Exploring the Use and Risks of Free Proxy Lists in Online Privacy
Exploring the Use and Risks of Free Proxy Lists in Online Privacy
1. Introduction
The use of free proxy lists is a common practice on the Internet, especially to increase privacy and bypass censorship. These lists are available from a wide range of specialized websites and forums with updated addresses, usually listed along with port number and type of proxy. Despite the availability and scrutiny reserved for virtually all other privacy solutions, the risks associated with proxy lists are rarely discussed. This paper aims to quantify the reliability of current free proxy lists and analyze potential attacks for malicious consumption. From our point of view, it is important to promote more risk awareness regarding privacy methods. The paper is structured as follows.
Section 2 introduces and contextualizes the used list of proxies. Related work is surveyed in Section 3. Section 4 presents the methodology defined for reaching the paper’s goals. In Section 5, we present our results and address their different aspects. Finally, we provide some conclusions and outline future developments in Section 6.
1.1. Background and Significance
Internet privacy is a topic that increasingly raises concerns from both individuals and companies. People all around the world connect to the internet using different devices and access a large amount of information on the net. Regarding information and transaction security, most websites currently use encryption technologies to transmit data end-to-end more safely and even favor the adoption of the HTTPS protocol. However, most users have different privacy perceptions and do not adopt measures when browsing the web, risking personal information loss in several forms through the voluntary upload of various information objects on social networks, cloud backup services, photos, and videos shared with strangers, site registration, cookie acceptance, and browsing tracking, for example. The symmetrical interest in people, companies, websites, and governments to know personal data—location, navigation patterns, and shopping habits, for example—makes collected data extremely valuable for several purposes in a world dominated by information. Individuals and organizations that access the internet and share data are often exposed to potential privacy abuses.
People and organizations are looking for increased privacy. Through Privacy Enhancing Technologies (PETs) development, the use of secure entry points, secure connection protocols, and error correction techniques can improve data security, for example. Some PETs are based on proxies used to browse the web anonymously. One of the most common technologies based on proxy use is Tor. Over the past years, several countries worldwide have carried out or recorded a given positive or negative interest in the development of PETs use via ongoing projects in academia, government, and companies. Nevertheless, many individuals and entities do not use proxy servers or the most modern PETs and request some type of information service on the net. This lack of affiliation with internet anonymization services can be explained through the complexity of their use and the existence of simpler tools that allow users to take advantage of the limited objective functionality of a proxy server and anonymize traffic when using the net for requests via a browser.
Free Proxy Lists (FPLs) are a convenient alternative for those who wish to easily use a proxy server to cover up some of the clues that are left behind when using the navigation. The academic interest in defining and analyzing different types of FPL addresses has been growing in this area of information. However, as mentioned by previous studies, FPLs can be risky and even harmful to their users. This work intends to catalog the usage and risks of FPLs and will present a substantial behavior analysis of the most prominent Aggregator FPLs on the web. Based on a previous review and a performed threat report, this work aims to address three central issues for FPL users: first, to help users identify popular Aggregator FPLs; second, to help assess the risks that are taken upon the use of one of these FPLs; and third, to find the possible hidden motivations for Aggregator FPLs to provide this type of service.
1.2. Research Objectives
Firstly and most specifically, this research seeks to determine whether the free proxy listings assessment tools and indices that are available in the public domain give potential proxy list users, be they security researchers, privacy advocates, business analysis specialists, academic researchers, or privacy-seeking internet users, reliable information about the privacy robustness of selected proxy lists or the proxies provided through those proxy listings. The assurance of privacy and anonymity online being achieved through the effective implementation of a proxy list, it is important that potential users—both those developing software to access the internet with enhanced privacy and using such software—make informed choices about what proxy list may be the most advantageous for their needs and information about which approach to actually using a proxy list will or will not address their risk experience thresholds. The research will specifically investigate proxy content and presentation methods to determine suitability for given users’ needs, connectivity performance indicators as privacy and security risk factors. Additionally, the researcher will discuss the pros and cons of specific proxy configuration and usage. The research suggests that users must examine subjective information and attain the commercial reputation of service providers as a significant proxy list selection tool.
