How - Proxy Servers Work/To Chain Them/To Scan For Them
Goto page 1, 2  Next  :||:
Networking/Security Forums -> Anonymity // Privacy // Spam

Author: ShaolinTigerLocation: Kuala Lumpur, Malaysia PostPosted: Sat Aug 10, 2002 12:34 am    Post subject: How - Proxy Servers Work/To Chain Them/To Scan For Them
    ----
How a Proxy Server Works - Chaining Proxy Servers. (Simple Way)

Outlined below are the easiest ways to use the proxies you find here or the ones you find yourself.

Please NOTE:

SCANNING IS ILLEGAL. USING PROXIES WITHOUT PERMISSION IS ILLEGAL. JUST BECAUSE SOME IDIOT HAS MISCONFIGURED THEIR COMPUTER DOESN'T MEAN YOU ARE ALLOWED TO USE IT. If you are reported by these people to your ISP, you may LOSE YOUR account.

A proxy server acts as a gateway between you and the Internet. With a proxy server enabled on your Web browser, your request for a web page (or a download) goes first to the proxy server, where it checks if someone had previously accessed that page (or download). If it finds one, then it will just give it to you from the proxy server -- that makes loading a page or downloading something significantly faster. If the proxy server doesn't detect an already existing page or download, it will go out to the Internet, get the page or download, and give it to you. Since it is the proxy server that actually connects to the site you are viewing or downloading from, it is the IP of the proxy that is left in the remote server's logs, and not the IP that you are currently using.

Many proxy servers keep logs of the IP's that have connected to them, however, if you use a proxy physically located in a country that is not especially friendly with the one in which you reside, it can make it difficult for someone to obtain the logs, even with a subpoena. You can increase the level of difficulty by "chaining" proxies, or having one proxy connect to another proxy. To maximize the difficulty of tracing the originating IP, each proxy should be located in a different country.

The best countries to use are generally Mexico, Korea, Taiwan, Japan, Russia and Czech Republic.

To use a proxy server with Internet Explorer.

1. Open up Internet Explorer.

2. Go to the View menu and select Internet Options.

3. A window will appear with several tabs along the top. Click on the
Connection tab.

4. Click settings, then Use proxy server for this connection add the address and port and press ok.

To use a proxy server with Netscape Communicator.

1. Open up Communicator.

2. Go to the Edit menu and select Preferences.

3. A window will now appear, with your options listed on the left-hand
side. Double-click on the word Advanced.

4. When you click on Advanced, three options will appear: Cache,
Proxies, and SmartUpdate. Click on Proxies.

5. You'll now see some options with radio buttons beside them. Click on the radio button beside "Manual proxy configuration" to select it.

One SIMPLE way to "chain" proxies is to enter the information for one proxy directly into your browser's proxy configuration setup. Then connect to a web anonymizer which is also a proxy, and from there, to the site you want to view. Anyone trying to trace your actual IP would now have to subpoena the logs from TWO proxy servers. You could chain in a third proxy server by entering it into the address bar of your browser, in conjunction with the URL of the web anonymizer. The URL that you type should look something like this:

http://proxyB:port/http://proxyC:port/http://www.whereyougo.com/

This would, in effect, connect you to proxy A, the one specified in your browser configuration, then to proxy B, then to proxy C, and finally, to the web anonymizer, from where you would enter the URL of the site you want to visit, using FOUR proxy servers chained together.

This does not work with all proxies, and finding publicly accessible proxy servers is becoming more difficult.

These are without using SocksCAP.

More Tips for Chaining Proxies

First of all grab SocksCAP from here:

http://www.socks.nec.com/cgi-bin/download.pl

This is a tool that allows you to grab all outgoing traffic. (Meaning you can make anything use a proxy)

1. In the setting, enter this as socks server : 127.0.0.1 port 8000.

2. Click on 'socks version 5'. click 'resolve all names remotely'. Uncheck 'supported authentication'.

3. In the main window, choose new and then browse to create a shortcut for the internet client you want to give socks support.

