Jump to content


Photo
- - - - -

Finding an open CGI based web proxy


  • Please log in to reply
10 replies to this topic

#1 Irongeek

Irongeek

    Dangerous free thinker

  • Agents of the Revolution
  • 1,516 posts
  • Location:Louisville, Ky more or less

Posted 05 November 2006 - 12:14 PM

Since I see this question every once and awhile, I figured I'd post this. Most CGI based web proxies seem to use James Marshall's script:
http://www.jmarshall...tools/cgiproxy/
By the way, looks like he needs some cash, feel free to donate.

Anyway, most of these proxies use James' script, and it's easy to fine one using a quick Google search string:

inurl:nph-proxy.pl


For those of you that are lazy:

http://www.google.co...G=Google Search

That should get you around most URL based content filters. If the ban one site, find another, unless they start to ban anything with "nph-proxy.pl" in the URL. The topic came up at the last HackLouisville meeting, so I figured I'd post about it.

#2 crackedatom

crackedatom

    SUPR3M3 31337 Mack Daddy P1MP

  • Members
  • 428 posts
  • Location:Durban, South Africa

Posted 05 November 2006 - 12:28 PM

That's some great info...They're blocking proxy sites all the time out here, so I'm always on the lookout new ones.

#3 Irongeek

Irongeek

    Dangerous free thinker

  • Agents of the Revolution
  • 1,516 posts
  • Location:Louisville, Ky more or less

Posted 05 November 2006 - 12:30 PM

Well this is a great way to find them. I just tossed James $5.00.

#4 chillmaster

chillmaster

    SUP3R 31337

  • Members
  • 165 posts

Posted 05 November 2006 - 02:03 PM

Well this is a great way to find them. I just tossed James $5.00.



As should we all. This is definitly something im looking into to hosting for my own community. I plan on pitching 10 dollars towards James as soon as I hit home.

#5 Rightcoast

Rightcoast

    mmm ... donuts

  • Agents of the Revolution
  • 2,074 posts
  • Gender:Male
  • Location:321

Posted 05 November 2006 - 03:36 PM

Yeah, one buck never hurt anyone. I'll go give him some dinero now (one dollar).

#6 Trikk

Trikk

    SUPR3M3 31337 Mack Daddy P1MP

  • Members
  • 348 posts
  • Country:
  • Gender:Male
  • Location:Portland, OR

Posted 06 November 2006 - 10:42 AM

Eh, on the proxy i\'m on (A highschools, using Squid), it blocks filenames with nph in them.

Anyone know a way to get around this? thanks in advance

#7 BrakeDanceJ

BrakeDanceJ

    Hakker addict

  • Binrev Financier
  • 598 posts
  • Location:Chicago

Posted 06 November 2006 - 11:14 AM

My school just blocked everything with the word "proxy" in the URL.

#8 Irongeek

Irongeek

    Dangerous free thinker

  • Agents of the Revolution
  • 1,516 posts
  • Location:Louisville, Ky more or less

Posted 06 November 2006 - 11:20 AM

Well, the file can be renamed nph-*. Unfortunately, the nph- may have to be in the name to let the web server know it uses non parsed headers. Anyone know a way to change the code so it does not need the "nph-" prefix?

#9 shizzle

shizzle

    elite

  • Members
  • 113 posts
  • Location:USA

Posted 06 November 2006 - 09:06 PM

hell yeh irongeek a fast ssl proxy is very useful at a cybercafe

#10 Irongeek

Irongeek

    Dangerous free thinker

  • Agents of the Revolution
  • 1,516 posts
  • Location:Louisville, Ky more or less

Posted 07 November 2006 - 11:59 AM

I should have read the code more. A guy going by the name Samspin pointed it out on another forum. Just find the line:
$NOT_RUNNING_AS_NPH= 0 ;

and set it to 1 instead. Now you can name it anything you want.

#11 xof7

xof7

    Hakker addict

  • Members
  • 558 posts
  • Location:Spokane, Washington

Posted 07 November 2006 - 07:19 PM

JMarshall's cgi proxy is really nice. There is also an option where you can add base64 encryption the the url that it is using so that even if they are still sniffing the GET headers, they wont be able to block keywords in it such as mail, forums, etc.
I will setup a cgi proxy if you guys would like.




BinRev is hosted by the great people at Lunarpages!