2. Understanding Proxies
A professional internet marketing analyst, in her day-to-day work, rarely finds anything suspicious or unusual with a proxy website. It is like saying that it was sunny yesterday; nothing suspicious about the shiny planet circling the solar system. Proxies come in various flavors – freebies, commercial, filtered, public, fully anonymous, and more. To better understand what sort of things people can gain or achieve from the use of several proxy lists that regularly make their appearance and are used by many visitors, we first need to understand what proxies are.
The Nature of Proxies
In order to obtain access to the internet, a personal computer must first communicate with an internet gateway. It is then this gateway that allows the communication data to transfer between the PC and its intended destinations, be it a web server, an application server, or another personal computer. For the entire period of time while it is being used as a gateway, the internet gateway can be said to be an “active” network device. Still, the gateway through which internet traffic is usually routed today is indeed the gateway of the network owner. It is the normal default setting when the computer is installed to access the internet automatically.
2.1. Definition and Types of Proxies
When a user connects to the Internet, the access takes place by connecting to the Internet Service Provider, which is responsible for sending the requests to the Internet. This access is identified by the IP address of the user’s device. This IP address normally allows establishing a mapping to the geographical location and to the name of the service provider that provided the IP address.
A proxy server is an intermediary between the user’s device and the Internet connection, and it may perform various functions, such as forwarding the requests made by the user’s device to the target server, receiving the responses from the target server and delivering them to the user’s device, or even modifying the data before forwarding it to the user. The user’s device contacts the proxy’s IP, and this then sends the requests for the information to be accessed. When assistance is given to the user device by a large number of similar computers, this type of abuse is called business reconnaissance or web scraping. Although having different final purposes, some unsolicited messages use similar techniques for IP address anonymization. These originate from anonymous proxy servers, which claim to not register any information about the users’ session accesses coming through them and include the person’s source IP.
2.2. How Proxies Work
Web proxies act as a relay and a man-in-the-middle between a client and a remote target server by retransmitting the communication between them. Web proxies are especially influential since they provide the client with a layer of anonymity by not exposing the legitimate client’s IP address in the internet traffic. This is done by the web proxy intercepting the HTTP request for the web page, downloading the content from the target server, and presenting it back to the client, thus making the target server interact with the web proxy’s IP address instead of the actual client. Afterwards, to add a layer of privacy, proxies just connect the user to any target and do not alter or inspect the communication in any way. This means that both the client and the server see the proxy IP address.
When a client wants to establish a connection with a target server, it sends a message with a standard sequence of bytes. The proxy captures this message and uses information in the message to establish a connection to the target server through the proxy. Upon receiving a response with the target server’s certificate, the proxy records the server certificate’s information and relays that information to the client. Then, the client proceeds to negotiate the session parameters through the proxy. Data sent by the client is relayed through the proxy to the target server using the recorded or faked session parameters. The target server responds directly to the proxy, which relays the response to the client.
3. Free Proxy Lists
The term “free proxy list” (or free proxy server list) refers to either a set or a single list of open HTTP and/or SSL proxies that are accessible by the general public and are used to offer anonymity for the users by not passing along some of the user’s identifying information, such as the IP address. Such free proxies are of varying quality in both speed and level of anonymity and are provided by Internet users voluntarily. Just like anonymity networks, free proxy servers are used not only to offer confidentiality, but can also be used for attacks, such as the exploitation of vulnerabilities in an impatient scan of the public IP address space, or to conceal the source or destination of attacks. While there are some services that offer filtered lists of paid, high-quality proxies, the bulk of online free proxy lists are maintained by hosting services and forums that are targeted towards website owners that wish to get into working with known web business techniques without exposure. Besides, one can easily obtain a personalized, complete list by adding a filtering keyword to a popular search engine term or by obtaining a copy of public lists already available from previous research.
3.1. What Are Free Proxy Lists?
This paper focuses on the use of free proxy lists, the risks that can result from attempts to leverage them as tools to enable online privacy, and the behaviors identifying individuals interested in using free proxy lists for online privacy. When individuals use a browser to access a website via an intermediary server, their browser makes a request to a proxy server. The proxy server then sends a request to the website and displays the response to the user. To websites that the proxy server is interacting with, the proxy server’s IP address is believed to be the one that originates the request. Conceptually, by using the proxy server’s IP address instead of the user’s IP for browsing activities, an individual can hide the websites visited from employers, schools, internet service providers, and governments, reducing the chance that entities may be able to track the websites accessed by the user.
