(转帖)从国外代理论坛上看到的“反代理”措施。

[复制链接]
查看: 1440   回复: 9
发表于 2005-9-13 09:12:38 | 显示全部楼层 |阅读模式
Anti-proxy: how to detect your IP if you are using an anonymous proxy server?
As you already know, there are anonymous proxy servers that can be used for surfing the web anonymously. It is also interesting to know, is there a way of tracking down a web-surfer behind an anonymous proxy server.
Yes, there are a number of possibilities not only to detect a visitor using several anonymous proxy servers, but also to detect his real IP even if he is using an anonymous proxy server.

Cookies
At first sight, cookies are not anyhow related to proxy servers. Cookies are used to transfer small portions of information from the web server to the client as an addition to the requested web page. This additional information is stored in the client s browser and is retrieved by the web server. Cookies can be both temporary (for one-time use during a web session; when the session is over, these cookies are deleted) and long-term (for continuous store on the client s machine).
So, why do we need cookies? For example, if the password is requested while checking your e-mail box. After you have entered the password, it is stored in cookies, so each time you browse from page to page, the web server would check the password in the cookies instead of asking for it on every page.

How can a cookie help to detect a proxy? You cannot detect IP with the help of cookies. However, when you first visit a web site, the IP (i.e. your proxy server s IP) is detected by the web server and then stored in the cookies. When you re-visit this site, the web server detects your IP again and checks it with the one stored in the cookies. If the IPs are not the same, the web server can make certain conclusions. And if you don't disable cookies in your browser, no proxy will help you (anonymizers can disable cookies and stop relaying them to your machine).

JavaScript / VBScript
There are special subprograms (scripts) run by the client s browser. Therefore, no matter how hard you try to setup your browser (unless you disable these active scripts), you won't be able to hide your real IP. These scripts are actually classified as simple programs and have very limited number of functions, however they are able to detect your IP as well as many other settings of your browser. These scripts can change your browser settings too!

There is a multilevel protection from these scripts. You can restrict a script from accessing your browser features. However, the best way to protect your browser is completely disabling active scripts. You can disable scripts directly in anonymizers.

Java
Unlike JavaScript, Java is a full-featured programming language. So Java scripts have many additional abilities (particularly, detecting or changing your browser settings). In other words, Java programs can easily detect your IP and partially the settings of your browser.

As far as it goes to protecting your IP from being detected by Java scripts, all is much more complicated: the most secure and probably the only way is to completely disable Java in browser settings, as long as Java has many network functions and it's quite difficult to switch them all off.

ActiveX and plug-ins
ActiveX and plug-ins are various add-ons and modules of your browser. These modules are in fact real proper programs run on the client s machine and therefore they have wider capacities than Java and Javascript. They can easily detect your browser settings and track down your real IP address. What's more, they can even easily change your proxy server s settings!

To secure your browser and IP address, disable ActiveX and plug-ins options in your browser settings.

Armour vs. bombs
The war between those who want to stay anonymous web-surfers and those who want to know all about their clients and visitors will never end. There always will be new ways of hiding your life inside the web, likewise there always will be new technologies to hack or to pass this protection.

You can secure your IP using several methods:

Restrictions
disable cookies
disable active scripts
disable Java
disable ActiveX
Use socksification in your browser. This will enable relaying all the information your browser or any other software sends and transfers to the proxy server.
The first method of protection is very easy to pass: it only takes building a site based on Java/JavaScript/Cookies (for example, dynamic menus, etc.). In this case, if you switch off the active scripts, the site will not work (e.g. if you disable cookies, your access to web mail servers may be denied).

The second method doesn't provide a 100% guarantee that your IP address will be really protected. Here's why. There are two methods to identify your IP:

A Java program connects directly to the Internet (without using proxy), even if your browser is set to work via proxy. So the server gets your real IP address from this Java program.
Your Windows settings may be scanned for your real IP address.
So, socksification can guard you from the first method of IP tracing, but it's totally useless when dealing with the second method.

What you need to do if you wish to stay anonymous with enabled Java/JavaScript/ActiveX:
What's the core of this task and what do you need to do in order to make it work?

hide real external IP address in Windows settings
disable direct connection to the Internet (route it only via an anonymous proxy server)
There are two options to solve this problem:

You need to set up LAN, local IP addresses (192.168.1.x or alike). A corporate proxy server should forwards ALL requests to a free anonymous proxy server (you need to have skills and rights of a system administrator in order to do that). It's impossible to connect to the Internet bypassing a corporate proxy, as long as external IP address is not assigned to local machines. It's also impossible to scan local machine's settings: even if Java/ActiveX applets detects and gives out your local IP address (192.168.1.x) to the web server, your anonymity will remain unbroken. So, basically, you can rate this option as 100% anonymity.
Install Firewall on your machine and restrict all the connections to the Internet (except for the anonymous proxy server) from a browser. It's also recommended to use port mapping for this free anonymous proxy server and define the browser's proxy as 127.0.0.1 with the local port from port mapping. However, this option can be insecure, because your real external IP address can be transferred to the server (the script will scan the Windows settings and detect your real IP).
And finally: any proxy server, especially a free proxy, keeps logs (reports) with detailed information on every IP sending requests to it as well as on the time of requests. So, any person or organization authorized to access this information can always find out what places in the web you have visited and what you did there, even if you use a chaining of 10 anonymous proxy servers located in different parts of the world.
发表于 2005-9-13 09:31:43 | 显示全部楼层
好东东
回复 支持 反对

使用道具 举报

发表于 2005-9-13 09:35:33 | 显示全部楼层
disable cookies
disable active scripts
disable Java
disable ActiveX
回复 支持 反对

使用道具 举报

 楼主| 发表于 2005-9-13 09:42:57 | 显示全部楼层
原帖由 雪狼孩 于 2005-9-13 09:31 发表
好东东


哈哈~~~东东好就来个精华哈,虽然是转贴,但也搞的我手酸(转帖)从国外代理论坛上看到的“反代理”措施。:
回复 支持 反对

使用道具 举报

发表于 2005-9-13 10:47:57 | 显示全部楼层
原帖由 道天 于 2005-9-13 09:42 发表


哈哈~~~东东好就来个精华哈,虽然是转贴,但也搞的我手酸(转帖)从国外代理论坛上看到的“反代理”措施。:

手酸?难道你打出来的?(转帖)从国外代理论坛上看到的“反代理”措施。:
回复 支持 反对

使用道具 举报

发表于 2005-9-13 11:22:45 | 显示全部楼层
原帖由 kiss2008 于 2005-9-13 09:35 发表
disable cookies
disable active scripts
disable Java
disable ActiveX

都禁止了,还有几个网页可以打开啊?
回复 支持 反对

使用道具 举报

发表于 2005-9-13 11:23:23 | 显示全部楼层
原帖由 道天 于 2005-9-13 09:12 发表
Anti-proxy: how to detect your IP if you are using an anonymous proxy server?
As you already know, there are anonymous proxy servers that can be used for surfing the web anonymously. It is also i ...

一看到英语就头晕,怎么办,谁翻译个大概。
回复 支持 反对

使用道具 举报

发表于 2005-9-13 13:33:09 | 显示全部楼层
道高一尺,魔高一丈
回复 支持 反对

使用道具 举报

发表于 2005-9-13 13:41:57 | 显示全部楼层
( 转帖) 从国外代理论坛上看到的" 反代理" 措施.

反代理: 怎样发现你的IP,如果你正使用一台匿名的代理服务器吗?
正如已经的你所知,有匿名的代理服务器可能用于匿名在网上冲浪。 也有趣被知道,到那里路的在匿名服务器代理后面追捕网上冲浪者的。
是的, 不仅有许多可能性使用几台匿名的代理服务器发现一位参观者, 而且发现他的真正的IP,即使他正使用一台匿名的代理服务器。

Cookie
乍看起来,Cookie不无论如何与代理服务器有关。 Cookie用来作为被请求的网页的增加从网服务器到客户转存信息的小的部分。 这附加信息被储存在客户s 浏览器里并且被网服务器挽回。 Cookie可能两暂时(供过去使用在一个网会议期间; 当会议结束时,这些Cookie被删除),长期(对在客户s机器身上的连续的商店来说)。
因此,我们为什么需要Cookie? 例如,如果口令在检查你的电子邮件箱子时被请求。 在你已经输入口令之后, 它被储存在Cookie里, 因此每当你从页到页浏览时,网服务器将在Cookie里检查口令而不是在每页上要它。

一Cookie怎样能帮助发现一个代理人? 你不能借助于Cookie 发现IP。 但是, 当你首先访问一个网站时, IP(即你的代理人服务器s IP)被网服务器发现然后储存在Cookie里。 当你重新访问这个网站时,网服务器再次识别你的IP并且与储存在Cookie里的那个检查它。 如果IPs不相同,网服务器能查明结论。 并且如果你不使在你的浏览器里的Cookie无能力,没有代理将帮助你(anonymizers 能使Cookie无能力并且停止转播他们到你的机器)。

Java脚本/ VBScript
有由客户s 浏览器控制的特别的子程序(手稿)。 因此, 不管你对安装试验你的浏览器(除非你使这些活跃的手稿无能力)多么严重,你将不能隐藏你的真正的IP。 手稿这些实际上被归类当时简单计划并且有有限功能的数量, 但是他们能发现你的你的浏览器的IP和多其他设置。 这些手稿也能改变你的浏览器设置!

