Orphan
join:2002-04-20
New York, NY
|  "No Reverse DNS"?
Trying some anonymizing programs. Narrowed it down to
Ghostsurf Platinum and Anonymizer Privacy Manager
Although GS is faster, APM gets a "No Reverse DNS" from GRC.com which, according to him, is very advisable.
Anyone familiar with all this? |
|
TerryMiller
Premium
join:2003-10-23
| It's all BS. The only way to remain anonymous is to stay off the web. Your IP goes to the proxy or it goes to the web site. Who'll cave first in court, the proxy company or your ISP. You have to go to court twice to find out and by then it doesn't really matter.
Does the proxy filter out malware, then maybe the proxy helps. Until these proxies do more than just offer anonymous browsing then they're just another place to spend money.
--
Michelle Graduates |
|
Orphan
join:2002-04-20
New York, NY
| reply to Orphan
This is the qoute from GRC.com:
"Your Internet connection has no Reverse DNS.
Many Internet connection IP addresses are associated with a DNS machine name. (But yours is not.) The presence of "Reverse DNS", which allows the machine name to be retrieved from the IP address, can represent a privacy and possible security concern for Internet consumers since it may uniquely and persistently identify your Internet account — and therefore you — and may disclose other information, such as your geographic location." |
|
Orphan
join:2002-04-20
New York, NY
| reply to Orphan
Anonymizer Privact manager:
Each Privacy Level has settings for the following:
• Block Ads: Prevents unwanted ads from being served.
• Block Web Bugs: Prevents advertisers from adding hidden files to your computer.
• Filter Cookies: Prevent unwanted cookies from being set. You may want to allow some cookies from trusted sites.
• Block All Cookies: Prevents all cookies from being set.
• Block Third Party Cookies: Prevents cookies from being set by sites other than the site you are visiting.
• Filter JavaScript: Prevents unwanted JavaScript from executing on your computer.
• Block JavaScript: Prevents all JavaScript from executing on your computer.
• Block VBScript: Prevents all VBScript from executing on your computer.
• Block Pop-ups: Prevents sites from serving you pop-up ads while you surf.
• Block Active X: Prevents ActiveX programs from executing on your computer.
• Block Java: Prevents Java applets from executing on your computer.
• Hide IP Address: Prevents the IP Address of your computer from being sent to the sites you surf.
• Browse in SSL Mode: Allows you to always browse in an encrypted mode.
• Hide Referrer: You will not send referral information to the site you are surfing, so they will not know what site that referred you.
• Hide Page Title: The title of the web page will not show in the upper left corner of the browser window.
• Mask OS and Browser: Some sites collect information on users’ computer operating system (OS) and browser type. Privacy Manager will prevent this information from being sent.
• Block Blinking Text
• Block Background Music |
|
Qumahlin
Never Enough Time
Premium,MVM
join:2001-10-05
united state
| reply to Orphan
said by Orphan  :This is the qoute from GRC.com: "Your Internet connection has no Reverse DNS. Many Internet connection IP addresses are associated with a DNS machine name. (But yours is not.) The presence of "Reverse DNS", which allows the machine name to be retrieved from the IP address, can represent a privacy and possible security concern for Internet consumers since it may uniquely and persistently identify your Internet account — and therefore you — and may disclose other information, such as your geographic location." Steve Gibson is retarded and is widely considered to the be Michael Moore of computer security reporting.
There is no danger or risk to having RDNS, he might as well tell the REAL truth and just say "Your connecting to my site, therefore your computer has an IP address, this is dangerous"
--
Forum Posts:6000 |
|
jvmorris
I Am The Man Who Was Not There.
Premium,MVM
join:2001-04-03
Reston, VA
| said by Qumahlin : . . .Steve Gibson is retarded and is widely considered to the be Michael Moore of computer security reporting. . . . I can see the polls being cranked out now!  (Unfortunately, it would take two polls, the way the polling option works here.)
Steve Gibson
• Steve Gibson is very favorably impressed by being compared to Michael Moore.
• Steve Gibson is somewhat favorably impressed by being compared to Michael Moore.
• Steve Gibson is totally indifferent to comparisons with Michael Moore.
• Steve Gibson is somewhat unfavorably impressed by being compared to Michael Moore.
• Steve Gibson is very unfavorably impressed by being compared to Michael Moore.
• I could care less what Steve Gibson feels about being compared to Michael Moore and why am I reading this stupid thread anyway?
Michael Moore
Well, you get the idea, I hope. 
--
Regards, Joseph V. Morris |
|
B
Premium,MVM
join:2000-10-28
| Many Internet connection IP addresses are associated with a DNS machine name. (But yours is not.) The presence of "Reverse DNS", which allows the machine name to be retrieved from the IP address, can represent a privacy and possible security concern for Internet consumers since it may uniquely and persistently identify your Internet account — and therefore you — and may disclose other information, such as your geographic location."
I must admit that IS one of the stupider (it's a word but it shouldn't be) over-the-top-bloviating-bordering-on-misinformation examples from all of Steve's collected works of over-the-top-bloviating-bordering-on-misinformation.
Because of course without that RNDS (which can of course be either meaningless or have one host name applying to MULTIPLE IP addresses), it would just be IMPOSSIBLE to "uniquely and persistently" identify you or "disclose your geographic location".
He really is a tool sometimes.
To Orphan 's question -- it doesn't matter. Just pick the provider you TRUST more -- because you're going to put ALL your privacy and anonymity eggs in their basket!
