<![CDATA[The Un-Official Proxomitron Forum - General Discussion]]> https://www.prxbx.com/forums/ Wed, 22 Apr 2026 04:52:46 +0000 MyBB <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21114#pid21114 Tue, 10 Feb 2026 22:52:19 -0500 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21114#pid21114 (Jun. 02, 2025 05:41 AM)amy Wrote:  The next release of Proxomitron Reborn should be within this week So, how its going?]]> (Jun. 02, 2025 05:41 AM)amy Wrote:  The next release of Proxomitron Reborn should be within this week So, how its going?]]> <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21109#pid21109 Mon, 04 Aug 2025 18:18:16 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21109#pid21109 <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21105#pid21105 Mon, 02 Jun 2025 01:41:49 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21105#pid21105
The next release of Proxomitron Reborn should be within this week, if testing proves to be successful; this post was made through it. It has the crucial new feature, which I have named ProxTLS, that allows for a huge flexibility in configuration to behave nearly 100% identical to how mainstream browsers handle TLS negotiation.]]>
The next release of Proxomitron Reborn should be within this week, if testing proves to be successful; this post was made through it. It has the crucial new feature, which I have named ProxTLS, that allows for a huge flexibility in configuration to behave nearly 100% identical to how mainstream browsers handle TLS negotiation.]]> <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21104#pid21104 Wed, 14 May 2025 21:48:34 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21104#pid21104 <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21103#pid21103 Mon, 21 Apr 2025 03:52:46 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21103#pid21103 (Sep. 26, 2024 05:01 AM)amy Wrote:  Almost 2 years later and there is some public(!) discussions about this in OpenSSL itself; making it look more like a browser is becoming important:
Code:
https://github.com/openssl/openssl/issues/19220

I have been working on my own towards the same goal with Proxomitron Reborn, so it's not clear who will get there first; It seems like the answer to that question is going to be me Wink

Here's a "preview" of what's coming:
Code:
ProxTLS cipher TLSv1.2 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 (128 bits) [FF11550]
HTTP/1.1 200 OK
Date: Mon, 21 Apr 2025 07:51:26 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 100
Connection: keep-alive
X-Powered-By: Express
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: BYPASS
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: xxxxxxxxxxxxxxxx-xxx

Of the 3 sites mentioned in the original post, 2 of them no longer block with CAPTCHA, and it shouldn't be long before the third one also gets conquered. It's been fun playing with this new feature I've added and am currently testing - many sites that I've been tripped by CF on just work now. The next release of Proxomitron Reborn, which will be soon (providing other things in my life don't get in the way), should overcome this hurdle of browser discrimination and provide enough flexibility to keep fighting back for a while longer!

"Nothing ever worth doing was easy."]]> (Sep. 26, 2024 05:01 AM)amy Wrote:  Almost 2 years later and there is some public(!) discussions about this in OpenSSL itself; making it look more like a browser is becoming important:
Code:
https://github.com/openssl/openssl/issues/19220

I have been working on my own towards the same goal with Proxomitron Reborn, so it's not clear who will get there first; It seems like the answer to that question is going to be me Wink

Here's a "preview" of what's coming:
Code:
ProxTLS cipher TLSv1.2 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 (128 bits) [FF11550]
HTTP/1.1 200 OK
Date: Mon, 21 Apr 2025 07:51:26 GMT
Content-Type: text/plain;charset=UTF-8
Content-Length: 100
Connection: keep-alive
X-Powered-By: Express
content-encoding: gzip
vary: Accept-Encoding
CF-Cache-Status: BYPASS
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: xxxxxxxxxxxxxxxx-xxx

Of the 3 sites mentioned in the original post, 2 of them no longer block with CAPTCHA, and it shouldn't be long before the third one also gets conquered. It's been fun playing with this new feature I've added and am currently testing - many sites that I've been tripped by CF on just work now. The next release of Proxomitron Reborn, which will be soon (providing other things in my life don't get in the way), should overcome this hurdle of browser discrimination and provide enough flexibility to keep fighting back for a while longer!

