Is it possible that from proxy (squid) the admin can chk all the node's url history with or without any additional software. If the answer is yes how can I hide myself from tracing?
In a nutshell I want myself hidden from most of the activities.
Printable View
Is it possible that from proxy (squid) the admin can chk all the node's url history with or without any additional software. If the answer is yes how can I hide myself from tracing?
In a nutshell I want myself hidden from most of the activities.
Well not sure about squid...
But I am guessing here.....
Yep :rolleyes:
As for hiding from them....dont connect through them
easy peazy lemon squeezy
MLF
It depends on how the proxy is set up. If the proxy also caches web traffic the statistics for the site are also stored (that's how the proxy makes the decision to cache or not to cache). Your proxy may also log your sessions as to when, where and how much. It can also just pass the traffic, providing the public IP for your web browsing, with no logging or caching (not likely).
Can you hide from your own proxy? No. Chances are you can't access the net without going through it.
---------[ Can you hide from your own proxy? No. Chances are you can't access the net without going through it ]--------------
Hiding from the proxy? I actually mean accessing it but somehow proxy cannot trace/logged my URL history!
Process of proxy I understand :-) .....but I am not shure about the squid's logs?
Well.....
log on to the squid server and configure it not to log\cache your urls
If your are not the admin of the squid server...then I guess you are SOL
Why dont you want it to trace\log your urls??
MLF
It would be wise to assume that ALL YOUR INTERNET ACTIVITY IS LOGGED
Unless you OWN the proxy server, you have no control over this.................it is all a matter of trust.
;)
You're asking security professionals how to elude the audit process? Are you kidding me?Quote:
Hiding from the proxy? I actually mean accessing it but somehow proxy cannot trace/logged my URL history!
You want to know how to avoid having your URL history logged by a proxy? Don't use it.
You're lucky that you haven't been negged into a blackhole by now.
--TH13
There goes that impression I had of Mistress LeFay being a mature adult.... ;)Quote:
easy peazy lemon squeezy
Well....I am young at heart mr shark :)
MLF
Mistress LeFay:
<LOL>... and as far as I am concerned Peter Pan is a freaking amateur... and I know I'm correct because Sweetie constantly refers to me as "juvenile" or a "big kid"... :D
What’s wrong if I want to know any possibility of such activities?
Or let me frame the question in different way……Is it possible that a user in my office is using some software (or kinda stuff) which will hide his all or /and some activities such as going to pornographic websites downloading movies etc.
If there is a way you may tell me or not tell me its yr choice. At least you can put some msg about the possibility. ;-)
working on Masters?Quote:
Occupation faculty+student
Why did I point out this profile? I don’t know, seemed like the thing to do when I read:
But something else came to mind, for morganlefay and RITESH GAUR , maybe it is not relevant, but:Quote:
You're asking security professionals how to elude the audit process? Are you kidding me?
You want to know how to avoid having your URL history logged by a proxy? Don't use it. ...
Even if the proxy doesn’t cache/log it, where are you getting your DNS from? Is it logged there?
I liked it...lol :DQuote:
Originally posted here by Tiger Shark
There goes that impression I had of Mistress LeFay being a mature adult.... ;)
But as for the issue on proxies, I have only a moderate amount of experience with them. However, the proxies that I have worked with perform in accordance to what the others have said. As for the office situation (1st post, page 2) I have a question. Ritesh, did you contact the proxie's admin?
It all depends on how the user is getting out to the internet...and if the user is some how bypassing the proxy...if that is possible.
You are not providing enough "technical" details for us to answer your questions???
Yes ...if you use a proxy ...it can be logged.
Try answering some questions...
Are you Admin of the squid??
How is the internet connection setup???
Careful...we will not help you bypass a policy of someone elses network
I lose my patience easily lately...Mr Horse has also warned you...and hes a mod ;)
MLFQuote:
You're lucky that you haven't been negged into a blackhole by now.
Morgana~ is correct when she says:
The first assumption one has to make is that if you connect to an organisation's network, that connection will be detected and that it will be loggedQuote:
It all depends on how the user is getting out to the internet...and if the user is some how bypassing the proxy...if that is possible.
This leaves three basic options:
1. Use an external proxy server (anonymous public proxy, for example)
2. Use VPN (virtual pr0n network :D )
3. Buy a 56.6Kb dial-up modem and use a standard telephone line
In the first instance, the connection to the proxy will show up in the local logs, but what happens after that will only be in the remote server's logs.
The VPN will be logged, but probably not locally, other than the connection to it.
A telephone dial-up connection will not be logged as it is outside the network. However it is safe to assume that an organisation that logs its network activity also monitors its telephone calls, and the repeated and lengthy calls to the ISP would stand out like a sore thumb. ;)
Those would be the basic ways that a user would attempt to avoid detailed logging by a local server.
Thanx nihil ;-)
That's why we ask questions, Locked only on logs...... I was almost forget the 3rd option. See he is not telling me how to do, the question was of a kind "IS IT Possible? if yes how is it possible".
{MAy be I must frame the questions in different ways..so that they must tell what I want... ?}
If I am admin and working with squid? I will never say "but I am not shure about the squid's logs?" :P
Thanx everyone I appreciate your participation! :-)
Use Tor, it encrypts traffic before your first hop to your first onion router, so that way the traffic won't be easily readable at the cache.
i2c
I did some checking up on your questions and like what everyone here knows yes it is possible, the question I would pose to you is what is your intent. You ask the question posing as a sys admin. As if we haven't heard that one before, I would have to ask you how long have you worked with Unix? I love the OS myself, there are some great sites out there that will help you to secure your proxy even better than what you thought it capable as for Squid.
If you are the one trying to cover your tracks Squid is a tough one. If you don't think so check it out
here. If you do have a guy you think is getting out There are a lot more tools available to you than just a proxy. As were mentioned before, physical security as well as filtering, etc...
Hope this helps, if not you're probably not looking for the bad guy.
Hi,
I could well be wrong, but I did not see RITESH as asking something "naughty". The questions refer to technology that could be used for security purposes or to circumvent them?
I don't think that it is a question of protecting the actual content of the data flow, just its direction?
I have used this approach for permanent non-staff workers and visitors. It keeps them off our network, or in their own "tunnel" (the MoD like that ;) )
We are obviously talking about a situation where there is some trust at least............ as in they got through the razor wire without cutting it? :D
In other words, I am reading it as "what are authorised and safe ways around a general policy?"
But, it could also be "how might users abuse the system?"
I guess I just sort of "reverse engineered" my answer from the enabling experiences that I have had, to meet the potential circumvention question.
:)