DonQuixote
DARTH MENSES  Posts: 641 Registered: 4/22/2005 Offline
|
9/22/2005 at 02:15  |
OK so I found a good way to get around the companies web site blocker. It involves an iPod and Firefox. There are two other but I wouldn't reccomend them.
I got this right off the this LINK
Run Firefox from removable media (your ipod)
This tip makes it possible to run Firefox from removable media, such as a USB memory stick (or ipod). This will allow you to run Firefox with your personal settings from any computer, even those that don't have Firefox installed. It has only been tested on Windows XP/2000. The basic instructions are as follows:
1. Copy the Firefox application folder and your profile folder to the removable medium. In this example we will use R:Firefox for the application folder and R:FFProfile as the profile folder, assuming the drive letter for the removable media is R:.
2. Create a simple batch file called R:Firefox.bat with the following line:
start Firefoxfirefox.exe -profile FFProfile
3. Optionally, disable the disk cache to reduce the amounts of file writes to the removable storage by entering about:config in the address field of Firefox and set browser.cache.disk.enable to false.
The reason why a batch file is needed instead of a simple shortcut is that a shortcut uses absolute paths, and since the actual drive letter for the removable media may change depending on which computer it is plugged into, the relative path used in the batch file is guaranteed to work anywhere.
It works like a charm and takes up very little space on your iPod. Heck you could run it from a usb drive.
For the iPod make sure you have it set so that you can write directly to it (and don't forget to make sure that iTunes won't automatically pop up when you plug in your iPod), its one of the check boxes in the iPod tab in the iTunes preferences.
Anyways, I have no clue why it works. But it does. I also wrote (well copied) my first batch file so I was pretty high on that.
No proxy. No trails. No getting fired. AWESOME.
----------------------------------------------------------
The other way I found so far is to get the ip of the domain that you want to see, use nslookup or search google for a page that will do it for you and get that domains ip from there. Then just plug in the ip after http:// and there you are. Of course you can't click on any links within the site cause it will take you to a URL with the blocked domain name as the first part of the path. I was thinking about creating a Firefox extension that would retriev IP's and take you to your favorite sites (like linkswarm) and then when you click on any link it would fetch the ip for that and take you there. No domain names no search string blockage. Of course the IT folk may wise up to this but its a challenge for anyone 1337 to try it.
-----------------------------------------------------------
Proxies = Fired not an option. The IT people tend to sit up and notice when you create a connection to anything outside there intranet. So don't do that.
-----------------------------------------------------------
Peace out yall hope this helps.
[Edited on 22/9/2005 by sofickingwat]
____________________
( . )( . ) <--- Boobs.
|
| |
vasudeva
Bad Taste in your Mouth   SSHOLEPosts: 4538 Registered: 3/8/2002 Offline
|
9/22/2005 at 02:26 |
This post is amusingly full of erroneous tidbits. Maybe tomorrow when I wake up I'll set about the business of correcting them.
____________________
slippedhole> I am on to you and your evil intentions. I am the true protector of this website and am willing to do battle with you. |
| |
DonQuixote
DARTH MENSES Posts: 641 Registered: 4/22/2005 Offline
|
9/22/2005 at 02:55 |
vasudeva: This post is amusingly full of erroneous tidbits. Maybe tomorrow when I wake up I'll set about the business of correcting them.
You and your SAT words. The firefox on the iPod works. I tested it with my own ipod and computer at werk.
Don't forget to do the about config thing in firefox cause if not it will take up a bunch of space with cahed shizzle.
____________________
( . )( . ) <--- Boobs. |
| |
ghostrider
liberal exit  SSHOLEPosts: 2502 Registered: 7/29/2004 Offline
|
9/22/2005 at 03:16 |
hi
____________________
LSD? Heck no, those were Opal Thompson's dinner rolls. |
| |
Johnny_Assface
Tender vittles  Posts: 31 Registered: 8/30/2005 Offline
|
9/22/2005 at 05:20 |
There is a portable version of FireFox that doesn't involve as much activity with removable media, such as a flash drive. You don't have to use an Ipod.
Portable FiereFox |
| |
vasudeva
Bad Taste in your Mouth SSHOLEPosts: 4538 Registered: 3/8/2002 Offline
|
9/22/2005 at 12:32 |
sofickingwat: vasudeva: This post is amusingly full of erroneous tidbits. Maybe tomorrow when I wake up I'll set about the business of correcting them.
You and your SAT words. The firefox on the iPod works. I tested it with my own ipod and computer at werk.
Not that it doesn't work -- of course it works. It just doesn't do what you think it does.
No proxy. No trails. No getting fired. AWESOME.
Wrong wrong and wrong.
Running your browser off a USB stick (or iPod, or whaver) doesn't get you much. Unless the config comes with a pre-filled-in proxy string, you're still going over your company lines, and they will absolutely be able to see where you're going. Even if it does come with a proxy string, it's still unencrypted, unless they also set you up with a routine to make an encrypted session to that proxy. If they did, you're good, but I don't think this is probably the case.
What it does get you is your own config they can't (probably) touch (without some effort), so if they've configured all company desktops to go through a specific proxy, then you're getting around it... but if that's how they're doing security, then there are much better and more transparent ways of locking down user page requests.
It also hides your local browsing history because you can pull your stick and/or wipe it.
But all your page requests are still going out on the same wire, and in the clear.
The other way I found so far is to get the ip of the domain that you want to see, use nslookup or search google for a page that will do it for you and get that domains ip from there.
Or you could just ping the domain name and get the IP that way. Everybody knows ping.
Of course you can't click on any links within the site cause it will take you to a URL with the blocked domain name as the first part of the path.
