digg

Facebook Connect Join Digg About

Tired of your boss snooping on or blocking your web browsing?

zunta.org This article explains how to setup and use a proxy to route all your web surfing at work (or anywhere) through an encrypted tunnel to the connection at your house. Uses OpenSSH and Privoxy. Leaves no trace of the sites you visit and gets around any site blocking that may be setup.

Who dugg this? Made popular Aug 31, 2005

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

43 Comments

show profanity settings
expand all
  • disord3r, on 10/12/2007, -0/+4What's worse than getting fired for going where you shouldn't go on the web? Getting fired for setting up a workaround so you can go where you shouldn't go on the web.

    Here's to unemployment!
  • ryanpc, on 10/12/2007, -1/+4Heaven forbid that employees should actually be expected to *work* while they're on the job.

    If you don't like the policy, leave & find work elsewhere. If you can't, accept the reality that you're on someone elses equipment, trying to have fun on their dime. (Yes, there are likely some odd exceptions to this rule, but I highly doubt they apply to anyone here.)
  • sbma44, on 10/12/2007, -0/+2Hey all... I'm the author of the article.

    First, sorry for the cheesy background. I rotate backgrounds on the site, and that one was put up at springtime in DC (when the cherryblossoms bloom). It's long overdue for replacement. If you don't like it, though, there's a radio button in the lower right of the page that will reload the page in backgroundless "lite" mode.

    Second -- obviously everyone's subject to any terms and conditions they agreed to with their employer. Personally, I didn't agree to any. So bite me, those of you too uptight to cop to reading digg at work. If you get your work done, who cares? At some point you might find an employer who cares more about how good you are at your job rather than about how closely you hew to their arbitrary bureacratic declarations. If you're a talentless drone in a fluorescent-lit cube deep within the bowels of MegaCorp, though, I can see how you'd be hesitant to enrage your corporate masters.

    Back on track... jp10558 might be referring to openVPN (although it's not web-based). That's an excellent product, but a bit more intimidating for casual users to set up. I run it myself, but there's a lot to be said for the light weight and ease-of-use of SSH tunnelling. I'm confident that power users will figure out what's best for them. It's probably not going to be using VNC for your web browsing needs, though... that'd be horribly inefficient.

    Finally, lemme point out that I've put up an addenda post asking folks for details on how to set up tunneling in OS X. I'm not a mac owner, though, so I've had to make some guesses. If there are any experienced users who'd like to correct me or suggest better alternatives in comments, they can find the post here: http://www.zunta.org/blog/archives/004517.php
  • tryferos, on 10/12/2007, -1/+3Anyone using this at work against the policy of their company is risking termination...and for what? Cool that such tech and knowledge exists, but very dumb for someone to risk their livelihood for something so worthless.

    Besides, if the person thinks they are so much smarter than their IT department maybe they should actually get a job in IT. If they aren't smarter than their IT dept though and get caught then its their butt on the line.
  • teknurd, on 10/12/2007, -0/+2The SonicWALL we use at the school I teach at can block the use of proxy servers as well.
  • NemesisBLK, on 10/12/2007, -0/+2"Anyone using this at work against the policy of their company is risking termination...and for what?"

    Let it happen. It will just free up another job for the people that really deserve it and are willing to adhere to company policy. So if anyone here is willing to engage in this stupid activity, please leave the email address of your HR department; they shall be receiving a resume from me very soon. :)
  • tryferos, on 10/12/2007, -0/+1...oh and most companies have policies that employees have to AGREE to as terms of their employment regarding computer & internet usage. That means the company has the right to observe and/or block internet usage by their employees.
  • OakLawnTek1, on 10/12/2007, -0/+1As long as people keep posting these articles more people will be in tune to the trick. If you work anywhere that has an IT dept with some smarts and a company that agrees with them your going to have a Internet policy. Keep showing people how to do things like that that maybe aren't that versed in network comm, people are gonna get fired. I'll keep watching my snort box and keep writing new rules for these same type of practices. But all aside this is an excellent article to demonstrate holes in network security, but really the title should be changed. Don't do things while at work you don't want the higher ups to know about. Don't jeopardize your career or the lively hood of your family, for Internet browsing. Check out the following if you don't believe ssh can be detected on changed ports.

