Using webproxies is a bad idea generally because you never know about the integrity of the webproxy used:
htxp://www.abuse.ch/?p=2534 (read the story about Glype insecurity)
Some insecurely-configured Web proxy servers can be exploited by a remote attacker to make arbitrary connections to unauthorized hosts. Two common abuses of a misconfigured proxy server are to use it to bypass firewall restrictions and to send spam email. A server is used to bypass a firewall by connecting to the proxy from outside the firewall and then opening a connection to a host inside the firewall. A server is used to send spam by connecting to the proxy and then having it connect to a SMTP server. It has been reported that many Web proxy servers are distributed with insecure default configurations,
I have broken the link, “ingen fare”, had NS and RP active in flock when going there…
Copy text: [copy]*** The bad things you don’t know about such proxies ***
Unfortunately the other site of the coin looks much worse:
* You don’t know who run these proxies
* You don’t know if these proxies are secure and clean from any malware and drive-bys
* You don’t know the intentions of the persons who runs these proxies (maybe they have mean ill?)
But you have must be aware of one fact: Those proxies aren’t anonymous! Web Proxy scripts like Glype&Co have a free configurable option wheter the administrator of the (glype-) proxy wants to log the requests which are passing his proxy or not. And you can be sure that the most Glype administrators will do.
*** The facts ***
Fact is that there are a lot of insecure servers out there running Glype: I was able to retrive the logs of several Glype proxies – and the results are really interesting. Some statistical information first:
of checked proxies: 20
of Logfiles retrived: 1′700
of hits: 64′063′377
of unique IPs: 1,05 Mio
Total Size of logfiles : ~10GB
I took a few hours to analyse the logfiles. The result of my analysis didn’t suprised me much (Top countries by unqiue IPs):
Most of the top countries shown above are explainable like China (for building a great firewall around its internet users), Turkey (for banning most favorite websites like Facebook, MySpace, Wordpress and Blogspot) and Germany (for the planed Data Retention Law). [/copy]
