proxytools-users

[proxyTools-users] Oh - and another thing......

[Michael F. <Mic...@tb...>]

master.pl hangs at the Checking ISP proxy stage......

Saving the results in master.xml
Test your ISP proxies now (y or n)? y
Proxies found in environment: 192.168.4.1:8080
Checking proxies: 192.168.4.1:8080, dav-serv:8080
Please enter any further proxies to be tested (in addr:port
format; for example 123.22.13.24:8080, or proxy.bbb.com:3128).
Type one per line and end with a blank line.

Checking proxy capabilities ...

Hangs......................... (left it over 10 minutes)

A file called tests-auto.txt is generated (possibly by this test ??)
with statproxy results as follows.....


statProxy v4.105 report from 192.168.4.67:
192.168.4.1     :8080  PFFFFFFFFFFFF FPFPF  2.2/6.3
Reference page size was 13701 bytes


Can't resolve dav-serv:8080 ... aborting

But nothing is mirrored to the console screen and it hangs until I
ctrl-c out.

Mike
--
This email is confidential & intended solely for the use of the
individual to whom it is addressed.  Any views presented are solely
those of the author & do not necessarily represent those of Towcester
Building Supplies.
If you are not the intended recipient, be advised that
you have received this email in error & that any use, dissemination,
forwarding, printing, or copying of this email is strictly prohibited.
Any files attached to this email will have been checked with virus
software before transmission. However, you should carry out your own
virus check before opening any attachment.
Towcester Building Supplies accepts no liability for any loss or damage
which may be caused by software viruses.

[proxyTools-users] Open Port ?

[Michael F. <Mic...@tb...>]

http://www.wired.com/news/technology/0,1282,55795,00.html?tw=wn_ascii

This is an article about new adverts that exploit a backdoor in windows
(via port 135) to send adverts straight to peoples machines. What it
says it that some firewall leave port 135 open - so it might be worth
having this one checked by master.pl by default - may be useful to some
users blocked by corporate firewalls. Unfortunately not me though - I
edited master.pl and it`s blocked on mine !! I guess no proxies are
going to be listening on port 135 but even so......
Having said that - leaving it open is a security risk not to mention the
possiblity of those adverts......

Mike


Quote :-


According to Flynn, many network administrators are puzzled over how the
ads have weaseled through firewalls onto users' computers. While Windows
Messenger traditionally uses commonly protected ports 137 and 139, Flynn
said the recent pop-ups appear to use port 135, which is often left
unprotected by a firewall because it's a vital conduit for communicating
with a Microsoft service called RPC.

Since mid-September, numerous myNetWatchman participants have received
repeated probes on port 135 from a handful of Internet protocol
addresses assigned to Everyones Internet (EV1.net), an Internet service
provider in Houston, according to Baldwin. The numeric addresses
translate into "NetBIOS machine names" that begin with WEBPOPUP and that
have appeared in several recent ads, he said.

EV1.net officials, who did not respond to interview requests, are
investigating the issue, according to Baldwin.

Now that spammers have pioneered the Windows Messenger technology, worm
writers may be next to target the service, according to Harlan Carvey, a
security engineer with a financial services firm.

"I'm sure we're going to see spyware or malware that makes use of this,"
Carvey said.

Carvey and other security experts said users can protect themselves from
unwanted pop-ups by disabling the Windows Messenger service and/or
properly configuring their firewalls.





--
This email is confidential & intended solely for the use of the
individual to whom it is addressed.  Any views presented are solely
those of the author & do not necessarily represent those of Towcester
Building Supplies.
If you are not the intended recipient, be advised that
you have received this email in error & that any use, dissemination,
forwarding, printing, or copying of this email is strictly prohibited.
Any files attached to this email will have been checked with virus
software before transmission. However, you should carry out your own
virus check before opening any attachment.
Towcester Building Supplies accepts no liability for any loss or damage
which may be caused by software viruses.

Re: [proxyTools-users] Statproxy

[wayne <wa...@ny...>]

> From: Michael Foord <Mic...@tb...>
> To: "pro...@li..." <pro...@li...>
> Subject: [proxyTools-users] Statproxy
> 
> Actually read the documentation on statproxy and used the syntax from
> there.

The master documentation source
perldoc statProxy.pl 
shows it with the port.

What docs did you read?
statProxy -h
also shows it with the port.

Did I screw up somewhere? 
Or do you mean you actually read the docs *this* time :-)

I'm sorry I didn't pick that up sooner.

> Results better but still fairly depressing - looks like its no longer
> CONNECT capable. 

They saw you :-)
Bad luck.
Looks like you're now stuck with commStrat 2.
That's good for me - I wanted to debug that properly :-)

> I double checked www.panix.com and its NOT blocked by
> Superscout.
> 
> C:\Program Files\localproxy>perl statproxy.pl -t all -a
> ,192.168.4.1:8080,michae
> l,******* 192.168.4.1:8080
> Overwriting credentials for ,192.168.4.1:8080
> 
> statProxy v4.105 report from 192.168.4.67:
> 192.168.4.1     :8080  PFFFFFFFFFFFF FPFPF  2.3/6.4
> Reference page size was 13701 bytes
> 
> Hmmmmmmmmm.....

Yep. they got ya. I thought it was lucky at the time.
Can you still access encrypted pages now?
If not, you get to complain, and maybe they'll open port 443, at 
least. No proxies there though, but it helps. For example, you 
could run a redirector on your home/friend's computer on that port.

> Mike

--
wa...@ny...
http://proxytools.sourceforge.net/


> From: Michael Foord <Mic...@tb...>
> To: "pro...@li..." <pro...@li...>
> Subject: [proxyTools-users] Ha
> 
> Well they installed the new version of Superscout.
> 
> Good news - they didn`t migrate all the settings across. This means for
> the moment I can get to most of the web !!
> 
> Bad news - ports 25 and 110 are now blocked and I still can`t use
> socks/ftp or access .exe or .zip files except via proxybuster. Doubtless
> at some point he`ll discover most of the web is on and switch it back
> off - but until then I can`t really test localproxy - except with the
> previous statproxy test I sent. (Thats why www.panix.com wasn`t blocked
> I guess!).

Even if it was, statProxy should not give the 'A'.
If it does, it's a bug.

> Oh well - in some ways it`ll be good when they do block it again as I`ll
> be able to start playing with localproxy  properly. 

I think so too!

> Shame they blocked
> those ports though!!

They weren't much use to you unless you had a box somewhere 
where you could run some kinda redirector.

> Thanks again for your comprehensive responses Wayne.

OK. I'm sure we'll hear from you again :-)

So ... who's next? :-)

> Mike

--
wa...@ny...
http://proxytools.sourceforge.net/

[proxyTools-users] Ha

[Michael F. <Mic...@tb...>]

Well they installed the new version of Superscout.

Good news - they didn`t migrate all the settings across. This means for
the moment I can get to most of the web !!

Bad news - ports 25 and 110 are now blocked and I still can`t use
socks/ftp or access .exe or .zip files except via proxybuster. Doubtless
at some point he`ll discover most of the web is on and switch it back
off - but until then I can`t really test localproxy - except with the
previous statproxy test I sent. (Thats why www.panix.com wasn`t blocked
I guess!).

Oh well - in some ways it`ll be good when they do block it again as I`ll
be able to start playing with localproxy  properly. Shame they blocked
those ports though!!

Thanks again for your comprehensive responses Wayne.

Mike

[proxyTools-users] Statproxy

[Michael F. <Mic...@tb...>]

Actually read the documentation on statproxy and used the syntax from
there.

Results better but still fairly depressing - looks like its no longer
CONNECT capable. I double checked www.panix.com and its NOT blocked by
Superscout.

C:\Program Files\localproxy>perl statproxy.pl -t all -a
,192.168.4.1:8080,michae
l,******* 192.168.4.1:8080
Overwriting credentials for ,192.168.4.1:8080

statProxy v4.105 report from 192.168.4.67:
192.168.4.1     :8080  PFFFFFFFFFFFF FPFPF  2.3/6.4
Reference page size was 13701 bytes

Hmmmmmmmmm.....

Mike

--
This email is confidential & intended solely for the use of the
individual to whom it is addressed.  Any views presented are solely
those of the author & do not necessarily represent those of Towcester
Building Supplies.
If you are not the intended recipient, be advised that
you have received this email in error & that any use, dissemination,
forwarding, printing, or copying of this email is strictly prohibited.
Any files attached to this email will have been checked with virus
software before transmission. However, you should carry out your own
virus check before opening any attachment.
Towcester Building Supplies accepts no liability for any loss or damage
which may be caused by software viruses.

Re: [proxyTools-users] Sorted Out CGI Ambles... a bit.....

[wayne <wa...@ny...>]

> From: Michael Foord <Mic...@tb...>
> To: "pro...@li..." <pro...@li...>
> Subject: [proxyTools-users] Sorted Out CGI Ambles... a bit.....
> 
> Ok - now my cgiambles.txt looks like this
> 
> #Format of entries: firewall, preamble, postamble
> #localProxy will request $preamble.escaped($url).$postamble
> #Use the first line that matches our firewall, or use '*' (all
> firewalls).
> #*, https://vip.megaproxy.com/go/,
> #*, http://web.archive.org/,
> #*, http://216.239.35.120/translate_c?&langpair=en%7Cen&u=,
> #XXX - note the hard-coded spanish to english conversion here.
> #XXX - This gets english pages,but some english words look like
> #XXX - spanish and get translated (e.g. 'can' changes to 'dog' :-)
> #*, http://babelfish.altavista.com/urltrurl?url=, &lp=es_en
> #XXX - We should probably check
> #XXX - the user's system to see if he's probably looking for
> #XXX - pages in the chosen lang here, and choose some other conversion!
> #Use Japanese (ja) (or chinese (zn)), low chance of accidental
> collisions
> #Note: translation ends at this: <blink>*** TRANSLATION ENDS HERE
> ***</blink>
> #*, http://babelfish.altavista.com/urltrurl?url=, &lp=ja_en
> *, http://******.com/cgiproxy/nph-proxy.pl/000100A/,
> 
> 
> 
> Which `works` - still no images from the looks of things - could just be
> our system fluffing it.

Hmm ... surprised it works. LP2 had no code to remove the leading 
http:// from the urls it gets from the browser. Now it does - hope 
it still works :-)

> Log :
> 
> For web browser proxy service, please configure your web browser
>   http proxy entry to localhost:10080 and the
>   https proxy entry to localhost:10076 now
> 
> Only accepting connections from 127.0.0.1, 192.168.4.67
> Executed getConfig(), result (truncated): <perldata>
>  <hash>
>   <item key="10076">
>    <hash>
> ...
> Original request: GET http://www.clanbob.net/ HTTP/1.0
> Modified request: GET http://207.44.136.28/ HTTP/1.0
> access denied or failed from 10080.2(a).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403

Looks like the proxy catches commStrat 2(a). You might as well 
disable it in your config (or temporarily in commStrats.xml). 
That will divide the number of options LP tries by a factor of 4.

> 10080.2.0.-: 11:10 (8.7(80.2)) (6.5) 11(=0.544/0.05)
> Original request: GET http://www.clanbob.net/ HTTP/1.0
> Modified request: GET
> http://*******.com/cgiproxy/nph-proxy.pl/000100A/http://www.clanbob.net/
> HTTP/1.0
> Original request: GET
> http://216.239.51.102/search?client=navclient-auto&failedi
> p=216.239.37.102;2018439&ch=53222229727&freshness_check=3K_9hdhQoW2rDYvATf_sP&fe
> 
> atures=Rank&q=info:http%3A%2F%2Fwww%2Eclanbob%2Enet%2F HTTP/1.0

You've got some sort of automatic Google search set up in your browser?
The request to your cgi proxy failed, probably because of the extra 
http://. Edit the file and use the new lp2 as above to fix.
Untested - let me know.

> access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403

This looks like your proxy is denying access to Google searches!

> 10080.2.0.-: 22:20 (14(80.2)) (8.2) 1.1e+003(=0.544/0.0005)
> 10080.2.0.-: 5.4:4.9 (3.8(80.2)) (2.3) 5.3(=88.4/16.6)
> 
> 
> 
> Note
> 
> Modified request: GET
> http://*******.com/cgiproxy/nph-proxy.pl/000100A/http://www.clanbob.net/
> HTTP/1.0
> 
> 
> Ought to read
> GET
> http://*******.com/cgiproxy/nph-proxy.pl/000100A/http/www.clanbob.net/
> 
> How do I `escape` the preamble so that the url reads correctly (minus
> the :/ ) for the James Marshall cgi.

See above.

> As it appears to work and the missing images may be down to my system
> perhaps this is unnecessary ??

Mmm ... that version of Junkbuster is newer than mine (I'm certain!).
Mine fails with these urls with the http://.
So, yeah. I can believe yours works with it, but there is that 
failure above ...