有来自这些手稿的一个多层的防护物。 你能从访问你的浏览器特征限制一篇手稿。 不过,保护你的浏览器的最好的方法正完全伤残活跃的手稿。 你直接在anonymizers里能使手稿无能力。

爪哇
与Java脚本不同,爪哇是一种充满特色的程序语言。 因此Java 手稿有很多附加能力(尤其,检测或者改变你的浏览器设置)。 换句话说,Java程序能容易发现你的IP 和部分你的浏览器的设置。

只要保护你的IP以防被爪哇手稿发现去,全部都更错综复杂: 最安全和或许唯一的方式是完全使在浏览器设置里的Java无能力, 只要Java有很多网络功能并且关掉他们全部是十分困难的。

ActiveX和插头
ActiveX和插头是你的浏览器的各种各样的附加物和模件。 与Java和Javascript相比较,这些模件实际上是实的适当的程序在客户s机器上运行,因此他们有更宽的能力。 他们能容易发现你的浏览器设置并且找出你的真正的IP 地址。 而且,他们甚至能容易改变你的代理人服务员s 底座!

为了获得你的浏览器和IP 地址,使ActiveX 和在你的浏览器设置里的插头选择无能力。

盔甲与炸弹
在想保持匿名的网上冲浪者和想完全了解他们的客户的那些人的那些人之间的战争和参观者永远不会结束。 有将新在网里面隐藏你的生活的方式,有总是将是乱砍或者通过这保护的新技术。

你能使用几种方法获得你的IP:

限制
伤残Cookie
伤残活跃的手稿
伤残爪哇
伤残ActiveX
在你的浏览器里使用socksification。 这将使转播你的浏览器或者任何其他软件送并且转存到代理服务器的全部信息成为可能。
保护的第一个方法非常容易递给: 它只带建造一个基于Java / Java脚本/ Cookie(例如,动态的菜单,等等)的站点。 这样的话, 如果你关掉活跃的手稿, 站点将不工作(例如你使Cookie无能力,你的网邮件的入口服务器可能被否认)。

第2 种方法不提供你的IP 地址将真的被保护的一个100%的保证。 这里是为什么。 有两种方法鉴定你的IP:

一个Java程序直接连接因特网(没有使用代理), 即使你的浏览器被通过代理开始工作。 因此服务器从这个爪哇计划得到你的真正的IP 地址。
你的Windows设置可能被为你的真正的IP 地址扫描。
因此, socksification 能保卫从跟踪的IP的第一个方法那里的你,经营第2 种方法是全部没用的。

如果你希望与使保持匿名成为可能的爪哇/ Java脚本/ ActiveX,你需要做的:
这项任务的核心是什么,并且为了使它工作,你需要做什么?

把真正的外部IP 地址隐藏在Windows设置里
对因特网伤残直接的连接(途经一台匿名的代理服务器运送只的它)
有两种选择解决这个问题:

你需要建立局域网,本地IP 地址(192.168.1.x或者一样)。 一台共同的代理服务器应该把全部请求寄给一个免费匿名的代理服务员 (为了做那,你需要有一个系统管理员的技能和权利)。 连接为一个公司的代理人设旁路的因特网是不可能的,只要外部IP 地址没被分配到本地机器。 扫描本地机器的底座也是不可能的: 即使Java/ActiveX小应用程序到网服务器发现并且宣布你的本地IP 地址(192.168.1.x),你的匿名将保持不间断。 因此,基本上,你能评价这种选择为100%的匿名。
在你的机器上安装防火墙并且从一个浏览器限制对因特网(除了匿名的代理服务器)的全部连接。 也推荐使用港口这个免费匿名的代理人菜盘的绘图并且确定浏览器的委托书为有来自港口绘图的局部的端口的127.0.0.1。 但是, 这种选择可能是不安全的, 因为你的真正的外部IP 地址可能被转到服务器(书写将扫描Windows设置并且发现你的真正的IP)。
并且最后: 任何代理服务器, 一免费代理特别是,保持木材(报告)与送的在每IP上的详细资料一起给它和关于请求的时间请求。 因此, 授权访问这信息的任何人或者组织总是能查明在网里你已经拜访什么地方和你那里做的, 即使你使用位于世界的不同的部分的10台匿名的代理服务器的链接。
回复 支持 反对

使用道具 举报

发表于 2005-9-13 13:58:32 | 显示全部楼层
好贴 ,可以加精了

COOKIES不能关啊 关了之后你想用代理做些什么呢?注册也不计 点击也不计……
回复 支持 反对

使用道具 举报

您需要登录后才可以回帖 登录 | 立即注册

本版积分规则