Hey guys, some people (e.g. parents) can be quite paraniod about internet security. Thanks to shows like "A Current Affair", my parents are always whinging & whining about ppl watching what you are doing on the internet.

Well as part of my redhat security course I have to study proxies. I have since set up my own personal box now but I was looking around & found this site:

http://www.proxy4free.com/index.html

Just as a basic activity check it out, when you have changed your proxy settings in your browser go to http://www.whatismyip.com

I think the current proxy I am using is in china.

I used one for a while.. But ended up ditching it..

I was using: Steganos Internet Something..

It jumped around the world.. you could tell it times/places etc.. And it showed your current Ip and everything...

Was quite good.

Just remember what your goal is here.. If its security, I would not be passing all my traffic through an unknown proxy in china ;P

its just an activity dude. but yeh villan is right.

like i said i use my own now.

Or don't do anything others could care about.. ie internet banking etc.

I still don't trust it, and I don't use IE, or Outlook. I have a firewall locked down, and do regular virus and spyware checks.

I still don't trust it.

Otherwise, what do you care if someone is browsing your computer? ;)

Sell ur computer, buy a farm and make a tin foil hat :)
There is no way you can maintain anonymity on the internet, unless I guess u change ur ip adress every 2 secs or something

Another useful link is:
http://www.auditmypc.com/

This site will try to determine your IP, ISP, location, computer information, etc. It will let you know if a website can view such personal information. If you IP address or other sensitive info shows up here, find a new proxy and reconfigure your firewall

Also, hardare firewalls with Stateful Packent Inspection (or might be called SPI) are a worthy investment if ya paranoid.

As for proxies, if you're trying to be anonymous to increase security and privacy, your own proxy isnt the way to go. It's like hiding in your own house. Sure, all the blinds are up and the doors locked, but we still know where you are.

Google for anonymous proxies, as they're the best, avoid transparent proxies etc. Look for ones with 'high anonyminity'. Also, avoid communist or dictatorship countries where the laws allow people in power to monitor everything.

All this research Maj coz you're parents are paranoid for you? :rolleyes:

Raynar,

I recently studied RedHat 253 Networking & Security Administration.

We setup proxies etc & i was just doing a bit of study on it.

I was saying that my parents think they are professionals on internet security when they watch some pathetic report on A Current Affair. They start giving me some jibberish about digital footprints & hackers can get into my system to steal my personal data.

Right now I am experimenting with OpenBSD for a firewall, if somebody can get through that they can take whatever they want off my system. Ill even close Bittorrent so they get faster uploads.

This thread was just a simple activity I thought id give you guys.

./MaJ

Its an interesting conversation, and Im all for it continuing.. But like I said earlier.. Anonymous proxies are a REALLY bad idea, if security is what your trying for.

If anyone is ever interested I can give you complete access to my home network, its about as secure as they come, with just about every security aspect covered. I would not, in a million years, consider proxying any traffic of mine through an unknown and untrusted third party.

As far as anonymity goes. Use firewalls, use a browser that isnt a POS.. They will be left with nothing but an IP address.. Hell, they can do what they want with it.

Keep in mind that apart from the person running the proxy (who will be able to see all clear text traffic), youve probibly added in a number of other hops between you and your target.. Each hop, making it less and less secure..

:P

you dont feel like sharing your home proxy with me do you vill?

Long Distant Proxys = Slow Net = homo.

i put a proxy on IE and my god was it slow.

lol i did the vulnerability test:
Type Port Services, Programs and Trojans that are commonly found to be running on this port.

tcp 21 This is the FTP service control port. Firewall rules focus on this port; then open port 20 only when required for a data transfer. Security Concerns with FTP: Cleartext; re-usable passwords. - Portal for user account grinding. - FTP Bounce; where attacker uses ftp's "port" command to redirect the FTP transfer to a port & IP other than default port 20 on the FTP server. Attacks can include "bouncing" internal network scans; email forging/flooding; etc. CERT Advisories: CA-97.16; CA-99.13. Disable this service on non-FTP servers. Open at perimeter only with static route to internal FTP server(s).
Trojans or Viruses known to use this port are: Back Construction. BladeRunner. Cattivik FTP Server. CC Invader. Dark FTP. Doly Trojan. Fore. FreddyK. Invisible FTP. Juggernaut 42. Larva. MotIv FTP. Net Administrator. Ramen. RTB 666. Senna Spy FTP server. The Flu. Traitor 21. WebEx. WinCrash.

tcp 22 pcAnywhere Status. Default udp status port for v2.0 thru v7.51; plus CE. Versions v8+ on use tcp 5631 & udp 5632.
Trojans or Viruses known to use this port are: Adore sshd. Shaft.

tcp 23 Telnet. Standard for remote host admin. Security Concerns of Telnet: Cleartext; re-usable passwords. - Portal for user account grinding. CERT Advisories: CA-89.03; CA-95.14. Replace with SSH on critical hosts.
Trojans or Viruses known to use this port are: ADM worm. Fire HacKer. My Very Own trojan. RTB 666. Telnet Pro. Tiny Telnet Server - TTS. Truva Atl.

tcp 25 Simple Mail Transfer. Used by mail servers to receive inbound email. Security Concerns: Email servers are complex engines; often run as root; and required open at most network perimeters. Thus are popular for attackers and new DOS or intrusion hacks always being found. Disable on non-mail server hosts. Open at perimeter only with static route to internal mail server.
Trojans or Viruses known to use this port are: Ajan. Antigen. Barok. BSE. Email Password Sender - EPS. EPS II. Gip. Gris. Happy99. Hpteam mail. Hybris. I love you. Kuang2. Magic Horse. MBT (Mail Bombing Trojan). Moscow Email trojan. Naebi. NewApt worm. ProMail trojan. Shtirlitz. Stealth. Stukach. Tapiras. Terminator. WinPC. WinSpy.

tcp 80 HTTP. Standard web service port. Exchange is cleartext; use https (443) for sensitive data transfers.
Trojans or Viruses known to use this port are: 711 trojan (Seven Eleven). AckCmd. Back End. Back Orifice 2000 Plug-Ins. Cafeini. CGI Backdoor. Executor. God Message. Hooker. IISworm. MTX. NCX. Noob. Ramen. Reverse WWW Tunnel Backdoor. RingZero. RTB 666. Seeker. WAN Remote. Web Server CT. WebDownloader.

tcp 110 Post Office Protocol - Version 3. Most widely used client email protocol. Used by mail clients to collect mail off server. Security Concerns: Re-usable cleartext password. - No auditing of connections & attempts; thus subject to grinding. - Some POP3 server versions have had buffer overflow problems. CERT Advisories: CA-97.09.Trojans or Viruses known to use this port are: ProMail trojan.

wow that came out bad... ( i mean way way much text etc. i dont care if i get hacked. ill pull my cable out and trap them in my computer :P )

mm.. blocked everything in the test..
only thing it could come up with is it could see my LAN ip.. meh.. not worrying me

Wirlwind.. Sure it was scanning you and not a proxy in front of you?

Do you actually have those ports in use on your machine.. Ie.. FTP, SSH, TELNET servers?