[Boards: 3 / a / aco / adv / an / asp / b / biz / c / cgl / ck / cm / co / d / diy / e / fa / fit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mu / n / news / o / out / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / t / tg / toy / trash / trv / tv / u / v / vg / vip /vp / vr / w / wg / wsg / wsr / x / y ] [Search | Home]
4Archive logo
I want to setup some proxies or something...
If images are not shown try to refresh the page. If you like this website, please disable any AdBlock software!

You are currently reading a thread in /adv/ - Advice

Thread replies: 28
Thread images: 2
File: hqdefault.jpg (8 KB, 480x360) Image search: [iqdb] [SauceNao] [Google]
hqdefault.jpg
8 KB, 480x360
I want to setup some proxies or something so people wont be able to see what I've looked up and whatnot. For example hackers or something, would I have to use tor ?
>>
>>16806813

Someone will always see. Your ISP for instance.
Depends who youre going against. KNow for sure, someone will see.

Use a VPN for improved privacy.
>>
>>16806825
The ISP does not see shit if you set up Tor. It sees the metadata when you establish the connection to the first hop, but it does not see what you are searching for - only that you are using Tor.

If you can, try to keep it to the onion network. Within that network the communication is encrypted entirely. If you browser the clearnet, use HTTPS as often as you can, otherwise communication outside of Tor will be unencrypted.
>>
>>16806858

True but assuming a worthy adversary, using tor opens you up to timing attacks through analysis.
>>
>>16806825
Idiot, stop giving people bad advice.
ISPs can't see what you do as long as your connection is encrypted, be it via SSL/HTTPS, a tunnel to a proxy via SSH, VPN, or Tor.

However, in some cases, they can see the domain name you're looking up, since DNS packets are often not encrypted (for example, when using HTTPS). To prevent this, use the DNSSEC protocol - Google provides a DNSSEC service for free, for example. If you couple it with HTTPS, it would be close to impossible to monitor what you do online.

Also, the connection should be proxied.

The best method overall, is to set up a chain of SOCKS proxies, and establish a SSH tunnel to the last one in the chain that you're supposed to connect to. SSH is known to be very hard to eavesdrop on - it's what Snowden used.
>>
I mean im using tor. Its mostly to make a new facebook account so people don't see my messages and whatnot because im pretty sure theres some hackers on my back
>>
>>16806813

get a free VPN or hell even pay for one

i doubt anyone will dig into you specifically unless of course you're part of a notorious terrorist organization, drug ring, pedo ring or hacker group
>>
>>16806813
>>16806825
>>16806858
>>16806858
/g maybe?
>>
You know that you can use https to view vietnamese cartoon websites
>>
>>16806884

I should have clarified. I assumed OP didn't have a proxy or VPN, in which case the ISP will see his activity when using unencrypted protocols.

Most people don't have VPNS and aren't aware of HTTPS.
>>
>>16806886
Why do you think there are some hackers on your back? I could help if you described the situation better.
>>
>>16806884

>establish a SSH tunnel

tried all the tutorials and none of them worked, anon

how the fuck does one do that
>>
>>16806876
What you are talking about are correlation attacks, and they require a huge amount of nodes under one's control. The Snowden papers showed, if I am not mistaken, that even the NSA didn't really know how to break Tor.

Using Tor is definitely better than not using is. People who tell you not to use it are either retards or are working for the services.

>>16806884
Tor supports SOCKS4a, which does encrypted DNS lookups. If you only use SOCKS4, then yes, you might leak what sites you are requesting.
>>
>>16806906
>learn how to use Linux
>learn how to use ssh
>???
>PROFIT

>>16806900
HTTPS should be common knowledge by now.
>>
File: intellibot.png (212 KB, 598x509) Image search: [iqdb] [SauceNao] [Google]
intellibot.png
212 KB, 598x509
>>16806907

>Implying the services don't have control over most relevant nodes

nice try agent Cuckson
>>
So tor is good for things like this?
>>
>>16806907
Tor is definitely unbreakable as of now but who breaks encryption anyway?

