ScusiBlog

background emmission of scusi.

Proxy FAQ (English)

Other languages: Deutsch | English


This is the proxy FAQ in englisch.

  1. What is a proxy?

  2. Why a proxy?

  3. How can a proxy server be used to bypass internet censorship?

  4. How can I use the proxy?

  5. What kinds of connections does the proxy allow?

  6. Which information is being stored by the proxy about my queries?

  7. Self protection when using proxies

  8. How can I prevent the connection with the proxy from being eavesdropped?

  9. Where can I give feedback or get help when experiencing problems with the proxy?

  10. I can’t change my proxy settings. Can i still use the scusiblog proxy?


What is a proxy? A proxy server is so to speak your representative in the net. You – or respectively your browser – tell the proxy which URL you’d like to have and the proxy gets the corresponding data and forwards them to your browser. Your browser shows the data as usual.

Why a proxy? A proxy server is one of the easiest ways of circumventing internet censorship.

How can a proxy server be used to bypass internet censorship? Simple internet censorship tries to block the way from the user (that’s you) to the destination. However, when you use representative to reach the destination, such an easy method of blocking isn’t working anymore. Unless someone blocks all proxies in addition. In countries like China and Iran this is tried.

How can I use the proxy? You have to configure your browser to use a proxy. Use the following information:

IP: 80.244.241.25
Port: 8080

On the above picture you see the corresponding settings in the Firefox browser. They can be reached via “settings” -> “network” -> “connection” -> “settings”.

Caution: The above described connection is unencrypted. Please also read the sections “Self protection when using proxies” and “How can I prevent the connection with the proxy from being eavesdropped?”

What kinds of connections does the proxy allow? Someone using the proxy can access the usual ports for HTTP, HTTPS, FTP, etc… For ports 443 and 8443 (HTTPS) the CONNECT method is allowed, enabling SSL secured connections.

Here is a list of all allowed ports: 443 (SSL), 8443 (SSL), 80 (HTTP), 21 (FTP), 70 (GOPHER), 210 (WAIS), 1025-65535 (unregistered), 280 (http-mgmt), 488 (gss-http), 591 (filemaker), 777 (multiling http)

All other ports are blocked.

Which information is being stored by the proxy about my queries? While the proxy is running in beta phase there are log files. This allows to ensure proper operation and being able to find errors. Later on, when everything runs well, it’s planned to deactivate logging.

The log files contain entries like these:

1265935646.442   6088 80.244.241.25 TCP_MISS/200 5849 CONNECT scusiblog.org:443 - \
DIRECT/80.244.241.28 -
1265935661.625   1168 80.244.241.25 TCP_MISS/200 3480 CONNECT twitter.com:443 - \
DIRECT/168.143.171.84 -

The entry fields are: Time, PID, source IP, status/code, bytes, method, destination host:port - connection type/target IP Here’s another advantage of using a stunnel connection to the proxy. As source IP the IP address of the stunnel node will be stored, which is the proxy itself. Stunnel has no logs activated. Not even in beta phase. ;-)

Self protection when using proxies It’s known that censoring countries sometimes read the whole traffic along and analyze it. Everything transmitted via plaintext (thus unencrypted) connections can and will be used against the citizens in such countries. Therefore it’s adviced to encrypt the connection to the proxy not giving censors the opportunity of repression.

How can I prevent the connection with the proxy from being eavesdropped? In order to secure the connection between the user and the proxy you need the software stunnel. Stunnel is available for download at ftp://stunnel.mirt.net/stunnel/ or http://www.stunnel.org/download/. The software runs on Linux, *BSD, MacOS and Windows. Use the following stunnel.conf on your computer:

client = yes

[proxy]
accept = 127.0.0.1:8080
connect = 80.244.241.25:8181

Then start stunnel and change your proxy IP settings in your browser from 80.244.241.25 to 127.0.0.1. The port stays at 8080. If stunnel is running and your browser is properly configured you should be able to surf the web. The connection between your computer and the proxy will be encrypted by stunnel. Click here to find out if you are using the scusiblog proxy.

Where can I give feedback or get help when experiencing problems with the proxy? Write an e-mail to proxy@scusiblog.org or use the contact form.

I can’t change my proxy settings. Can i still use the scusiblog proxy? Yes you can, just use the webinterface located at: https://scusiblog.org/proxy/