A free proxy list is a publicly posted list of servers that currently allow browsers to connect through them for internet browsing. These lists can also contain proxies connected through the Tor network. Most of these proxy servers exist because their existence allows tracks to be hidden from others. The owners of these servers have the capacity to monitor all of the activities of anyone visiting a website via their proxy, and the network traffic patterns between the user and the proxy server are unique enough that the existence of free proxy lists has been cited as a tactic used as part of campaigns to identify threat actors and shut down end nodes used for malicious activity.
3.2. Sources of Free Proxy Lists
3.2.1. Spammers
Spammers use free proxy lists to target users browsing the web from the IP addresses of free open proxies. In their case, the risk lies in constantly receiving spam, after which they will inevitably look for a solution to that problem, such as contacting the owner or the ISP hosting the open proxy server and informing them of the issue. Such notifications can lead to the slow process of deactivating open proxy servers, which are, of course, further replaced by new open proxy servers.
3.2.2. Website Operators
Numerous website operators may also want to disable the use of open proxies. That could only mean one thing: those website operators extensively collect users’ information from those websites. They don’t want users connecting to their website through an anonymous open proxy server, as that would disrupt the process of collecting user information. When an end user accesses the website through an open proxy server, the website must block the open proxy server, forcing the user to either access the website through a closed proxy server or just use a direct outgoing connection from their own IP address, allowing the website operator to efficiently collect information about the user.
3.2.3. Hackers
It is similar with hackers, who are often the victims of open proxy servers. Many of them operate illegal servers and need to use open proxy servers so that the hacker’s IP address cannot be tracked. When the victims contact the abusing hacker’s ISP operators, the open proxy servers are reported and disabled, preventing the hacker from repeating their abuses.
4. Benefits of Using Free Proxy Lists
One of the many reasons why many online users and especially those who are concerned with their privacy turn to temporary use of proxies is the fact that these solutions are free and available in abundance. This is largely due to the simplicity and ease of setting up a proxy server, recent technological advancements in both the hardware and software available for developing proxy servers, the vast amounts of unused IP addresses being hoarded by private companies and finally the fact that many users need a service that facilitates unrestricted access to international free content. Additionally, while it is easy for the publishers of the public sites to block or detect the use of these servers or to slow down the service provided, especially in cases of proxies hosted on commercial VPN services, which can be easily blacklisted when found in common hotspots, public proxies can persist with some ease since these tools are also set up by their own users, who are hesitant to see these resources squandered. The downsides that stem from the above affordability stem from the fact that the use of these proxies significantly increases the burden on the networks that are used for reaching the popular web sites, who are also the first to update their protection features against unwanted access. Since each proxy session performs fetches and return pages to the same sentinel, should a user engage in high traffic operations, not only does the proxy gather enough attention to get itself blacklisted, but the publisher may also suspect the machine that is hosting the server to be compromised. Their detection normally involves many kinds of fingerprinting techniques, most notably the ones that depend and exploit certain network properties of these servers, since they are known to grow big and be important sources of international traffic. Consequently, the detection of these over-taxes can inherently become resource intensive on the sender side, thus becoming a potential way of launching attacks.
4.1. Anonymity and Privacy Protection
Anonymity mechanisms are widely used on the internet and are present in services aiming to protect user privacy online. The study of the internet privacy discussion has led to the suggestion and implementation of the concept of onion layers, which has crystallized in the development of the most widespread anonymity overlay. The design of such networks avoids linking user behaviors to their identities and protects them against their adversaries. New privacy protection systems based on network virtualization provide better security and focus on advances that exist in this context. VPNs are a family of solutions that address the user’s privacy over network congestion. Solutions are therefore largely deployed. VPN configurations are presented as mechanisms with free solutions for specific functions. This VPN configuration commonly provides protection against DNS resolution provided by centralized authorities, but the user is still unprotected from network providers.