Only for sites that hardcode absolute paths in their links. LinkSwarm doesn't in a lot of places. You'll find that hitting LS by IP is for the most part seamless.
No domain names no search string blockage. Of course the IT folk may wise up to this but its a challenge for anyone 1337 to try it.
Again, this could work for a bit, but if your security department knows how to run software, they'll block you. A lot of site-blocking software doesn't rely on domain name only.
Proxies = Fired not an option. The IT people tend to sit up and notice when you create a connection to anything outside there intranet. So don't do that.
Chances are, they have automated stuff to alert them of who's using the most web traffic and what URLs are being accessed, but SSH connections might well be off their radar. So if you think browsing sites in the clear is more secure than through an encrypted channel, ha-ha.
Sorry to the dudes whose posts I had to smoke. There was a bad URL and then someone else quoted it, maybe multiple times. Repost if you like -- but this time without page-fuxoring quote-character mishaps, please.
SFW: Congrats on copying your batchfile over!
____________________
slippedhole> I am on to you and your evil intentions. I am the true protector of this website and am willing to do battle with you. |
| |
ragoo
We are not amused.  SSHOLEPosts: 677 Registered: 9/4/2004 Offline
|
9/22/2005 at 13:48 |
Vas said you can pull your stick and/or wipe it.
____________________
|
| |
qwerty
DARTH MENSES  Posts: 628 Registered: 9/8/2004 Offline
|
9/22/2005 at 14:03  |
The ssh tunneling teh awes0mer!! At uni it's possible to use an ssh tunnel to an open proxy to downl0ad as much horse pr0n as you could want in your life. Beats the shit out of 500mb a semester cap.
____________________
fnord linkswarm fnord |
| |
DonQuixote
DARTH MENSES Posts: 641 Registered: 4/22/2005 Offline
|
9/23/2005 at 04:23 |
Look at the big brain on VAS!!!
k so the whole encryption thing. is there any way to create an encrypted connection to "the net" without setting up my home computer as a proxy server. I mean aren't there free proxy servers out there that support SSH?? What about forcing SSL connections (just a random thought)?
Other questions are
- when you configure your firefox to connect to a proxy how do you know if its working or not. You don't really need the proxy switcher toolbar or any o that. just go into the options and click the set up proxy connections then the last radial or option button give you a chance to fill in a URL for a PAC file. But I dunno if its working?? (Testing at home BTW)
- My next project shall be to write a macro for MSOutlook that opens "new message"s until the system completely crashes. The only problem is how to get people to dl this macro. Could I hide it in an email? Or create a URL with HTML that autodl's the macro to the MSOutlook VBA thingy??
I dunno. Random virtual problem solving (white hat hacking) has become an interest of mine. I just want to learn. I don't actually want to do anything. Maybe try and screw around in those hacker challenge sites.
I am way not 1337. Enough exposing my fucktardivity for today.
Oh yeah also must learn C++ hope its as easy as VBA
____________________
( . )( . ) <--- Boobs. |
| |
DonQuixote
DARTH MENSES Posts: 641 Registered: 4/22/2005 Offline
|
9/23/2005 at 04:27 |
Johnny_Assface: There is a portable version of FireFox that doesn't involve as much activity with removable media, such as a flash drive. You don't have to use an Ipod.
Portable FiereFox
Its just a smaller version of what Firefox tells you how to do. The ipod is a rather unsuspecting tool since no one thinks about it having a hard drive. They just think MP3 player doy doy doy.
Anyways, thanks for the link. But the mozilla way is more open for me to fuck around.
____________________
( . )( . ) <--- Boobs. |
| |
qwerty
DARTH MENSES Posts: 628 Registered: 9/8/2004 Offline
|
9/23/2005 at 16:23  |
Primer on What you need to know
at the bottom of the page are some useful links.
You have teh ghey now use it luke!
____________________
fnord linkswarm fnord |
| |
Johnny_Assface
Tender vittles Posts: 31 Registered: 8/30/2005 Offline
|
9/23/2005 at 18:45 |
sofickingwat: Johnny_Assface: There is a portable version of FireFox that doesn't involve as much activity with removable media, such as a flash drive. You don't have to use an Ipod.
Portable FiereFox
Its just a smaller version of what Firefox tells you how to do. The ipod is a rather unsuspecting tool since no one thinks about it having a hard drive. They just think MP3 player doy doy doy.
Anyways, thanks for the link. But the mozilla way is more open for me to fuck around.
do the extensions work your way? |
| |
DonQuixote
DARTH MENSES Posts: 641 Registered: 4/22/2005 Offline
|
9/23/2005 at 20:11 |
k soooo they finally caught on to the ipod browser work around. but the ip thing works fine for LS. I give.
____________________
( . )( . ) <--- Boobs. |
| |
middle_age_man
Mostly Harmless  SSHOLEPosts: 427 Registered: 1/11/2005 Offline
|
9/27/2005 at 02:31 |
Would using RDP to your box at home work? Does this leave alot of tracks for the networking dept?
____________________
" Honesty may be the best policy, but it's important to remember that apparently, by elimination, dishonesty is the second-best policy."
George Carlin |
| |
vasudeva
Bad Taste in your Mouth SSHOLEPosts: 4538 Registered: 3/8/2002 Offline
|
9/27/2005 at 10:32 |
middle_age_man: Would using RDP to your box at home work? Does this leave alot of tracks for the networking dept?
RDP is encrypted, though I don't know the particulars. I've used it for remote browsing a couple times and it's fast enough not to piss you off, probably.
____________________
slippedhole> I am on to you and your evil intentions. I am the true protector of this website and am willing to do battle with you. |
| |
