ack. . . can't find a proxy on those sites that works.
Printable View
ack. . . can't find a proxy on those sites that works.
I found an RFC as a proposed standard for proxy apps. RFC1928
The protocol is called SOCKS, but I don't know how wild it is used in the "real world" and I can't found any info about the real IPaddy being propagated within signalling.
I can undersatnd the Negative script but where is coming from the $REMOTE_ADDR ???
I can't figure it out :(
The webserver recieves packets from you with information about were to send it back to. The webservers pases it to the php variable $REMOTE_ADDR and $REMOTE_HOST... you can't just change them because you wouldn't be able to recieve anything back. The x_forwarded_for can be easily changed, because it doesn't really have a role in the whole system exept for giving some intel to scipts that use it... You can only change the $remote_addr by using a different ip, wich can be done by a proxy who sents a request for the page of it's own and then sends it to you again, so the server doesn't get to know your ip in any way. Like Negative said, those things are often pretty slow and/or cost money... Is that what you wanted to know ?
$HTTP_X_FORWARDED_FOR origininates from the http-request itself.
$REMOTE_ADDR doesn't: $REMOTE_ADDR originates from the IP-header (a header added on the Network-layer level by the IP protocol, containing both the transmitter's and the receiver's IP-address).
Here is a nice overview of the socks-protocol.
This part is interesting:
When an application client needs to connect to an application server, the client connects to a SOCKS proxy server. The proxy server connects to the application server on behalf of the client, and relays data between the client and the application server. For the application server, the proxy server is the client.
This makes a socks-proxy as good as anonymous (given that the socks-owner is trustworthy).
You'll also find a tool called Sockscap on that site. It allows you to 'socksify' any internet-based application (browser, e-mail, irc,...). All you need is a socks-proxy that allows connections. There are hundreds of lists of 'free' socks proxies, but finding one that actually works (let alone works *fast*) is umm... not easy. What you could do (and what would be illegal) is scan a range of ip-addies for open 1080-ports, then use Sockscap to connect through them. Illegal and slow, but as good as anonymous... There are services that allow you to do the same if you don't mind paying...
thank u both;
here is some additional info extract from RFC2616 HTTP/1.1
Quote:
Elaborate user-customized accept header fields sent in every request, in particular if these include quality values, can be used by servers as relatively reliable and long-lived user identifiers. Such user identifiers would allow content providers to do click-trail tracking, and would allow collaborating content providers to match cross-server click-trails or form submissions of individual users. Note that for many users not behind a proxy, the network address of the host running the user agent will also serve as a long-lived user identifier. In environments where proxies are used to enhance privacy, user agents ought to be conservative in offering accept header configuration options to end users.
As an extreme privacy measure, proxies could filter the accept headers in relayed requests. General purpose user agents which provide a high degree of header configurability SHOULD warn users about the loss of privacy which can be involved.
I am not 100% clear.
When I post this one it does not say proxy detected.
However when I visit all-nettools.com it tells me the address of the proxy as well as my own address (like the script from Negative). Then when I visit Negatives site it is telling me I do not appear to be using a proxy BUT returns me the IP of the proxy server and NOT mine.
Also on GRC it reports the IP of the proxy.
Am I missing something here.
Not that it matters that much but I am just curious.
Thanks
NoOdLe :)
Nope, that's what Neel said, if it doesn't say proxy detected then your proxy is anonymous, if it does say it then it's a cache proxy or something similar. . . :), heh heh, I can learn.
Quote:
So if it says proxy detected, you don't have an anonimous proxy... Maybe that cleared it up a little more...
Ah that clears it up. Guess I missed that when I was reading the thread.
Thanks bludgeon.