Pretty sure some exit nodes (especially in Merica) are accessed by the boys in the precint.
>>
>>16806920
>implying not everyone can set up a node
>implying people don't already do so
>implying that all the people being busted are not being busted because Tor is weak, but because they are leaking vital informations, like apache status pages or retarded posts on stack overflow

nice try agent retard
>>
>>16806926
Tor is good for things you don't want to be caught for. And that implies terrorism and CP.
>>
>>16806907
Wtf are you on about? The SOCKS protocol is not encrypted in any way.
However, if you create an SSH tunnel to the SOCKS proxy, it will then be encrypted.
And as for Tor, it isn't really a SOCKS proxy - it just allows the SOCKS protocol to be used as a convenient feature.

http://lifehacker.com/237227/geek-to-live--encrypt-your-web-browsing-session-with-an-ssh-socks-proxy
>>
>>16806858
>>16806907
>>16806917
>>16806929

BTW: this comes from a network programmer who has written a small SOCKS API in C to connect to other services secretly. I know my shit to a certain degree.
>>
>>16806906
see
>>16806953

I use SSH when I'm on public Wifi networks (such as McDonalds hotspots) and have to log in my eBay or other accounts.
Even with HTTPS on, it's still possible to do a man in the middle attack and forge the HTTPS certificate and see everything you do, including passwords.
>>
>>16806953
Dude, we are not talking about the way TO the Tor connector - which is running at 127.0.0.1:9050 most of the time anyways. Communication to THIS connector is not encrypted, but in practice it does not need to be, because it's a connection to the internal loopback device - a.k.a. no network traffic is generated.

And read again - I wrote Tor SUPPORTS SOCKS4a, which is mostly used to do the DNS lookups. Tor is, after all, a SOCKS proxy. Running on the aforementioned 127.0.0.1:9050. I don't know and don't wanna assume that it does more than that - but it DOES support SOCKS4a
>>
>>16806956
>from a network programmer

Not a very good one. You claimed that SOCKS4a does encrypted DNS lookups. This is bullshit. It does remote DNS lookups (which makes it safe from the DNS leaking perspective), but it doesn't encrypt DNS lookups, and it also doesn't encrypt traffic by default.

If you SSH to any SOCKS proxies, you are more or less safe. Also, to prevent DNS logs and shit for SOCKS4a and SOCKS5, you need to make them use DNSSEC instead, which actually encrypts shit.
>>
>>16806983
>Tor is a SOCKS proxy

You could also say that a VPN is a SOCKS proxy, or a proxy chain is a proxy, because you can route your traffic via it using the SOCKS protocol.

And are you even serious about the SOCKS4a doing DNS lookups on the client end, in case of Tor? The EXIT NODE does it.
>>
>>16807016
The DNS lookup is encrypted in the same way the payload is. If the target is a clearnet domain, everything is unencrypted again, of course.
>>
>>16807055
No. I think we're in a disagreement because we're talking about different things.
Here's what I mean:

>Case 1: A SOCKS proxy with an SSH tunnel.

In this case, everything from the client to the SOCKS proxy is encrypted, be it DNS lockups (depending on the SOCKS version), HTTP traffic, or anything else.

>Case 2: A local SOCKS proxy used by Tor

In this case, everything between it and the exit node is encrypted.

>Case 3: Just SOCKS4a or SOCKS5 proxies

As long as you use HTTPS, you should be safe from monitoring. The DNS lookups are done remotely.

>Case 4: DNSSEC + HTTPS, no proxies

Very hard to monitor, DNS and HTTP traffic are both encrypted.
>>
>>16807093
samefag, meant lookups
Thread replies: 28
Thread images: 2
Thread DB ID: 514524



[Boards: 3 / a / aco / adv / an / asp / b / biz / c / cgl / ck / cm / co / d / diy / e / fa / fit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mu / n / news / o / out / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / t / tg / toy / trash / trv / tv / u / v / vg / vip /vp / vr / w / wg / wsg / wsr / x / y] [Search | Home]

[Boards: 3 / a / aco / adv / an / asp / b / biz / c / cgl / ck / cm / co / d / diy / e / fa / fit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mu / n / news / o / out / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / t / tg / toy / trash / trv / tv / u / v / vg / vip /vp / vr / w / wg / wsg / wsr / x / y] [Search | Home]

All trademarks and copyrights on this page are owned by their respective parties. Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the shown content originated from that site. This means that 4Archive shows their content, archived. If you need information for a Poster - contact them.
If a post contains personal/copyrighted/illegal content, then use the post's [Report] link! If a post is not removed within 24h contact me at [email protected] with the post's information.