The most widely used anonymity system for online communication has two main characteristics. The first level is onion routing, which is essentially a multi-layer network forwarding setup configured by users who wish to deliver their packets through colleagues. Packets forwarded to colleagues are encrypted with the public key offered by them before entering the network. Any user capable of reaching the final network position may therefore act as a gateway, enabling the total forwarding of packets randomly selected from the network. The establishment also guarantees sender and recipient intention. Granting this name, pattern recognizers know the kind of traffic and forward the best jump. This can lead to the network being used to connect people who need privacy for legitimate reasons, such as family freedoms or formal creation, but without making any distinction about the effect of anonymity. The distinction between legal and illegal customs is also raised, besides the debate on participation in important moral scenarios, such as the enrichment of an expensive network whose security depends on the participation of a large number of users who have low performance and do not take fees. Lately, the world may have been the target of extensive investment and effort in order to breach the security measures of this type of network.
Very often, online anonymity solutions are aimed at avoiding a new mechanism on your path using a tree or a set of anonymous tools for communication. The use of services to connect to anonymous networks is also a different type of telecommunication mechanism that can cause privacy leaks and other irregular user communications designed to support such operational mechanisms. Control messages indicate that control of the effect of network participation only occurs when users initialize their actual systems. Besides that, after downloading the browser, users are trying to arrive in a way that allows them to reach their destination without driving. Future network use on their path creates the correct local traffic tail. This last type of failure, which makes it possible for the user to reveal some information about their identity, has become increasingly controversial and demanded in the design in recent years, mainly due to the input restraint mechanism that is available to be identified and is used to trace. The individual user experience can be improved.
4.2. Access to Restricted Content
In a related academic paper, the most important use of free proxy lists, according to over 49% of the almost 400 users, is to access restricted content. Proxy users want to fool websites into thinking they are from a different country so they can view national video streams or access websites categorically inaccessible from their own location. Some websites with video streaming are currently inaccessible to users located in Europe and Canada because only internet service providers in the United States can get a static IP address in an unblocked, non-proxy IP address range published on a blacklist. The websites will block users in Europe and Canada from accessing video streams if they cannot ascertain that the user is coming from a non-proxy IP address. When the United States user wants to access content on websites in the United Kingdom that are limited to people located in the United Kingdom, a similar type of video filtering occurs.
Other websites block the entire European Union from accessing their content because they fear the effect of future economic changes that may make the location in Europe unprofitable. Enabled by the free open proxy in the United States, the European user is practically placed in the administrative area of the United States so the region-oriented website can serve the European user. Other popular websites have not implemented a strategy to block European users, so anyone around the world can access content on the social network using a proxy that connects to the internet from the United States. Offered for free on open proxy websites, proxy lists are specific to the needs of proxy users because no website administrator has claimed that he has been thwarted by them. Since they can have no other use, other types of proxy lists are also specific to the needs of internet users that want to access certain websites without permission.
5. Risks and Limitations of Free Proxy Lists
Free proxy lists are commonly posted by volunteers who wish to make an available service useful. However, the use of these lists may also attract malicious individuals and entities who use them as hijacking points for their malicious activities. In other words, how do we know that these are actual trustworthy open proxies, and that these are not forged IPs, pathways, impersonated, compromised, or intercepted dud proxies? The public free proxy lists cannot prove that these are safe and maintained proxies with the support of legal owners. By utilizing some types of private proxy tactics, risk management can help reduce these risks.
Free proxies do not provide any sort of security guarantee. It is even possible that malicious parties add open proxies to public lists without the consent of the proxy owner. Unfortunately, there is no mechanism by which the person(s) who maintain the free proxy lists can safely ensure that the open proxy can be queried without the owner’s consent. These open proxies are unlikely to be reliable and secure for any type of communication. Additionally, most ISPs’ clauses regarding unauthorized usage of network resources can be taken as prohibiting the usage of their open proxies by anonymous people who are not their direct customers. However, the potential risk of misusing open proxies led the ISP to disable the open proxy feature in its firewall. Seriously speaking, one cannot expect that there are safe and always genuine free proxies to support day-to-day Internet browsing tasks.
5.1. Data Security Risks
Free segment proxy services are maintained by web intermediaries that provide bandwidth to the public, often largely for and by malicious actors, such as networks of trading spam-related services to spammers. Regardless of this lack of reliability, they have seen many technological advances that make them easy to find and use. These services present additional dangers other than the typical risks that exist, assuming that the real source IP address is adequately protecting a client’s personal data. Through an examination, we confirm within the four major online chat networks, IRC networks, and that at any given time, around 3% of all the open proxies (up to 1/4 of the high-anonymity proxies) present among these networks have been delivered through a supposed usage origin device as a proof-of-concept model. The guidance, governments, and individuals rely heavily on software, such as those that disable cookies, JavaScript, and referrers in an internet browser, but limited research has been performed on the zeros and ones of using these publicly available proxies; in this paper, after examining proxy characteristics and shortcomings using more than 40 service evaluation tools and services, we exploit these services for their risks, and then we show how to incorporate their use into existing security best practices.