"Nothing ever worth doing was easy."]]> <![CDATA[Proxydomo, created from proximodo's source]]> https://www.prxbx.com/forums/showthread.php?tid=2207&pid=21069#pid21069 Sat, 23 Nov 2024 05:04:12 -0500 https://www.prxbx.com/forums/showthread.php?tid=2207&pid=21069#pid21069 https://github.com/amate/Proxydomo/ (see releases)]]> https://github.com/amate/Proxydomo/ (see releases)]]> <![CDATA[Suggestion]]> https://www.prxbx.com/forums/showthread.php?tid=3135&pid=21068#pid21068 Wed, 16 Oct 2024 12:13:30 -0400 https://www.prxbx.com/forums/showthread.php?tid=3135&pid=21068#pid21068 <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21063#pid21063 Thu, 26 Sep 2024 01:01:57 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=21063#pid21063
Code:
https://github.com/openssl/openssl/issues/19220

I have been working on my own towards the same goal with Proxomitron Reborn, so it's not clear who will get there first; but the number of sites I've been encountering that do this sort of client discrimination has risen sharply within the past few months, so this has motivated me quite a lot more! No doubt many others are also fighting back.]]>
Code:
https://github.com/openssl/openssl/issues/19220

I have been working on my own towards the same goal with Proxomitron Reborn, so it's not clear who will get there first; but the number of sites I've been encountering that do this sort of client discrimination has risen sharply within the past few months, so this has motivated me quite a lot more! No doubt many others are also fighting back.]]> <![CDATA[proxomitron.info]]> https://www.prxbx.com/forums/showthread.php?tid=3133&pid=21060#pid21060 Sat, 27 Jul 2024 18:29:35 -0400 https://www.prxbx.com/forums/showthread.php?tid=3133&pid=21060#pid21060
If anyone knows who has access to the proxomitron.info domain you can tell them to update their nameservers to:
  • ns1.private-nameserver.net
  • ns2.private-nameserver.net
  • ns3.private-nameserver.net
  • ns4.private-nameserver.net

I've migrated webhosts and the proxomitron.info domain needs to be updated to point to my new webhost.

I hope everyone is doing well!

EDIT: thank you!]]>
If anyone knows who has access to the proxomitron.info domain you can tell them to update their nameservers to:
  • ns1.private-nameserver.net
  • ns2.private-nameserver.net
  • ns3.private-nameserver.net
  • ns4.private-nameserver.net

I've migrated webhosts and the proxomitron.info domain needs to be updated to point to my new webhost.

I hope everyone is doing well!

EDIT: thank you!]]> <![CDATA[A new threat to Internet freedom...]]> https://www.prxbx.com/forums/showthread.php?tid=3127&pid=20926#pid20926 Thu, 16 Nov 2023 06:01:11 -0500 https://www.prxbx.com/forums/showthread.php?tid=3127&pid=20926#pid20926 (Jul. 25, 2023 04:46 AM)amy Wrote:  I just came across this, and it is really scary.

Google (and maybe the rest of Big Tech in bed with them) wants to make it so sites will deny you access unless you use phenq amazon an "approved" browser as well as the rest of your software/hardware, which will likely mean no adblocking extensions, proxies, or other things they don't like. I have no doubt that us proxy users who choose to experience sites the way we want will be severely affected.

It is currently still possible to bypass Cloudflare's blocking with the right tricks, but this new "remote attestation" technology will use cryptography to make it nearly impossible.

There is already an increasing opposition, please spread the word if you can, and use a browser that isn't Google-controlled.
This is really scary to know.
The all we can do is good hope and nothing else.]]> (Jul. 25, 2023 04:46 AM)amy Wrote:  I just came across this, and it is really scary.

Google (and maybe the rest of Big Tech in bed with them) wants to make it so sites will deny you access unless you use phenq amazon an "approved" browser as well as the rest of your software/hardware, which will likely mean no adblocking extensions, proxies, or other things they don't like. I have no doubt that us proxy users who choose to experience sites the way we want will be severely affected.

It is currently still possible to bypass Cloudflare's blocking with the right tricks, but this new "remote attestation" technology will use cryptography to make it nearly impossible.