> Also the cgi proxy modifies links so following any links from the page
> showsthe proxy address  in the IE window (which you predicted) - but it
> looks from the log like localproxy figures this out and doesn`t chain
> cgi proxy requests...
> 
> Original request: GET http://******.com/cgiproxy/nph-proxy.pl/00010
> 0A/http/www.clanbob.net/modules.php?name=Content&pa=showpage&pid=4
> HTTP/1.0
> Original request: GET
> http://216.239.51.102/search?client=navclient-auto&failedi
> p=216.239.51.102;266253&ch=51821214745&features=Rank&q=info:http%3A%2F%2F******%2E******%2Ecom%2Fcgiproxy%2Fnph%2Dproxy%2Epl%2F000100A%2Fhttp%2Fwww%2Eclan
> 
> bob%2Enet%2Fmodules%2Ephp%3F HTTP/1.0
> access denied or failed from 10080.2(a7).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403
> 10080.2.0.-: 5.4:4.7 (3.1(80.2)) (1.4) 1.1e+003(=0.544/0.0005)
> 10080.2.0.-: 4.6:4 (3(80.2)) (1.5) 3.1(=25.7/8.24)
> 
> I  think ?? - it worked anyway.

It only checks to see if the CGI has rewritten the links in any new 
request it receives from the browser. If it sees that, it doesn't add 
the preamble again. It never removes that preamble as the page comes 
in, so if commStrat 2 uses the proxy once, and you follow links from 
there, you are always using the cgi proxy.

What you see in the log snippet above is something to do with a 
strange 'auto-search' option you've set up in the browser, I think.

> Is the GET http://216.239.51.102/search?client=navclient-auto&failedi my
> IE still automatically launching a search after a  failed request - if
> so its probably the google toolbar and I need to try and kill that if I
> can.

IE has some option like this too, I think. 

> Anyway - many thanks Wayne
> 
> IT man has told us hes just taking superscout down for an upgrade - so
> who knows what the system will look like when that`s finished !!!!
> :-)

Good. 
All this is making localProxy so damn smart I will soon be redundant!

> Mike

--
wa...@ny...
http://proxytools.sourceforge.net/

Re: [proxyTools-users] escaping a very restrictive

[wayne <wa...@ny...>]

> From: Michael Foord <Mic...@tb...>
> To: "pro...@li..." <pro...@li...>
> Subject: Re: [proxyTools-users] escaping a very restrictive
> 
> > [...]
> > > Got this result - this make more sense ?? Still looks odd to me.....
> > >
> > > C:\Program Files\localproxy>perl statproxy.pl -t all -a ,192.168.4.1,michael,******
> > > 192.168.4.1:8080
> > >
> > > statProxy v4.105 report from 192.168.4.67:
> > > 192.168.4.1     :8080  AFFFFFFFFFFFF FFFFF  0.0/?
> >
> > This is the right proxy, at least. You got a response this time.
> > The first test shows 'A'uthentication was required (and it failed).
> > The rest failed for the same reason.
> > I hope you tell me that you just entered the wrong password. :-)
> > Did you have the credentials correct in the environment too
> > (shouldn't be needed, but if there's a conflict you might have
> > triggered a new bug)?
> >
> > Again, I don't think I have changed anything that should affect the
> > authentication. Do you still have the old statProxy? Does that one
> > work?
> >
> > > Mike
> >
> 
> Nope double checked the password.
> 
> First the current version of statprox - still fails.
> 
> C:\Program Files\localproxy>perl statproxy.pl -t all -a ,192.168.4.1,michael,******
> 192.168.4.1:8080
> 
> statProxy v4.105 report from 192.168.4.67:
> 192.168.4.1     :8080  AFFFFFFFFFFFF FFFFF  0.1/?

Maybe the syntax *is* wrong after all. 
My documentation says to use 
-a ,192.168.4.1:8080,michael,******
and I think I insisted on that port in there for security reasons.
Can't test right now, but see if that changes anything.

> Then an old version.
> 
> C:\Program Files\localproxy>oldstatprox
> 
> C:\Program Files\localproxy>perl oldstatproxy.pl -t all -a ,192.168.4.1,michael,
> ****** 192.168.4.1:8080
> "nonBlockingConnect" is not exported by the WLib module at oldstatproxy.pl line
> 28
> Can't continue after import errors at oldstatproxy.pl line 28
> BEGIN failed--compilation aborted at oldstatproxy.pl line 30.
> 
> C:\Program Files\localproxy>
> 
> 
> Must be a *dud* old version of statproxy so I reused one from the 2002-06-14 distribution of
> proxytools.

It needs a corresponding version of the library WLib.pm.

> Same error, maybe that was that version I was using.
> Try 2002-08-02.
> 
> Nope... still the same result - Wlib.pm has changed I guess - one last try
> 2002-09-04 which was the previous version I guess (wasn`t that bugged ??)
> 
> C:\Program Files\localproxy>perl oldstatproxy.pl -t all -a ,192.168.4.1,michael,
> ****** 192.168.4.1:8080
> 
> statProxy v4.95 report from 192.168.4.67:
> 192.168.4.1     :8080  AFFFFFFFFFFFF FFFFsend() on closed socket PROXY at oldsta
> tproxy.pl line 1016.
> Your vendor has not defined POSIX macro EWOULDBLOCK, used at oldstatproxy.pl lin
> e 1017
> 
> C:\Program Files\localproxy>
> 
> Yup - thats the old error isn`t it ??
> 
> So not much luck on testing with an old version of statproxy. Now I could use an old entire
> distribution... bugger, I`ll try that.

That's really the only sure way.

> C:\Program Files\localproxy>cd ..
> 
> C:\Program Files>cd lp.bak
> 
> C:\Program Files\lp.bak>statprox
> 
> C:\Program Files\lp.bak>perl statproxy.pl -t all -a ,192.168.4.1,michael,******
>  192.168.4.1:8080
> 
> statProxy v4.91 report from 192.168.4.67:
> 192.168.4.1     :8080  AFFFFFFFFFFFF FFFFF  1.9/?
> Reference page size was 534 bytes
> 
> 
> C:\Program Files\lp.bak>
> 
> OK - same result (but done a lot slower) using the August distribution (08 !!).

Yep. I improved the speed some with new socket code, and reduced a 
timeout or two, IIRC.

> So it looks like something has changed on my system as this used to work - damn.

Or your syntax changed :-)

> Hmmm - better check my environment variables and check they are set up right and ping dav-serv
> to make sure it hasn`t changed - our `system` is in a constant state of flux so nothing can be
> relied on.
> 
> Ping dav-serv = 192.168.4.1
> 
> Environment variables :
> 
> SET HTTP_proxy=http://192.168.4.1:8080
> SET HTTP_proxy_user=michael
> SET HTTP_proxy_pass=******
> SET HTTP_proxy_realm=dav-serv.tbsmerchants.co.uk
> 
> looks alright to me....
> 
> Note that the `rules` for the Superscout proxy server have changed and it is now much stricter
> as to what it is supposed to allow (although as noted some ports now appear to be open!!).
> 
> In theory that *shouldn`t* affect basic authentication though - unless statproxy.pl is trying
> to conenct to a specific site (previously unblocked) and the `blocked` error it now thinks of
> as an authentication failure ??

No. Test 0 is requiring authentication, and the credentials are not 
found or are failing.

> Hmmm... looking through and seeing if theres anything else I can do to provide useful
> information - guess I`ll run localproxy with debug=3 and see what it says when trying to
> connect - see if it reports authentication errors or just the usual problems of trying to find
> a proxy it can reach. As far as I can remember if I point IE to localhost:10080 with lp
> running the error is Superscout Blocked *NOT* authentication failed which would indicate to me
> that lp is passing on the authentications trings from the environment/config fine... but its
> worth double checking.

If you still see that with localProxy, bump up the debug to 4 for a 
few requests. that will show the details of the authentication request.

> Mike

--
wa...@ny...
http://proxytools.sourceforge.net/




> From: Michael Foord <Mic...@tb...>
> To: "pro...@li..." <pro...@li...>
> Subject: [proxyTools-users] Testing Localproxy
> 
> Despite problems with statproxy have tested localproxy.

Unless you get that authentication working, LP will not work.
SP is the simplest test for it.

> Following are the tests and logs (basically for Wayne - not of much
> interest to anyone else I`m afraid -
> sorry).
> 
> In summary - the new cgi options seem to work fine without me having to
> do anything babelfish.altavista must
> be unblocked. Unfortuantely it does text only not images 

Heh, thanks - it redirects your browser to them. Coulda sworn the 
Google translation (where I did most of the testing) sent the images 
back too. Oh well, they're not real good CGIs anyway (you should use 
your own in the cgiAmbles.txt file). Remember, that's just commStrat 
2g. There are several other commStrat 2 substrats, as well as 
commStrats 0 (useless for you unless there are some proxies on 25, 
or 110), and commStrat 1 (which was the way we got it to work for 
you before).

> so restricts my
> browsing some what. I need to
> modify the entries for either google of for my own cgi proxy which I
> ought to be able to use.

Yep. 

> Need to know how to disable it - just rem out the valid option in
> cgiambles.txt I guess - how about a button
> on the GUI !!! 

You can disable the whole of commStrat 2 there.
There's now way to disable the substrats it's using from the GUI 
though - yet.
I'm waiting for feedback like yours to decide how best to handle it.

> Also it looks like localproxy uses babelfish *even* when
> it can get straight through which
> seems a waste..... 

It's the design philosophy. It *must* try everything before it 
can decide what's working, what's fastest, etc. And a single 
failure doesn't prove much (especially in the kind of crappy 
environment LP is used in), so it must try several times, and 
then occasionally in the future as well.

> hmmm... just thought - some of the images (in the
> title bar) came through babelfish for
> google.com - odd, now I`m completely baffled.

Babelfish redirects your browser to the real image URL.
Your browser then requests it via LP.
LP is likely to use another strategy which works.
All part of the learning process ...

> Anyway - following are the logs - but not too useful now I guess as I
> was just feeling my way and they don`t
> really say anything more than the above !!
 
[...]

> Disabling 10080 (non-censoring HTTP proxy - standard).0 - no layer 0
> hosts avail
> able
> -
> Filled layer 10080.0.*.- (0/10)
> 
> Disabling 10080 (non-censoring HTTP proxy - standard).0 - no layer 0
> hosts avail
> able
> Filled layer 10080.1.*.- (1/10)

This one would be your firewall proxy. LP has info that it can 
CONNECT from your config file.

> Filled layer 10080.1.-.* (0/10)
> 
> Disabling 10080 (non-censoring HTTP proxy - standard).1 - no layer 1
> hosts avail
> able

****************************
This is your biggest problem. 
LP will not even attempt to use your proxy with commStrat 1 
(CONNECT) - the way we had it working before.

Why? 
Have you merged those bad statProxy results into your config?
Or did you get that to work (show me the results please)?

From the logs below, I see there is still a problem related to 
the 'fix' I mentioned recently (the one I said was worth getting).
Were you using a *very* recent localProxy2.pl (less than 36 hours)?

CommStrat 2 will work eventually (and probably be fast) with that 
fix (although I might still need to tweak it). But commStrat 1 
will always be more reliable.
****************************

> Filled layer 10080.2.*.- (1/10)

Some of the previous commStrat 2 tests showed your own proxy to be 
vulnerable, so it's used here too.

> Filled layer 10082.0.*.- (0/10)
> 

[...]

> Filled layer 10076.0.*.- (1/10)
> -
> Disabling 11080 (Socks 4 - standard).1 - no layer 1 hosts available

Huh? 
No log for 11080.0?
How is this service specified in your config? It's not in the copy 
I have.

> Filled layer 11080.2.*.- (0/10)
> 
> Disabling 11080 (Socks 4 - standard).2 - no layer 0 hosts available
> Checking all layer 0 hosts for connectivity...
> Running initial Layer0 check ...
>  .. online

[...]

> And front end.....

[...]

> Checked under authentication - credentials correct as far as I can see
> 
> Known credentials:
> ,,dav-serv.tbsmerchants.co.uk,192.168.4.1:8080,michael,******
> ,,dav-serv.tbsmerchants.co.uk,192.168.4.1:8080,michael,******

Hmm .. from your environment, or your config?
SP only uses the environment so far ... must fix that.

> Pending requests (edit username and password):
> None
> 
> Right now point my browser to localhost 10080
> 
> Straightforward access to google (which isn`t blocked).
> Seems to go via a complicated route !! (can see babelfish popping up a
> couple of times - must play with
> those cgi options..) but works.

It should eventually learn the best way, but note that it will never 
use commStrat 0 via your proxy directly because that 
possibility was killed right back at the build (your proxy is 
damaged, it censors, so LP doesn't include it in the list to 
try directly - commStrat 0). It will try using commStrat 2 (encoded 
URLs). Because of the randomness in choosing which substrats to 
try, one 'substrat' will have *no* substrats (the URL 
goes unencoded). This would be the same as commStrat 0.

