)
Here is a Proxy check site that has a message at the end that say's "trace complete"....is it...most likely.


http://privacy.net/analyze/

You may already have this one but for those who don't..

Useing proxy 66.*66.68.**8:**28

It seems that cable companies block ports 80,8080,8000 for proxy use but one of the ********* guys on this ***rd said that it's better to use proxys with other port numbers....

You may know this already but for those who don't..

good to be back at all-nettools!

have a good day forum!

Sigkim (NT:) 0

DATA
12-10-2002, 08:56 AM
hi sigkim,

I heard that some body frm usa port scanned nsa web site and got his box confisticated by the feds in a few hours time.

Regards Data.

Unregistered
12-23-2002, 01:02 AM
this mirror of the apr *7' anonymizer.com doesnt say anything about the CIA.... but the cia could have asked the people to remove it....

http://web.archive.org/web/***7040*0*404*/http://www.anonymizer.com/