There is already an increasing opposition, please spread the word if you can, and use a browser that isn't Google-controlled.
This is really scary to know.
The all we can do is good hope and nothing else.]]> <![CDATA[Unreadable website...]]> https://www.prxbx.com/forums/showthread.php?tid=2624&pid=20925#pid20925 Thu, 17 Aug 2023 06:52:18 -0400 https://www.prxbx.com/forums/showthread.php?tid=2624&pid=20925#pid20925 (Feb. 27, 2022 05:27 PM)ProxRocks Wrote:  
(Feb. 27, 2022 05:05 AM)JJoe Wrote:  I want to quickly find the filter that is causing the problem.

Along that line, I've modified my Prox Menu where to buy phenq for quicker access to keys that seem to have a higher need than the original entries --


Original -->> New

Ad Banners (a_adban.a_adimg) -->> Ad Functions (a_adfn1.a_adfn2)
Ad Comments (a_adcomm1.a_adcomm2) -->> JS Properties (a_jsprop)
Ad Containers (a_adcont.a_adtab.a_adform.a_adcss) -->> JS Methods (a_jsmeth)
Ad JavaScript (a_adjs) -->> External Fonts (a_fonts) new key
Flash & Media removed from Prox Menu keeping, added a_embed to Content-Security-Policy: Block Media header filter After the modification of Prox Menu is it working ok or not?]]> (Feb. 27, 2022 05:27 PM)ProxRocks Wrote:  
(Feb. 27, 2022 05:05 AM)JJoe Wrote:  I want to quickly find the filter that is causing the problem.

Along that line, I've modified my Prox Menu where to buy phenq for quicker access to keys that seem to have a higher need than the original entries --


Original -->> New

Ad Banners (a_adban.a_adimg) -->> Ad Functions (a_adfn1.a_adfn2)
Ad Comments (a_adcomm1.a_adcomm2) -->> JS Properties (a_jsprop)
Ad Containers (a_adcont.a_adtab.a_adform.a_adcss) -->> JS Methods (a_jsmeth)
Ad JavaScript (a_adjs) -->> External Fonts (a_fonts) new key
Flash & Media removed from Prox Menu keeping, added a_embed to Content-Security-Policy: Block Media header filter After the modification of Prox Menu is it working ok or not?]]> <![CDATA[A new threat to Internet freedom...]]> https://www.prxbx.com/forums/showthread.php?tid=3127&pid=20922#pid20922 Mon, 31 Jul 2023 04:41:38 -0400 https://www.prxbx.com/forums/showthread.php?tid=3127&pid=20922#pid20922
This and Google Chrome's Manifest V3 screams that they want to manipulate the web.]]>
This and Google Chrome's Manifest V3 screams that they want to manipulate the web.]]> <![CDATA[A new threat to Internet freedom...]]> https://www.prxbx.com/forums/showthread.php?tid=3127&pid=20920#pid20920 Tue, 25 Jul 2023 00:46:33 -0400 https://www.prxbx.com/forums/showthread.php?tid=3127&pid=20920#pid20920
https://arstechnica.com/gadgets/2023/07/googles-web-integrity-api-sounds-like-drm-for-the-web/

Google (and maybe the rest of Big Tech in bed with them) wants to make it so sites will deny you access unless you use an "approved" browser as well as the rest of your software/hardware, which will likely mean no adblocking extensions, proxies, or other things they don't like. I have no doubt that us proxy users who choose to experience sites the way we want will be severely affected.

It is currently still possible to bypass Cloudflare's blocking with the right tricks, but this new "remote attestation" technology will use cryptography to make it nearly impossible.

There is already an increasing opposition, please spread the word if you can, and use a browser that isn't Google-controlled.]]>
https://arstechnica.com/gadgets/2023/07/googles-web-integrity-api-sounds-like-drm-for-the-web/

Google (and maybe the rest of Big Tech in bed with them) wants to make it so sites will deny you access unless you use an "approved" browser as well as the rest of your software/hardware, which will likely mean no adblocking extensions, proxies, or other things they don't like. I have no doubt that us proxy users who choose to experience sites the way we want will be severely affected.

It is currently still possible to bypass Cloudflare's blocking with the right tricks, but this new "remote attestation" technology will use cryptography to make it nearly impossible.

