• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

How - Proxy Servers Work/To Chain Them/To Scan For Them

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Goto page 1, 2  Next
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Anonymity // Privacy // Spam

View previous topic :: View next topic  
Author Message
ShaolinTiger
Forum Fanatic
Forum Fanatic


Joined: 18 Apr 2002
Posts: 16777215
Location: Kuala Lumpur, Malaysia

Offline

PostPosted: Sat Aug 10, 2002 12:34 am    Post subject: How - Proxy Servers Work/To Chain Them/To Scan For Them Reply with quote

How a Proxy Server Works - Chaining Proxy Servers. (Simple Way)

Outlined below are the easiest ways to use the proxies you find here or the ones you find yourself.

Please NOTE:

SCANNING IS ILLEGAL. USING PROXIES WITHOUT PERMISSION IS ILLEGAL. JUST BECAUSE SOME IDIOT HAS MISCONFIGURED THEIR COMPUTER DOESN'T MEAN YOU ARE ALLOWED TO USE IT. If you are reported by these people to your ISP, you may LOSE YOUR account.

A proxy server acts as a gateway between you and the Internet. With a proxy server enabled on your Web browser, your request for a web page (or a download) goes first to the proxy server, where it checks if someone had previously accessed that page (or download). If it finds one, then it will just give it to you from the proxy server -- that makes loading a page or downloading something significantly faster. If the proxy server doesn't detect an already existing page or download, it will go out to the Internet, get the page or download, and give it to you. Since it is the proxy server that actually connects to the site you are viewing or downloading from, it is the IP of the proxy that is left in the remote server's logs, and not the IP that you are currently using.

Many proxy servers keep logs of the IP's that have connected to them, however, if you use a proxy physically located in a country that is not especially friendly with the one in which you reside, it can make it difficult for someone to obtain the logs, even with a subpoena. You can increase the level of difficulty by "chaining" proxies, or having one proxy connect to another proxy. To maximize the difficulty of tracing the originating IP, each proxy should be located in a different country.

The best countries to use are generally Mexico, Korea, Taiwan, Japan, Russia and Czech Republic.

To use a proxy server with Internet Explorer.

1. Open up Internet Explorer.

2. Go to the View menu and select Internet Options.

3. A window will appear with several tabs along the top. Click on the
Connection tab.

4. Click settings, then Use proxy server for this connection add the address and port and press ok.

To use a proxy server with Netscape Communicator.

1. Open up Communicator.

2. Go to the Edit menu and select Preferences.

3. A window will now appear, with your options listed on the left-hand
side. Double-click on the word Advanced.

4. When you click on Advanced, three options will appear: Cache,
Proxies, and SmartUpdate. Click on Proxies.

5. You'll now see some options with radio buttons beside them. Click on the radio button beside "Manual proxy configuration" to select it.

One SIMPLE way to "chain" proxies is to enter the information for one proxy directly into your browser's proxy configuration setup. Then connect to a web anonymizer which is also a proxy, and from there, to the site you want to view. Anyone trying to trace your actual IP would now have to subpoena the logs from TWO proxy servers. You could chain in a third proxy server by entering it into the address bar of your browser, in conjunction with the URL of the web anonymizer. The URL that you type should look something like this:

http://proxyB:port/http://proxyC:port/http://www.whereyougo.com/

This would, in effect, connect you to proxy A, the one specified in your browser configuration, then to proxy B, then to proxy C, and finally, to the web anonymizer, from where you would enter the URL of the site you want to visit, using FOUR proxy servers chained together.

This does not work with all proxies, and finding publicly accessible proxy servers is becoming more difficult.

These are without using SocksCAP.

More Tips for Chaining Proxies

First of all grab SocksCAP from here:

http://www.socks.nec.com/cgi-bin/download.pl

This is a tool that allows you to grab all outgoing traffic. (Meaning you can make anything use a proxy)

1. In the setting, enter this as socks server : 127.0.0.1 port 8000.

2. Click on 'socks version 5'. click 'resolve all names remotely'. Uncheck 'supported authentication'.

3. In the main window, choose new and then browse to create a shortcut for the internet client you want to give socks support.

4. Repeat this step for every program you want.

Then grab SocksChain here:

http://www.ufasoft.com/socks/

1. In the service menu, click on new. enter 'Chain' as name and '8000' as port to accept connections on.

2. Click on new and fill in the ips of the fastest wingates you found, but this time, use port 1080 for this (and not the port 23).

3. Using the '<' and '>', you can add and remove socks. be sure to test all socks one by one before adding them all to the list in once, because if one of them is bad, you chain will not work and you will not be able to locate the bad socks in the chain.

4. If all of them seem to work, you use the '<' key to add them all mind speed problems. 4 or less is fine. i think 10 or 13 is the limit put by TCP/IP).

