Frequently proxy servers are named "proxy.thatfunnnnnysite.net" and it leaves a trace in the logfile at the webserver that someone is using a proxy server. Hence my suggestion to proxy list creators: please create/submit proxy lists with reverse lookups to generate their names.

Anonymous proxies or Elite proxies should not carry a name "proxy". It is "un-Cyber-Ethical"!

By the definition, a Level 1 cannot have a RDNS entry, and a Level 2 cannot have Proxy in its hostname. So an Elite cannot have a horrid reverse lookup as you suggest.

The problem with including the hostname is apart from making it harder to grab, it also takes up a crapload more space. People just tend to prefer a simple IP:Port list.

A solution which kept everyone happy on this would be interesting however.

True. And looking up PRT records can take lognger adding to the time to validate the list.

I would rather import iport into my personal proxy checker.
It allows me to choose options such as annon level, longitude + laditude, isp info, Country, State, Region and postal code. If I need any of this information or reverse lookups, I can choose it after importing.

Having the information mixed in site lists only gives me more work to do cleaning the list.

ie

Care to share your checker with us?

How important (and why) do you consider longitude + latitude, State, Region and postal code in selecting a proxy to use?

Correct, but the best proxy analzying software available today does this automatically. (If anyone needs specifics I'll be happy to provide them).

Although I'm certainly not advocating the inclusion of hostnames in posted lists, doing so isn't necessarily a bad thing. It does, for example, allow for visual inspection of a list which might consist of mainly Planetlab/CoDeen proxies (like so many people enjoy posting ... why is the $64,000 question).

Anyway, one of the main reasons why proxy forum sites require proxy lists to be in the IP Addressort format is because many programs won't accept the Hostnameort format.

Care to share your checker with us?


I use and have used many different checking tools, but the one that I was talking about here was Proxy Firewall. http://proxy-firewall.com/

It also provides me the ability to use socks5 or http proxies with all of my programs. I use to use sockscap but that only worked with socks.

Good question - I was just pointing out what I could sort from if needed - BUT I do use a lot of this info myself and will explain why.

First, I have been 'into' using proxies almost since day one and am not new to their use, finding them or knowing which ones to use or not to use for whatever reason.

I also have friends that use proxies for many different things.
Some for Security, some business related and many others just for fun.

longitude + latitude: For fun - There are many sites out there now that let you type in the long+lad to bring up a map or other information. Google Earth is one that gives you a sat view allowing you to zoom in, rotate, show roads, terrain, etc. Also if others are going to be able to see this information about my ip why not see what they see I figure

State, Region and postal code
Remember as you are using the proxy, the sites that you visit are seeing this ip. In some cases even in chat. Lets say that I was talking to people in mIRC or yahoo chat or in some messenger. I build a profile using [NOT MY OWN] city and state. After all this is the whole idea of privacy right?

Well you start to make friends and talk to regular people, but you never really know who you are talking to and you never know who you can really trust. It all depends on who you are and how much privacy you need: and what chat wars are going on at the time: but this is the life of many people out there beleive it or not. All that it takes is for someone that you are talking to to say "Hey, check this out"...funny link or page. They send you a web page url and know all about your connection which can be compared with your profile. I think this site is a bit sloppy and I know it is limited because there is a lot more information people can get when you click on a link, but a good example of some things: http://testmyprivacy.com/

Also I have many friends that use the proxy for business things. Some of the sites that they visit need to be coming from a general area such as city, state or country. Others use it for testing the landing pages when visiting travel sites. Redirect services are checked, dating sites and anything else that looks up geographically and redirects you or tries to target your connection.

Oh - I almost forgot. Sometimes in forums I see people requesting proxies from this state or this country. Then I go into my proxy firewall list and sort by state or country and export the list if there is enough of what they are requesting in there.

I made the mistake in my early days of using public lists in my everyday browsing - without checking them. I placed an Internet order using one and it was about three days later that crap hit the fan. The ip address was owned by the san diego police department. I was visited by some local FBI agents
with a warrent. Sitting down they first asked me how I did it - How I "hacked" into the police department's computers. These guys were not the smartest people in the world when it came to computers and the Internet. Later I found out that they were using proxies from their police cars to authenticate and get access into the departments network. Like a VPN only auth by static ip address which was a proxy that was not configured right and open to the world.

This could had been avoided if I was checking out the reverse lookups seeing it was in there. I also came across one not too long ago that was from the pentagon. I wonder what would have happened if I used that one? LOL

There are some other concerns too that can be read at http://proxy-firewall.com/pfman10.html

Anyway, one of the main reasons why proxy forum sites require proxy lists to be in the IP Addressort format is because many programs won't accept the Hostnameort format.[/quote]

True! Well if you think about doing anything like this in the future, I would suggest doing it like some of the other sites do. They list a page with all of the information and then include a link to list only iport format. This way you can look the list over and then grab only the iports list.

ie

This appears to be a good read and thank you for taking the time to respond so thoroughly. I, of course, reserve the right to add further comments when I've had time to more than briefly skim through such a lengthy reply.

