I'm sure we've all heard of it before : BESS

**AlxRogan** · September 11, 2004, 17:31

"horribly mean IT people" usually have a reason for doing things such as requiring proxy use to make sure the overall network is secured from some nasty influences. If you have a legitimate use problem, I'm sure they will be happy to work solutions out with you.

Proxy -> proxy -> proxy all you want, the traffic has to pass their gateway regardless. Unless you're going to do some kind of encrypted traffic, they WILL see what you see.

**Pandacannon** · September 11, 2004, 17:51

With over 1400 students using the school's computers daily im not to worried of them seeing what i'm doing.

Students can bring in laptops and connect to the school's network, and that's what i'm about to be doing.

The settings for bess blocks the same sites for every student in the school. Noone but faculty gets unfiltered usage.

THe filter is so insanly strict that it actually blocks certain sites and claimed that the reason they were blocked was because they were related to : happiness

**skroo** · September 11, 2004, 20:00

I'm willing to bet that they only filter on port 80. Get a shell account somewhere, SSH to it (provided they're not blocking port 22), and use links or lynx to get to whatever website you need. Yeah, it'll be textmode, but at least you'll be able to read what you want.

**Import** · September 11, 2004, 22:50

Bess sucks (that bitch).

Get a faculty password, log on as faculty member, surf unrestricted. Or you could just go somewhere else and borrow a wireless connection.

**Chris** · September 12, 2004, 02:56

Originally posted by Import

Bess sucks (that bitch).

Get a faculty password, log on as faculty member, surf unrestricted. Or you could just go somewhere else and borrow a wireless connection.

Sigh. Did someone spike the water with stupid juice after I went to bed last night? Both of these are crimes. We do not condone the discussion of criminal activity on this board. This isn't CYA rhetoric. It's the way it is. This is your one and only warning.

**Import** · September 12, 2004, 20:40

My apologies.

I did a little digging and found >>this<< With a bit more info on BESS. Maybe you'll find the answer there.

**TheCotMan** · September 19, 2004, 23:29

Originally posted by skroo

I'm willing to bet that they only filter on port 80. Get a shell account somewhere, SSH to it (provided they're not blocking port 22), and use links or lynx to get to whatever website you need. Yeah, it'll be textmode, but at least you'll be able to read what you want.

And if you have a remote ssh-based shell, and have a little skill, you can apply some kluldge-like foo with network port redirections by using a recent openssh (server and client) on a remote host and putty on the windows box to take advantage of a local to remote port redirection to a localhost enabled -D (flag) based SOCKS 4/5 proxy on the remote shell to itelf.

[Putty, from windows, Port Redir, Local 9999 to remote 127.0.0.1:9999]
[Putty, ssh to the remote server with above port redir]
[Remote server, ssh -D 9999 127.0.0.1]
[Finish ssh login to localhost of remote host]
[Tell Windows Web Client to use Socks v 4 or 5 proxy on localhost port 9999]

Then, you get local GUI browsing to a localhost PORT Redir to remot host SOCKS4/5 proxy.

If you have an OS with a copy of OpenSSH, then check out man page on ssh and the "-D" flag and settings on your browser for SOCKS4/5 proxy IP/port.

You still get local DNS lookup so there is information leakage on sites being visited, but there are other ways to deal with that if you try.

You can also use similar techniques to break firewall rules from the inside and make firewalled/filtered service extrenally available, and get your network admin mad at you. (Primarily with TCP based service... UDP or services with call-back don't work so well with this.)

I'm not really here. Be back in 3 months.

[fixed typo]

**minihacker316** · August 30, 2005, 14:15

bess usually just blocks ports so...

Just use www.google.com as the proxy with no port, or else use an unusual port like 8000. If you use the google one then you can only look at the cache version of websites.

**Chris** · August 30, 2005, 17:15

Originally posted by minihacker316

Just use www.google.com as the proxy with no port, or else use an unusual port like 8000. If you use the google one then you can only look at the cache version of websites.

Wow...I bet he wishes he had that information a fuckin' year ago when this thread died.

**minihacker316** · August 31, 2005, 07:46

Hey!

The thread didn't die, it was just sleeping...

Anyway, you can just use JAP.

**Import** · August 31, 2005, 15:37

are you serious? Especially with newer threads about bess.

**TheCotMan** · August 31, 2005, 16:11

Originally posted by minihacker316

The thread didn't die, it was just sleeping...
Anyway, you can just use JAP.

It was sleeping, just like the other, more recent thread on bypassing web blocking systems where you suggested google.

In that case, it was only ~3 months old, and a good suggestion for people to try. However, now you have chosen to dig up a thread that was one year old, only to contribute the same bit of information provided to the more recent thread.

I overlooked it last time because it was a good suggestion of something to try, worthy of digging up a 3 month dead thread to include a quality comment.

This is a warning: there is no reason to dig up each duplicated thread on the same subject and post the same information to each.

About 3 weeks for posting replies to "old threads" is a good guideline. There are exceptions (e-books, URL you can't live without, etc.) but the value of your content should be proportional to the age of the thread.

"It was sleeping"
No. And it wasn't "pining for the fjords." either.

I'm sure we've all heard of it before : BESS

I'm sure we've all heard of it before : BESS

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment