DingleBerries Posted October 5, 2008 Share Posted October 5, 2008 Ive been through the whole high school proxy thing and i know that alot of sites are blocked.. But in all truthfulness kids don't want proxies to do their "homework", they want to look at their social websites and forums. Libraries seemed to be a fading fad. But I guarantee you that you are going to find books with such better information then the internet. When "I" want to learn a new programming language or how a network stack works, i go to REPUTABLE book sources, ex. Oriely. Everyone knows that there are bogus books out there and thats just some shit that happens. But usually a SCHOOL library and librarian are not going to carry that material. If you really want a good way to do it. Find a free php proxy and a free php host and use that, when they block it move on.. There is no solid way to bypass filters. You could tunnel to your home computer but eventually, if the admins review logs, they are going to block that port. Maybe get tight vnc and use a webvnc but thats not very secure what so ever.. There are thousands of ways and they have all been discussed here in great detail and every time people have looked down on it.. I know the sites name is "hak"5 but seriously, its a little more technical then bypassing your highschool filters. But flame all you want, just do not insult some one competence, and search the forums when you have a question... more often then not its been answered.. For all thos wanting to hack their schools, Go to jail for 68 years, do not pass go, do not collect $200.00 they wont let me access HAK5 Proxy list downloader / verify hax0r my school Punishment? myspace,aim at work Basic Network Hacking Quote Link to comment Share on other sites More sharing options...
kz26 Posted October 5, 2008 Share Posted October 5, 2008 Well, it just happens that my HS has the exact same type of filter, the R3000 by 8e6 Technologies. It seems to do its job well enough, but apparently our sysadmin forgot to block port 22 (SSH). I have fast shell accounts in a variety of places so I simply use PuTTY to securely tunnel all my activity. If port 22 is blocked, I would just run an SSH server on port 443 instead. That makes SSH traffic resemble HTTPS (how would the filter know?), which isn't blocked as many legit sites use it. Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted October 5, 2008 Share Posted October 5, 2008 Well, it just happens that my HS has the exact same type of filter, the R3000 by 8e6 Technologies. It seems to do its job well enough, but apparently our sysadmin forgot to block port 22 (SSH). I have fast shell accounts in a variety of places so I simply use PuTTY to securely tunnel all my activity. If port 22 is blocked, I would just run an SSH server on port 443 instead. That makes SSH traffic resemble HTTPS (how would the filter know?), which isn't blocked as many legit sites use it. Actually thats a really good idea. Since it is a high school, with under paid admins, the problems i am about to point out probably wont really matter. 1. The drastic rise in traffic on port 443. 2. If they decide to monitor traffic they will notice that port 443 isnt using SSL encryption and almost all the packets will have an incorrect TCP checksum But i highly doubt that anyone, school or work, is going to say anything.. Quote Link to comment Share on other sites More sharing options...
snakey Posted October 6, 2008 Share Posted October 6, 2008 wow another hack my school topic didn't the mods lock these topics once? Quote Link to comment Share on other sites More sharing options...
Joerg Posted October 6, 2008 Share Posted October 6, 2008 2. If they decide to monitor traffic they will notice that port 443 isnt using SSL encryption and almost all the packets will have an incorrect TCP checksum Ehm, how is the traffic encrypted if not with SSL? ROT26? Quote Link to comment Share on other sites More sharing options...
brenix Posted October 6, 2008 Share Posted October 6, 2008 When I was in school, they had the same filter. I setup my own proxy server so it would go through my computer at home. Here are the steps I took. If you have knowledge of setting up a IIS web server, this shouldn't be to hard.. 1. Install IIS. 2. Install PHP. 3. Download and follow the installation instructions for PHProxy (http://sourceforge.net/projects/poxy/) 4. Forward port 80 (or whichever port you setup for IIS) on your router.. 5. (Optional) You could setup DynamicDNS (dyndns.org) so you don't have to browse to an IP address each time.. 6. Point your school computer to the hostname/IP address of your home internet and browse away.. Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted October 6, 2008 Share Posted October 6, 2008 Ehm, how is the traffic encrypted if not with SSL? ROT26? I, personally, do not know of a ssh client/server that uses ssl..SSH and SSL are two different protocols. im sure if i googled around there is one, probably using SecureSocket, but ssl is mainly used for http traffic, instant messaging, and ftp. If its worth anyones time i wouldn't mind doing a little more research and getting back to you. TLS does not have the extra features provided by the other SSH component: the SSH Connection Protocol (SSH-CONN). SSH-CONN uses the underlying SSH-TRANS connection to provide muliple logical data channels to the application, as well as support for remote program execution, terminal management, tunnelled TCP connections, flow control, etc. LINK Where SSL attempts to make a connection with unencrypted channels, SSH encrypts all communications to and from the client and server. When an SSH connection is made, SFTP is the protocol that is used to perform all tasks on that single secure connection. LINK Quote Link to comment Share on other sites More sharing options...
Joerg Posted October 6, 2008 Share Posted October 6, 2008 But the underlying technology is openSSL, just remind the latest ssl vulnerability which concerned ssl certificates and ssh keys. Quote Link to comment Share on other sites More sharing options...
DingleBerries Posted October 7, 2008 Share Posted October 7, 2008 But the underlying technology is openSSL, just remind the latest ssl vulnerability which concerned ssl certificates and ssh keys. I gotcha. Sorry about the confusion.. But if you are monitoring traffic on that port you will indeed notice something fishy Quote Link to comment Share on other sites More sharing options...
deleted Posted October 7, 2008 Share Posted October 7, 2008 For some filtering systems, there could be an even easier way around it. Before my school got the New Version of Websense, we used to get round it by using Firefox/Opera Portable. We need to get round these filters for legitimate uses (even teachers asked us for a copy), cause the internet was the only way for us to get pictures to stick in, and it was blocking us cause the pages contained our search term "Klu Klux Klan" (what we were doing a project on in history). Quote Link to comment Share on other sites More sharing options...
Razor512 Posted October 9, 2008 Share Posted October 9, 2008 school filters always seem to be setup by either idiots or people who want to do everything possible to annoy those around them When I was in high school, out filter would block sites based on the type of content and blacklisted words this caused many problems because most websites would randomly stop working especially news sites that allowed user comments and websites that had test based ads or contained links to any blacklisted site Yahoo mail, gmail , cnn.com, wikipeida (depending on what was on the main page), google.com, depending on whats was shown in the results, the schools own library site because some people had the name Dick, and it was a black listed word ), the biology study guide site that was listed in our biology textbooks was also blocked by the schools filter, and many more sites. it was a total mess but luckily the filtering was being done through a proxy server and the way around it was a simple loading of firefox portable which allowed to use of a different proxy server I am ok with reasonable filters but when people go overboard and make the filter in such a way that browsing is mostly useless it wasn't just annoying, it was useless in doing what it was designed to do. sites like ebaums world worked most of the time, illwillpress worked all the time, flash based porn sites also worked, as well as stage6 (best site for video, someone needs to slap them for shutting the site down ) the filter just randomly blocked sites, and 8 out of 10 times, it was a educational site that was blocked (i think the filter they were using was made by symantec content filter) Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.