The biggest problem with commStrat 2 is the number of combined 
substrats LP wants to try - lotsa failures until it learns.
I'm working on it ...
Whether CommStrat 2 works depends more on the site than on the 
proxy(ies) LP is using, so even when it learns, if you change sites 
you might see failures again. 
The commStrat 2 approach will never be 100%. It's a limitation in 
the idea itself. Very fast when it works though ...

> Sent credentials (michael:******) to 192.168.4.1:8080 as auth-scheme
> Basic
> 10080.2.0.-: 1.9e+003:1.9e+003 (1.9e+003(80.2)) (1.9e+003)
> 1.9e+003(=0.951/0.000
> 5)
> Original request: GET http://www.google.com/ HTTP/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://www.goo
> gle.com/&lp=ja_en HTTP/1.0
> 10080.2.0.-: 1.5:1.5 (1.5(80.2)) (1.4) 1.3(=6.13/4.83)
> Original request: GET
> http://216.239.53.102/search?client=navclient-auto&ch=5455
> 726090&features=Rank&q=info:http%3A%2F%2Fwww%2Egoogle%2Ecom%2F HTTP/1.0
> access denied or failed from 10080.2(1).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403
> 10080.2.0.-: 1.6:1.5 (1.3(80.2)) (0.94) 1.1e+003(=0.544/0.0005)
> Original request: GET http://babel.altavista.com/aftu HTTP/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://babel.a
> ltavista.com/%61%66%74%75&lp=ja_en HTTP/1.0
> Original request: GET http://www.google.com/images/hp0.gif HTTP/1.0
> Modified request: GET
> http://www.google.com/%69%6d%61%67%65%73/%68%70%30%2e%67%6
> 9%66 HTTP/1.0
> Original request: GET http://www.google.com/images/hp1.gif HTTP/1.0
> Original request: GET http://www.google.com/images/hp2.gif HTTP/1.0
> 10080.2.0.-: 2.1:2 (1.8(80.2)) (1.4) 27(=2.93/0.11)
> 10080.2.0.-: 2.7:2.6 (2.4(80.2)) (2) 20(=3.18/0.16)
> Original request: GET http://www.google.com/images/hp3.gif HTTP/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://www.goo
> gle.com/%69%6d%61%67%65%73/%68%70%33%2e%67%69%66&lp=ja_en HTTP/1.0
> Original request: GET http://www.google.com/images/hp3.gif HTTP/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://www.goo
> gle.com/%69%6d%61%67%65%73/%68%70%33%2e%67%69%66&lp=ja_en HTTP/1.0
> 10080.2.0.-: 2:1.9 (1.8(80.2)) (1.4) 1.1(=4.5/4.17)
> 10080.2.0.-: 1.1:1 (0.96(80.2)) (0.68) 0.047(=0.374/8.02)
> 10080.2.0.-: 0.33:0.31 (0.3(80.2)) (0.18) 0.0095(=0.368/38.8)
> 
> 
> Looks to me like its going via babelfish !! Lots of Japanese characters
> appearing on my google screen !!! 

Hmmm ... maybe you ended up at a Japanese Google. 
Click the 'English' link, if it's there.
Those characters should have been translated by Babelfish anyway (???).

> But
> at least localproxy is working !! Doesn`t it check whether it can go
> `direct` (well via superscout anyway)
> before it chooses to use the babelfish option ?? (Don`t mean to sound
> ungrateful - heck if it works it works !!

It 'checks' randomly (commStrat 2 with no substrats), but only as 
one of the many options to try. You only have one proxy it can use, 
at least, but there are still 5x4x3x2x1 options!

> Itsjust that if this stops it trying alternative means how do I disable
> it!!)

At the moment all you can do is disable commStrat 2 entirely.
I'm still trying to come up with a reasonable way to do this for 
the user automatically; I don't think there is a 100% way.
You can always disable just 2g at build time, of course (in 
commStrats.xml, or by adding an overload of this in your config). 
The GUI would be the best way, I guess - will look at adding that.

> Ought to work for anything now though - lets try something blocked.
> 
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://comics.
> com/&lp=ja_en HTTP/1.0
> Original request: GET
> http://216.239.35.102/search?client=navclient-auto&failedi
> p=216.239.37.102;130&ch=51374619684&features=Rank&q=info:http%3A%2F%2Fcomics%2Ec
> 
> om%2F HTTP/1.0
> access denied or failed from 10080.2(1).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403
> 10080.2.0.-: 0.45:0.23 (0.029(80.2)) (0.00083) 1.1e+003(=0.544/0.0005)
> Original request: GET http://babel.altavista.com/aftu HTTP/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://babel.a
> ltavista.com/%61%66%74%75&lp=ja_en HTTP/1.0
> Original request: GET
> http://216.239.35.102/search?client=navclient-auto&failedi
> p=216.239.35.102;6542&ch=51374619684&features=Rank&q=info:http%3A%2F%2Fcomics%2E
> 
> com%2F HTTP/1.0
> access denied or failed from 10080.2(1).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403
> 10080.2.0.-: 0.46:0.23 (0.024(80.2)) (0.00054) 1.1e+003(=0.544/0.0005)
> Original request: GET
> http://comics.com/images/comics_com_logo_top_green.gif HTT
> P/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://comics.
> com/%69%6d%61%67%65%73/%63%6f%6d%69%63%73_%63%6f%6d_%6c%6f%67%6f_%74%6f%70_%67%7
> 
> 2%65%65%6e%2e%67%69%66&lp=ja_en HTTP/1.0
> Original request: GET http://comics.com/images/comics_com_logo_combo.gif
> HTTP/1.
> 0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://65.114.
> 4.69/images/comics_com_logo_combo.gif&lp=ja_en HTTP/1.0
> 
> 
> Comics.com - blocked at first, then it works.... hurrah. Also implying
> that it does try via superscout first !!!

Yes, but only with commStrat 2 (see above). The bad news is there 
are too many options to try, so the learning process is too long.
If you tried for longer on each of these sites, it would probably 
get them 99% of the time eventually.

> Hmmmm... odd seeing as google.com would work.
> 
> Wonder why its working now when it wasn`t yesterday !! Far out. 

It's all randomness. If LP gets into a hole in the early stages, it 
can take a long time to crawl out. Learning is a bugger like that.
I'm sure I can improve the algo, but it's difficult.

> Slow
> though especially on images which
> for the most part don`t load - not down to localproxy or babelfish
> though is either superscout or our ISP
> (pipex) although is very bad on this test - not getting *any* images
> from comics.com or dilbert.com .

If you can get your own cgi in cgiAmbles.txt, you should get more 
reliable results (though maybe slower than one of the translators 
which will pass images back to you rather than redirect).

> Hmmmmm........ Not working at all now - odd comics.com is blocked - why
> should it get through to that but
> not
> http://65.114.4.69/comics/dilbert/archive/images/dilbert2036575021015.gif
> 
> Which is the image and is coming up `blocked arts and entertainments`
> (perhaps superscout blocks .gif files
> from babelfish.... oddness) 

The randomness again. 
Those images are each a new request to LP (new commStrat, new 
substrat, new proxies chosen).

> following are some logs....
> 
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://65.114.
> 4.69/comics/dilbert/archive/images/dilbert2036575021015.gif&lp=ja_en
> HTTP/1.0
> 10080.2.0.-: 0.62:0.1 (0.19(80.2)) (0.066) 0.095(=0.412/4.34)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://65.114.
> 4.69/%63%6f%6d%69%63%73/%64%69%6c%62%65%72%74/%61%72%63%68%69%76%65/%69%6d%61%67
> 
> %65%73/%64%69%6c%62%65%72%74%32%30%33%36%35%37%35%30%32%31%30%31%35%2e%67%69%66&
> 
> lp=ja_en HTTP/1.0
> 10080.2.0.-: 0.6:0.12 (0.28(80.2)) (0.085) 0.097(=0.412/4.23)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.61:0.12 (0.23(80.2)) (0.057) 1.1e+003(=0.541/0.0005)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.61:0.11 (0.18(80.2)) (0.038) 1.1e+003(=0.541/0.0005)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.62:0.11 (0.15(80.2)) (0.025) 9(=0.541/0.06)
> 
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.77:0.061 (0.12(80.2)) (0.033) 1.1e+003(=0.541/0.0005)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.78:0.058 (0.096(80.2)) (0.022) 1.1e+003(=0.541/0.0005)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.79:0.056 (0.078(80.2)) (0.015) 1.1e+003(=0.541/0.0005)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.8:0.054 (0.064(80.2)) (0.0097) 1.1e+003(=0.541/0.0005)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.8:0.051 (0.052(80.2)) (0.0065) 1.1e+003(=0.541/0.0005)
> Original request: GET
> http://65.114.4.69/comics/dilbert/archive/images/dilbert20
> 36575021015.gif HTTP/1.0
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 0.81:0.049 (0.043(80.2)) (0.0043) 1.1e+003(=0.541/0.0005)
> O
> 
> 
> 
> 
> Try another URl - sex.com for arguments sake...
> 
> 2Ecom%2F HTTP/1.0
> Original request: GET http://www.sex.com/ HTTP/1.0
> access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403
> access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
> 403
> 10080.2.0.-: 1.1:0.09 (0.074(80.2)) (0.0032) 11(=0.544/0.05)
> 10080.2.0.-: 1.1:0.086 (0.06(80.2)) (0.0022) 1.1e+003(=0.544/0.0005)
> Original request: GET
> http://216.239.33.102/search?client=navclient-auto&failedi
> p=216.239.33.102;349&ch=53435104105&features=Rank&q=info:http%3A%2F%2Fwww%2Esex%
> 
> 2Ecom%2F HTTP/1.0
> access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403
> 10080.2.0.-: 1.1:0.083 (0.049(80.2)) (0.0014) 1.1e+003(=0.544/0.0005)
> Original request: GET http://www.sex.com/ HTTP/1.0
> Modified request: GET
> http://babelfish.altavista.com/urltrurl?url=http://www.sex
> .com/&lp=ja_en HTTP/1.0
> Original request: GET http://babel.altavista.com/aftu HTTP/1.0
> Modified request: GET http://209.73.180.18/%61%66%74%75 HTTP/1.0
> Original request: GET
> http://216.239.53.102/search?client=navclient-auto&failedi
> p=216.239.33.102;11120&ch=53435104105&features=Rank&q=info:http%3A%2F%2Fwww%2Ese
> 
> x%2Ecom%2F HTTP/1.0
> access denied or failed from 10080.2(a71).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403
> 
> access denied or failed from 10080.2(a1).0(192.168.4.1:8080).-(-):
> HTTP/1.1 403
> 10080.2.0.-: 1.1:0.079 (0.04(80.2)) (0.00094) 11(=0.535/0.05)
> 10080.2.0.-: 1.1:0.076 (0.033(80.2)) (0.00063) 1.1e+003(=0.544/0.0005)
> 
> Fails at first and then gets through.... no images - images must be
> blocked from babelfish.

Well, it sends back a redirect to your browser which tries again 
via LP. 

> Mike

--
wa...@ny...
http://proxytools.sourceforge.net/


> From: Michael Foord <Mic...@tb...>
> To: "pro...@li..." <pro...@li...>
> Subject: [proxyTools-users] More Fiddling With CGI [now is error detected]
> 
> My cgi proxy is the James Marshalls one
> 
> This is my CGIAmbles.txt
> 
> #Format of entries: firewall, preamble, postamble
> #localProxy will request $preamble.escaped($url).$postamble
> #Use the first line that matches our firewall, or use '*' (all
> firewalls).
> #*, https://vip.megaproxy.com/go/,
> #*, http://web.archive.org/,
> #*, http://216.239.35.120/translate_c?&langpair=en%7Cen&u=,
> #XXX - note the hard-coded spanish to english conversion here.
> #XXX - This gets english pages,but some english words look like
> #XXX - spanish and get translated (e.g. 'can' changes to 'dog' :-)
> #*, http://babelfish.altavista.com/urltrurl?url=, &lp=es_en
> #XXX - We should probably check
> #XXX - the user's system to see if he's probably looking for
> #XXX - pages in the chosen lang here, and choose some other conversion!
> #Use Japanese (ja) (or chinese (zn)), low chance of accidental
> collisions
> #Note: translation ends at this: <blink>*** TRANSLATION ENDS HERE
> ***</blink>
> #*, http://babelfish.altavista.com/urltrurl?url=, &lp=ja_en
> *.http://******.com/cgiproxy/nph-proxy.pl/000100A/http/
> 
> It expects the URL to be minus the http:// - I`ll try changing that last
> entry to
> 
> *.http://******.com/cgiproxy/nph-proxy.pl/000100A/
> 
> and see if it works better .....
> 
> Am I doing this right  ?

No.
You need a comma, not a dot after the *.
And the format has a comma at the end too (but I think I 
already allowed for that mistake).
Make sure the line at the end has a new-line on the end of it 
too (enter), although I think it would be ok without too.

