better yet do any of you have links to sites similar to stayinvisible .com?
Printable View
better yet do any of you have links to sites similar to stayinvisible .com?
Big mistake: don't call MsMittens Ms Kittens :)
So, what was the website you were talking about, the ex-cop's one? If you would like to share, I [like MsMittens, I can assume] will be delighted to see it, and other members of the board as well.
I would go for MAC spoofing with stolen cable signal, and IP tunneling [through at least one system you have gained root access, but more than one on the relay] to the destination. Regularly deleting logs on the 'owned' system [but only those that concern you so as to not raise suspicion on the part of the real sysadmin].
However I find it more practical - MUCH more practical - to access WAPs. With a spoofed MAC address, clearly. It can be quite time consuming, however if you know what you need to do [and to avoid losing time] you can write some scripts on your laptop to execute everything you have to do once you are connected to the WAP. This way, even in the case of somebody noticing the extra wifi connection, you would be done quickly.
But, in all honesty, it will be hard to remain unknown. Depending on the nature of your activities, and how illegal they are [remembering, of course, that AO does not condone such said activities], you should keep in mind that some types of crimes get a lower sentence if they are executed without a computer. If it is free speech you want, buy webspace in a country where 3LAs do not have any jurisdiction. Make sure no databasing of your real IP exists there, and also give as little [if not fake] information when registering the domain. It's not foolproof, but we're talking about free speech.
If it's all out cracking you are after, then if it's big it's going to be your ass on the line. Unless you feel like travelling a lot.
For hacking, take a course or buy VMWare. For privacy, I believe a good anonymous proxy would do the trick. Again, the more stuff you can tell us about it, the more we could adapt these suggestions to your needs. Well, if they are not illegal and unethical [this is so as to acknowledge that not everything made illegal is unethical, and that maybe, just maybe, some laws are unnecessary. maybe. very subjective topic]
cheers!
Propaganda it does/might matter what sort of connection you have...........like cable generally has a static IP that is yours only whereas ADSL and 56.6 dial ups give you a fresh one each time you log on. That makes tracing more complex.
AFAIK if you hide your IP from you ISP (who gave it to you in the first place?) then you break your connection.
The answer has to be chained proxies..............but if they really want you? hell, if I offered someone half a million to blow your head off, how long do you think it would remain on your shoulders?
Bribery works as well, and it is the taxpayers money they are spending?............I know I sound cynical and defeatist, but that is how it works.............they already have satellite surveillance, wiretaps, directional microphones?................please do not believe that a minor detail such as the Constitution will stop them.
Sometimes it is best to "hide in plain view"
Cheers
http://gthorne.reteam.org/ good info from a reputable guy (mega links)
Depending on what your motivations are... I suggest you proxy chain on a machine that is NOT yours, like a library or kinkos (like adrian lamos lol)
Just to make sure, I meant 'owned' in the 'haxor' sense. Having root allows you to modify some logs to better camouflage yourself.Quote:
Originally posted here by The Duck
Depending on what your motivations are... I suggest you proxy chain on a machine that is NOT yours, like a library or kinkos (like adrian lamos lol)
nihil i found what i was looking for, ssl 128 encrypt. Its command line. I cant set it in my Internet connections. Its from the link lumpy gave me. Its proxyweb. Tell me how secure that is. Im not doing anything illegal. I just want to be in a dark corner. I tested it and it hides my real IP , Gateway IP and ISP. now if i gain root acess into a win box and they have my IP prox logged. It should be difficult for them to find me?? If im logged onto a server in canada and i have post on there about illegal stuff and dont want LEO to track me. I should be safe??
Nothing is safe in Canada from 3LAs. That is because most traffic passes through American owned lines, and those have Carnivore in place.
Getting admin on a Win box could work, but you will need to find [or code] the tools for IP tunneling. I do not know if it is as secure as in *nix, where you could use raw socks to spoof your IP from server to server [well, at least on the owned box]
Basically a filter in place would screen your IP, once you tunnel through your relay box, the program would invoke raw socks and change the IP addr so it seems as a different one. The more layers of security, the better.
Of course this is a theory. I like to be in a relatively dark corner too, but when things are very important there is not enough security anyway.
And I didn't know about SSL128 that it encrypts/hides source IP. I do not know the inner workings of it, but wouldn't the computer 'answering' the call decrypt/reveal the ip_addr?
did you try JAP http://anon.inf.tu-dresden.de/
it's free.. cross platform (java) and realy nice . .
It's an encrypted proxy via the MIXMASTER methode..
one end of the proxy knows you.. the other end knows what you want..
and I'd bet no simple "check" website will peer thrue your proxy..
also use an other browser then IE.. Opera is a reasonable choice..
Actually, I wouldn't bet on this anymore. There is an industry tool/mechanism I've just reviewed for EnterprisePlanet that can detect you and respond accordingly -- by either shutting down the AP or enabling a DoS against you to kick you off the network. The only saving grace is cost and thus would only be used in large environments.Quote:
I would go for MAC spoofing with stolen cable signal, and IP tunneling [through at least one system you have gained root access, but more than one on the relay] to the destination. Regularly deleting logs on the 'owned' system [but only those that concern you so as to not raise suspicion on the part of the real sysadmin].
Propaganda, I think Hypronix has hit upon one big issue. Should the RCMP and/or CSIS decide they want to know about you and ask their "American cousins" it's quite likely they would be able to find out. I'm still genuinely curious about that former cop site (I've been searching but haven't found it). Something has occurred to me (especially when looking at lumpy's site -- which is very nice): how do you know that this isn't something run by someone like the FBI, CIA, etc? There is another site I visit that has both proxy listings (daily) as well as recently, listing for IPs owned by gov't (some are not as obvious as others).
I suppose to be truly anonymous you'd have to travel a fair amount and perhaps use some of the cafes and/or libraries, particularly the smaller places that just want to make a quick $$.
Also, quick curious in that link that lumpy provided that avocated heavy use of a spoofing telnet product (from the makers of Cain & Abel). The product looks interesting but requires trading off the privacy of the text being sent versus individual privacy. Couldn't someone figure out who it is based on writing style? (I believe there is existing biometrics to match up writing style -- at least for typing. Somehow I wouldn't be surprised if there is something in place that detects writing style based on posts and such.)
Uhh... wasn't that the one with the backdoor in it? From lumpy's website:Quote:
From one of those "HERE" links (securityfocus.com):Quote:
Beware of a German Proxy called JAP which was originally a very nice Java Proxy...
(Java Anonymous Proxy)
It was court ordered to have a Back Door and sends data to the German Police
Read More about this serious problem HERE, HERE, or HERE
Or was that changed since then?Quote:
The popular Java Anonymous Proxy (JAP), used to anonymise one's comings and goings across the Internet, has been back-doored by court order. The service is currently logging access attempts to a particular, and unnamed, Web site and reporting the IP addys of those who attempt to contact it to the German police.