-- B
--
In a realm outside causality and function |
|
jvmorris
I Am The Man Who Was Not There.
Premium,MVM
join:2001-04-03
Reston, VA
| I think that, when Steve started out with Shields Up, lo all those years ago, that what typically got displayed at that point was your NetBIOS information (since most ISPs didn't even provide rDNS labels) if you'd forgotten to block Internet access to it. Some of that, of course, could be quite revealing and in a very unfortunate way. Of course, today, Steve (and many others) have made a very great issue out of that and fewer people expose NetBIOS to the Internet at large. Also, many ISPs now block NetBIOS access at their gateways, so Steve could not probe for that information with any great success. It appears that at some point, Steve put in doing an rDNS lookup as a backup solution, but did not significantly re-write his little blurb to reflect what he was then displaying. (All over the world right now, there are probably people trying to figure out what those strings are, because they certainly can't find them anywhere on their machines! )
On the other hand, for people like me, if you tend to dabble in malware epidemiology when the opportunity presents itself, the rDNS information on sites that are probing you can be quite useful (presuming of course that the ISP provides same). In many cases, it allows an investigator to determine whether the compromised boxes are using dial-up, ISDN, ADSL, cable, etc., from the way the identifying string is put together. (Quite frankly, I think it's likely that ISPs probably do this to assist their help desks in trouble-shooting problems.)
--
Regards, Joseph V. Morris |
|
B
Premium,MVM
join:2000-10-28
|
I don't have the patience to verify through Archive.org, but I suspect you're being too kind.
He still does the NetBIOS checks with ShieldsUp, and the rDNS section and its particular exuberance certainly seem rDNS-specific to me (find your location, etc.).
Yup, rDNS is nice to have, and some more paranoid sites (and e-mail servers) won't communicate with you unless you have it.
By the way, to Orphan again, the rDNS applies to the IP address ShieldsUp is seeing, which is the IP address of the PROXY, *not* your IP address. So it really, really doesn't matter to you.
-- B
P.S. Don't be surprised if https gets around the proxy.
--
In a realm outside causality and function |
|
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| reply to Orphan
let me explain something about all these "free" and "public proxy lists" 90% or more are set up on computers that were infected by trojans this is how the proxy was set up to begin with. I was running a proxy server on my own comp local only. Even on https conection i was able to see pass words usernames and even credit card numbers i punched in (cc numbers were totaly random and bogus). So befor eyou use a proxy you find on one of these lists consider this. By doing so you may be giving out your cc numbers etc to what ever script kiddie infected that computer. Proxies that you do not run or that your isp does not provide for your use should be avoided. If you want to use a proxy to filter out addverts and block sites you dont want to be visited from your computer or lan then set one up your self ither on your comp or useign something like smoothwall and dans gaurdian.
I know of at least one person who used a credit card while behind a free proxy he found that had his credit card number pin number username and pass word stolen. This happened during a sign up for a game account for a mmorpg (mmorpg is a game like eq ryzom rubies of eventide etc) He blaimed the company producing the game for the id theft. After questioning him on his internet conection and having him run anti virus trojan and spyware apps we found out he was behind a proxy that he found online. Obviously his bank voided out those charges and hes not required to pay the charges made on his cc but his credit rateing most asureadly took a hit over this.
moral of the story dont use public free proxies they are pure bad news.
--
new 3d chat comunity at »planetvirtuel.com my site »spellbound.valshea.com/news.php |
|
EGeezer
Summertime -
Premium
join:2002-08-04
Country! | Let's send our keystrokes to Lower Slobbovia...
I must concur, the logic of hiding oneself by routing everything to and from the paranoid's system through some "anonymous" proxy supposedly in Lower Slobbovia run by Heaven-knows-who is mystifying... |
|
B
Premium,MVM
join:2000-10-28
| Re: Let's send our keystrokes to Lower Slobbovia..
nova makes a great point, which I tend to forget.
These days many (most?) public proxies are not KNOWINGLY or WILLINGLY public proxies.
I would assume (!) that the commercial ones don't engage in that.
-- B
--
In a realm outside causality and function |
|
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| said by B :nova makes a great point, which I tend to forget. These days many (most?) public proxies are not KNOWINGLY or WILLINGLY public proxies. I would assume (!) that the commercial ones don't engage in that. -- B Ahh but heres a fact about the comercial ones they offer you zero privacy they log every thing and if some agency or isp says hey i need the records for the user useign this proxy ip at this time of day they will turn that info over instantly.
Another intresting tid bit i can with my own web server see right through your proxy and see your real ip if you use one of the many comercial services not all but most include your real ip in a seperate encoded packet. There are only a hand full of servers on the market that can see this packet. But it is there none the less.
Then theres this fact even if your goign through a proxy your first hop is going to be your cable/dsl modem your secound hop will be your own ip only on the 3rd hop does the proxy take over.
So think your hiding from your isp when you use a proxy your flat out wrong. Your isp has 2 diffrent hops where they can log your out going conections from modem ip that will be a 10.*.*.* addy and your assigned ip address well the router that asigned you that address. Sence your going through that router on the way to your anonomizer proxy the url/ip of the site your going to is sent through that location first then to your proxy.
In other words you want to remain anon on line dont go online.
--
new 3d chat comunity at »planetvirtuel.com my site »spellbound.valshea.com/news.php |
|