Scanning for Proxies

There is a list of commonly used proxy tools here:

http://www.proxys4all.com/tools.shtml

The best known proxy scanner being Proxy Hunter available here:

http://www.jtpfxp.net/downloads.htm

An article on how to configure Proxy Hunter here:

http://www.pgzone.net/modules.php?op=modload&name=News&file=article&sid=10

Wingate scanner works better through SocksCAP (mentioned above) as something PH can crash when being used through SocksCAP. The point of scanning through a proxy is that it's less likely you'll get in trouble for scanning.

Get Wingate Scanner Here:

http://packetstormsecurity.nl/wingate-scanner/wGateScan_4_0b.zip

You can also get ProxyChecker here:

http://www.checkproxy.com/download.html

This will scan and also tell you if the proxy is transparent or not and calculate the speed of the proxy.

And Dipstick here:

http://klever.net/kin/static/dipstick.exe

Which is used for testing the relative speeds of mirrors, but also can be used for checking proxies.

Just fire off Dipstick. Rightclick in the small green rectangular and choose Show main window. To import a list of wingates, just click on Advanced, choose Import List and select your file. You can also manually ping a simple host by clicking on Manual Ping. Use those wingates with the smallest average time.

You can use the tools in:

http://www.security-forums.com/forum/viewtopic.php?t=841

To check how anonymous you are with your new proxies.

Use Opera rather than IE as IE has a tendency to reveal your IP *anyway*. http://www.opera.com/

For anonymising yourself on forums Shocked or web-sites in general, use Opera, turn everything off and use a wingate.

If you like chain the proxies and even better use SocksCAP and SockChain for everything.

Any comments please add below.

Shaolin © 2002
Back to top
View user's profile Send private message Visit poster's website
igir3dsk1
Just Arrived
Just Arrived


Joined: 28 Sep 2002
Posts: 4
Location: 7h3 !n73rn37 :)

Offline

PostPosted: Sat Nov 23, 2002 5:14 am    Post subject: Reply with quote

You could only use the proxies with the webrowser?

<<<r3dsk1>>>
Back to top
View user's profile Send private message Visit poster's website MSN Messenger
decypherohm
Just Arrived
Just Arrived


Joined: 16 Nov 2002
Posts: 1
Location: World - Europe - Portugal - Lisbon

Offline

PostPosted: Sat Nov 23, 2002 2:34 pm    Post subject: Reply with quote

No they can be used with mIRC but very rare because almost all the server dont want u to use proxys... it can be used with msn menssager(very useful) and lots more... Wink
Back to top
View user's profile Send private message Visit poster's website MSN Messenger
igir3dsk1
Just Arrived
Just Arrived


Joined: 28 Sep 2002
Posts: 4
Location: 7h3 !n73rn37 :)

Offline

PostPosted: Sat Nov 23, 2002 6:42 pm    Post subject: Reply with quote

Thanks Razz
Back to top
View user's profile Send private message Visit poster's website MSN Messenger
Eater
Just Arrived
Just Arrived


Joined: 29 Apr 2002
Posts: 0


Offline

PostPosted: Thu Dec 12, 2002 6:52 pm    Post subject: Reply with quote

The post began saying it's *illegal* to scan/use proxies. I'd argue that
scanning, while annoying, isn't illegal Yes, it may irritate your ISP enough
to cancel you, but since when is it illegal?

Using a proxy? I'm not so sure that's illegal either. If you're using it to
do something illegal, obviously that something you're doing is the
problem, not the proxy use itself.

If I'm mistaken, I'd like to see some actual facts supporting the
contrary.
Back to top
View user's profile Send private message Visit poster's website
ShaolinTiger
Forum Fanatic
Forum Fanatic


Joined: 18 Apr 2002
Posts: 16777215
Location: Kuala Lumpur, Malaysia

Offline

PostPosted: Thu Dec 12, 2002 6:58 pm    Post subject: Reply with quote

Heh I don't think scanning or using the proxy is illegal personally. It's just a disclaimer in case some place it is, or at some point it might be.

Scanning is a grey area, using is a darker grey area and under some jurisdictions can be considered illegal..

More here: http://www.security-forums.com/forum/viewtopic.php?t=1500

Which expanded into this:

http://www.security-forums.com/forum/viewtopic.php?t=1504 (Very interesting debate)
Back to top
View user's profile Send private message Visit poster's website
Mongrel
SF Mod
SF Mod


Joined: 30 May 2002
Posts: 8


Offline

PostPosted: Thu Dec 12, 2002 7:07 pm    Post subject: Reply with quote

LOL!! Shaolin - You mentioned one of my favorite tut sites but in your downloads list -


http://www.jtpfxp.net/scanproxy.htm

and

http://www.jtpfxp.net/proxyfaq.htm


Whlie you're there check out the rest of the tutorials and their forum.

For educational purposes ONLY!!
Back to top
View user's profile Send private message
Eater
Just Arrived
Just Arrived


Joined: 29 Apr 2002
Posts: 0


Offline

PostPosted: Thu Dec 12, 2002 7:10 pm    Post subject: Reply with quote

Well, obviously the system can be used to defeat itself. Picking a
proxy in 4 different countries and chaining them together will create
such a web of beaurocracy, it won't even matter if it's illegal or not...