5.2. Malware and Phishing Threats
In everyday use, free proxy lists are commonly used to conceal or change requested source IP addresses. In terms of the types of malicious actions carried out targeting proxy infrastructure, cybercriminals can use public proxy lists in order to enable and execute cyberattacks remotely, stealing user data through hidden scanning or infecting personal hosts through hidden drive-by downloads. Poorly configured or unsecured open-proxy systems are a common threat that can expose a range of both public and private resources to illegal usage and incoming, unauthorized traffic. Providing public proxy access can inadvertently promote the use of proxy infrastructure to circumvent corporate access restriction lists, secretly download illegal or copyrighted media, bypass parental control lists, and carry out illegal and/or unauthorized operations or VIP account upgrades.
Malware is any software package with the intent to cause damage to a computer, server, or computer network. Within this analysis, malware refers to intentionally designed applications to correct and exploit vulnerabilities in a device, computer network, server, or end user, and can include backdoor trojans, spyware, password stealers, instant messaging and peer-to-peer attackers, or infected web intermediate devices. While the use of malware can lead to considerable privacy violations, backdoor trojans can, in a number of cases, access the infected computer without alerting the end user, open ports allowing remote access, download additional malware, and spread network threats. Some malware can steal user passwords, cookies, keystrokes, or peer-to-peer logins from the registry or browser, and then use the stolen data to log in for attacking users. Just one instance of infected instant messaging or peer-to-peer software is usually enough to contribute to the potential infiltration and launch of further malware.
Phishing is the criminally fraudulent process of attempting to obtain sensitive information such as usernames, passwords, or credit card information by disguising as a trustworthy entity in an electronic communication. The term is used to describe disclosure through malicious proxy services that capture data transmitted by banking sites, merchant portals, and so forth, presenting false administrator portals, spoofs, and peer sites in order to collect confidential user credentials. Typically, such false sites yield a portion of the scammed credentials to the malware crafters, who participate in the underground economy by managing buycarding dumps, or conducting identity theft, financial fraud, and similar forbidden monetary activities.
6. Case Studies
In this section, we assemble a practical use case for our list by deploying a web crawling framework to automate the retrieval of proxies according to our filter strategy. We validate our proposed filter strategy by experimenting with different field configurations and applying them to four real-time proxy lists. Moreover, we use the output of the filter strategies to substantiate previous analyses in historical proxy detection logs. We also present different tools we built using the list on a desktop running an operating system designed for penetration testing and virtualization. Many tools used the list to search for hidden or vulnerable online resources.
Our tool uses an open-source web crawler that we crafted. We then perform several acquisition experiments by running our proxy-harvesting framework according to four filter strategies. Finally, we present a versatile application that we built by combining our list with some proprietary technologies. This application is used to circumvent ransomware attacks. We present the evaluation of our list and technique by applying the experimental results to real data and validating the accuracy of the search engines’ logs recorded in this study. Major companies use our list-based technology to perform services like monitoring and data retrieval for corporate clients. We further highlight the increasing relevance of our study to security researchers given the growing number of companies listed in ratings of Managed Detection and Response services.
6.1. Notable Incidents Involving Free Proxy Lists
The goal of this study is a high-level characterization of the use and risks of free proxy lists, which catalog a large amount of public proxies for use by various software for network anonymization, circumvention, and unauthorized access to network resources. To this end, we collected about 100,000 proxy lists and conducted a series of controlled experiments with a popular browser and a small, yet reasonably diverse, list of popular applications for carrying out a survey of potential security and financial risks. We believe that our work fills a significant knowledge gap and initiates a more data-driven approach to the study of network anonymity solutions in general and of free proxies in particular.
There is little quantitative information about the use and security risks of free public proxies, as well as noteworthy incidents involving free proxies. In the following, we discuss a number of such incidents that seem to illustrate the sort of risks that can arise from using free public proxies, while acknowledging that it is difficult to fully enumerate and quantify such risks. We believe that our systematic study and corresponding evidence-based proxy risk model also provide useful insights.
