Jump to content

pppingme

+Premium Members
  • Posts

    1238
  • Joined

  • Last visited

Posts posted by pppingme

  1. Someone from another site has listed these steps to bypass a blocked site (not created for this particular case, he was responding to another post about accessing blocked sites at work):

     

    1. Setup dynamic DNS for on your home computer.

    2. install cygwin

    3. install openssh

    3. install privoxy but do not forward the ports for privoxy on your router

    4. find a port not blocked by your work, such as 80, etc and forward that on your router as your ssh port

    5. download putty on school computer

    6. connect to your ssh server and setup a tunnel on your privoxy port to the local ip of the computer running privoxy

     

    It'll take some work to get everything functioning properly, especially if you're not tech savvy.

    You are making some big assumptions, like that they can do ssh, or that they can even install software (good chance that not only do they not have admin rights, but that there are policies and restrictions on the machine). You are also teaching to flagrantly ignore and go around school policy and security. I'm sure any parent would see the good in teaching their kids values like this.

  2. Another good reason why coordinates are not included in the notification :ph34r:

    I don't believe that's even relevant. If someone grabbed the .gpx fast enough, your argument flops. The OP didn't indicate any time frames so this could have been hours later.

     

    Now there are people looking for the cache because they never got an email telling them to forget about it (the retracted email).

  3. Most likely they got retracted.

     

    If notifications were working correctly (and this issue has been brought up several times) then you probably would have received a retract notification as well.

     

    But, since notifications are broken, and gs has been very quiet on the issue, there's probably no chance they will be fixed any time soon.

     

    To them, an unacknowledged bug seems to not be a bug worth fixing.

  4. The proxy server will see the html (and thus the facebook iframe) before it even gets to the client desktop for adblock to see. The decision to block it is made before the client, and adblock, has a chance to see the html from gc.

    that's assuming the proxy does content inspection, which it probably doesn't. more likely is that when it sees a request for something.facebook.com, it doesn't proxy that request but instead hands out a different HTML page (containing javascript code to screw the whole document over).

     

    in any case, my statement is still correct. with ABP, no request is made to the FB server, ever.

    Since the OP hasn't chimed in with their specific setup, I'll speak from my consulting experience. My experience is that most schools are more concerned with content than specific domains, although someone at the top gets freaked out and individual domains do end up getting blocked (as seems to be the case here). But, it still starts at content filtering. This isn't an employer that runs a proxy in hopes to cache a few pages and speed up their internet to save money, this is an organization that has a responsibility to protect kids from certain content, and that can not be done by blocking a few sites. Content filtering is always way more effective than domain blocking.

     

    I would be very shocked if this school district isn't doing content inspection/filtering, especially since its vaguely required by the department of education.

  5. That most likely wouldn't work, since AdBlock Plus removes the ads after the page has loaded.

    that is not correct. adblock plus stops the ads from loading, period. in this case, no requeset is made to the FB server with ABP enabled, at all. so this will work.

    No, not necessarily.

     

    The proxy server will see the html (and thus the facebook iframe) before it even gets to the client desktop for adblock to see. The decision to block it is made before the client, and adblock, has a chance to see the html from gc.

  6. Most likely the school is using proxy servers, if they are, then this won't work. Any time you are using proxy servers, the proxy server does the nslookup.

    The local system always checks the hosts file before going to DNS.

     

    On top of that, regardless of who does the nslookup, once the schools filters see the facebook.com in the pages html that comes from gc, thats it anyway, so it may not even take a call to facebook, just the fact its there is more likely whats tripping it.

    Proxies that do full content inspection instead of matching hostnames & URLs are much slower, more expensive & require far more horsepower. Almost no one, especially networks on a tight budget like in a school, do this.

     

    Blackholing the domain via HOSTS should work in over 95% of cases.

    Wrong on both accounts.

     

    I won't argue that content checking costs more resources, but almost all modern proxy servers do this. To not do so is irresponsible if you are looking for any type of security (ie scanning for viruses and other bad stuff, people trying to work around onsite security, etc), also, the pure definition of a proxy server indicates that it does cache material, thus having a copy of the material anyway, so the resources aren't that much more demanding.

     

    Also, proxy servers (except for some real specialized setups) work by the client passing the URL (not the ip) of the resource they are looking for, and it becomes the proxy servers job to obtain that resource. At no point does the client need to know how to access that resource, the client will even work perfectly happy without access to a dns server, as its never touched.

  7. add : 127.0.0.1 www.facebook.com to your hosts file.

     

    To further clarify this (for windows computers):

     

    You can find the file hosts under C:\Windows\System32\drivers\etc

    Double click it and Open it with Notepad

     

    Just put it on the last line.

     

    This will make you PC redirect www.facebook.com to itself, causing facebook not to load without triggering the school's firewall.

     

    If you're on Linux, Mac it's a bit different and it's probably best to google it ;-)

    Hi potential to be wrong.

     

    Most likely the school is using proxy servers, if they are, then this won't work. Any time you are using proxy servers, the proxy server does the nslookup.

     

    On top of that, regardless of who does the nslookup, once the schools filters see the facebook.com in the pages html that comes from gc, thats it anyway, so it may not even take a call to facebook, just the fact its there is more likely whats tripping it.

