Comments on: Hak5 1108 – Hak5 Special: Proxies – Part 1

By: Darren Kitchen

Darren Kitchen — Mon, 30 Apr 2012 23:12:51 +0000

Sure you can run a proxy server at home. We actually cover setting these up in both Windows and Linux over the next two episodes. If there was a MITM at the coffee shop you would indeed be giving up the IP of your home server. Also keep in mind what you’re doing here is shifting the trust from the open WiFi network (low trust IMHO) to your home or VPS. Sure your VPS provider could be sniffing, but then again so can your ISP so at the end of the day you just have to ask yourself, who do you trust?

By: TuffRank

TuffRank — Sat, 28 Apr 2012 23:27:14 +0000

m8! you are well-off with your OSI understanding /concept … first thing first;

Quote; “proxies and NAT and essentially one in the same” that is incorrect… Go back to your study guides or your youtube vids & refresh your Knowledge r follow on…

However, I do agree with you with using the OSI and TCP/IP layer Blueprint for explaining how Internetworking Works…

Think about NAT & Proxy this way.

Do not confuse a proxy server with a NAT (Network Address Translation) device. A proxy server connects to, responds to, and receives traffic from the Internet, acting on behalf of the client computer, while a NAT device transparently changes the origination address of traffic coming through it before passing it to the Internet…

OSI concept;

For those who understand the OSI (Open System Interconnection) model of networking, the technical difference between a proxy and a NAT is that the proxy server works on the transport layer (layer 4) or higher of the OSI model, whereas a NAT works on the network layer (layer 3).

Oh yeah!!

>> SOCKS performs at Layer 5 of the OSI modelâ€”the session layer (an intermediate layer between the presentation layer and the transport layer).

Great work Mr. Kitchen and pretty girl Shannon… Give-Thx

By: -Sh@@n-

-Sh@@n- — Sat, 21 Apr 2012 07:58:46 +0000

Hey man…..

itz awsum… I mean to say that this show is ultimate for

all who want to Learn Security(also other) from BASIC —–> ADVANCE…

I really Like it ….. and mostly “GO THROUGH IT”
…..

Thanks …to all

By: Kincaid

Kincaid — Sat, 21 Apr 2012 06:16:49 +0000

Howdy,

I am excited about starting to use proxies. So since we don’t know if the free proxy servers out there are logging the traffic for their evil purposes and if we go with the same line of thought that vps could in theory also log your info, I was wondering if i could run my own proxy server at home.

Then the question becomes, if i am at my favorite wifi location and I connect to my proxy at home so i can safely check my 2 emails i get a week, connecting to the proxy server would give the “man in black” the ip address of my home proxy server and they can start doing the evil things they do.

I am guessing there is no way around this?

By: rami_info

rami_info — Thu, 19 Apr 2012 21:59:20 +0000

Hi hak5 crew

Is it possible to go back to metasploit with new modules of 2012.

Thnx and hope goooooooooooooooood luck

By: D

Wed, 18 Apr 2012 15:58:40 +0000

PROXIES ago!
Totally digging this. Can’t wait to re-watch and see what comes next.
Great show.

By: Cobolt

Cobolt — Wed, 18 Apr 2012 11:09:10 +0000

shannon Just love your boobs in those tight T-shirt’s…
More tight tops please,

By: Paul

Paul — Wed, 18 Apr 2012 04:04:54 +0000

What’s the ETA on the next part? Leaving for China in 10 days!!!!

By: Slickkk

Slickkk — Mon, 16 Apr 2012 22:44:56 +0000

I guess the tools that are out are coming out are being developed slower than your episodes. They used to be way longer and better; must be running out of material. And btw Darrin you screwed up big time with not being with that chick, you must take a lot of showers lol.

By: signal7

signal7 — Mon, 16 Apr 2012 18:27:55 +0000

That was a very Interesting presentation on using proxies and I must
admit, I learned a few things along the way. However, some packet
captures of the session using a dynamic port shows that all of the DNS
requests still go to the locally defined DNS server. So, even though
the information itself is tunneled and encrypted, *where* you’re going
online is not protected. It would be trivial to defeat this proxy
with a filtering DNS provider or even a firewall that can do deep
enough packet inspection. At the very least, your provider could log
the DNS queries for later use, whatever that may be.

By: dortizesquivel

dortizesquivel — Sun, 15 Apr 2012 21:32:37 +0000

Great video! waiting the next!!