7. Best Practices for Using Free Proxy Lists
1. Randomly sampled from the proxy list; regularly updated with newly retrieved free proxy lists. Ensure random URLs accessed; remember random revisit rates to a free proxy list; regularly revisit using the free proxy list union to keep the list up to date over time. 2. Automatically change the requests to proxy list sources regularly to avoid being blocked by these proxy list websites; limit the number of requests to a free proxy list at a time to prevent blocking. Properly configure to work with your web scraping framework to avoid identity exposure. 3. Regularly retrieve free proxy lists using your web scraping framework to keep free proxy lists updated over time. 4. Set up a simple web front end for browsing and filtering the most up-to-date free proxy list; unit testing framework to automatically test the correctness of storing proxy classes with your proxy class methods involving update operations.
7.1. Verifying the Source and Legitimacy of Proxies
To verify the legitimacy of the proxy list source, practitioners can check for several traits. First, we can verify the origin of the list and the identity of the proxy provider, using search engines or the WHOIS database. If the load type of the proxy is transparent and no evidence of a consultancy is found, caution is advised. Let us also verify the source, the date, and time when the list has been published. For the most recent free proxy list checked, this field will be updated to the current date and time. When checked, some online providers perform more detailed verification. A small disclaimer was added: some providers will indicate that after a while, the list may distribute malware-capable proxies, and the list can quickly change in a very short time once created.
Older IPs will be removed and newer ones will be added to the list. Data discovery can be useful to identify additional properties about the source that proposed the recent proxy. The result of querying the age field in the IP tag can be used as an additional field when querying the provider’s proxy list. Also, using sites when making DNS queries to obtain an estimate for the life of a query is recommended. The practitioner could also try to obtain demographic information about the source of the proxy. Depending on the intended use of the proxy, it is also advisable to verify that the proxies on the list are properly geolocated.
7.2. Implementing Additional Security Measures
Similarly to specialists, some users have also chosen other strategies for guarding their anonymity, as those related by participants in a study. Another way to implement additional security measures is by frequently updating the set of relays to avoid vulnerability to attacks such as well-known forms of attacks. Even the project itself publishes suggestions related to the choice of relays: when choosing which relays to use in a circuit, clients choose one guard relay, one middle relay, and one exit relay to use for transmitting a create cell and for commanding that relay to build circuits. No matter how much these selection criteria may indeed provide a good set of relay combinations, speed gains more importance when the number of active clients and connections increases. Of course, this set of selection criteria does not prevent well-funded attackers from setting up a significant number of relays among the possible combinations in a volunteer cloud. These combinations may allow controlling user connections on a national scale, as well as entering different encryption standards in the relays being controlled, and consequently set up a man-in-the-middle attack.
8. Legal Implications
Free proxy lists in and of themselves are not necessarily illegal. Free or public proxy lists would only be considered unauthorized use proxies if the owners of the web servers being utilized as a proxy did not explicitly provide permission. It is when people use free proxies to bypass an intended use for the proxy or web server that the activity becomes illegal. For instance, some corporations’ employees’ machines are not allowed to retrieve remote web pages. Bypassing this ban on web browsing is a cause for the collapse of that ban. If the proxy requires a username and password, a free proxy list user does not have an account on the remote proxy server. But for the corporate user, you may spoof your packets. This is the biggest risk as free proxy users become refugee aggressors.
A researcher in league with law enforcement serving subpoenas or collecting evidence from criminals breaking numerous laws on a regular basis by using free proxy lists has narrow legal worries. If a researcher is being responsible, these are the least of her concerns. However, ‘knocking on the door’ of the criminal makes tracking a formidable task. To effectively locate an anonymous source, the relevant police forces need to obtain crucial information. First of all, they must involve servers. Of course, they should keep an eye on credit cards that can be tracked through the source in order to easily detect or locate anonymous sources. These actions involve warrants obtained only through something called ‘probable cause’. Furthermore, only parliament permitted this in such a case. Such a warrant involves a specific place at a specific time. In addition, some countries’ laws ensure that records can be released only if a subpoena is served, specifies the type of data sought, and the entity that issued it.