  8. nothing Groundspeak can do without switching to a new forum platform

    Wrong.

     

    They are using an old version of IPB (the forum software) and have obvious issues with the sql database behind it.

     

    IPB is commercial software and has some large forums that get more traffic than gc and have none of the issues seen here.

  9. Maybe I'm wrong, but I can't imagine loading more than a couple of caches using the send to gps tool, its just too slow.

     

    Knowing that, I don't think uniqueness of names would really be an issue?

     

    The only thing I use it for is a last minute ftf's and such, and I do find the gc codes to be annoying.

  10. What gets me about this whole friends count thing is they have these banners that DO work they were around long before the friends count, SO WHY DON'T THEY JUST USE THE SAME METHOD TO OBTAIN THE COUNTS??

     

    Worst case, why don't they just put the banner in the friends stat window as a temp fix?

  11. So somehow people are thinking that a little Like button on a cache page is invading you're privacy? Wow. You're IP address will be recorded on one more server. Who really cares?

    Because most people have the expectation that their info will only be used internally by gc, not passed around and matched up by 3rd parties to build a complete profile of you.

     

    GC has told multiple people things that you may not want out, like your exact coordinates, and other pieces of info.

     

    By the way, just so everyone is clear, the facebook icon is an iframe, NOT a link, which means its getting called every time you simply load a page that the button is on, so without your knowledge, facebook has now collected your ip, and various things that they can pull off the gc page to match you up.

  12. There are two things that seem to cause this

     

    - If you change the name of the pq (and possibly other things about the pq) after it has generated, it seems to "break" the link to the pq it already generated

     

    - If the pq was set to delete after running, it won't be available the next day for downloading, even though everything says 7 days

  13. I would sit on it for a couple days to see if maybe it just got dropped today and see what logs to work out.

     

    If nothing happens after a few days, then to keep the mileage consistent, I'd probably grab it from the person that its currently listed with, drop it in the cache you found it in, then pick it back up.

  14. If a lot of the concerns here are about privacy, I'm surprised some other issues haven't been questioned.

     

    For example, quantserve.com is called from EVERY SINGLE PAGE on gc (not just cache pages like this facebook thing appears to be), actually, its called twice, once with javascript, which is able to collect and send back way more info, and once without, in case you have javascript disabled (but would still send the refferal url, which in the case of a "nearest caches" search, would include your home coordinates). That means if you do something as simple as looking at a list of caches to your home coordinates, you've given quantserve the coordinates to your home. A prime breach of trust for gc to do this, but its there.

     

    Google-analytics.com is another big one. Why do I want google analyzing MY surfing habits (this one is used by a ton of other sites as well, if you don't thing google can build your surfing history, and now they know exactly where you live thanks to gc handing your coordinates over to them your nuts).

     

    Both of these are called from EVERY SINGLE PAGE on gc, not just cache listings, but nearest listings (which the referral url would contain your home coordinates), and every other page on the site.

     

    Why does gc do this? Since quantserve doesn't seem to be providing any services, the only thing left to speculate is that quantserve is paying gc for this opportunity to collect info.

     

    I've brought this quantserve issue up before, but since they aren't spashing on the page, no one seemed to notice or care.

     

    At one time I counted almost half a dozen sites between the main site and the forums that gc would either plant 3rd party cookies, or have some type of postback, pixle plant, or other privacy issue.

  15. I am accessing the web from a router that exclude for security reason many of the social networks.

    It means that I am not able to see any cache pages!!!!!! Not even my own ones!!!!

    Easiest way around this : add "127.0.0.1 www.facebook.com" to your hosts file.

    He most likely goes through a proxy filter, if thats the case, the local hosts file isn't used, its up to the proxy server to do dns lookups, no the local desktop.

  16. and where else to ask but just above the logging area?

    Just below probably wouldn't be as offensive, but it does feel too much like an ad and that gc is pushing yet another useless site down our throats.

  17. A lot of talk on Facebook about how one's real name appears on a cache page if you are the first one to click "Like". IMHO you should probably have warned people that their real name will forever be there. I am not one of the happy people. :( -verano

    And there appears to be no way to "un" like something once you've liked it. It used to be on FB you could just remove the liked comment, but gc seems to not see that, so comment removed from fb, like still shows on gc.

  18. Of course if this is in the GPX files, I'd love to know how it's being implemented so it doesn't break applications.

    By definition, extentions to an xml (in this case .gpx) file won't break anything.

     

    If something breaks, then its not reading the file as an xml file, but rather as a fixed format file, which flies in the face of what xml is all about.

     

    Any extension that breaks an app simply shows an app that was broken to start with.

  19. I don't think you can just copy & edit the link and hope it will work since it is relative to the ASP virtual directory. I'm no expert with this stuff so I could easily be describing this wrong. At any rate, I'd bet a cup of jo that it should be .aspx, not .ashx.

    The "h" stands for handler, its correct, and to comment on someone else's question, since it is just a handler to get the file and not a direct link to the file, it is possible to bookmark it, in theory the handler (which seems to be directly linked to the pq query) should always know where the file is for that pq.

×
×
  • Create New...