4. Repeat this step for every program you want.

Then grab SocksChain here:

http://www.ufasoft.com/socks/

1. In the service menu, click on new. enter 'Chain' as name and '8000' as port to accept connections on.

2. Click on new and fill in the ips of the fastest wingates you found, but this time, use port 1080 for this (and not the port 23).

3. Using the '<' and '>', you can add and remove socks. be sure to test all socks one by one before adding them all to the list in once, because if one of them is bad, you chain will not work and you will not be able to locate the bad socks in the chain.

4. If all of them seem to work, you use the '<' key to add them all mind speed problems. 4 or less is fine. i think 10 or 13 is the limit put by TCP/IP).

Scanning for Proxies

There is a list of commonly used proxy tools here:

http://www.proxys4all.com/tools.shtml

The best known proxy scanner being Proxy Hunter available here:

http://www.jtpfxp.net/downloads.htm

An article on how to configure Proxy Hunter here:

http://www.pgzone.net/modules.php?op=modload&name=News&file=article&sid=10

Wingate scanner works better through SocksCAP (mentioned above) as something PH can crash when being used through SocksCAP. The point of scanning through a proxy is that it's less likely you'll get in trouble for scanning.

Get Wingate Scanner Here:

http://packetstormsecurity.nl/wingate-scanner/wGateScan_4_0b.zip

You can also get ProxyChecker here:

http://www.checkproxy.com/download.html

This will scan and also tell you if the proxy is transparent or not and calculate the speed of the proxy.

And Dipstick here:

http://klever.net/kin/static/dipstick.exe

Which is used for testing the relative speeds of mirrors, but also can be used for checking proxies.

Just fire off Dipstick. Rightclick in the small green rectangular and choose Show main window. To import a list of wingates, just click on Advanced, choose Import List and select your file. You can also manually ping a simple host by clicking on Manual Ping. Use those wingates with the smallest average time.

You can use the tools in:

http://www.security-forums.com/forum/viewtopic.php?t=841

To check how anonymous you are with your new proxies.

Use Opera rather than IE as IE has a tendency to reveal your IP *anyway*. http://www.opera.com/

For anonymising yourself on forums Shocked or web-sites in general, use Opera, turn everything off and use a wingate.

If you like chain the proxies and even better use SocksCAP and SockChain for everything.

Any comments please add below.

Shaolin 2002

Author: igir3dsk1Location: 7h3 !n73rn37 :) PostPosted: Sat Nov 23, 2002 5:14 am    Post subject:
    ----
You could only use the proxies with the webrowser?

<<<r3dsk1>>>

Author: decypherohmLocation: World - Europe - Portugal - Lisbon PostPosted: Sat Nov 23, 2002 2:34 pm    Post subject:
    ----
No they can be used with mIRC but very rare because almost all the server dont want u to use proxys... it can be used with msn menssager(very useful) and lots more... Wink

Author: igir3dsk1Location: 7h3 !n73rn37 :) PostPosted: Sat Nov 23, 2002 6:42 pm    Post subject:
    ----
Thanks Razz

Author: Eater PostPosted: Thu Dec 12, 2002 6:52 pm    Post subject:
    ----
The post began saying it's *illegal* to scan/use proxies. I'd argue that
scanning, while annoying, isn't illegal Yes, it may irritate your ISP enough
to cancel you, but since when is it illegal?

Using a proxy? I'm not so sure that's illegal either. If you're using it to
do something illegal, obviously that something you're doing is the
problem, not the proxy use itself.

If I'm mistaken, I'd like to see some actual facts supporting the
contrary.

Author: ShaolinTigerLocation: Kuala Lumpur, Malaysia PostPosted: Thu Dec 12, 2002 6:58 pm    Post subject:
    ----
Heh I don't think scanning or using the proxy is illegal personally. It's just a disclaimer in case some place it is, or at some point it might be.

Scanning is a grey area, using is a darker grey area and under some jurisdictions can be considered illegal..

More here: http://www.security-forums.com/forum/viewtopic.php?t=1500

Which expanded into this:

http://www.security-forums.com/forum/viewtopic.php?t=1504 (Very interesting debate)

Author: Mongrel PostPosted: Thu Dec 12, 2002 7:07 pm    Post subject:
    ----
LOL!! Shaolin - You mentioned one of my favorite tut sites but in your downloads list -


http://www.jtpfxp.net/scanproxy.htm

and

http://www.jtpfxp.net/proxyfaq.htm


Whlie you're there check out the rest of the tutorials and their forum.

For educational purposes ONLY!!

Author: Eater PostPosted: Thu Dec 12, 2002 7:10 pm    Post subject:
    ----
Well, obviously the system can be used to defeat itself. Picking a
proxy in 4 different countries and chaining them together will create
such a web of beaurocracy, it won't even matter if it's illegal or not...

(especially if the last mile is over an open 802.11b ap, haha)

Author: flwLocation: U.S.A. PostPosted: Fri Jan 03, 2003 11:27 pm    Post subject:
    ----
I thought it was a good explanation of chaining proxies. Good Job ST Exclamation

Author: Bart Decker PostPosted: Sun Nov 09, 2003 4:35 pm    Post subject:
    ----
I have tried to install Sockscap with Sockschain .

Settings are the same as Shaolin posted :

Socks Server 127.0.0.1 8000
Resolve Names Remotely


Then make browse to the OE folder en select msimn.exe

After this i installed Sockschain :

Accept COnnections on : 8000
Change the chain every 300 SChain Lenght 2 proxies

I have added 4 tested proxies , all with socks5 capabilities . ( no http / socks4) << maybe this is wrong .

Final proxy remains empty .



Now i get a socks timeout in Outlook Express . Dunno were the fault lies .

any ideas ?

Author: ToblopoLocation: Australia PostPosted: Tue Feb 10, 2004 5:00 am    Post subject:
    ----
Whoah That was quite a good read. And shows how much i knew about proxys. well i knew the basics but not about chaining. This would have been helpful awhile back when i had some smart arse quoting all my Ip stats my service provider and norrowing it down the the town i lived in.
Thanks

Author: Ipsec Espah PostPosted: Sat Mar 06, 2004 5:46 am    Post subject:
    ----
At the top of the post you say that using a open proxy is illegal but a couple months later in the other sticky thread "Legal Info Regarding Using Open Proxies" you say its legal. Might be best if you delete the one line at the top of this thread to prevent the inconsistency.

Also i don't think the

http://proxyB:port/http://proxyC:port/http://www.whereyougo.com/
or
http://proxyB:port_-_http://proxyC:port-_-http://www.whereyougo.com/

methods of proxy chaining don't work in the more recent versions of IE. Multiproxy at http://www.multiproxy.org/ supports proxy chaining and is free. I haven't tried it but it seems to be fairly popular.


The proxies must be HTTP connect proxies. If they support SSL or SOCKS then it will work. If you can login to hotmail.com then it supports SSL. Another problem you could run into is port filtering. Instead of using proxy1:1080-->proxy2:8000-->proxy3:80 make sure all of the proxies use the same port.

In the end proxy chaining is such a hassle that it would probably be better to go to the library or some public computer and use a anonymous proxy from there.

Author: eeps24 PostPosted: Wed Dec 22, 2004 8:27 am    Post subject:
    ----
i dont understand, why would anyone want to use a proxy? if you alreayd have internet acess , whats the big deal?

Author: ryansuttonLocation: San Francisco, California PostPosted: Wed Dec 22, 2004 8:33 am    Post subject:
    ----
Exclamation

Last edited by ryansutton on Wed Dec 21, 2005 4:10 pm; edited 1 time in total

Author: jorgening PostPosted: Thu Jan 20, 2005 10:14 pm    Post subject:
    ----
What I finally did was to get a website and run a CGI proxy.
You can control the HTTP headers from the proxy, kinda like you would from Proximatron on a local machine. Also controls what remote site's can dowload to your local host.

Author: isohseis PostPosted: Fri Nov 25, 2005 11:04 am    Post subject:
    ----
From all I know scanning for proxy servers shouldn't be illegal, only using one without permission should be illegal.



Networking/Security Forums -> Anonymity // Privacy // Spam


output generated using printer-friendly topic mod, All times are GMT + 2 Hours

Goto page 1, 2  Next  :||:
Page 1 of 2

Powered by phpBB 2.0.x © 2001 phpBB Group