school proxy (14)

1 Name: 4n0n4ym0u5 h4xx0r : 2006-09-11 14:47 ID:0TnSoRA0

I plan on setting up a VPN so that I can browse blocked sites at school but I am wondering if the school could block the VPN ports and if they do, if there is a way to go around that.

2 Name: 4n0n4ym0u5 h4xx0r : 2006-09-12 03:28 ID:Heaven

> I am wondering if the school could block the VPN ports

yes.

> if they do, if there is a way to go around that.

yes. just use different ports.

or you could just use torpark instead...

3 Name: Redhatter : 2006-09-12 23:03 ID:Heaven

>>1 I'd advise against this. It is highly likely that those sites are blocked for a valid reason (i.e. being a school, they probably want you to be doing schoolwork).

It is better that you negotiate with the network administrators to find why things are set up in that manner, than to try and work around it, getting into further trouble when caught later.

4 Name: 4n0n4ym0u5 h4xx0r : 2006-09-13 01:18 ID:kJkSRRPZ

>>3
Well blocked sites include things like "hackaday.com" just because it contains the word "hack" in it, "google.com" (it redirects to google.ca...) and some other stuff like that. And nothing in the rules prohibit us from connecting through a virtual private network.

>>2
Thanks, I'll try that and try torpark if its blocked.

5 Name: 4n0n4ym0u5 h4xx0r : 2006-09-13 03:16 ID:Heaven

>>4 Google.com will pretty much always redirect you to your country's site, it doesn't really have anything to do with the school blocking you.

6 Name: 4n0n4ym0u5 h4xx0r : 2006-09-14 13:21 ID:Eif5ZvM7

Are you talking about doing this on school computers? If so, that's a bad idea

7 Name: Redhatter : 2006-09-15 00:26 ID:Heaven

>>4 Still... there is a security policy there for a reason. It is strongly recommended that you get in touch with the network administrators, and find out the reason why, and how you can go about getting this changed. I agree with >>6 that it's a bad idea to go working around this policy. Doing so could get you into lots of trouble.

As for the "google.ca" bit... Are you in Canada at all? I find typing "google.com" here redirects me to "google.com.au" -- in my case, it's nothing to do with access restrictions. I think this is a "feature" of Google.

8 Name: 4n0n4ym0u5 h4xx0r : 2006-09-15 17:39 ID:l3Cwtqgn

>>7
GeoDNS is what's doing it.
(´・ω・)つ http://www.caraytech.com/geodns/

9 Name: 4n0n4ym0u5 h4xx0r : 2006-09-15 18:07 ID:wyfIpWGA

>>8
Captain Geobytes to the rescue! Watch it, it's hillarious.
http://www.geobytes.com/demo.htm

10 Name: 4n0n4ym0u5 h4xx0r : 2006-09-28 02:38 ID:p6QE0iRt

>>7

Government policy.

In reality, most school admin's can't do shit about it. however, they can turn a blind eye towars vpn's, etc.

>>1

If my Work has a VPN, can I use that as a proxy just by setting up the webpage stuff on mobile firefox or whatever, or do I have to something on my vpn's side of things.

11 Name: 4n0n4ym0u5 h4xx0r : 2008-05-26 01:06 ID:JqvP8uaz

The best way around annoying problems like proxies is to use port 22, SSH. What I do is use a free product called NoMachine NX.

Step 1)

Set up a linux server at home (I use Debian 4.0) and make OpenSSH is open and can login from your remote location (school, work, etc). Using Putty or a ssh command line tool, do;

# ssh yourid@yourserver.com.

or if an IP address:
# ssh yourid@1.2.3.254

Now that you are SURE you can access your server from remote over port 22, proceed to next step. On a side note, some locations block port 22 outbound BUT use a separate port for outbound SSH connections for network admins. Use some social engineering or some trial and error to find out. If you cannot get outbound SSH, time to search for a russian proxy server

Step 2)

http://www.nomachine.com/download.php

Download your Linux version and install it on your server at home. It is all packaged and starts automatically when you install it.

From the same location, download your Windows or Linux client and install it. If you are installing on your PC at work, then do the typical hiding it procedure.

Start your client and type in your IP address at home, set up if your are using KDE, Gnome, etc. and if you did everything right your desktop should appear. Yay! Start surfing wherever.

Some notes)

On your client at school or work, remove icons and execute from Start -> Run to execute it.

If at school, hide it in a windows32 subdirectory or something, and make sure you do not save your IP settings should be discovered. Do whatever you need to cover your tracks.

Linux looks different that windows. You might want to setup your home PC you are logging into to use KDE with the Redmond settings.

Never underestimate the power of moron coworkers and librarians. For the kiddies, we are moving towards a snitch society thanks to certain Republican elements in the government. Be SMART. Surfing myspace or pron is not worth your job or getting your computer privileges revoked at school.

A more secure idea would be to get a small laptop such as an Asus EEE PC with a verizon or another carrier internet pcmcia or usb card and pay the $50 month fee. Be the cool kid and surf from your locker. Just do not get caught. One of the top excuses used by school officials to take away cell phones or laptops is DRUGS. They seem to think if you have a cell phone, you are dealing drugs. Fucking idiots.

For the kids, if you get caught (using nomachine or a laptop), NEVER SIGN ANYTHING. Do not be afraid of the overweight jackboot dount jellyroll cop. Just demand to be charged and arrested or be allowed to contact your parents. Demand your equipment be returned if not charged and demand to see what school rule you violated by possessing it. Most cops do not have IQs over 110 for a reason (as for most teachers as well). Smart cops never make it to the street. Suing might not be a bad idea either. Most school districts have a history of losing. Each situation is different so play it by ear.

12 Name: 4n0n4ym0u5 h4xx0r : 2008-05-26 01:23 ID:JqvP8uaz

Windows OPTION.

There is a second way to log into your system at home for some non-proxy surfing but it is NOT secure like the SSH option in #11 above.

On your local firewall or NAT router at home, allow port 3389 inbound and review the following page for more info on setup on your home PC side:
http://www.microsoft.com/windowsxp/using/mobility/getstarted/remoteintro.mspx

Now a lot of places remove the remote desktop icon and menu from the START bar. To run it without the menu, START -> Run and then type in "mstsc.exe" and you are good. If you have a 2000 client, then unless the service pack is loaded, then you're fucked. It comes with XP and 2008 standard.

Refer to #11 for getting caught notes.

13 Name: 4n0n4ym0u5 h4xx0r : 2008-05-26 20:02 ID:XBo1wcNX

VPN? What the fuck.

ssh -DXXXX, thread over. Then just set your applications to use the SOCKS proxy on port XXXX.

This assumes you have ssh to some sort of Unix machine, which honestly, shouldn't be hard to get.

14 Name: 4n0n4ym0u5 h4xx0r : 2008-05-29 13:56 ID:JqvP8uaz

>>13

Well not exactly thread over. The thread started out with kids getting around those bullshit school proxies. My #12 post will help 90% of kids out there since all they really want to surf Myspace or get web email from school (which is what most schools block). Opening open port 3389 and finding out what your IP address from your ISP solves this problem. My #11 post was for the more advanced office worker/college student.

Something else to watch out for now is products like Websense which are now selling products to hack SSH traffic.

This thread has been closed. You cannot post in this thread any longer.