 | Lars Fosdal on Security alarm provider Woonve… |
 | Thomas Mueller on Question got closed in May 202… |
 | Thaddy de Koning on Formulier voor bewindvoerders… |
| Thaddy de Koning on Formulier voor bewindvoerders… |
| Thaddy de Koning on Formulier voor bewindvoerders… |
Posted by jpluimers on 2021/11/05
[WayBack] WGET 1.11.4 for Windows (win32) as well as many other tools use the [WayBack] http_proxy envonment variable to specify the http proxy settings.
To set it to a locally running Cntlm proxy, use this syntax:
set http_proxy=http://localhost:3128
–jeroen
Posted in Cntlm, Power User, Windows, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2021/11/01
Interesting:
Some corporate networks are behind HTTP proxy servers that use NTLM authentication. Dropbox currently doesn’t support this kind of proxy authentication. However, some users have reported some success using an intermediate proxy, such as [WayBack] NTLMAPS or [WayBack] cntlm, to get Dropbox running on their network.
This article explains steps on various systems to install proxies that support NTLM authentication: [WayBack] Allow Dropbox to Authenticate With a NTLM Proxy Server – The Unofficial Dropbox Wiki.
Need to try these. Maybe they work for Copy.com too (:
Some other links around HTTP Fiddler that might be relevant: Read the rest of this entry »
Posted in Cntlm, Copy.com, DropBox, NTLM, Power User, SocialMedia, Windows, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2020/10/16
Nice thread as it talks a bit about how keep your own stuff secure with companies doing MitM, or have VPN infrastrcuture.
[WayBack] Facebook ist in Bezug auf Kundenzufriedenheit und Vertrauen in Umfragen zieml…
Most larger TLS based web-sites now have HSTS so detect MitM.
Having a proxy locally helps checking the certificates.
Corporate laptops usually has device management. If they use MitM, their root certificates are usually put back automatically. But not all software uses the same root certificate store (:
In the past, I have used [WayBack] cntlm, or VPN (routing only corporate traffic over VPN).
There are corporate VPN variants, which take over the complete routing table or even run arbitrary scripts as root on your box on connect in order to do “endpoint validation”. And then there is OpenVPN, which routes the traffic that the company shall see to the company and lets you use normal connectivity for the rest.
You want openvpn, in all cases.
Another trick I have used is to VPN/SSH out of a corporate box and route some of the traffic over it.
Finally, for some larger corporate VPN software, there is an open source replacement that has better configuration options: OpenConnect supports AnyConnect, Juniper and GlobalProtect.
Related: picture on the right via [WayBack] Torsten Kleinz – Google+
–jeroen
Posted in Cntlm, Encryption, HTTPS/TLS security, Power User, Security, Windows, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2019/10/30
[Archive.is] Dixin’s Blog – Use Fiddler with Node.js Fiddler is an useful HTTP proxy debugger on Windows. It would be nice if it can work with Node.js applications. To do this, just need to proxy Node.js requests through Fiddler… on port 8888.
There is a snippet for it at github/Dixin/CodeSnippets/…/fiddler.js (now moved to [WayBack] github.com/Dixin/Blog/…/Blog/Dixin.Nodejs/fiddler.js)
It complements a few posts I’ve written about Fiddler using port 8888 as a proxy before:
–jeroen
via: [WayBack] Use Fiddler with Node JS – CHUA Chee Wee – Google+
Posted in Cntlm, Development, JavaScript/ECMAScript, Node.js, NTLM, Power User, Scripting, Software Development, Windows, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2019/10/25
By default, Chrome uses the same proxy server as Internet Explorer: the system one that your Chrome settings page accesses from chrome://settings/search#proxy through this command-line call:
"C:\Windows\system32\rundll32.exe" C:\Windows\system32\shell32.dll,Control_RunDLL C:\Windows\system32\inetcpl.cpl,,4
There is no GUI way inside Chrome to change this, but there is a command-line parameter: --proxy-server="ipaddress:port"
So create a new shortcut to Chrome, then you can change it.
This comes in very handy if you want to test
Some background information:
–jeroen
Posted in Chrome, Cntlm, NTLM, Power User, Web Browsers, Windows, Windows 7, Windows 8, Windows 8.1, Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Vista, Windows XP, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2016/12/12
This is based on lots of help from Rui Seabra with a G+ remark I made a while ago: “So what would be a proper way to setup an SSH connection over HTTPS given that the proxy in between is CNTLM providing credentials to an NTLM authenticating proxy that does HTTPS man-in-the-moddle? Clients are Linux or Windows with admin access. On the outside Linux with admin access as well.
This is also becoming more and more relevant with “free” WiFi providers only allowing HTTP/HTTPS and playing HTTPS Man-in-the-Middle.”
So the situation is something like this:
Some links:
–jeroen
Posted in Cntlm, Power User, Windows, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2016/02/05
Copy had some advantages and disadvantages. For instance, it was better handling long file names, character encodings in filenames and a lot easier to configure over a CNTLM proxy than DropBox, but unlike DropBox didn’t keep history of changes.