(especially if the last mile is over an open 802.11b ap, haha)
Back to top
View user's profile Send private message Visit poster's website
flw
Forum Fanatic
Forum Fanatic


Joined: 27 May 2002
Posts: 16777215
Location: U.S.A.

Offline

PostPosted: Fri Jan 03, 2003 11:27 pm    Post subject: Reply with quote

I thought it was a good explanation of chaining proxies. Good Job ST Exclamation
Back to top
View user's profile Send private message Visit poster's website
Bart Decker
Just Arrived
Just Arrived


Joined: 21 Apr 2003
Posts: 7


Offline

PostPosted: Sun Nov 09, 2003 4:35 pm    Post subject: Reply with quote

I have tried to install Sockscap with Sockschain .

Settings are the same as Shaolin posted :

Socks Server 127.0.0.1 8000
Resolve Names Remotely


Then make browse to the OE folder en select msimn.exe

After this i installed Sockschain :

Accept COnnections on : 8000
Change the chain every 300 SChain Lenght 2 proxies

I have added 4 tested proxies , all with socks5 capabilities . ( no http / socks4) << maybe this is wrong .

Final proxy remains empty .



Now i get a socks timeout in Outlook Express . Dunno were the fault lies .

any ideas ?
Back to top
View user's profile Send private message Send e-mail Visit poster's website
Toblopo
Just Arrived
Just Arrived


Joined: 02 Feb 2004
Posts: 0
Location: Australia

Offline

PostPosted: Tue Feb 10, 2004 5:00 am    Post subject: Reply with quote

Whoah That was quite a good read. And shows how much i knew about proxys. well i knew the basics but not about chaining. This would have been helpful awhile back when i had some smart arse quoting all my Ip stats my service provider and norrowing it down the the town i lived in.
Thanks
Back to top
View user's profile Send private message MSN Messenger
Ipsec Espah
Just Arrived
Just Arrived


Joined: 16 Mar 2003
Posts: 4


Offline

PostPosted: Sat Mar 06, 2004 5:46 am    Post subject: Reply with quote

At the top of the post you say that using a open proxy is illegal but a couple months later in the other sticky thread "Legal Info Regarding Using Open Proxies" you say its legal. Might be best if you delete the one line at the top of this thread to prevent the inconsistency.

Also i don't think the

http://proxyB:port/http://proxyC:port/http://www.whereyougo.com/
or
http://proxyB:port_-_http://proxyC:port-_-http://www.whereyougo.com/

methods of proxy chaining don't work in the more recent versions of IE. Multiproxy at http://www.multiproxy.org/ supports proxy chaining and is free. I haven't tried it but it seems to be fairly popular.


The proxies must be HTTP connect proxies. If they support SSL or SOCKS then it will work. If you can login to hotmail.com then it supports SSL. Another problem you could run into is port filtering. Instead of using proxy1:1080-->proxy2:8000-->proxy3:80 make sure all of the proxies use the same port.

In the end proxy chaining is such a hassle that it would probably be better to go to the library or some public computer and use a anonymous proxy from there.
Back to top
View user's profile Send private message
eeps24
Just Arrived
Just Arrived


Joined: 04 Dec 2004
Posts: 0


Offline

PostPosted: Wed Dec 22, 2004 8:27 am    Post subject: Reply with quote

i dont understand, why would anyone want to use a proxy? if you alreayd have internet acess , whats the big deal?
Back to top
View user's profile Send private message
ryansutton
Trusted SF Member
Trusted SF Member


Joined: 25 Aug 2004
Posts: 67
Location: San Francisco, California

Offline

PostPosted: Wed Dec 22, 2004 8:33 am    Post subject: Reply with quote

Exclamation

Last edited by ryansutton on Wed Dec 21, 2005 4:10 pm; edited 1 time in total
Back to top
View user's profile Send private message
jorgening
Just Arrived
Just Arrived


Joined: 20 Sep 2004
Posts: 0


Offline

PostPosted: Thu Jan 20, 2005 10:14 pm    Post subject: Reply with quote

What I finally did was to get a website and run a CGI proxy.
You can control the HTTP headers from the proxy, kinda like you would from Proximatron on a local machine. Also controls what remote site's can dowload to your local host.
Back to top
View user's profile Send private message
isohseis
Just Arrived
Just Arrived


Joined: 25 Nov 2005
Posts: 0


Offline

PostPosted: Fri Nov 25, 2005 11:04 am    Post subject: Reply with quote

From all I know scanning for proxy servers shouldn't be illegal, only using one without permission should be illegal.
Back to top
View user's profile Send private message
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Anonymity // Privacy // Spam All times are GMT + 2 Hours
Goto page 1, 2  Next
Page 1 of 2


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register