main | aup | proxy help | servers | services | operators | chat | email  



 





 

UICN scans for insecure wingates and proxies

Connection to and use of the UICN.NET IRC Network is conditional upon acceptance of any and all applicable policies of the individual servers that make up the UICN as well as acceptance of the UICN.NET Acceptable Use Policy and its Indemnify and Hold Harmless clause.

Why you were directed here:

You are most likely viewing this page because you were banned from UICN for having an "Open proxy server" found on your host. Please read this document to find out why.

A proxy server is a software program that enables multiple computers to share a single internet connection. A properly functioning and secure proxy server only accepts connections from the local addresses on the local area network that it shares the Internet connection for, and then handles the sending and receiving of requests on the Internet.

Open Proxy Servers

An "open" or insecure proxy server will accept any requests from any computer (whether on the local area network it's supposed to be sharing the internet connection for or any computer on the internet) to share the internet connection. This enables any user with sufficient knowledge to use your internet connection for whatever they want if you have an insecure proxy server running.

Many times abusers will use an open proxy to avoid akills, to spam, or for various other purposes. Not only is this a problem for our network, but your open proxy server unwittingly allowed this abuse to occur. This means that they are able to appear on IRC (and any other service that you can use through the internet, they will be able to do so through your proxy using your connection). If they cause abuse, your Internet Service Provider (ISP) may be contacted and you may get in trouble for the abuse they caused. This is a bad situation, so it is extremely important to secure your open proxy.

Scanning Procedures on UICN

Because of the potential abuse that can be caused by open proxy servers we must scan for these upon connection to our network. This enables us to prevent abuse from happening by dealing with abusive proxy users but also enables us to instruct legitimate users on how to secure their proxies to prevent abuse.

To scan for proxies, we must make non-invasive connections to your computer on TCP ports 1080 (SOCKS), 23 (Telnet), 80, 3128 and 8080 (Web proxy). We are checking for open SOCKS4, SOCKS5, insecure Wingate proxy servers, insecure Cisco routers, and insecure HTTP proxies. All of these products when improperly configured allow users to "hijack" your connection and abuse it.

Scans from UICN will come from 209.226.22.226. Personal firewalls and other products will detect these connections when you connect to a UICN server. These ARE NOT attacks against your machine but simply the open proxy scanner doing its job. By connecting to the UICN network, you agree to have your machine scanned for open proxies. The only time that you will be scanned is when you connect to one of UICN's IRC servers. These scans are allowed by the United States Code, Title 18 , Section 2701, Part C .

Please continue to read this document if you have been banned by our automated proxy checker.

Securing Open Proxies

The method to secure an open proxy varies based on the software that you are using. In general, you must configure your proxy server to only allow connections from your local area network IP addresses (obtained from this document):

  • 10.0.0.0 - 10.255.255.255 (10/8 prefix)
  • 172.16.0.0 - 172.31.255.255 (172.16/12 prefix)
  • 192.168.0.0 - 192.168.255.255 (192.168/16 prefix)

You must then be sure that the proxy denies requests from all but the preceding addresses.

The methods of configuring your proxy obviously vary based on the proxy software that you are using. We are unable to provide support for how to configure your proxy. Some common proxy links follow, refer to your proxy's documentation for more information.

After Securing

If you have been banned from the network because of an insecure proxy, you can contact our kline staff to ask for your ban to be removed. If you visited this page by the link given to you in your ban message, please include the IP address that was banned.

Once your akill is removed, you should connect to the network and verify that you have resolved the open proxy problem. If you are certain that you do not have an open proxy but are still banned, please email our kline staff about what proxy software you are using that the scanner has incorrectly identified.
     

Original Site Created By Hysteria Web Design © 2001