justone
BANNED
- Oct 12, 2008
- 1,520
- 1,054
I am sure a lot of the people here use web-proxies.
Why ?
Because a web proxy is free and easy to find.
Why does a web-proxy suck for anything relying on anonymity ?
a) webproxies make it extremely easy to catch and log your passwords
b) webproxies change content and malfunction on many websites
c) webproxies give no anonymity
Take a look at this: http://proxy-check.squabbel.com
This will decloak webproxies and show your real IP, it currently only works if you don't disable scripts in a webproxy config, a bit more work and it would work even if scripts are disabled. Currently that's not included cause who can really disable javascript these days, most websites need it.
This is probably the first proxy analyzer able to reveal the true IP behind web-proxies but as this proofs how easy it is. NOONE should rely on a webproxy if anonymity is important to him.
If you must use a web proxy then disable javascript, active x and java in your browser setting (not in the webproxy settings !) this makes at least 90% of the possible attack useless.
But in the end there are still ways to get the real IP. Keep that in mind.
Why ?
Because a web proxy is free and easy to find.
Why does a web-proxy suck for anything relying on anonymity ?
a) webproxies make it extremely easy to catch and log your passwords
b) webproxies change content and malfunction on many websites
c) webproxies give no anonymity
Take a look at this: http://proxy-check.squabbel.com
This will decloak webproxies and show your real IP, it currently only works if you don't disable scripts in a webproxy config, a bit more work and it would work even if scripts are disabled. Currently that's not included cause who can really disable javascript these days, most websites need it.
This is probably the first proxy analyzer able to reveal the true IP behind web-proxies but as this proofs how easy it is. NOONE should rely on a webproxy if anonymity is important to him.
If you must use a web proxy then disable javascript, active x and java in your browser setting (not in the webproxy settings !) this makes at least 90% of the possible attack useless.
But in the end there are still ways to get the real IP. Keep that in mind.