I hadn't tested with a Junkbuster.
OK. Now I've changed the format used in this file (and LP2 to 
handle that). There's another field on the end which specifies to 
remove stuff from the URL. The new file has an example for (my) 
cgi proxy at the end. Yours looks a bit different, but I think 
you can see how it works. If yours works, leave it. 
Remember the removal code only works with the new localProxy2.pl.

> As a `quick fix` for getting up and running this is great Wayne.

Sorry commStrat 2 is still so unreliable. 
You need your commStrat 1 working.

> Oops just spotted *.http://etc should be *, http://etc, which might help
> - will try again and repost result - the URL format is still slightly
> different though.
> 
> Mike
--
wa...@ny...
http://proxytools.sourceforge.net/

[proxyTools-users] Sorted Out CGI Ambles... a bit.....

[Michael F. <Mic...@tb...>]

Ok - now my cgiambles.txt looks like this

#Format of entries: firewall, preamble, postamble
#localProxy will request $preamble.escaped($url).$postamble
#Use the first line that matches our firewall, or use '*' (all
firewalls).
#*, https://vip.megaproxy.com/go/,
#*, http://web.archive.org/,
#*, http://216.239.35.120/translate_c?&langpair=en%7Cen&u=,
#XXX - note the hard-coded spanish to english conversion here.
#XXX - This gets english pages,but some english words look like
#XXX - spanish and get translated (e.g. 'can' changes to 'dog' :-)
#*, http://babelfish.altavista.com/urltrurl?url=, &lp=es_en
#XXX - We should probably check
#XXX - the user's system to see if he's probably looking for
#XXX - pages in the chosen lang here, and choose some other conversion!
#Use Japanese (ja) (or chinese (zn)), low chance of accidental
collisions
#Note: translation ends at this: <blink>*** TRANSLATION ENDS HERE
***</blink>
#*, http://babelfish.altavista.com/urltrurl?url=, &lp=ja_en
*, http://******.com/cgiproxy/nph-proxy.pl/000100A/,



Which `works` - still no images from the looks of things - could just be
our system fluffing it.


Log :



For web browser proxy service, please configure your web browser
  http proxy entry to localhost:10080 and the
  https proxy entry to localhost:10076 now

Only accepting connections from 127.0.0.1, 192.168.4.67
Executed getConfig(), result (truncated): <perldata>
 <hash>
  <item key="10076">
   <hash>
...
Original request: GET http://www.clanbob.net/ HTTP/1.0
Modified request: GET http://207.44.136.28/ HTTP/1.0
access denied or failed from 10080.2(a).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 11:10 (8.7(80.2)) (6.5) 11(=0.544/0.05)
Original request: GET http://www.clanbob.net/ HTTP/1.0
Modified request: GET
http://*******.com/cgiproxy/nph-proxy.pl/000100A/http://www.clanbob.net/
HTTP/1.0
Original request: GET
http://216.239.51.102/search?client=navclient-auto&failedi
p=216.239.37.102;2018439&ch=53222229727&freshness_check=3K_9hdhQoW2rDYvATf_sP&fe

atures=Rank&q=info:http%3A%2F%2Fwww%2Eclanbob%2Enet%2F HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 22:20 (14(80.2)) (8.2) 1.1e+003(=0.544/0.0005)
10080.2.0.-: 5.4:4.9 (3.8(80.2)) (2.3) 5.3(=88.4/16.6)



Note

Modified request: GET
http://*******.com/cgiproxy/nph-proxy.pl/000100A/http://www.clanbob.net/
HTTP/1.0


Ought to read
GET
http://*******.com/cgiproxy/nph-proxy.pl/000100A/http/www.clanbob.net/

How do I `escape` the preamble so that the url reads correctly (minus
the :/ ) for the James Marshall cgi.

As it appears to work and the missing images may be down to my system
perhaps this is unnecessary ??

Also the cgi proxy modifies links so following any links from the page
showsthe proxy address  in the IE window (which you predicted) - but it
looks from the log like localproxy figures this out and doesn`t chain
cgi proxy requests...

Original request: GET http://******.com/cgiproxy/nph-proxy.pl/00010
0A/http/www.clanbob.net/modules.php?name=Content&pa=showpage&pid=4
HTTP/1.0
Original request: GET
http://216.239.51.102/search?client=navclient-auto&failedi
p=216.239.51.102;266253&ch=51821214745&features=Rank&q=info:http%3A%2F%2F******%2E******%2Ecom%2Fcgiproxy%2Fnph%2Dproxy%2Epl%2F000100A%2Fhttp%2Fwww%2Eclan

bob%2Enet%2Fmodules%2Ephp%3F HTTP/1.0
access denied or failed from 10080.2(a7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 5.4:4.7 (3.1(80.2)) (1.4) 1.1e+003(=0.544/0.0005)
10080.2.0.-: 4.6:4 (3(80.2)) (1.5) 3.1(=25.7/8.24)

I  think ?? - it worked anyway.


Is the GET http://216.239.51.102/search?client=navclient-auto&failedi my
IE still automatically launching a search after a  failed request - if
so its probably the google toolbar and I need to try and kill that if I
can.

Anyway - many thanks Wayne

IT man has told us hes just taking superscout down for an upgrade - so
who knows what the system will look like when that`s finished !!!!
:-)

Mike

[proxyTools-users] More Fiddling With CGI [now is error detected]

[Michael F. <Mic...@tb...>]

My cgi proxy is the James Marshalls one

This is my CGIAmbles.txt

#Format of entries: firewall, preamble, postamble
#localProxy will request $preamble.escaped($url).$postamble
#Use the first line that matches our firewall, or use '*' (all
firewalls).
#*, https://vip.megaproxy.com/go/,
#*, http://web.archive.org/,
#*, http://216.239.35.120/translate_c?&langpair=en%7Cen&u=,
#XXX - note the hard-coded spanish to english conversion here.
#XXX - This gets english pages,but some english words look like
#XXX - spanish and get translated (e.g. 'can' changes to 'dog' :-)
#*, http://babelfish.altavista.com/urltrurl?url=, &lp=es_en
#XXX - We should probably check
#XXX - the user's system to see if he's probably looking for
#XXX - pages in the chosen lang here, and choose some other conversion!
#Use Japanese (ja) (or chinese (zn)), low chance of accidental
collisions
#Note: translation ends at this: <blink>*** TRANSLATION ENDS HERE
***</blink>
#*, http://babelfish.altavista.com/urltrurl?url=, &lp=ja_en
*.http://******.com/cgiproxy/nph-proxy.pl/000100A/http/

It expects the URL to be minus the http:// - I`ll try changing that last
entry to

*.http://******.com/cgiproxy/nph-proxy.pl/000100A/

and see if it works better .....

Am I doing this right  ?

As a `quick fix` for getting up and running this is great Wayne.

Oops just spotted *.http://etc should be *, http://etc, which might help
- will try again and repost result - the URL format is still slightly
different though.

Mike

[proxyTools-users] Playing with cgiAmbles

[Michael F. <Mic...@tb...>]

Modified cgiAmbles.txt to use my cgiproxy
Hashed out the existing babelfish line and added mine *.htpp://......

Then ran localproxy.pl and rebuilt from the michael config.

Got this error on the back end (debug at 0 - I thought my syntax was
fine)....

Use of uninitialized value in pattern match (m//) at C:/Program
Files/Perl2/site
/lib/Net/DNS/Resolver.pm line 852.
Use of uninitialized value in split at C:/Program
Files/Perl2/site/lib/Net/DNS/P
acket.pm line 525.
Use of uninitialized value in hash element at WLib.pm line 613.
Use of uninitialized value in hash element at WLib.pm line 613.
Checking all layer 0 hosts for connectivity...


Hmmm....... hurrah - seems to work though....

10081:localProxy control
10082:anonymous, non-censoring HTTP proxy
10119:Usenet news - ccnews
11080:Socks 4 - standard


For web browser proxy service, please configure your web browser
  http proxy entry to localhost:10080 and the
  https proxy entry to localhost:10076 now

Only accepting connections from 127.0.0.1, 192.168.4.67
Authentication requested while talking to 192.168.4.1:8080
Seeking credentials for dav-serv.tbsmerchants.co.uk, 192.168.4.1:8080
Found auth string:
dav-serv.tbsmerchants.co.uk,192.168.4.1:8080,michael,******
Authentication requested while talking to 192.168.4.1:8080
Seeking credentials for dav-serv.tbsmerchants.co.uk, 192.168.4.1:8080
Found auth string:
dav-serv.tbsmerchants.co.uk,192.168.4.1:8080,michael,******
Use of uninitialized value in regexp compilation at localProxy2.pl line
2766.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2771.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2772.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2776.


Trying dilbert........

Use of uninitialized value in regexp compilation at localProxy2.pl line
2766.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2771.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2772.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2776.
Use of uninitialized value in regexp compilation at localProxy2.pl line
2766.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2771.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2772.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2776.
Use of uninitialized value in regexp compilation at localProxy2.pl line
2766.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2771.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2772.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2776.

Hmmm... not working try upping the debug and see if I can work out why
not.....


 2771.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2772.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2776.
Modified request: GET
http://comics.com/%63%6f%6d%69%63%73/%64%69%6c%62%65%72%74
/%61%72%63%68%69%76%65/%69%6e%64%65%78%2e%68%74%6d%6c HTTP/1.0
access denied or failed from 10080.2(1g).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 38:8.9e-019 ) (5.3e-92) 1.1e+003(=0.541/0.0005)
Original request: GET
http://216.239.35.102/search?client=navclient-auto&failedi
p=216.239.37.102;338&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 39:8.5e-019 ) (3.5e-92) 1.1e+003(=0.544/0.0005)
Original request: GET
http://comics.com/comics/dilbert/archive/index.html HTTP/1
.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 39:8.2e-019 ) (2.3e-92) 1.1e+003(=0.541/0.0005)
Original request: GET
http://216.239.37.102/search?client=navclient-auto&failedi
p=216.239.35.102;243&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
Original request: GET
http://comics.com/comics/dilbert/archive/index.html HTTP/1
.0
access denied or failed from 10080.2.0(192.168.4.1:


.....................

Original request: GET
http://216.239.33.102/search?client=navclient-auto&failedi
p=216.239.33.102;344&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 47:2.1e-020 ) (2.4e-208) 1.1e+003(=0.544/0.0005)
Original request: GET
http://comics.com/comics/dilbert/archive/index.html HTTP/1
.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 47:2e-020 ) (1.5e-208) 1.1e+003(=0.541/0.0005)
Original request: GET
http://216.239.51.102/search?client=navclient-auto&failedi
p=216.239.33.102;243&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
Original request: GET
http://comics.com/comics/dilbert/archive/index.html HTTP/1
.0
10080.2.0.-: 48:1.9e-020 ) (1e-208) 1.1e+003(=0.544/0.0005)
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 48:1.9e-020 ) (6.6e-209) 1.1e+003(=0.541/0.0005)
Original request: GET
http://216.239.37.102/search?client=navclient-auto&failedi
p=216.239.51.102;348&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
Use of uninitialized value in regexp compilation at localProxy2.pl line
2766.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2771.
Use of uninitialized value in concatenation (.) or string at loca

.......................

access denied or failed from 10080.2(a).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 43:3.2e-022 ) (6.2e-227) 9.1(=0.544/0.06)
10080.2.0.-: 44:3.1e-022 ) (4.1e-227) 1.1e+003(=0.541/0.0005)
Original request: GET
http://216.239.35.102/search?client=navclient-auto&failedi
p=216.239.33.102;318&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
access denied or failed from 10080.2(a).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 44:3e-022 ) (2.7e-227) 1.1e+003(=0.544/0.0005)
Original request: GET
http://comics.com/comics/dilbert/archive/index.html HTTP/1
.0
Modified request: GET
http://65.114.4.69/comics/dilbert/archive/index.html HTTP/
1.0
access denied or failed from 10080.2(a).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 45:2.8e-022 ) (1.8e-227) 1.1e+003(=0.541/0.0005)
Original request: GET
http://216.239.53.102/search?client=navclient-auto&failedi
p=216.239.35.102;265&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 43:2.6e-022 ) (8.1e-228) 9.1(=0.544/0.06)
Original request: GET
http://comics.com/comics/dilbert/archive/index.html HTTP/1
.0
Modified request: GET
http://65.114.4.69/comics/dilbert/archive/index.html HTTP/
1.0
access denied or failed from 10080.2(a).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 43:2.5e-022 ) (5.4e-228) 1.1e+003(=0.


................................

Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2772.
Use of uninitialized value in concatenation (.) or string at
localProxy2.pl line
 2776.
Modified request: GET
http://216.239.35.102/search?client=navclient-auto&failedi
p=216.239.51.102;271&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
access denied or failed from 10080.2(7g).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
Original request: GET
http://comics.com/comics/dilbert/archive/index.html HTTP/1
.0
10080.2.0.-: 50:1.8e-031 ) (2.4e-319) 1.1e+003(=0.544/0.0005)
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 51:1.7e-031 ) (1.6e-319) 1.1e+003(=0.541/0.0005)
Original request: GET
http://216.239.35.102/search?client=navclient-auto&failedi
p=216.239.35.102;383&ch=5963101070&features=Rank&q=info:http%3A%2F%2Fcomics%2Eco

m%2Fcomics%2Fdilbert%2Farchive%2Findex%2Ehtml HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 51:1.7e-031 ) (1e-319) 1.1e+003(=0.544/0.0005)
Original request: GET
http://comics.com/comics/dilbert/archive/index.html HTTP/1
.0
Modified request: GET
http://65.114.4.69/comics/dilbert/archive/index.html HTTP/
1.0
access denied or failed from 10080.2(a).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 52:1.6e-031 ) (6.9e-320) 1.1e+003(=0.541/0.0005)



Hmmmmm.................. isn`t trying to use my cgi proxy from the look
of things - but trying the other proxies ????

Bizarre - last access worked. Lots of uninitialized hash values and the
modified requests aren`t trying the cgi proxy. Damn - thought I had it
sussed for once.

Mike

[proxyTools-users] Testing Localproxy

[Michael F. <Mic...@tb...>]

Despite problems with statproxy have tested localproxy.

Following are the tests and logs (basically for Wayne - not of much
interest to anyone else I`m afraid -
sorry).

In summary - the new cgi options seem to work fine without me having to
do anything babelfish.altavista must
be unblocked. Unfortuantely it does text only not images so restricts my
browsing some what. I need to
modify the entries for either google of for my own cgi proxy which I
ought to be able to use.

Need to know how to disable it - just rem out the valid option in
cgiambles.txt I guess - how about a button
on the GUI !!! Also it looks like localproxy uses babelfish *even* when
it can get straight through which
seems a waste..... hmmm... just thought - some of the images (in the
title bar) came through babelfish for
google.com - odd, now I`m completely baffled.

Anyway - following are the logs - but not too useful now I guess as I
was just feeling my way and they don`t
really say anything more than the above !!

This is localProxy Engine (the 'back end'), version: 4.184
Building configuration michael
Please wait, this may take a few minutes
(you may avoid this in future by using the 'last' config)...
I'm assuming this IP address is 192.168.4.67
Waiting for the front end to connect ... connected
Importing globals.xml version 4.7
Renaming hosts.xml to hosts.old.xml, unarchiving hosts.zip;
Importing hosts.xml version 4.1272
Importing commStrats.xml version 4.5
Importing services.xml version 4.19
Importing firewalls.xml version 4.79
Importing config-michael.xml version 4.9
Using firewall: michael
DNS addresses from o/s: 192.168.4.1
Name servers (o/s and firewall info): 192.168.4.1
Your accessible subnets: 192.168.4.1/24
DnsTimeout initialized: 5.5
Sorting hosts (uses DNS, please connect)...
Filled layer 10119.1.*.- (1/10)
Filled layer 10080.0.*.- (0/10)

Disabling 10080 (non-censoring HTTP proxy - standard).0 - no layer 0
hosts avail
able
-
Filled layer 10080.0.*.- (0/10)

Disabling 10080 (non-censoring HTTP proxy - standard).0 - no layer 0
hosts avail
able
Filled layer 10080.1.*.- (1/10)
Filled layer 10080.1.-.* (0/10)

Disabling 10080 (non-censoring HTTP proxy - standard).1 - no layer 1
hosts avail
able
Filled layer 10080.2.*.- (1/10)
Filled layer 10082.0.*.- (0/10)

Disabling 10082 (anonymous, non-censoring HTTP proxy).0 - no layer 0
hosts avail
able
Filled layer 10082.1.*.- (1/10)
Filled layer 10082.1.-.* (0/10)

Disabling 10082 (anonymous, non-censoring HTTP proxy).1 - no layer 1
hosts avail
able
Filled layer 10082.2.*.- (0/10)

Disabling 10082 (anonymous, non-censoring HTTP proxy).2 - no layer 0
hosts avail
able
Filled layer 10076.0.*.- (1/10)
-
Disabling 11080 (Socks 4 - standard).1 - no layer 1 hosts available
Filled layer 11080.2.*.- (0/10)

Disabling 11080 (Socks 4 - standard).2 - no layer 0 hosts available
Checking all layer 0 hosts for connectivity...
Running initial Layer0 check ...
 .. online

LocalProxy is offering services on the following ports:
10076:non-censoring HTTPS proxy
10078:HTTP zapped advertisement proxy
10079:proxy autoconfiguration
10080:non-censoring HTTP proxy - standard
10081:localProxy control
10082:anonymous, non-censoring HTTP proxy
10119:Usenet news - ccnews
11080:Socks 4 - standard


For web browser proxy service, please configure your web browser
  http proxy entry to localhost:10080 and the
  https proxy entry to localhost:10076 now

Only accepting connections from 127.0.0.1, 192.168.4.67

Only accepting connections from 127.0.0.1, 192.168.4.67
Executed getConfig(), result (truncated): <perldata>
 <hash>
  <item key="10076">
   <hash>
...




And front end.....




C:\Program Files\localproxy>perl localproxy.pl
This is localProxy GUI (the 'front end'), version: 4.221
Proxies found in environment: 192.168.4.1:8080
I'm assuming this IP address is 192.168.4.67
Setting default config syria-scs-net
Starting localProxy engine with configuration: michael
start line: perl localProxy2.pl -x 3 -g -d 0 -c michael
Connected to localhost:10081
Back end startup status: 2
Back end startup status: 3
Back end startup status: 4
Back end startup status: 5
Back end startup status: 6
Back end startup status: 7
Back end startup status: 8
Back end startup status: 9
Back end startup status: 10
Back end startup status: 11
Back end startup status: 12
Back end startup status: 100
Sent command: getConfig()

Checked under authentication - credentials correct as far as I can see

Known credentials:
,,dav-serv.tbsmerchants.co.uk,192.168.4.1:8080,michael,******
,,dav-serv.tbsmerchants.co.uk,192.168.4.1:8080,michael,******


Pending requests (edit username and password):
None



Right now point my browser to localhost 10080

Straightforward access to google (which isn`t blocked).
Seems to go via a complicated route !! (can see babelfish popping up a
couple of times - must play with
those cgi options..) but works.


Sent credentials (michael:******) to 192.168.4.1:8080 as auth-scheme
Basic
10080.2.0.-: 1.9e+003:1.9e+003 (1.9e+003(80.2)) (1.9e+003)
1.9e+003(=0.951/0.000
5)
Original request: GET http://www.google.com/ HTTP/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://www.goo
gle.com/&lp=ja_en HTTP/1.0
10080.2.0.-: 1.5:1.5 (1.5(80.2)) (1.4) 1.3(=6.13/4.83)
Original request: GET
http://216.239.53.102/search?client=navclient-auto&ch=5455
726090&features=Rank&q=info:http%3A%2F%2Fwww%2Egoogle%2Ecom%2F HTTP/1.0
access denied or failed from 10080.2(1).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 1.6:1.5 (1.3(80.2)) (0.94) 1.1e+003(=0.544/0.0005)
Original request: GET http://babel.altavista.com/aftu HTTP/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://babel.a
ltavista.com/%61%66%74%75&lp=ja_en HTTP/1.0
Original request: GET http://www.google.com/images/hp0.gif HTTP/1.0
Modified request: GET
http://www.google.com/%69%6d%61%67%65%73/%68%70%30%2e%67%6
9%66 HTTP/1.0
Original request: GET http://www.google.com/images/hp1.gif HTTP/1.0
Original request: GET http://www.google.com/images/hp2.gif HTTP/1.0
10080.2.0.-: 2.1:2 (1.8(80.2)) (1.4) 27(=2.93/0.11)
10080.2.0.-: 2.7:2.6 (2.4(80.2)) (2) 20(=3.18/0.16)
Original request: GET http://www.google.com/images/hp3.gif HTTP/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://www.goo
gle.com/%69%6d%61%67%65%73/%68%70%33%2e%67%69%66&lp=ja_en HTTP/1.0
Original request: GET http://www.google.com/images/hp3.gif HTTP/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://www.goo
gle.com/%69%6d%61%67%65%73/%68%70%33%2e%67%69%66&lp=ja_en HTTP/1.0
10080.2.0.-: 2:1.9 (1.8(80.2)) (1.4) 1.1(=4.5/4.17)
10080.2.0.-: 1.1:1 (0.96(80.2)) (0.68) 0.047(=0.374/8.02)
10080.2.0.-: 0.33:0.31 (0.3(80.2)) (0.18) 0.0095(=0.368/38.8)


Looks to me like its going via babelfish !! Lots of Japanese characters
appearing on my google screen !!! But
at least localproxy is working !! Doesn`t it check whether it can go
`direct` (well via superscout anyway)
before it chooses to use the babelfish option ?? (Don`t mean to sound
ungrateful - heck if it works it works !!
Itsjust that if this stops it trying alternative means how do I disable
it!!)


Ought to work for anything now though - lets try something blocked.

Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://comics.
com/&lp=ja_en HTTP/1.0
Original request: GET
http://216.239.35.102/search?client=navclient-auto&failedi
p=216.239.37.102;130&ch=51374619684&features=Rank&q=info:http%3A%2F%2Fcomics%2Ec

om%2F HTTP/1.0
access denied or failed from 10080.2(1).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 0.45:0.23 (0.029(80.2)) (0.00083) 1.1e+003(=0.544/0.0005)
Original request: GET http://babel.altavista.com/aftu HTTP/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://babel.a
ltavista.com/%61%66%74%75&lp=ja_en HTTP/1.0
Original request: GET
http://216.239.35.102/search?client=navclient-auto&failedi
p=216.239.35.102;6542&ch=51374619684&features=Rank&q=info:http%3A%2F%2Fcomics%2E

com%2F HTTP/1.0
access denied or failed from 10080.2(1).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 0.46:0.23 (0.024(80.2)) (0.00054) 1.1e+003(=0.544/0.0005)
Original request: GET
http://comics.com/images/comics_com_logo_top_green.gif HTT
P/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://comics.
com/%69%6d%61%67%65%73/%63%6f%6d%69%63%73_%63%6f%6d_%6c%6f%67%6f_%74%6f%70_%67%7

2%65%65%6e%2e%67%69%66&lp=ja_en HTTP/1.0
Original request: GET http://comics.com/images/comics_com_logo_combo.gif
HTTP/1.
0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://65.114.
4.69/images/comics_com_logo_combo.gif&lp=ja_en HTTP/1.0


Comics.com - blocked at first, then it works.... hurrah. Also implying
that it does try via superscout first !!!
Hmmmm... odd seeing as google.com would work.

Wonder why its working now when it wasn`t yesterday !! Far out. Slow
though especially on images which
for the most part don`t load - not down to localproxy or babelfish
though is either superscout or our ISP
(pipex) although is very bad on this test - not getting *any* images
from comics.com or dilbert.com .


Hmmmmm........ Not working at all now - odd comics.com is blocked - why
should it get through to that but
not
http://65.114.4.69/comics/dilbert/archive/images/dilbert2036575021015.gif

Which is the image and is coming up `blocked arts and entertainments`
(perhaps superscout blocks .gif files
from babelfish.... oddness) following are some logs....

Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://65.114.
4.69/comics/dilbert/archive/images/dilbert2036575021015.gif&lp=ja_en
HTTP/1.0
10080.2.0.-: 0.62:0.1 (0.19(80.2)) (0.066) 0.095(=0.412/4.34)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://65.114.
4.69/%63%6f%6d%69%63%73/%64%69%6c%62%65%72%74/%61%72%63%68%69%76%65/%69%6d%61%67

%65%73/%64%69%6c%62%65%72%74%32%30%33%36%35%37%35%30%32%31%30%31%35%2e%67%69%66&

lp=ja_en HTTP/1.0
10080.2.0.-: 0.6:0.12 (0.28(80.2)) (0.085) 0.097(=0.412/4.23)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.61:0.12 (0.23(80.2)) (0.057) 1.1e+003(=0.541/0.0005)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.61:0.11 (0.18(80.2)) (0.038) 1.1e+003(=0.541/0.0005)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.62:0.11 (0.15(80.2)) (0.025) 9(=0.541/0.06)

Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.77:0.061 (0.12(80.2)) (0.033) 1.1e+003(=0.541/0.0005)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.78:0.058 (0.096(80.2)) (0.022) 1.1e+003(=0.541/0.0005)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.79:0.056 (0.078(80.2)) (0.015) 1.1e+003(=0.541/0.0005)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.8:0.054 (0.064(80.2)) (0.0097) 1.1e+003(=0.541/0.0005)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.8:0.051 (0.052(80.2)) (0.0065) 1.1e+003(=0.541/0.0005)
Original request: GET
http://65.114.4.69/comics/dilbert/archive/images/dilbert20
36575021015.gif HTTP/1.0
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 0.81:0.049 (0.043(80.2)) (0.0043) 1.1e+003(=0.541/0.0005)
O




Try another URl - sex.com for arguments sake...