    http://archives.neohapsis.com/archives/snort/2004-07/0122.html

  • hotrod6978, on 10/12/2007, -0/+1I'd like to check it out but unfortunately I am at work and the site is blocked.
  • Trepan, on 10/12/2007, -0/+1at my company, it is corporate policy that if you are detected sending any encrypted info via email or otherwise, you are severely disciplined. This solution wouldn't work, as they actively scan for it.
  • stryker2you, on 10/12/2007, -0/+1We have a sonicwall at work that requires authentication before you have access to the internet. Once you log in everything is tracked so a report can be generated. However, if you don’t log in, no report is made because the sonicwall thinks you are not using the pc. I found that by installing TOR and Privoxy then using localhost as the proxy you never have to log into the sonicwall and you are free to browse the internet. However, I’m the admin here so if I really wanted to I could stop it from logging me but I really don’t care who watches my internet activity...I just found a way around it so I could say I can get around it.
  • BillGates, on 10/12/2007, -0/+1...a talentless drone in a fluorescent-lit cube deep within the bowels of MegaCorp...

    I resemble that remark :/
  • functioncode, on 10/12/2007, -0/+1this is for net users in the 90's, old tirck. if your it at work/school is smart enough to disable proxies and block the opensource software from being downloaded/installed they should admit their pwned and turn the job over to you.
  • crazyfan, on 10/12/2007, -0/+0How can you do this with bittorrent and other p2p programs?
  • tarun, on 10/12/2007, -1/+1A little too late, eh?
  • gModo, on 10/12/2007, -0/+0when i was in high school this kid at our school had an SSH server set up for all the students to go to on his Linux machine at home, every time the school figure out his dynamic name he would just add another number to it, the number went up pretty damn high and they never caught him.
  • zbeast, on 10/12/2007, -0/+0I work at a netwokring company I always tunnel. Like everone has a sniffer on there mashine.
  • bilton, on 10/12/2007, -1/+1"But Linux users don't need my help setting up a proxy server, and Mac users are used to being ignored"

    So true and funny at the same time.. DUGG
  • Ruteger, on 10/12/2007, -0/+0Very cool. Now this is the type of stuff I like to see on Digg!
  • sbma44, on 10/12/2007, -0/+0whoops... that last paragraph should convey that I've put up a post ANSWERING the folks who asked for an OS X writeup. It's not just a bleg for OS X info...
  • CompIsMyRx, on 10/12/2007, -0/+0While this sounds very cool, to be fair I don't ever plan on searching for porn or warez at work. The fact is, I can do that at home with much less hassle.
  • TVarmy, on 10/12/2007, -0/+0Actually, I have a practical use for this. At my school, the filter proxy is way too strict. For a while, it blocked out regular non-dirty sites like cockeyed.com . A mild annoyance, but it was even worse when I'd do research projects. As none of the teachers had a key or anything to bypass it, I had to just do without that source and find one that would get through. Worst of all, usually it would just be a single swear that someone said in an interview.
  • elusive, on 10/12/2007, -0/+0or...you could use one of these:
    http://www.goproxing.com/
    http://www.the-cloak.com/
    http://www.thevirtualbrowser.com/
  • jp10558, on 10/12/2007, -0/+0Wasn't there something better than this - a web based VPN that was OSS? Or even using VNC via the java applet on your home machine?
  • Gruesome, on 10/12/2007, -2/+2"I work at a netwokring company I always tunnel. Like everone has a sniffer on there mashine."

