Sunday March 13How to block anonymous surfing and anonymous surfersI've had to upgrade the security of this website recently. Because of troll problems that have persisted over the years, I've had to take the drastic step of banning the trolls -- all of whom just so happen to be using Malaysian IPs. In addition to blocking all the ranges of the Malaysian universities and Malaysian ISPs, I've had to block anonymous surfing as well. The Malaysian IPs were easy enough to figure out using a combination of my counter and geo-IP location services like ip-to-country.com. Malaysians are notorious for not paying for anything online so I was concerned with free anonymous surfing proxies and have ignored the commercial ones. There are several free anonymous surfing proxy IP lists on the internet which you can use with tools such as the Switch Proxy Toolbar for Firefox. Those are time consuming to block since the lists keep getting updated constantly. But it is more likely that most people will try using the anonymous surfing websites first. And those are easily blocked once you figure out the IP of the proxy server or servers.
For your convenience, here's a short list of the IPs of more popular anonymous surfing sites. These are only samples. These services usually use more than one IP (so you may have to indiscriminately ban a wide range like in the case of proxify.com).
|
Who MeI'm an online brand planner and SEO specialist in Malaysia. XHTML, CSS and PHP hacker. for branding and content planning and execution, offline and online. Subscribe MeMost Popular
Related topicsI recommend
Google Textads |
Earlier Entries
Google TextadsBloglines feedsBlog News
Branding
CSS/Web Development
Filters (Other)
Metafilter
News/Aggregators
Search Engine News
Tech Business News
Tech News
Powered by Bloglines
|
Google Textads |
Comments
Tim:
If you have root access to a Linux box, you may want to consider my approach.
http://www.newestindustry.org/index.php/2005/03/11/blocking_anonymizer_hits
Thanks for the tip Stephen! Unfortunately, no, I don’t have root access to my box. But it’s an issue I’ll bring up with the sysadmins. This tip will only improve their security.
This is seriously good stuff Tim. Thanks for the tip.
The list of IPs I’ve tracked down for Proxify include the following class C ranges:
66.98.130.
66.98.131.
67.15.76.
67.15.77.
70.84.56.
168.75.65.
They host their service with EV1.net. While they may not use all of the IP addresses in the Class C ranges above, these IP ranges do contain IP addresses used by their service to connect to webservers and they are blocks of addresses dedicated to web hosting as opposed to EV1’s dialup service. As such there should be a very minimal risk of blocking users who are not using the proxify service.
The most annoying thing about their service is that while they are allowing all users to block ads from websites, they are at the same time displaying their own ads on proxied pages served to non-paying users. In otherwords they take our ads out and put their ads in.
This act of removing our ads and putting their ads in alone is reason enough to block this proxy service from accessing our sites.
Thanks Vinnie, nice stuff! It’s hard to track proxify because they use huge ranges.
Trackback URL for this entry
No trackbacks exist for this entry. No pingbacks exist for this entry.