Is there someone who has good knowledge on proxy servers. I would like to know how to bypass a proxy server. Let me explain. You get these programs like internet eraser, windows washer etc, that deletes and wipes all internet activity. But as far as I understand, it only wipes your machine, and the proxy still records all the websites you surf. Or am I wrong. I am looking for something or a way that the proxy server won't record all my activity on a corporate network. Is there a way to do it and how?
Thanks
PS! If your can't give me answer here, please direct me to a place where I can get info or mail me at bjorland@hotmail.com
Full Version: Proxy Server Help needed
Yes, that's correct. It won't clear information on a remote computer.
Basically, if the network administrator has a clue, there is not a whole lot you can do.
It depends on the setup, and rather than write a 5 page article describing the various ways you could get around it, let me just point out one thing: If they know what they're doing, regardless how you get around it, they can know what your doing. However, lets say you tunnel it through an encrypted tunnel through something like ssh, they will not be able to know WHAT you're doing/transfering, but they can still know something is up. And if they have a clue, they can prevent you from doing that alltogether...
I know I'm not making sense, but this is something that isn't easy to go over in a single paragraph, so I'll just leave it at: if it's not your connection or equipment, you really don't have any business trying to do sneaky stuff on it :cool:
And without detailed info about the network configuration, I don't believe anyone can help (and unless your the network administrator, really knowing how the network is configured can be extremely difficult, again, if they have a clue. It's surprising how clueless most network administrators are. An MCSE or CNE does not mean you know how to run a good network, it just means you were able to pass a few tests
)
Basically, if the network administrator has a clue, there is not a whole lot you can do.
It depends on the setup, and rather than write a 5 page article describing the various ways you could get around it, let me just point out one thing: If they know what they're doing, regardless how you get around it, they can know what your doing. However, lets say you tunnel it through an encrypted tunnel through something like ssh, they will not be able to know WHAT you're doing/transfering, but they can still know something is up. And if they have a clue, they can prevent you from doing that alltogether...
I know I'm not making sense, but this is something that isn't easy to go over in a single paragraph, so I'll just leave it at: if it's not your connection or equipment, you really don't have any business trying to do sneaky stuff on it :cool:
And without detailed info about the network configuration, I don't believe anyone can help (and unless your the network administrator, really knowing how the network is configured can be extremely difficult, again, if they have a clue. It's surprising how clueless most network administrators are. An MCSE or CNE does not mean you know how to run a good network, it just means you were able to pass a few tests
)
Let's preface this by saying I used to work in technical support for a MAJOR telecommunications company. We were all behind a firewall connection at work, and all access was done through a proxy. The proxy blocked a lot of stuff we shouldn't be using company computers to access, and then some that were more questionable. I was always trying to find ways around it.
The most effective manner was to use another proxy that I forwarded my requests through. There are a lot of them out there. If you do a search on Google for "anonymous proxies" you'll come up with alot.
The proxy logs will show you accessing the proxy server, and if the proxy server uses SSL then it'll only show access to that domain @ port 443, and hide the URL you visit. A good proxy admin will block these servers to prevent misuse.
You won't be able to do it for long if your proxy blocks by keyword rather than domain, or filters content in a similar manner by the URLs. If it does then you'd have to obfuscate the URL so that searching wouldn't pull up anything. An example of this would be www.rewebber.de, which encodes the URL. A good proxy that does this will make the encoded URL session specific as well, so that even if your proxy admin knows the encoded URL your browser was requesting he/she couldn't cut-n-paste it back into their browser to see where the encoded URL would go, because it would be expired. These servers are hard to find and usually cost money, and would also be blocked by most good proxy admins.
Anyway, if going through the proxy is you're only way out through the firewall then streaming a connection through port 80 probably wouldn't work. I would also guess return packets would have a hard time making it back to your machine as well if you did have a tunneling program up. If the firewall allowed other types of programs through the firewall, like RealPlayer or something that DOES stream, you might be able to setup a Linux box with a tunneling program that uses those ports (7070, etc.). It would arouse suspicion with a good fireall admin though. I once got in trouble at said telecommunications company for having Yahoo! Mesenger running on my system. It made an HTTP connection every minute for 24 hours straight, had the security folks freakin' out.
The most effective manner was to use another proxy that I forwarded my requests through. There are a lot of them out there. If you do a search on Google for "anonymous proxies" you'll come up with alot.
The proxy logs will show you accessing the proxy server, and if the proxy server uses SSL then it'll only show access to that domain @ port 443, and hide the URL you visit. A good proxy admin will block these servers to prevent misuse.
You won't be able to do it for long if your proxy blocks by keyword rather than domain, or filters content in a similar manner by the URLs. If it does then you'd have to obfuscate the URL so that searching wouldn't pull up anything. An example of this would be www.rewebber.de, which encodes the URL. A good proxy that does this will make the encoded URL session specific as well, so that even if your proxy admin knows the encoded URL your browser was requesting he/she couldn't cut-n-paste it back into their browser to see where the encoded URL would go, because it would be expired. These servers are hard to find and usually cost money, and would also be blocked by most good proxy admins.
Anyway, if going through the proxy is you're only way out through the firewall then streaming a connection through port 80 probably wouldn't work. I would also guess return packets would have a hard time making it back to your machine as well if you did have a tunneling program up. If the firewall allowed other types of programs through the firewall, like RealPlayer or something that DOES stream, you might be able to setup a Linux box with a tunneling program that uses those ports (7070, etc.). It would arouse suspicion with a good fireall admin though. I once got in trouble at said telecommunications company for having Yahoo! Mesenger running on my system. It made an HTTP connection every minute for 24 hours straight, had the security folks freakin' out.
Also for ex. at my job if your able to install stuff on your PC. I work at a local internet provider keeping the servers on line. They switched all the PC to Win 2000 just recetly. Before they were running NT which I could do what ever I wanted. Now with 2000 they have locked out everything , Hell I can even install messenger on my pc now.:cry
-XPerties
-XPerties
QUOTE
Also for ex. at my job if your able to install stuff on your PC. I work at a local internet provider keeping the servers on line. They switched all the PC to Win 2000 just recetly. Before they were running NT which I could do what ever I wanted. Now with 2000 they have locked out everything , Hell I can even install messenger on my pc now.:cry
-XPerties
-XPerties
That's when you l0phtcrack the admin password
Really, sometimes it's so stupid, a company has corporate security standards that take up over 400 pages (I'm NOT kidding) and the first thing they tell you is COMPLEX passwords are required (letters, numbers, AND a at least one special character. Then a dumbass admin comes along and makes the Admin password on all the machines something like "guitarzan" and "lancelot". How dumb can you be, it only takes 4 hours to brute force those in l0phtcrack.
A good bootdisk with NT "assword recovery" tools and a copy of NTFSDOS Pro and you can do **** near anything to a WinNT/2K box assuming Syskey w/ SP3 isn't enabled.
On the Novell servers at another job one of the admin accounts with root equivalence for the whole "tree", which included Birmingham, Sacremento, and Phoenix locations DIDN'T have any password set! I pointed this out to my boss in fron of the admin (my boss was his boss too) and the admin STILL didn't fix it. Sometimes the stupidity truly is mind blowing.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.