Personally, I think the need for such comprehensive information regarding proxies (long. & lat., state, city, postal code) is far more sophisticated than the overwhelming majority will need at this point in time. And, I'm surprised, I'm if reading you correctly, that Proxy Firewall (thanks for the link), wouldn't have the ability to filter out "dangerous" proxies, since most other proxy analyzing software does ... providing they have it configured to do so.

Since people are constantly encouraged to re-test proxies before using them, and with competent software like Charon which includes various filters to eliminate the so-called "dangerous" and other less desirable proxies from their lists, it's hard to understand how someone find themselves in a scenario like you presented.

Most proxy forum sites that I know of continually stress the need to re-test all proxies before using them. If this one is lacking in that area it will be corrected. No one, however, can prevent people from their own stupidity and ignorance (sorry).

You seem to have some trouble with the "quotes" and clearly defining who said what. If you could correct these, your reply will read much better and be more easily understood. Thanks.

Again, the use of proxy analyzing software (Charon, AATools, HellLabs Proxy Checker and several others) all can (or do) resolve proxies both ways, so reading the corresponding hostnames shouldn't be a problem. People do have to put forth an effort on occasion.

You are a welcome addition here ie. Thanks again.

I have been using the program for a few months now. It seems to be a good program. It is still in beta and they seem to be real good with adding things that I suggest to them. The "automatic" filtering seems to be a good idea. Right now I just sort the list and multiple select items to be deleted. Also I am using a new non-released beta that has a few more options then the download has. I really do like the program a lot. I will have to download Charon and try it out. Maybe you can provide a good download link for me and anything else that you think I should know about it?

This was a while ago when I was first starting out with open proxies.
I tend to be a do-it-yourselfer so now I do a lot of scanning myself as well as other methods. My brain is always moving in overtime.

No reason to be sorry, I admit in some areas I can come off as in that catagory. I have too many old time methods stuck in my head because I never kept up with the newer stuff. Well I am finding more time on my hands these days :thank god: and will start targeting myself to the updated newer things. I am sure that there is a lot that I can learn here from you people.

I will try and learn the quoting more. Please feel free to give any hints or point out what I could have done differently. I am eager to learn.

Thank You! I will try and live up to that --- ie

I cant say I completely agree with all of the points here, but regardless I thought I might bring something of my own personal interest to this conversation. You mentioned you where visited by law enforcement, yet if you where in pretty much any other Country you would have not even received a phone call.

Recently there has been alot of news regarding the prosecution of RiSCiSO for various things regarding privacy. In the court case sixteen Americans are being prosecuted while only two forgeigners have been included in the charges. However there where alot more people involved but only the forgeiners with the highest charges where targetted. Yet Americans with barely any involvement where quickly scooped up for prosecution.

Have a read of this, you might find it interesting:

http://www.usdoj.gov/usao/iln/indict...oole_et_al.pdf

Insomniac said:

> yet if you where in pretty much any other Country you would have not even received a phone call.

This is true, but then I am not in another country. A phone call would only say "destroy everything you have" They don't call - they knock :-)

Thank you for the link. I did look it over but in my opinion does not have much to do with privacy or proxies. I have long been aware of RiSCiSO and have known some people in the group from many years ago. I also heard about what was going on but never read about the case directly until now from the doj link that you posted.

I know how things work in these cases and some of the legal loop holes that they need to go through to bring a case to court. From what I read it seems that they are only trying to make the defendant's look like 'bad' people by talking about the bouncers and maybe adding to their case when talking about encryption.

My warez days are long gone - I don't even think about that stuff any more.
The most of what I see going on is either credit card fraud or child porn when it comes to them hunting down people. I wonder how much their "CW" or host had to play in this for them to bring it to trial. They can't always include everyone or everyone from other countries. It all depends on laws and relations in other countries. If they include too many members it would end up costing them way too much time and money to bring the case to trial because they would need to deal with each defense lawyer and stacks of paper for each. I am sure that they just skimmed the top and snagged who was there for these reasons. Again I do not see why they are wasting their time with this to start with. I do not see too much to do with privacy invasion here, but if you want to point out some issues it will help me to broaden my thinking. I seen almost the same thing in "Ismael Genao's" case.

http://www.thejournalnews.com/apps/p...503190321/1018

This guy ran a couple f-serve's on IRC. Data was sniffed that compiled to hundreds of reams of paper. There were hundreds of people that could have been put on trial. Even one guy that was looking for a "boyfriend" for his 6 year old daughter. The only one that they went after was Genao. This was an involved case where different agents were brought in from different parts of the country to testify or to be expert witnesses. There was months of dedicated research just to be sure that these charges would stick even before serving a warrent. If they were to go after everyone involved it would have cost way too much time and money. But the fserve is down which is a good thing.

In my case I would rather talk personally or in private mail if you wish me to go into more detail on what happened to me. I have a few other experiences to share on these topics as well if you are interested. Some of experience and knowledge that I have on the privacy topic are not well known or publicized yet.

ie