2Ecom%2F HTTP/1.0
Original request: GET http://www.sex.com/ HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
access denied or failed from 10080.2.0(192.168.4.1:8080).-(-): HTTP/1.1
403
10080.2.0.-: 1.1:0.09 (0.074(80.2)) (0.0032) 11(=0.544/0.05)
10080.2.0.-: 1.1:0.086 (0.06(80.2)) (0.0022) 1.1e+003(=0.544/0.0005)
Original request: GET
http://216.239.33.102/search?client=navclient-auto&failedi
p=216.239.33.102;349&ch=53435104105&features=Rank&q=info:http%3A%2F%2Fwww%2Esex%

2Ecom%2F HTTP/1.0
access denied or failed from 10080.2(7).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 1.1:0.083 (0.049(80.2)) (0.0014) 1.1e+003(=0.544/0.0005)
Original request: GET http://www.sex.com/ HTTP/1.0
Modified request: GET
http://babelfish.altavista.com/urltrurl?url=http://www.sex
.com/&lp=ja_en HTTP/1.0
Original request: GET http://babel.altavista.com/aftu HTTP/1.0
Modified request: GET http://209.73.180.18/%61%66%74%75 HTTP/1.0
Original request: GET
http://216.239.53.102/search?client=navclient-auto&failedi
p=216.239.33.102;11120&ch=53435104105&features=Rank&q=info:http%3A%2F%2Fwww%2Ese

x%2Ecom%2F HTTP/1.0
access denied or failed from 10080.2(a71).0(192.168.4.1:8080).-(-):
HTTP/1.1 403

access denied or failed from 10080.2(a1).0(192.168.4.1:8080).-(-):
HTTP/1.1 403
10080.2.0.-: 1.1:0.079 (0.04(80.2)) (0.00094) 11(=0.535/0.05)
10080.2.0.-: 1.1:0.076 (0.033(80.2)) (0.00063) 1.1e+003(=0.544/0.0005)

Fails at first and then gets through.... no images - images must be
blocked from babelfish.

Mike

Re: [proxyTools-users] escaping a very restrictive

[Michael F. <Mic...@tb...>]

> [...]
> > Got this result - this make more sense ?? Still looks odd to me.....
> >
> > C:\Program Files\localproxy>perl statproxy.pl -t all -a ,192.168.4.1,michael,******
> > 192.168.4.1:8080
> >
> > statProxy v4.105 report from 192.168.4.67:
> > 192.168.4.1     :8080  AFFFFFFFFFFFF FFFFF  0.0/?
>
> This is the right proxy, at least. You got a response this time.
> The first test shows 'A'uthentication was required (and it failed).
> The rest failed for the same reason.
> I hope you tell me that you just entered the wrong password. :-)
> Did you have the credentials correct in the environment too
> (shouldn't be needed, but if there's a conflict you might have
> triggered a new bug)?
>
> Again, I don't think I have changed anything that should affect the
> authentication. Do you still have the old statProxy? Does that one
> work?
>
> > Mike
>

Nope double checked the password.

First the current version of statprox - still fails.

C:\Program Files\localproxy>perl statproxy.pl -t all -a ,192.168.4.1,michael,******
192.168.4.1:8080

statProxy v4.105 report from 192.168.4.67:
192.168.4.1     :8080  AFFFFFFFFFFFF FFFFF  0.1/?

Then an old version.

C:\Program Files\localproxy>oldstatprox

C:\Program Files\localproxy>perl oldstatproxy.pl -t all -a ,192.168.4.1,michael,
****** 192.168.4.1:8080
"nonBlockingConnect" is not exported by the WLib module at oldstatproxy.pl line
28
Can't continue after import errors at oldstatproxy.pl line 28
BEGIN failed--compilation aborted at oldstatproxy.pl line 30.

C:\Program Files\localproxy>


Must be a *dud* old version of statproxy so I reused one from the 2002-06-14 distribution of
proxytools.

Same error, maybe that was that version I was using.
Try 2002-08-02.

Nope... still the same result - Wlib.pm has changed I guess - one last try
2002-09-04 which was the previous version I guess (wasn`t that bugged ??)

C:\Program Files\localproxy>perl oldstatproxy.pl -t all -a ,192.168.4.1,michael,
****** 192.168.4.1:8080

statProxy v4.95 report from 192.168.4.67:
192.168.4.1     :8080  AFFFFFFFFFFFF FFFFsend() on closed socket PROXY at oldsta
tproxy.pl line 1016.
Your vendor has not defined POSIX macro EWOULDBLOCK, used at oldstatproxy.pl lin
e 1017

C:\Program Files\localproxy>

Yup - thats the old error isn`t it ??

So not much luck on testing with an old version of statproxy. Now I could use an old entire
distribution... bugger, I`ll try that.

C:\Program Files\localproxy>cd ..

C:\Program Files>cd lp.bak

C:\Program Files\lp.bak>statprox

C:\Program Files\lp.bak>perl statproxy.pl -t all -a ,192.168.4.1,michael,******
 192.168.4.1:8080

statProxy v4.91 report from 192.168.4.67:
192.168.4.1     :8080  AFFFFFFFFFFFF FFFFF  1.9/?
Reference page size was 534 bytes


C:\Program Files\lp.bak>

OK - same result (but done a lot slower) using the August distribution (08 !!).

So it looks like something has changed on my system as this used to work - damn.

Hmmm - better check my environment variables and check they are set up right and ping dav-serv
to make sure it hasn`t changed - our `system` is in a constant state of flux so nothing can be
relied on.

Ping dav-serv = 192.168.4.1

Environment variables :

SET HTTP_proxy=http://192.168.4.1:8080
SET HTTP_proxy_user=michael
SET HTTP_proxy_pass=******
SET HTTP_proxy_realm=dav-serv.tbsmerchants.co.uk

looks alright to me....

Note that the `rules` for the Superscout proxy server have changed and it is now much stricter
as to what it is supposed to allow (although as noted some ports now appear to be open!!).

In theory that *shouldn`t* affect basic authentication though - unless statproxy.pl is trying
to conenct to a specific site (previously unblocked) and the `blocked` error it now thinks of
as an authentication failure ??

Hmmm... looking through and seeing if theres anything else I can do to provide useful
information - guess I`ll run localproxy with debug=3 and see what it says when trying to
connect - see if it reports authentication errors or just the usual problems of trying to find
a proxy it can reach. As far as I can remember if I point IE to localhost:10080 with lp
running the error is Superscout Blocked *NOT* authentication failed which would indicate to me
that lp is passing on the authentications trings from the environment/config fine... but its
worth double checking.

Mike

Re: [proxyTools-users] escaping a very restrictive

[wayne <wa...@ny...>]

> From: Michael Foord <Mic...@tb...>
> To: "pro...@li..." <pro...@li...>
> Subject: Re: [proxyTools-users] escaping a very restrictive
> 
> wayne wrote:
 
[...]

> This came minutes before I left work but I had time to dig out the old statproxy tests I
> did, download the new version of statproxy (uploaded 16 minutes ago according to
> sourceforge!!)
> 
> Got this result - haven`t had time to properly read the documentation and actually
> *check* if I`m doing the right thing !!

The syntax looks good to me.
 
> Got this result - this make more sense ?? Still looks odd to me.....
> 
> C:\Program Files\localproxy>perl statproxy.pl -t all -a ,192.168.4.1,michael,******
> 192.168.4.1:8080
> 
> statProxy v4.105 report from 192.168.4.67:
> 192.168.4.1     :8080  AFFFFFFFFFFFF FFFFF  0.0/?

This is the right proxy, at least. You got a response this time.
The first test shows 'A'uthentication was required (and it failed).
The rest failed for the same reason.
I hope you tell me that you just entered the wrong password. :-)
Did you have the credentials correct in the environment too 
(shouldn't be needed, but if there's a conflict you might have 
triggered a new bug)?

Again, I don't think I have changed anything that should affect the 
authentication. Do you still have the old statProxy? Does that one 
work?

> Mike

--
wa...@ny...
http://proxytools.sourceforge.net/

[proxyTools-users] Re: Another Useful Feature For the WishList

[wayne <wa...@ny...>]

> From: Michael Foord <Mic...@tb...>
> To: wayne <wa...@ny...>,
>   "pro...@li..." <pro...@li...>
> Subject: Another Useful Feature For the WishList
> 
> Proxybuster
> 
> http://www.marzie.com/webtools/proxybuster/index.asp
> 
> This is a useful service I have come across. Unfortunately that URL is
> currently blocked by Superscout so I am accessing it through my CGI
> proxy. Superscout currently blocks all files with extensions .zip, .exe
> etc...... This very simple proxy simply renames the file .tmp or .txt
> etc and you rename it when you have received it - very useful for me for
> getting localproxy updates of hosts.zip.

Heh, you're pretty resourceful :-)

> Obviously if I am the only person who wants it its probably not worth
> putting any effort into integrating into localproxy but its a neat
> little service that I use...

It's a two step process, which makes it harder to implement. Still ...
authentication was like that too. I'll keep it in mind.

> Mike

Thanks,
--
wa...@ny...
http://proxytools.sourceforge.net/

Re: [proxyTools-users] escaping a very restrictive

[Michael F. <Mic...@tb...>]

wayne wrote:

> > From: Michael Foord <Mic...@tb...>
> > To: wayne <wa...@ny...>,
> >   "pro...@li..." <pro...@li...>
> > Subject: Re: [proxyTools-users] escaping a very restrictive
> >
> > > [..]
> > > >
> > > > Checking proxy capabilities ...
> > > > send() on closed socket PROXY at statProxy.pl line 1016.
> > > > Your vendor has not defined POSIX macro EWOULDBLOCK, used at statProxy.pl line
> > > > 1
> > > > 017
> > >
> > > This bug has been fixed. Get a new statProxy.pl
> > >
> >
> > New version got - localproxy, localproxy2, statproxy, findproxy and the new cgi
> > stuff.
>
> ****
> I updated localProxy2.pl about 0400 GMT. That fix is worth getting.
> ****
>
> > master.pl returns the same result as last time - all ports `blocked` except 25 and
> > 110 which are `open`.
>
> Sure, it was right.
> I didn't change anything that would affect tests of those two ports.
>
> > Its possible that is partly to allow us to use yahoo messenger
> > - annoying as I can`t actually get that to work - lol :-)
>
> Those ports won't help there, but master.pl doesn't test all 65535
> ports, so maybe they have opened up some other odd ones for you.
> Around master.pl line 144, you will see the list of ports it checks.
> It would be easy for you to edit any ports you want to be tested
> into there.
>
> > C:\Program Files\localproxy>perl statproxy.pl -t 0 -a ,192.168.0.1:8080,******,
> > ****** 192.168.0.1:8080
> > Subroutine blocking redefined at statproxy.pl line 82.
>
> I've removed this warning now.
>
> > statProxy v4.104 report from 192.168.4.67:
> > 192.168.0.1     :8080  T                    ?/?
>
> That wasn't where your proxy was before.
> Has it been changed?

[snip]

This came minutes before I left work but I had time to dig out the old statproxy tests I
did, download the new version of statproxy (uploaded 16 minutes ago according to
sourceforge!!)

Got this result - haven`t had time to properly read the documentation and actually
*check* if I`m doing the right thing !!

Got this result - this make more sense ?? Still looks odd to me.....

C:\Program Files\localproxy>perl statproxy.pl -t all -a ,192.168.4.1,michael,******
192.168.4.1:8080

statProxy v4.105 report from 192.168.4.67:
192.168.4.1     :8080  AFFFFFFFFFFFF FFFFF  0.0/?


C:\Program Files\localproxy>


Mike

Re: [proxyTools-users] escaping a very restrictive

[wayne <wa...@ny...>]

> From: Michael Foord <Mic...@tb...>
> To: wayne <wa...@ny...>,
>   "pro...@li..." <pro...@li...>
> Subject: Re: [proxyTools-users] escaping a very restrictive
> 
> > [..]
> > >
> > > Checking proxy capabilities ...
> > > send() on closed socket PROXY at statProxy.pl line 1016.
> > > Your vendor has not defined POSIX macro EWOULDBLOCK, used at statProxy.pl line
> > > 1
> > > 017
> >
> > This bug has been fixed. Get a new statProxy.pl
> >
> 
> New version got - localproxy, localproxy2, statproxy, findproxy and the new cgi
> stuff.

****
I updated localProxy2.pl about 0400 GMT. That fix is worth getting.
****

> master.pl returns the same result as last time - all ports `blocked` except 25 and
> 110 which are `open`. 

Sure, it was right. 
I didn't change anything that would affect tests of those two ports.

> Its possible that is partly to allow us to use yahoo messenger
> - annoying as I can`t actually get that to work - lol :-)

Those ports won't help there, but master.pl doesn't test all 65535 
ports, so maybe they have opened up some other odd ones for you.
Around master.pl line 144, you will see the list of ports it checks. 
It would be easy for you to edit any ports you want to be tested 
into there.

> C:\Program Files\localproxy>perl statproxy.pl -t 0 -a ,192.168.0.1:8080,******,
> ****** 192.168.0.1:8080
> Subroutine blocking redefined at statproxy.pl line 82.

I've removed this warning now.

> statProxy v4.104 report from 192.168.4.67:
> 192.168.0.1     :8080  T                    ?/?

That wasn't where your proxy was before.
Has it been changed?

> C:\Program Files\localproxy>
> 
> This was an interesting one !!
> 
> Localproxy now functions ok, picks up the right authentication details from the
> environment variables but still can`t find a way out. Haven`t played with it much
> yet though.... 

If you used that wrong (?) proxy address above, it will never get 
out with commStrat 1.

> haven`t looked at the cgi options yet but was intruiged  by this -
> have I used the right parameters ?

If I remember your setup correctly, it should have got out using 
commStrat 1 (CONNECT). Maybe that's not open any more. 

I didn't enable commStrat 2g (cgi) in the last release. I've just 
done that - get a new commStrats.xml, *or* do it in your own config 
(see the way I do it in config-wayne-ADSL.xml).

***
Megaproxy was too slow, so I changed to using Google translate. That 
one was hard coded into localProxy2.pl in the last release (in fact 
until a few days ago). Unfortunately, the UAE blocked that whole 
translation site a week after my release. :-)
So now it uses altavista translation. 

All of this is in a text file you may edit easily: cgiAmbles.txt

Google was better than Altavista, because with Altavista I can't 
translate English to English (had to use Japanese to English!) and 
some words actually collide with Japanese words apparently. 
The symptoms are that words like netBSD end up as netcBSD and 
'or' becomes 'OR' (no idea why). Like all CGI proxies, there are 
some sites it can't handle. Images are ok. 
Also like all CGI's it rewrites the links, so that when you click 
on them they take you back to the CGI proxy - that's often a 
nuisance when LP has better ways to get to sites. 
A reload of the page (ctrl-refresh, or shift-reload) 
is usually the best way to escape from it; maybe go back a page 
first.
In general, it does what people want, and it's usually much 
faster than commStrats 0 and 1.

In your case, you would want to use Google translate, probably, 
since they have allowed you to get there. Just remove the '#' 
at the beginning of that line in cgiAmbles.txt and put one in 
at the start of the altavista line (LP will only use *one* of 
these - so far).

I've just uploaded the new stuff.

> Mike

--
wa...@ny...
http://proxytools.sourceforge.net/

[proxyTools-users] Another Useful Feature For the WishList

[Michael F. <Mic...@tb...>]

Proxybuster

http://www.marzie.com/webtools/proxybuster/index.asp

This is a useful service I have come across. Unfortunately that URL is
currently blocked by Superscout so I am accessing it through my CGI
proxy. Superscout currently blocks all files with extensions .zip, .exe
etc...... This very simple proxy simply renames the file .tmp or .txt
etc and you rename it when you have received it - very useful for me for
getting localproxy updates of hosts.zip.

Obviously if I am the only person who wants it its probably not worth
putting any effort into integrating into localproxy but its a neat
little service that I use...

Mike


****************** 


ProxyBuster is a unique feature which allows you to retrieve files from
Web and FTP servers on the Internet even when your local LAN proxy
server or firewall restricts access to these sites.

Paste the complete URL (including the http:// or ftp://) in the URL
field below. We will connect to the URL, retrieve the file requested,
and return this file to you with a temporary filename. (It's highly
unlikely that your local proxy or firewall will filter this out.) After
you download the file, rename the file to its original name.

NOTE: Do not use this product to download malicious or unauthorized
content! You should always adhere to the computer and technology
policies of the organization which provides you with your Internet
connection. We assume no responsibility for those who use this tool.

By default, .tmp is used as a file extension. However, a few different
possible extensions are available via the popup menu below if your proxy
blocks out certain types of files. Be sure to rename the file extension
after downloading!

Re: [proxyTools-users] escaping a very restrictive

[Michael F. <Mic...@tb...>]

> [..]
> >
> > Checking proxy capabilities ...
> > send() on closed socket PROXY at statProxy.pl line 1016.
> > Your vendor has not defined POSIX macro EWOULDBLOCK, used at statProxy.pl line
> > 1
> > 017
>
> This bug has been fixed. Get a new statProxy.pl
>

New version got - localproxy, localproxy2, statproxy, findproxy and the new cgi
stuff.

master.pl returns the same result as last time - all ports `blocked` except 25 and
110 which are `open`. Its possible that is partly to allow us to use yahoo messenger
- annoying as I can`t actually get that to work - lol :-)

C:\Program Files\localproxy>perl statproxy.pl -t 0 -a ,192.168.0.1:8080,******,
****** 192.168.0.1:8080
Subroutine blocking redefined at statproxy.pl line 82.

statProxy v4.104 report from 192.168.4.67:
192.168.0.1     :8080  T                    ?/?


C:\Program Files\localproxy>

This was an interesting one !!

Localproxy now functions ok, picks up the right authentication details from the
environment variables but still can`t find a way out. Haven`t played with it much
yet though.... haven`t looked at the cgi options yet but was intruiged  by this -
have I used the right parameters ?

Mike

Re: [proxyTools-users] escaping a very restrictive

[wayne <wa...@ny...>]

> From: Michael Foord <Mic...@tb...>
> To: wayne <wa...@ny...>, noc...@fr...,
> pro...@li...
> Subject: Re: [proxyTools-users] escaping a very restrictive
> > >
> > > They finally did it and cut off all but rudimentary access to the
> > > internet at work!!! (Not exactly the end of the world I`ll admit!!)
> >
> > You need to run master.pl to know what's been done.
> > make sure they have blocked all the CONNECT possibilities before
> > you go spending time on the stuff you discuss below.
> >
> 
> My boss was away for a while so the IT man switched us over to `ipchains` -
> which gave me unfettered access AND meant I couldn`t check what they`d done.
> Sadly my boss has returned so I`m back to a censored connection. Thanks for
> replying Wayne.
> 
> Here`s the results of master.pl
> 
> C:\>cd "program files"
> 
> C:\Program Files>cd localproxy
> 
> C:\Program Files\localproxy>perl master.pl
> I'm assuming this IP address is 192.168.4.67
> Most (maybe all) ports are blocked, but we will continue
> (and assume you are 'connected' to the Internet) ...
> I'm assuming this IP address is 192.168.4.67
> Timeout selected for connect tests: 5.5
> Mapping the firewall rules, please wait ...
> Testing for blocking on port 21 ... blocked
> Testing for blocking on port 22 ... blocked
> Testing for blocking on port 23 ... blocked
> Testing for blocking on port 25 ... open
> Testing for blocking on port 80 ... blocked
> Testing for blocking on port 81 ... blocked
> Testing for blocking on port 82 ... blocked
> Testing for blocking on port 110 ... open
> Testing for blocking on port 119 ... blocked
> Testing for blocking on port 443 ... blocked
> Testing for blocking on port 1080 ... blocked
> Testing for blocking on port 3128 ... blocked
> Testing for blocking on port 6588 ... blocked
> Testing for blocking on port 7021 ... blocked
> Testing for blocking on port 7033 ... blocked
> Testing for blocking on port 7070 ... blocked
> Testing for blocking on port 7137 ... blocked
> Testing for blocking on port 7475 ... blocked
> Testing for blocking on port 8000 ... blocked
> Testing for blocking on port 8001 ... blocked
> Testing for blocking on port 8080 ... blocked
> Testing for blocking on port 8081 ... blocked
> Testing for blocking on port 8141 ... blocked
> Testing for blocking on port 8180 ... blocked
> Testing for blocking on port 8616 ... blocked
> Testing for blocking on port 8888 ... blocked
> Testing for blocking on port 8965 ... blocked
> Testing for blocking on port 9001 ... blocked
> Testing for blocking on port 9081 ... blocked
> 
> Testing for blocking on port 9274 ... blocked
> Testing for blocking on port 9589 ... blocked
> Testing for blocking on port 10080 ... blocked
> Testing for blocking on port 14000 ... blocked
> 
> Saving the results in master.xml
> Test your ISP proxies now (y or n)? y
> Proxies found in environment: 192.168.4.1:8080
> Checking proxies: 192.168.4.1:8080, dav-serv:8080
> Please enter any further proxies to be tested (in addr:port
> format; for example 123.22.13.24:8080, or proxy.bbb.com:3128).
> Type one per line and end with a blank line.
> 
> Checking proxy capabilities ...
> send() on closed socket PROXY at statProxy.pl line 1016.
> Your vendor has not defined POSIX macro EWOULDBLOCK, used at statProxy.pl line
> 1
> 017

This bug has been fixed. Get a new statProxy.pl

> Hangs..........
> 
> Interesting result though - I thing my IT must have made an error configuring
> Superscout this time, I`ve never had an open port before......

They are for email (pop and smtp). So you can use email directly, 
without using any kind of proxy or internal email servers.

If you have access to a computer outside, and the rights to listen 
on these low ports, you can tunnel *everything* (TCP) through them. 
It's likely that udp is also open on those ports, so you might get 
your p2p stuff going that way too. 
Until they close them, that is :-)

> Had to exit with ctrl-c....
> 
> C:\Program Files\localproxy>perl statproxy.pl 192.168.4.1:8080
> Warning: If you are testing any proxy through a redirector,
> the proxy anonymity test will reveal your true IP address.
> Normally you would be connecting directly to the proxy for these
> tests anyway, so it doesn't matter. The test won't work if you
> block incoming connections with a firewall, or a NAT.
> I will disable the anonymity test if you wish.
> Disable anonymity test (y or [n])? y
> 
> ...anonymity test is disabled
> 
> statProxy v4.95 report from 192.168.4.67:
> 192.168.4.1     :8080  AFFFFFFFFFFFF FFFFsend() on closed socket PROXY at

These all failed because your environment doesn't contain the 
required authentication stuff. 
Or, I have another authentication bug :-(

> statpr
> oxy.pl line 1016, <STDIN> line 1.
> Your vendor has not defined POSIX macro EWOULDBLOCK, used at statproxy.pl line
> 1
> 017

Fixed.

> 
> C:\Program Files\localproxy>
> 
> Bombs out....
> 
> >
> > >
> > > My ambition !! is still to get access to a fileshare network, preferably
> > > imesh or Kazaa !! Unfortunately I never got a chance to try out the
> > > eDonkey profile you set up for me.
> >
> > My advice is to use one that only needs TCP.
> 
> Hmmm... have yet to find such a beast - but that would be ideal.
> 
> >
> >
> > > Localproxy is probably not an option for me as things stand and it looks
> >
> > Can you get to google.com? You can argue that you *need* that.
> > Make sure you can get to translate.google.com (you *need* to be able to
> > translate web pages into English for work occasionally, right?).
> > Then commStrat 2.g in the new release will work for you.
> > If you like this, I can probably generalize the service used by 2.g,
> > so it can be placed in the user config file. Then you could use your
> > own CGI proxy there - 2.g works the same way. There's no real
> > advantage to this though. CommStrat 2 is only good for web pages,
> > not services like socks, edonkey, news etc., so it's no different than
> > your CGI, just faster.
> >
> 
> Have asked for this and am pretty certain I`ll get it. Yep - done. Would
> prefer to use localproxy than my CGI proxy....

Oops ... too late!
The google translate got blocked by the UAE about a week after my 
last LP release, so I've changed it to the Alatavista translator 
now. We'll see how long that one lasts. :-)
I haven't allowed any options for this choice yet, but you can find 
the (new) file cgiAmbles.txt which will allow you to edit the cgi 
to use. Uncomment the one you want, and comment out the one currently 
in use (commented/unused lines are the ones with '#' at the start).

> [snip... for now...]
> 
> Am sure you are right about it being beyond me to program a tcp to udp
> conversion and relay program.... but would still like to learn about the
> protocols involved so will look at the sources you point me too.

You will need the latest localProxy2.pl too.

If I can help, just ask.

> Mike

--
wa...@ny...
http://proxytools.sourceforge.net/

proxyTools support (was: Re: [proxyTools-users] escaping a very restrictive)

[wayne <wa...@ny...>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

>From: Michael Foord <Mic...@tb...>
> > To: wayne <wa...@ny...>, noc...@fr...,
>   pro...@li...
> Subject: Re: [proxyTools-users] escaping a very restrictive
> firewall/proxy (was:  
>  Re: Hello Wayne)
> 
> Sorry for sending this to both lists - which list are you doing
> localproxy support in Wayne ??

Bug support is definitely at sourceforge.
Log posts should go there too, especially large, or related to bugs.