Alas no more copy.com as of 20160501: [WayBack] Barracuda Copy – Copy End-of-Life.
They suggest using [WayBack] Mover with OneDrive as target: [WayBack] Barracuda Copy – Moving Your Data from Copy
Note that Mover has many more connectors, including cloud storage ones (Box, Copy, Dropbox, Google Drive, OneDrive and Yandex.Disk are free):
[WayBack] Connectors • Mover: FTP, Dropbox, Box, GoogleDrive, Copy, Egnyte, Amazon S3, SharePoint, MySQL the list goes on!
For me it means it’s time to think about what kinds of cloud storage I want to use and how to share what data with others at which access level. As I’m already contemplating on how to use ZFS, I now have two storage concepts to think about.
–jeroen
Posted in Cloud, Cloud Apps, Cntlm, Copy.com, DropBox, Infrastructure, NTLM, Power User, SocialMedia, Windows, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2015/05/22
When during a git svn clone you get an error message starting with “RA layer request failed: PROPFIND request failed on” it means you have to set your git svn proxy.
This is in a different location than the git proxy setting (it would be too easy if these were the same, right?).
So you do not get/set it through commands like these:
git config --global --get http.proxy git config --global http.proxy localhost:3128
Via Cannot do git-svn fetch behind proxy and git svn clone died of signal 11 under cygwin (thanks janos, Fredrik Pihl and User Pavel, I found out that you need to change these files (create the .subversion directory and servers file when they do not exist):
If you ever run in the same problem with the regular SVN client, then you need to change yet different files (why have 1 standard when you can have many?):
Ensure a section like this exists and fill in the blanks:
[global] # http-proxy-exceptions = *.exception.com, www.internal-site.org http-proxy-host = YOURPROXY.com http-proxy-port = YOURPORT # http-proxy-username = defaultusername # http-proxy-password = defaultpassword # http-compression = no # http-auth-types = basic;digest;negotiate # No http-timeout, so just use the builtin default. # No neon-debug-mask, so neon debugging is disabled. # ssl-authority-files = /path/to/CAcert.pem;/path/to/CAcert2.pem<
Notes:
In some poorly managed networked environments, the %AppData% environment variable can be wrong, so make sure your Windows profile is not somewhere on a network share.
TortoiseGit seems to use yet another directory for GIT SVN server configuration.
–jeroen
via:
Posted in Cntlm, DVCS - Distributed Version Control, git, Power User, Source Code Management, SourceTree, Windows, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2015/04/13
As a follow up on the Cntlm configuration post last week, here is a small batch file that will find Cntlm.exe (on x86 and x64 systems) then start it in verbose mode.
| call :start %ProgramFiles% | |
| call :start %ProgramFiles(x86)% | |
| goto :end | |
| :start | |
| startlocal | |
| set cntlm="%*\Cntlm\Cntlm.exe" | |
| echo %cntlm% | |
| if exist %cntlm% start "Cntlm verbose" %cntlm% -v | |
| endlocal | |
| goto :end | |
| :end |
–jeroen
Posted in Cntlm, Development, Fiddler, NTLM, Power User, Web Development, Windows, Windows 7, Windows 8, Windows 8.1, Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Vista, Windows XP, Windows-Http-Proxy | Leave a Comment »
Posted by jpluimers on 2014/04/16
A while ago, I was working with a not so cooperative corporate firewall. All web browsers would work fine, but most other applications would not go through the proxy in a nice way.
For instance, DropBox would show the dreadfull “Connection Error” dialog shown on the right.
That dialog basically means “Dropbox has no clue what happens, try fiddling with your proxy or account settings, then press Reconnect Now” to retry.
Many other applications had issues (for instance Visual Studio connecting to Team Foundation System was very unreliable and the workarounds clumsy).
I got inspired by the [WayBack] I code and code: Tutorial: How to use Dropbox behind a corporate proxy server using CNTLM, even though I was pretty sure the corporate firewall was not NTLM based.
And indeed, CNTLM -v -M http://google.com -c CNTLM.INI would give errors like this:
cntlm: Proxy returning invalid challenge!
headers_send: fd 4 warning -999 (connection closed)
Connection closed
So I fired up my old buddy [WayBack] Fiddler 2 HTTP debugging proxy.
Further on, you will learn that Fiddler2 is much more, but right now it is enough to know that it basically sits as a local proxy between your applications and the outside world. Read the rest of this entry »
Posted in .NET, .NET 2.0, .NET 3.0, .NET 3.5, .NET 4.0, .NET 4.5, base64, Cntlm, Development, DropBox, Encoding, Fiddler, JavaScript/ECMAScript, NTLM, Power User, Scripting, SocialMedia, Software Development, Web Development, Windows, Windows 7, Windows 8, Windows Server 2000, Windows Server 2003, Windows Server 2003 R2, Windows Server 2008, Windows Server 2008 R2, Windows Vista, Windows XP, Windows-Http-Proxy | Leave a Comment »
The Wiert Corner - irregular stream of stuff 