    Evidently literacy isn't a requirement at your workplace, is it?
  • oneguynick, on 10/12/2007, -0/+0If you run your own web server you can use a cgi script (nph-proxy.cgi) to bypass any proxy. It actually encodes the URL so that the proxy can't detect and block. Works like a champ even with SSL.
  • jenjen17, on 10/11/2007, -0/+0All of these sites get blocked at my school...is there ne other sites
  • sdenike, on 10/12/2007, -0/+0I gotta find a way around the proxy/firewall we have here at my job. Until last week I was not even able to goto such sites as aol.com, netscape.com, staples.com just to naem a few...
  • Chiablo, on 10/12/2007, -0/+0A buddy and I spent several hours trying to set up an SSH server with a Unix emulator. We followed all of the instructions to a T, but we had no success.

    Instead... we use sites like www.proxifree.com and the more effective http://www.codezulu.com/inc/goto.pl


    You can also go to google and search for "start using cgiproxy".
  • xenovoxx, on 10/12/2007, -0/+0Lucky for me, at my old job we had to Citrix to a server on a different site in order to use the software we needed. Consequently, that was a site on it's way out and on a different network than us. On top of that, the site wasn't monitored and our guy there obviously didn't care :) So... just open up IE in Citrix. Not the best, but it worked quite grandly.

    Though then again, I guess it's not such a big deal when you ARE I.T., too...
  • SneakyGroup, on 10/12/2007, -0/+0http://www.t1proxy.com
    http://www.sneakydude.com
    http://proxy.arcadeholic.com
    http://www.sneaky1.com
    http://www.pbase.org
    http://www.gaderos.com
    http://www.jdm.in
    http://www.ray9.com
    http://www.sneakyman.com
    http://www.sneakygroup.com
    More can be found in this group : http://groups.google.com/group/sneakygroup
  • Elektra, on 10/12/2007, -0/+0that's why a lot of places now have "allow-only" ip's through the proxies.

    and besides, if you look at the proxy reports and see that allot of traffic is going to one particular ip, and you hit it and notice that it's another proxy, you are done done.

    if you are working someplace where they monitor traffic it's not like seeing john or jane doe moving tons of traffic to one ip address, at the top of the list, is going to go overlooked...
  • niceboy, on 04/12/2009, -0/+0Try this lightning fast web proxy for private surfing at http://www.userdirectory.info
  • tjsocr1, on 01/18/2008, -0/+0Another good site is
    http://www.proxynyc.com
    And its NOT blocked at school ;)
  • potacho, on 03/11/2008, -0/+0Try a better site: http://ssl.ogmconcept.com
    It is truly the best!
  • billpratt, on 11/13/2008, -0/+0Some Working Sites
    http://bypassfacebook.info
    http://stayinghidden.info
    http://cloakbuddy.info
    http://bypassthat.biz
    http://itsaproxy.info
    http://bypassthemall.info
    http://privacycloak.info
    http://freedomcloak.info
    http://hidewithus.info
  • Spates, on 07/09/2008, -0/+0If you are looking for a fresh high speed web-proxy to access blocked sites at work and school or you just want to surf the web anonymously you should try http://www.browsejunk.com this web-proxy is brand new and great for streaming vidoes!!!
  • Bannana, on 10/12/2007, -1/+0What if they block you from downloading things dose it work then?
  • ralcocer, on 10/12/2007, -1/+0lol
  • JoeTheTech, on 10/12/2007, -1/+0Oops! I'm sorry but it seems our firewall was money well spent and does not allow this to work. Guess if you can do this at your work then you IT department suck.
  • darkdude, on 10/12/2007, -1/+0@gandell: If you really want.. load the site in IE. The author didn't apply the PNG-24 Alpha Transparancy hacks. Therefore, it won't show that "cheesy" background image.
  • dbrodbeck, on 10/12/2007, -2/+0I wanna make fondue in my office like Homer Simpson...
  • gandell, on 10/12/2007, -3/+0*sigh* This could have been interesting. Sadly, the author chose to use a cheesy background image.

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.