Overclockers Australia Forums
OCAU News - Wiki - QuickLinks - Pix - Sponsors  

Go Back   Overclockers Australia Forums > General Topics > Newbie Lounge

Notices


Sign up for a free OCAU account and this ad will go away!
Search our forums with Google:
Reply
 
Thread Tools
Old 10th October 2008, 9:15 PM   #1
.:HM:. Thread Starter
Member
 
Join Date: Dec 2007
Posts: 925
Default How to block proxy sites?

Hey guys,

Would like to know how to block stupid proxy sites...

for example:

sneakmyass.in

I block a certain website and they just keep using proxy sites to go back into, and if i do one, there will be a zillion more proxies out there.

thanks
.:HM:. is offline   Reply With Quote

Join OCAU to remove this ad!
Old 10th October 2008, 9:21 PM   #2
flu!d
Distro: Mint 16
 
flu!d's Avatar
 
Join Date: Jun 2001
Posts: 9,703
Default

Set up a decent hardware firewall with content filtering.

-Smoothwall with Dansguardian content filter.
-PFSense with content filtering addon.
-Untangle.

The above systems can be set up on any x86 based PC with 2 or more NICs.

Or you can go for a off the shelf solution like a Cyberguard firewall with the content filtering addon, but bear in mind that an off the shelf solution will cost upwards of $700.00 and won't nessecarily be any better than the open source solutions mentioned above.

I use Smoothwall myself and it works a treat, I have also used PFSense, and it works well also. If you are new to open source firewalls I reccomend PFSense.
__________________
Show us yer HTPC!

MorphOS 3.5 - Chrysalis Expansion Pack - 1.25ghz PPC processor overclocked to 1.5ghz - Radeon 9200 32MB - 1.5GB DDR ram - 40GB HDD - Dell 19" E1909W monitor. LONG LIVE THE AMIGA!!
flu!d is offline   Reply With Quote
Old 10th October 2008, 9:31 PM   #3
CordlezToaster
Member
 
CordlezToaster's Avatar
 
Join Date: Nov 2006
Location: Melbourne
Posts: 3,983
Default

if the perpetrators are smart they will just use https proxys "then they get really hard to block".

If its for home then use the above mentioned.
You could also write a script, rule to look for a particular string used in the proxy script and block it that way.

Or if you can block phrases block the copyright messages in webpages because i think proxy sites still pass that info through(thats how we blocked them with sonar).

ie, block Myspace Copyright 2008 etc.

But at my work we use a bluecoat to do everything and it worls well.
CordlezToaster is offline   Reply With Quote
Old 10th October 2008, 11:38 PM   #4
Whisper
Member
 
Whisper's Avatar
 
Join Date: Jun 2001
Location: Sydney
Posts: 8,300
Cool

Run your own proxy the browsers must use and block anything that tries to use anything else.
__________________
Quote:
There's something about philosophy that is at once humanising & utterly human. It's the court of last recourse. When the oracles have failed us, when the saints have grown silent & when god has chosen not to reveal himself. Then we stand back in the dark dark shadows of confusion & fear & ask, "What sort of being am I?" "What kind of life is right for me?" "& how should I govern, or be governed?"
Whisper is offline   Reply With Quote
Old 11th October 2008, 7:02 AM   #5
The_Derro
Member
 
Join Date: Jul 2001
Location: Chatswood, Sydney.
Posts: 531
Default

You could block Proxy style requests, which shouldn't impact 'normal' users but anyone using a proxy will usually be stuffed.

The difference is in the HTTP request.

A 'normal' http request will be:

GET /blah/foo.html
Host: www.example.org

and then the rest of the HTTP headers.

A proxy mode request will be:

GET http://www.example.org/blah/foo.html

HOW would you configure this though? No idea Your firewall/filter device would need to support the ability to do it.

But, as mentioned by CordlezToaster, a HTTPS proxy will render this null and void
The_Derro is offline   Reply With Quote
Old 11th October 2008, 12:19 PM   #6
CordlezToaster
Member
 
CordlezToaster's Avatar
 
Join Date: Nov 2006
Location: Melbourne
Posts: 3,983
Default

With most https proxy sites none of them have paid for a trusted certificate so you can block non trusted certificate sites and only allow those who have paid for an ssl cert.
CordlezToaster is offline   Reply With Quote
Old 30th October 2008, 9:37 PM   #7
.:HM:. Thread Starter
Member
 
Join Date: Dec 2007
Posts: 925
Default

ok thanks guys

Yeah, those HTTPS ones are damn annoying.

wait don't worry, figured it out

Anyone want to help me how to use PFsense?

Last edited by .:HM:.; 30th October 2008 at 9:42 PM.
.:HM:. is offline   Reply With Quote
Old 30th October 2008, 10:01 PM   #8
.:HM:. Thread Starter
Member
 
Join Date: Dec 2007
Posts: 925
Default

ok... what the hell, i dl the ISO and the MD5 file...

And when i extract, it just comes out with all these folders that mean absolutely nothing....

.:HM:. is offline   Reply With Quote
Old 31st October 2008, 10:39 PM   #9
.:HM:. Thread Starter
Member
 
Join Date: Dec 2007
Posts: 925
Default

sigh guys..

PFsense is so damn confusing to install..

any help?
.:HM:. is offline   Reply With Quote
Old 1st November 2008, 8:29 PM   #10
Stiff
Member
 
Join Date: Jan 2003
Posts: 992
Default

The guides at their wiki might be of some help - http://doc.pfsense.org/index.php/Tutorials
Stiff is offline   Reply With Quote
Old 1st November 2008, 10:43 PM   #11
neon_87
RIP
 
neon_87's Avatar
 
Join Date: Mar 2005
Location: Melbourne
Posts: 2,767
Default

We use MS ISA2004 at work, running on server 2003. Does the job nicely, but not cheap for regular users. We get it free through Vic DEECD
neon_87 is offline   Reply With Quote
Old 1st November 2008, 11:59 PM   #12
DeXtOrAu
Member
 
DeXtOrAu's Avatar
 
Join Date: Feb 2008
Location: Adelaide (North)
Posts: 159
Default

try netfox
DeXtOrAu is offline   Reply With Quote
Reply

Bookmarks

Sign up for a free OCAU account and this ad will go away!

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +10. The time now is 2:01 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd. -
OCAU is not responsible for the content of individual messages posted by others.
Other content copyright Overclockers Australia.
OCAU is hosted by Internode!