09-17-2001
General Proxy Question
This is quite a general question:
I am trying to detect whether people accessing my network are using a proxy server. This is *not* to ensure that web pages are not cached!
The only way that I can think of doing this is to intercept at packet level and examine the source port for high-numbers. But even this is no guarantee. Humph.
Does anybody have any suggestions. The solution must be automated, ie. I can't rely on users filling out a form correctly!
10 More Discussions You Might Find Interesting
1. IP Networking
Firstly I must apologise; I have posted something similar in the "general UNIX newbies" forum; but in reterospect I think that it's more appropriate here.
Anyhoo;
I am trying to detect whether people accessing one of my servers are coming via a proxied connection. I must add that this is... (1 Reply)
Discussion started by: sam_pointer
1 Replies
2. UNIX for Dummies Questions & Answers
Hi, I've been racking my brains trying to remember, but, whats the command to change the default shell? I'm currently always in the Korn shell and I want to start out in the Bash shell. I'm running a variant of BSD I guess in Mac OS X 10.2.2 and Mandrake. Thanks.
ccindyderek:confused: (4 Replies)
Discussion started by: ccindyderek
4 Replies
3. Shell Programming and Scripting
Perl, Python, and PHP are these languages easy to use? Are they command line or are they part of a GUI? (2 Replies)
Discussion started by: wmosley2
2 Replies
4. UNIX for Dummies Questions & Answers
This may be a dumb question (but this is the UNIX for Dummies Q&A forum :)
But I'm wondering, what is the purpose of a directory being given execute permissions? I can't execute a directory, only files, right? If I make a directory executable, the files inside still won't execute unless I give... (1 Reply)
Discussion started by: FredSmith
1 Replies
5. UNIX for Dummies Questions & Answers
Experience level : New to programming in Linux. Forgive my noobiness in this context with regards to programming, language or grammar.
Some Background info : I have seen a lot of programs which I use (Modo and Maya especially) which can use a command line to run the different parts of the... (2 Replies)
Discussion started by: snd321
2 Replies
6. Solaris
Dears,
my question
is that possible to configure any server to work in solaris zone
i mean any server
cos i read that DHCP can't be work on solaris zone
is that real or not
Best Regards
Alexander Corvinus (4 Replies)
Discussion started by: corvinusbsd
4 Replies
7. Linux
I am looking for an alternate solution other than gzip or bzip2 to compress files that are 3 to 4 GB each and will be hundreds per day. Aside from increasing storage anybody found a good tool? (5 Replies)
Discussion started by: mykey242
5 Replies
8. UNIX for Dummies Questions & Answers
How is the level of access on a particular folder determined? I have heard (its just hearsay so am not particularly sure of it) that the access a particular user/group has to a low level directory is also affected by the level of access granted to the user/group on its parent directories. e.g.
... (1 Reply)
Discussion started by: jawsnnn
1 Replies
9. Shell Programming and Scripting
So this is something I've been wondering how to do for a while. Suppose I have two shell scripts a.sh and b.sh
script a does some function and outputs to a varable $x . I would then like to take $x into the second function, b.sh, and do a function on it and create some output. So how do you pass... (3 Replies)
Discussion started by: viored
3 Replies
10. Programming
I am planning on taking a class in Python. My choices are 2.5 or 3.0. Which version should I choose? I am getting the impression they are two separate paths.
thanks. (5 Replies)
Discussion started by: djehresmann
5 Replies
LEARN ABOUT DEBIAN
spikeproxy
SPIKEPROXY(1) General Commands Manual SPIKEPROXY(1)
NAME
spikeproxy - web application auditing tool
SYNOPSIS
spkproxy [-s SSLproxyhost] [-p port] [-U NTLMUser] [-D NTLMDomain] [-P NTLMPassword] [-l ListenHost] [-c cache_directory]
DESCRIPTION
This manual page documents briefly the spikeproxy command. This manual page was written for the Debian distribution because the original
program does not have a manual page.
SPIKE proXY functions as an HTTP and HTTPS proxy, and allows web developers or web application auditors low level access to the entire web
application interface, while also providing a number of automated tools and techniques for discovering common problems. These automated
tools include:
1.Automated SQL Injection Detection
2.Web Site Crawling (guaranteed not to crawl sites other than the one being tested)
3.Login form brute forcing
4.Automated overflow detection
5.Automated directory traversal detection
In addition to automated analysis, SPIKE proXy allows the user to penetrate into the internals of the web application by viewing and chang-
ing all variables, cookies, headers, or other parts of the request and resubmit them. SPIKE proXy maintains a careful record of each
request made - saving both each request, and the entire response. The user can later go back and replace any request or view any response.
OPTIONS
This program can be configured with the options listed below. The options may be given in any order.
-c cache directory
The directory that will be used to cache all the requests. This directory is created if it does not exist. The default location is
/var/cache/spikeproxy but it can only be used by the root user. -l listenhost The IP address the proxy will listen on (it defaults
to 127.0.0.1 so it is not available from external hosts).
-p port
This option sets the port the proxy will listen on (it defaults to 8080 if not provided).
-h proxyHost
Sets a proxy host to use in the proxy chain. Spike will forward all requests to this proxy.
-H proxyPort
Sets the port for the proxy host.
-s proxySSLHost
Sets a proxy host for SSL connections. Spike will forward all SSL requests to this proxy.
-S proxySSLPort
Sets the port for the SSL proxy host.
-U NTLM Username
Defines the NTLM username it will use when authenticating to the proxy host.
-P NTLM Password
Sets the password it will use when authenticating to the proxy host.
-D NTLM Domain
Sets the NTLM domain it will use when providing credentials to the proxy host.
SEE ALSO
The program provides inline documentation in the user interface when connected to it through a web client. If you are trying to audit a web
application you might want to read OWASP Guide to Building Secure Web Applications and Web Services, Application Security Attack Components
project, Application Security Testing Framework, and the OWASP Web Application Security TopTen available at http://www.owasp.org and the
World Wide Web Security FAQ available at http://www.w3.org/Security/Faq/
AUTHOR
This manual page was written by Javier Fernandez-Sanguino Pen~a <jfs@computer.org>, for the Debian GNU/Linux system (but may be used by
others).
October 2, 2006 SPIKEPROXY(1)