On freelists, I think it's sensible to talk about user issues.
Naturally, proxy diagnostics, capabilities and lists belong on 
freelists, even though I use that info in proxyTools.

My aims are to:
1) maintain an archive of this stuff where it would be expected 
to be found - in the SourceForge project list archives.
2) reduce the exposure of most people to the bugs 
in development versions, and the posts and logs surrounding those.
I want to make the freelists (and elsewhere) posts more related to
user 
issues. There were only a few people who were interested in my 
long expositions about how the worked 'under the hood'. No sense 
exposing over 2000 people to that.

- --
wa...@ny...
http://proxytools.sourceforge.net/

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBPaaklKoXl7S/7Lp3EQJmqwCgpCoy1tFfBeivMd3u7Sww+gbg6s0AoObN
+oF+wFPexu7+cvAz/Ah5jpDD
=wJ/L
-----END PGP SIGNATURE-----

Re: [proxyTools-users] escaping a very restrictive firewall/proxy (was: Re: Hello Wayne)

[Michael F. <Mic...@tb...>]

Sorry for sending this to both lists - which list are you doing localproxy
support in Wayne ??

> > Date: Tue, 17 Sep 2002 09:05:46 +0100
> > From: Michael Foord <Mic...@tb...>
> > To: wa...@ny...
> > Subject: Hello Wayne
> >
> > They finally did it and cut off all but rudimentary access to the
> > internet at work!!! (Not exactly the end of the world I`ll admit!!)
>
> You need to run master.pl to know what's been done.
> make sure they have blocked all the CONNECT possibilities before
> you go spending time on the stuff you discuss below.
>

My boss was away for a while so the IT man switched us over to `ipchains` -
which gave me unfettered access AND meant I couldn`t check what they`d done.
Sadly my boss has returned so I`m back to a censored connection. Thanks for
replying Wayne.

Here`s the results of master.pl

C:\>cd "program files"

C:\Program Files>cd localproxy

C:\Program Files\localproxy>perl master.pl
I'm assuming this IP address is 192.168.4.67
Most (maybe all) ports are blocked, but we will continue
(and assume you are 'connected' to the Internet) ...
I'm assuming this IP address is 192.168.4.67
Timeout selected for connect tests: 5.5
Mapping the firewall rules, please wait ...
Testing for blocking on port 21 ... blocked
Testing for blocking on port 22 ... blocked
Testing for blocking on port 23 ... blocked
Testing for blocking on port 25 ... open
Testing for blocking on port 80 ... blocked
Testing for blocking on port 81 ... blocked
Testing for blocking on port 82 ... blocked
Testing for blocking on port 110 ... open
Testing for blocking on port 119 ... blocked
Testing for blocking on port 443 ... blocked
Testing for blocking on port 1080 ... blocked
Testing for blocking on port 3128 ... blocked
Testing for blocking on port 6588 ... blocked
Testing for blocking on port 7021 ... blocked
Testing for blocking on port 7033 ... blocked
Testing for blocking on port 7070 ... blocked
Testing for blocking on port 7137 ... blocked
Testing for blocking on port 7475 ... blocked
Testing for blocking on port 8000 ... blocked
Testing for blocking on port 8001 ... blocked
Testing for blocking on port 8080 ... blocked
Testing for blocking on port 8081 ... blocked
Testing for blocking on port 8141 ... blocked
Testing for blocking on port 8180 ... blocked
Testing for blocking on port 8616 ... blocked
Testing for blocking on port 8888 ... blocked
Testing for blocking on port 8965 ... blocked
Testing for blocking on port 9001 ... blocked
Testing for blocking on port 9081 ... blocked

Testing for blocking on port 9274 ... blocked
Testing for blocking on port 9589 ... blocked
Testing for blocking on port 10080 ... blocked
Testing for blocking on port 14000 ... blocked

Saving the results in master.xml
Test your ISP proxies now (y or n)? y
Proxies found in environment: 192.168.4.1:8080
Checking proxies: 192.168.4.1:8080, dav-serv:8080
Please enter any further proxies to be tested (in addr:port
format; for example 123.22.13.24:8080, or proxy.bbb.com:3128).
Type one per line and end with a blank line.

Checking proxy capabilities ...
send() on closed socket PROXY at statProxy.pl line 1016.
Your vendor has not defined POSIX macro EWOULDBLOCK, used at statProxy.pl line
1
017

Hangs..........

Interesting result though - I thing my IT must have made an error configuring
Superscout this time, I`ve never had an open port before......
Had to exit with ctrl-c....

C:\Program Files\localproxy>perl statproxy.pl 192.168.4.1:8080
Warning: If you are testing any proxy through a redirector,
the proxy anonymity test will reveal your true IP address.
Normally you would be connecting directly to the proxy for these
tests anyway, so it doesn't matter. The test won't work if you
block incoming connections with a firewall, or a NAT.
I will disable the anonymity test if you wish.
Disable anonymity test (y or [n])? y

...anonymity test is disabled

statProxy v4.95 report from 192.168.4.67:
192.168.4.1     :8080  AFFFFFFFFFFFF FFFFsend() on closed socket PROXY at
statpr
oxy.pl line 1016, <STDIN> line 1.
Your vendor has not defined POSIX macro EWOULDBLOCK, used at statproxy.pl line
1
017

C:\Program Files\localproxy>

Bombs out....

>
> >
> > My ambition !! is still to get access to a fileshare network, preferably
> > imesh or Kazaa !! Unfortunately I never got a chance to try out the
> > eDonkey profile you set up for me.
>
> My advice is to use one that only needs TCP.

Hmmm... have yet to find such a beast - but that would be ideal.

>
>
> > Localproxy is probably not an option for me as things stand and it looks
>
> Can you get to google.com? You can argue that you *need* that.
> Make sure you can get to translate.google.com (you *need* to be able to
> translate web pages into English for work occasionally, right?).
> Then commStrat 2.g in the new release will work for you.
> If you like this, I can probably generalize the service used by 2.g,
> so it can be placed in the user config file. Then you could use your
> own CGI proxy there - 2.g works the same way. There's no real
> advantage to this though. CommStrat 2 is only good for web pages,
> not services like socks, edonkey, news etc., so it's no different than
> your CGI, just faster.
>

Have asked for this and am pretty certain I`ll get it. Yep - done. Would
prefer to use localproxy than my CGI proxy....


[snip... for now...]

Am sure you are right about it being beyond me to program a tcp to udp
conversion and relay program.... but would still like to learn about the
protocols involved so will look at the sources you point me too.

Mike

[proxyTools-users] Re: [Proxy Elites] A bug in StatProxy

[wayne <wa...@ny...>]

> Date: Wed, 04 Sep 2002 18:06:35 +0000
> From: "Madani AL mad...@ho... 
> To: wa...@ny...
> Subject: [Proxy Elites] A bug in StatProxy

CCing pro...@sf.... Support for proxyTools is now only 
being handled there. I am unable to post as wa...@ny... to 
yahoo groups.

Sorry I didn't get to this before now. 
I just missed this message when I left (returned last night).

> Hi wayne,
> 
> I encounter a bug in statProxy.pl V4.95 (WibLib V4.113)
> 
> Statproxy terminates with the following message:
> 
> send() on closed socket PROXY at statproxy.pl line 1016, <STDIN> line 1.
> Your vendor has not defined POSIX macro EWOULDBLOCK, used at statproxy.pl 
> line 1017
> 
> Testing never complete, where it terminates at the same location:
> statProxy v4.95 report from x.x.x.x
> 64.57.215.3     :8888  PFFFFFFFFFFFPPPPPP
> 
> I ran the same test on a previous version (statProxy.pl V4.93 and WibLib 
> V4.108). Results were normal e.g:
> 
> statProxy v4.93 report from  x.x.x.x
> 64.57.215.3     :8888  PFFFFFFFFFFFPPPPPPF  2.1/8.5
> 
> Need your help

Ya got me!
I changed *all* the socket code in *all* the proxyTools between 
those two versions. To be honest, I was expecting to hear that it 
didn't work on windows 95, or some such thing. The new code is so 
much better I was prepared to stop support for those old systems 
if that happened. Fortunately it didn't.
This bug is just a result of a bit of left over old code I forgot 
to remove, and some socket code I didn't catch which needed 
changing.
I think it's fixed now for all cases.
Thanks for the report.

> Madani

--
wa...@ny...
http://proxytools.sourceforge.net/

[proxyTools-users] proxy

[P.M. A. J. <ja...@qa...>]

Budhika,
 
I had asked for new proxy for internet block.  They asking some
question.  Can you reply to this.
 
"You'll need to tell us which ports are blocked there (Qatar). I have no
info about firewalls/proxies in Qatar."


 
Can you reply in details and copy to me.
 
Regards
Jabbar
ja...@qa...
 
 
> Date: Thu, 05 Sep 2002 18:25:29 +0300
> To: wa...@ny...
> Subject: Re: [Proxy Elites] anti proxy for omantel

CCing pro...@sf... since this will inevitably become 
a proxyTools issue.

> Hi all,
> 
> I am looling for proxy for use in Qatar. (Q-tel)

You'll need to tell us which ports are blocked there.
I have no info about firewalls/proxies in Qatar.

> Regards

--
wa...@ny...
http://proxytools.sourceforge.net/

[proxyTools-users] qatar (was:Re: [Proxy Elites] anti proxy for omantel)

[wayne <wa...@ny...>]

> Date: Thu, 05 Sep 2002 18:25:29 +0300
> From: "Sivakrishna & Geetha siv...@qa... 
> To: wa...@ny...
> Subject: Re: [Proxy Elites] anti proxy for omantel

CCing pro...@sf... since this will inevitably become 
a proxyTools issue.

> Hi all,
> 
> I am looling for proxy for use in Qatar. (Q-tel)

You'll need to tell us which ports are blocked there.
I have no info about firewalls/proxies in Qatar.

> Regards
> Siva

--
wa...@ny...
http://proxytools.sourceforge.net/

[proxyTools-users] Re: [Proxy Elites] Help wanted

[wayne <wa...@ny...>]

> Date: Fri, 06 Sep 2002 13:30:11 +0300
> From: "kokotas kouradas kok...@ho... 
> To: wa...@ny...
> Subject: [Proxy Elites] Help wanted

CCing to pro...@so... since it's mainly about 
proxyTools support. I'm not able to post as wa...@ny... 
to yahoogroups any more.

Please join this list for support.

> Hi
> This is my first mail and as always i want you to help me
> At my work i'm connected through a lan and the proxy to which i am 
> connecting to get out has a hardware firewall which censors all the trafic 
> to the web.
> I don't want to do crazy things but i just don't like the administrators to 
> log all my activity.
> I tryied HTTPORT and worked fine but it is veeeeeery slow.

This must have been working in it's extra mode, because the statProxy 
tests below show that CONNECT doesn't work through your proxy.
That means you were using a free (slow) HTTPort server outside.

> So i found proxy tools and worked with it on my home pc but i can't make it 
> work on my pc at work.

Neither of these will stop your admins from logging your requests.
I'm not not so sure about HTTPort in that mode actually - it might
be encrypted. You can do that sort of thing if you use an outside 
service.

> Can you please help me with the config or send me one cause the autoconfig 
> doesn't work.
> For your information i can't ping no one on the web.

You are using MS Windows right?
So ICMP doesn't get past your firewall.

Master.pl will tell you if any TCP ports are open, but I doubt if 
there are any. Get the latest release first.

> I ran statproxy.pl and i give you the results below if this can help.
> If you want i can run any other tests that could help for the config
> 10.0.0.2:80 is the proxy to which i am connected to get out.
> 
> c:\perl statproxy.pl 10.0.0.2:80
> ....anonymity test is disabled
> use of uninitialized value in pattern match (m//) at c:/Proxytool/Wlib.pm 
> line 437 <STDIN> line 1
> You seem to have no ip address - are you connected?
> I will assume it is 127.0.0.1
> 
> statProxy v4.70 report from 127.0.0.1:
> 10.0.0.2        :80 PFFFFFFFFFFFP FPFFF 4
> 10.0.0.2:80 is a working, unknown, via: 1.1 (my proxy name)
> 
> Other test results:
> non-censoring:
> passed:
> failed: 80
> 
> GET:
> passed: 80, 80
> failed: 80, 80, 80
> 
> PROPFIND:
> passed: 80
> failed:
> 
> CONNECT:
> passed:
> failed: 22, 23, 25, 80, 110, 119, 443, 1080, 3128, 6667, 8080

Hmm ... I should make that output look a bit more friendly. :-)
Anyway, it tells you that your proxy won't allow any kind of CONNECT.
That includes 443, which means you can't even access secure web sites.
I presume you can't even use this proxy to log in to hotmail, for 
example?

I'm a bit worried about why you have no IP address.
What operating system are you using?

You also seem to have an old copy of statProxy; better get the 
latest (September) release.

Then run master.pl and send me the result.

> Thanx in advance.
> Peace.

--
wa...@ny...
http://proxytools.sourceforge.net/