Author Topic: School proxy (Read 12627 times)

M0T · « **on:** 2002-09-10 10:53:11 »

My School blocks web access through websense, any way to bypass it?

Jedimark · « **Reply #1 on:** 2002-09-10 13:34:25 »

Hmm.. to bypass our web-blocker at college I did this:

Write the URL in this form:

www.bbc.co.uk@www.microsoft.com

(So the first address is an address that is not blocked... maybe the local intranet or a file... and the second address is the site you want to view.)

Worked for me for a while... until the security manager got wind of what I was doing -_-

M0T · « **Reply #2 on:** 2002-09-10 14:13:42 »

I tried it, but its already been blocked

guess there isnt anyway of getting past the boredom of triple computing

Jedimark · « **Reply #3 on:** 2002-09-10 15:23:36 »

Oh how I would have killed for triple computing... instead I got triple maths followed by double chemistry :isee:

sfx1999 · « **Reply #4 on:** 2002-09-10 15:43:27 »

What really sux is that Fortress! It freezes and CTRL+ALT+DEL does not work!

ficedula · « **Reply #5 on:** 2002-09-10 17:23:51 »

If you can set the proxy on your web browser, then set it to an open anonymous proxy somewhere, and you'll be sorted.

If they block the connection / lock the proxy settings, then can you get SSH on the system? This is a bit more complex, but it's what I do to get around a firewall ban (long story, and no, I wasn't breaking any rules

). You'll need an login account on some public computer with an SSH server ... then you can use port forwarding to 'bounce' the connection off that computer onto whatever other computer you want. So long as the computer you have an account on isn't blocked, it'll get past the blocks, of course. As an added bonus, all your traffic is encrypted too

First, though, you need an SSH account on a public computer; if you /do/ have that, and can get SSH running, I'll give you some help if you need it

The SaiNt · « **Reply #6 on:** 2002-09-10 18:09:47 »

Unfortunately, in 99% of the cases out there, setting up SSH would need you to own a remote pc that's on the entire day.
If they did have a remote pc, that pc would be wasting bandwidth uploading and downloading the same information.

Alhexx · « **Reply #7 on:** 2002-09-10 19:22:52 »

I'm not sure how it is on the School Comps at M0T's, but at our School, we're connected to the net through a school proxy, so changing the browser proxy should have only 1 result: It won't lead anywhere... digital nirvana

Fortunately, at our school, pages aren't blocked (at least I haven't found anyone yet...)

Oh, M0T, does your School have these fantastic security programs, too, which block most of window's functions? We've got an app called INIS for that, however, I've found some security bugs in it. Next week, when I'm going to sit in front of it, I'll see if I can run an application by calling the CreateProcess API-Function under VB ... hehe, if that succeeds, I would have found a TERRIBLE security bug in our School system... Yeah! Alhexx's infiltrating the School Server!

- Alhexx

M0T · « **Reply #8 on:** 2002-09-10 19:46:11 »

It doesa, though its really cheap and crappy anhd it took me 10 mins to get round it

atzn · « **Reply #9 on:** 2002-09-10 20:09:10 »

Last week I returned to school only to find out that they've added 256MB of RAM into each system at my Learning Center and upgraded the OS from Win98 to WinXP Pro. "Wow".

Instead of gaining performance, it slowed down horribly. Especially when I try to access the Start Menu, it will take 1 minute (I am not exaggerating!) for the Menu to come up. lol.

What's even funnier, I used the Internet and they actually banned my own school's website! lol! They even banned www.geocities.com and www.angelfire.com

Once my friend was surfing through a university website only to realise that it is banned.... and the website was categorised as 'criminal'. lol.

School computers getting better or worse? I don't know........

sfx1999 · « **Reply #10 on:** 2002-09-10 23:39:40 »

Alhexx, what exactly at school are you looking at that isn't banned "yet"?

Aaron · « **Reply #11 on:** 2002-09-11 01:58:35 »

Our computers are not restricted to internet or e-mail access in any way (but you cannot run programs that are not authorized, only IE, e-mail client, graphics program, text editor, word processor, etc.)

The huge downside?
They're all Macs. :-p

oglsmm · « **Reply #12 on:** 2002-09-15 17:38:43 »

If your systems are using Win NT/2k/XP you could very easily change the admin password and the go in and disable/change the proxy settings.

Of course some things here to think about:
1) You need access to Floppy disk drive (can't be disabled in BIOS)
2) If they use fortress you might be out of luck, depends on how fortress is set up (BTW default keys for fortress control panel are crtl-shift-esc, but you'll need the password
3)Once you've changed local admin password, you can install a keysniffer, and get the domain admin account/password.

Of course there's also your morals to look out for.

To change the admin (or any other local account) password, just boot with this boot disk which you can get here:

http://home.eunet.no/~pnordahl/ntpasswd/bootdisk.html

FOLLOW the instructions, and presto!
BTW do not disable syskey.

It does work also, doesn't matter if it's NTFS or not.

oglsmm

sfx1999 · « **Reply #13 on:** 2002-09-16 01:03:26 »

I just realized something! This is SPAM!!!

Barawulf · « **Reply #14 on:** 2002-09-16 04:41:17 »

*peeks up to post from trolling around for months*

I should chime in here. Because I'm in much the same position.

Our school uses 8e6 / Microsoft Proxy to filter our net access... at one point, they tried to block geocities, but that only raised cain among the teachers as well.

I've seen them bypass their own filter by monkeying the browser proxy settings, so I think it'd work...

So that's the report for those who have a similar filter situation.

On an overall security tangent:

Our schools *used to* use FoolProof... and I'll be darned if it wasn't the most ridiculous form of security they could have.
Word Macro -> "Shell" -> winfile.exe (because it forgot about 16 bit apps) -> Bang, suddenly you have access to any program you want.

It was slightly smarter on computers that had the outright-newest version, by not allowing that, but it didn't matter...

Because we ran a keylogger on the little-used computer that had this vulnerability, and, lo and behold, when maintenence time came around, we had the password

Furthur inquiry led to the revelation that it disallowed access based on FILENAME ONLY... pretty much anything that starts with "A:\" (so you can't run stuff off the disk) and anything whose filename is not on the list.

Just write a little script to copy a fake "iexplore.exe" to the C: drive, with no need to overwrite the real one.... run it... and executable privledges are yours.

Ah... those were good times.

Minor security rant:
Our school swore by FoolProof. See, we have nimnuls, as many have called them, for sysadmins.
Whoops, you got around FoolProof. This happens at least once by anybody. You get a good slap on the wrist...
They were saying "Our security, no matter how crappy it is, should be respected and followed without questioning. We'll keep using crap and suspending anyone who dare question it."
The fact I have the password, and have a clean record, is by paranoia on my part. "Leave no trace"

It's better now. They're using Win2K, and don't run FoolProof.. it's "I'm OK, You're OK" which is great.

But they still have that filter... grr.

Why do they put such a high priority of security on nimnuls who don't know what they're doing? Nimnuls who call HTML a true programming language... (even VB stretches that designation, but HTML?) Nimnuls who are afraid of the command line... Nimnuls who use OUTLOOK for goodness sakes.... when security is such a "HIGH PRIORITY"!

I'm just going to go nuts over in the corner now...

Wulf

sfx1999 · « **Reply #15 on:** 2002-09-18 22:53:21 »

Hey OGLSMM, that is definitely a good way to get expelled... By the way, once I decided to scan my teacher's computer with housecall http://housecall.antivirus.com/ it it found over five viruses. This year we can't use the teachers computer. Oh yeah and a couple days ago, I stopped the screensaver and looked, the Fortress Garand configuration screen was open... HAHAHAHAHA. How negligent and stupid of them. I didn't do anything to it though.

The worst part about that virus thing was the teacher blamed it on me!!! The only stuff I was viewing were midi files. I told him it wasn't me. Luckily I didn't get in trouble.

Psycho_Sephiroth · « **Reply #16 on:** 2002-11-22 00:00:01 »

im at school right now
on a laptop

Aaron · « **Reply #17 on:** 2002-11-22 00:09:53 »

Quote

You're new... you might like to know that its kind of annoying when a two-month-old thread is brought back to the top of the list by a reply... usually we let the old threads die.

Just a thought.

Oh yeah, and its particularly annoying when the post that brings an old thread back from the dead doesn't really say anything.

No offense, just pointing this out...

Qhimm · « **Reply #18 on:** 2002-11-22 02:17:07 »

That's probably one of the most meaningless posts I've ever seen. No wonder the forum database is growing so rapidly, with nonsense like this flourishing.

Psycho_Sephiroth: Don't post if you don't have anything to say.

Mental note to self: Make a special topic with forum rules and refer every single newbie to it.

Alhexx · « **Reply #19 on:** 2002-11-22 12:43:36 »

Quote from: Qhimm

(...) and refer every single newbie to it.

Whoo, that'd be a hard piece of work... *_*

- Alhexx

Lord Kane · « **Reply #20 on:** 2002-11-23 09:11:15 »

n00bs are n00bs. They never read the forum rules. I have this problem at NGEmu all the time.

Author Topic: School proxy (Read 12627 times)

Barawulf