8.1. Regulatory Frameworks and Compliance
Depending on explicit regulatory provisions of the country in question, the information system can be subject to certain special norms. The information systems allow the gathering and processing of large amounts of personal data. Therefore, being certified, for example under ISO 27001, for a system involved in such a registry can be a way of ensuring that the data it treats is secure, which can lead to a higher trust in the service, and consequently more registrations. The processing of citizens’ data by public administration demands an approach with specific characteristics, among which can be highlighted the assessment and processing of privacy regarding private data.
The systems must support the necessary actions to make this evaluation possible. Some rules are very specific, requiring explicit measures from some applications. Legislation such as the Register of Data Escorts (RDE), a post-risk data protection device, as well as some ISO standards that refer to security requirements for public service and urban applications, are formal examples that should be observed. The legal treatment of data privacy varies from one country to another, and the regulations are produced by different sources and depend on the data business care. On the one hand, at the global level, there are principles and guidelines, and the European Privacy Directive that underlies many national laws and the national institutions responsible for its regulation.
9. Conclusion
In this article, we presented a study on the practicality and risks associated with using free proxy lists for privacy protection. Our research goal was to measure the reliability and risks of free proxy lists by collecting stable and working proxies and conducting a benign blacklisting operation to assess the likelihood of being blacklisted following the connection attempt to the target major email providers in the United States. Our results show that, contrary to common beliefs on the non-reliability of free proxy lists, they can indeed provide unique protection against mass surveillance and information collection on the Internet. Also examined were the impacts that connection volume and port numbers brought to this likelihood after the connection attempt. The results confirm a quantifiable relationship with connection volume, and both a corresponding change in the likelihood with dynamic proxy lists and lists with multiple port numbers to use for connection distribution. Our work should have certain implications to facilitate better understanding and leveraging of the risks and benefits that free proxy lists provide for secure communications. It also provided a solid foundation to estimate costs and benefits to intentionally manage these proxy risks toward desired privacy protections in future scenarios.
9.1. Key Findings and Insights
Free proxy lists host a sizeable number of unsecured proxy servers worldwide. These lists are provided as a free service for users who need access to the Internet through a proxy, while at the same time hiding their real IP addresses from target servers. Abusive parties are well aware of the dangers that exist in these poorly maintained servers and take advantage of such knowledge by mass-automating the process of scanning and locating vulnerable servers within these rapidly updated free proxy lists. This work analyzed the largest of such popular free proxy lists. We found that free proxy lists exhibit extensive rogue behavior that, ironically, seldom provides or works as a reliable proxy service. As a result, we also found such lists to frequently act as honeypots, hosting servers tailored toward attracting other parties that can engage in cyberattacks as well as underground economies, among a variety of other offensive actions that promote insecurity.
The findings of our first study suggest rogue behavior does not necessarily indulge in harmful acts for extended periods; indeed, these servers frequently, and almost immediately, are involved in questionable activities, such as hosting unlicensed copyrighted content, spamming, or phishing that typically directly or indirectly result in huge economic losses or directly and negatively influence an organization’s passive reputation. Surprisingly, no prior research focused on this elusive side of network infrastructure, solely investigating traditional dedicated botnets or large-scale network scans to justify interest in blooming collections of newly populated IP addresses. Our findings are indicative of an alternate type of yet louder unfriendly activity, primarily because our findings negate sustained capability, calling into question the omnipresent repeat appearances of the combination of three certain events.
9.2. Recommendations for Users
The widespread lack of configuration instructions, guidance, and effective, cooperating sidebar help makes the use of public proxy lists a risky operation. This work thus recommends the publication of proxy list use guidance targeted for the diverse levels of user sophistication together with expeditious, actionable help for common use difficulties. It also recommends greater use of standard categories for published proxies. Additionally, it identifies proxy list access and filtering as a potential inexpensive method to reduce web server and internet issues related to a general proxy list. Finally, without filtering proxies in general, access and testing methods are essential for identifying the risk sections for proxy lists that accept requests without credentials.
By far, the most straightforward and effective way to improve proxy list quality is to require that intending users provide usable identity proof. Non-denouncing access methods are already in use, and testing protocols have also been experimented with. The huge automated effort expended testing such a list makes it conducive to initial publication in less accessible venues. Sites may be unwilling to consider access that is not on a commercial reserve basis, particularly for intended use where direct access is necessary. These constraints must be considered before recommending such search/filtering as always practical from free proxy lists.
Leave Your Comment