So here is another delima that I am faced with. My school uses a proxy to make so that we cant view "bad" websites. The proxy name is bess-proxy.tccsa.net. Our internet only works if we run through that proxy out of port 7034. I was wondering if there is any way to bypass this without asking admins or using a proxy online. Proxies online are blocked within a week. So I have to google for a new one quite often. Any help would be greatly appreciated, and please don't say ask the admins or get a connection at home.The admins are @$$holes and my parents wont get the internet. So i'm SOL on both of those accounts. And we signed something at the beginning of the year that said we would not try to bypass any of this stuff, but f**k them I wanna be able to use google image search. Thx for any input as long as it's not a retarded suggestion.

basically you need to connect out to somewhere past the proxy and make a machine out there do what you want.

- use some stupid webscript or even google translate:http://www.google.com/translate_t
  just let it translate from english to english
-use some other privacy thing like anonymizer.com or whaterv

-ssh tunnel out to a box somewhere, either set up a broxy or use a textbased browser like lynx 

-furthermore there are still numerouse open proxies. shouldn't take too much searching.

I haven't tried the text based proxy yet, but here's what I found on the other stuff. First, I cant get to anonymizer.com. Its blocked. Second, when I google for the words myspace proxies, which brings up thousands of results, the first 16 pages of sites are blocked, and I havent checked any farther than that yet. As far as the ssh tunneling, I'd have to do more research on that topic, but I don't have a box set up anywhere, and I dont have the money to set one up myself. The translation pages are blocked as far as page 10 when I google for them and the google translation page is blocked as well. I know it sounds like I'm making excuses, but my school has things pretty well on lockdown. But I will try that text based browser. Thanks for the advice Rhican. More advice would be appreciated from anyone else.

When i was in halls at uni I used www.your-freedom.net. That was a pretty cool tool to hide what i was doing from the university, of course however, you are entrusting your data to a third party proxy when using this.

Well, here's the thing. I appreciate your suggestion of using a third party host to connect, but the tech guys out here used to do the same thing when they were kids in college. They know all the tricks. www.your-freedom.net is blocked. And there are probably over 3000 more proxy sites on their blacklist. They've got the first 40 pages or so blocked when I google the words "myspace proxies". I'm running out of ideas.......

You set up a *nix box to do the tunneling, all you would need is permission and a shell account on some server, which isnt hard to get as long as traffic isn't insanely high. You then make sure that what you are doing is kept quiet and don't tell anyone how you got past it, so that there is not massive amounts of traffic being generated to that ip address which would arouse suspicion from a diligent admin. This of course requires you know how to set up tunneling, but it isnt too nasty to do and i'm sure there are some nice tutorials out there.

Best of luck -

Degen

Edit:L2Spell

You also got me thinking:

Firstly, do you know if the proxy is running in transparent mode? Is it on site or a government provided offsite proxy?

If it is not running transparently, then there are other ways around it.

You could for example use a different browser and not enter the proxy details, and this would effectively bypass the proxy. Your proxy is likely enforced through use of group policy applying a proxy setting to the browser, and then locking out access to the connection tab of tools > internet options in IE. I admin the proxy at this company and I know fullwell that if somebody had permissions to install an alternative browser then they could bypass the proxy settings enforced by the group policies.

Another thought is to try and find something like a web page with a java applet that you could use to browse, that could do the same as what I have put above.

If you are serious about bypassing the proxy then you need to do some research into what they are using, and how it works. Also I would recommend checking your school's policy about such actions, I have a feeling that if caught they would be less than impressed by someone subverting their proxy. It is potentially a route in for malicious files, and I know that when I was at school, such things were dealt with by suspension and worse, so think twice.

Hope all of this helps and if anyone has anything to add or thinks I have something incorrect, post away

Degenerate

Oh wait there's more

Still thinking about this, and so:

What Rhican suggested about a script is a very good idea. You can either find an exploitable script on a random website, or upload your own to a webserver. An example of what I mean by the script is this challenge on HTS (its in Perl) which opens the page provided in the POST. http://www.hackthissite.org/missions/realistic/11/page.pl?page=main

The above link filters out anything with a / in (I mean ../../../etc/passwd would be pretty bad) but I am pretty sure there are sites out there which may not do this, and you should with some research be able to find one. And if you can't, upload your own script, filter for any directory traversal, but allow http:// in there

Just another idea anyway, good luck,

Degen

Googling your proxy gives this:

http://www.northwestern-wayne.k12.oh.us/assist/no_worldusa.reg

It would seem that you can bypass the proxy with settings, just by putting in addresses you dont want to be used by proxy.

The proxy serves three ?countys? (I'm not sure, I don't know much US geography) and so you connect to the proxy over the internet, which then directs your traffic etc.

If you were to not be instructing your pc to connect to the proxy first.... then you would be connecting to the internet directly.

So seems to me like you need to find a way around the enforcing of proxy settings

Degen

(This must be a record number of posts in one thread in this kind of timeframe xD)


Edit: and if you want a laugh, watch the poor admin struggle

http://www.squid-cache.org/mail-archive/squid-users/200508/0730.html
http://www1.uk.squid-cache.org/mail-archive/squid-users/200509/0343.html
http://www.spinics.net/lists/squid/msg07107.html

Also interesting is:
http://database.n2h2.com/cgi-perl/catrpt.pl

Grab the list of Dajoob accounts (find it yourself, it's out there, *cough* Corin), then run it through a program to parse the username and password from each line. After it has every username and password, make it log onto each site and drop a proxy on it.