Open proxy

From Wikipedia, the free encyclopedia
(Redirected from Insecure proxy)

An open proxy is a type of proxy server that is accessible by any Internet user.

Generally, a proxy server only allows users within a network group (i.e. a closed proxy) to store and forward Internet services such as DNS or web pages to reduce and control the bandwidth used by the group. With an open proxy, however, any user on the Internet is able to use this forwarding service.

Diagram of proxy server connected to the Internet.
An open proxy forwarding requests from and to anywhere on the Internet.

Advantages[edit]

An anonymous open proxy is useful to those looking for online anonymity and privacy, as it can help users hide their IP address from web servers since the server requests appear to originate from the proxy server. It makes it harder to reveal their identity and thereby helps preserve their perceived security while browsing the web or using other internet services. Real anonymity and extensive internet security might not be achieved by this measure alone as website operators can use client-side scripts to determine the browser's real IP address and the open proxy may be keeping logs of all connections. Open proxies also do not stop tracking cookies and fingerprinters from identifying users.[1]

Most public VPNs work through open proxies.

Disadvantages[edit]

It is possible for a computer to run as an open proxy server without the computer's owner knowing it. This can result from misconfiguration of proxy software running on the computer, or from infection with malware (viruses, trojans or worms) designed for this purpose.[2] If it is caused by malware, the infected computer is known as a zombie computer.

Testing for access from an open proxy[edit]

Because open proxies are often implicated in abuse, a number of methods have been developed to detect them and to refuse service to them. IRC networks with strict usage policies automatically test client systems for known types of open proxies.[3] Likewise, a mail server may be configured to automatically test mail senders for open proxies, using software such as proxycheck.[4]

Groups of IRC and electronic mail operators run DNSBLs publishing lists of the IP addresses of known open proxies, such as AHBL, CBL, NJABL (till 2013), and SORBS (in operation since 2002). The AHBL discontinued public access in 2015.[5]

See also[edit]

References[edit]

  1. ^ O'sullivan, Fergus (27 September 2021). "VPN Myths Debunked: What VPNs Can and Cannot Do". How-To Geek. Retrieved 16 January 2022.
  2. ^ "Accidental spamming, zombies and spoofing". Australian Communications and Media Authority. Archived from the original on 2015-12-25. Retrieved 2015-12-08.
  3. ^ "Blitzed Open Proxy Monitor". Blitzed.org. 2011-08-21. Archived from the original on August 15, 2014. Retrieved June 21, 2014.
  4. ^ "proxycheck: Open Proxy checker". Corpit.ru. Retrieved 2011-11-21.
  5. ^ "Official Abusive Hosts Blocking List Website".