There is already an increasing opposition, please spread the word if you can, and use a browser that isn't Google-controlled.]]> <![CDATA[Unreadable website...]]> https://www.prxbx.com/forums/showthread.php?tid=2624&pid=20914#pid20914 Wed, 21 Jun 2023 10:05:35 -0400 https://www.prxbx.com/forums/showthread.php?tid=2624&pid=20914#pid20914 (Feb. 25, 2022 01:58 PM)Anno Domini Wrote:  I was just wondering if someone had a fix for this website. If I right click and put Proxomitron in bypass it works fine, but if I don't do that, then the text on the website is unreadable. I tried adding the site to the Bypass List.txt, but it's still unreadable if I do that. I attached a photo below to show what I mean. Thank you for any tips !

https://www.nowtheendbegins.com/
There could be several factors affecting the readability of the site, and I'd like to offer a few tips that may help you navigate through this issue.

Check your browser settings: It's important to make sure your browser is updated to the latest version. Also, have a look at your browser settings, including font size, zoom level, and page style, ensuring they are set to their defaults.

Disable browser extensions: Browser extensions, such as ad blockers, cookie blockers, or custom CSS, could interfere with how webpages are displayed. I would suggest disabling these extensions one by one to identify if any of them is the root of the problem.

Clear your browser cache and cookies: At times, issues arise from old or corrupt data stored in your browser cache or cookies that can distort how webpages load. Clearing your cache and cookies can often rectify this.

Try a different browser: If the issue persists on your current browser, trying to access the website from a different browser may help determine if the issue is specific to one browser.

Check your internet connection: The speed and stability of your internet connection can affect how webpages load. If feasible, try accessing the website on a different network to verify if your connection is causing the problem.

I hope these suggestions assist you in resolving the issue.]]> (Feb. 25, 2022 01:58 PM)Anno Domini Wrote:  I was just wondering if someone had a fix for this website. If I right click and put Proxomitron in bypass it works fine, but if I don't do that, then the text on the website is unreadable. I tried adding the site to the Bypass List.txt, but it's still unreadable if I do that. I attached a photo below to show what I mean. Thank you for any tips !

https://www.nowtheendbegins.com/
There could be several factors affecting the readability of the site, and I'd like to offer a few tips that may help you navigate through this issue.

Check your browser settings: It's important to make sure your browser is updated to the latest version. Also, have a look at your browser settings, including font size, zoom level, and page style, ensuring they are set to their defaults.

Disable browser extensions: Browser extensions, such as ad blockers, cookie blockers, or custom CSS, could interfere with how webpages are displayed. I would suggest disabling these extensions one by one to identify if any of them is the root of the problem.

Clear your browser cache and cookies: At times, issues arise from old or corrupt data stored in your browser cache or cookies that can distort how webpages load. Clearing your cache and cookies can often rectify this.

Try a different browser: If the issue persists on your current browser, trying to access the website from a different browser may help determine if the issue is specific to one browser.

Check your internet connection: The speed and stability of your internet connection can affect how webpages load. If feasible, try accessing the website on a different network to verify if your connection is causing the problem.

I hope these suggestions assist you in resolving the issue.]]> <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20878#pid20878 Sun, 20 Nov 2022 09:56:12 -0500 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20878#pid20878 https://github.com/depler/curl-impersona...tag/7.84.0

To test, type:

Code:
curl_chrome104.bat https://alternativeto.net

Success, return 200 status.

Download "normal" curl ( https://curl.se/windows/ ), and test again:

Code:
curl https://alternativeto.net

WILL fail, return 403.

So yeah, I think people are starting to fight back this degeneration technology, and have made success.

For some high-level language like Python, or libraries with very limited customization like OpenSSL, it's still pretty hard to crack TLS Fingerprint because Python doesn't support changing TLS's ClientHello packet, sadly and it's very popular.]]> https://github.com/depler/curl-impersona...tag/7.84.0

To test, type:

Code:
curl_chrome104.bat https://alternativeto.net

Success, return 200 status.

Download "normal" curl ( https://curl.se/windows/ ), and test again:

Code:
curl https://alternativeto.net

WILL fail, return 403.

So yeah, I think people are starting to fight back this degeneration technology, and have made success.

For some high-level language like Python, or libraries with very limited customization like OpenSSL, it's still pretty hard to crack TLS Fingerprint because Python doesn't support changing TLS's ClientHello packet, sadly and it's very popular.]]> <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20594#pid20594 Thu, 02 Jun 2022 09:40:42 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20594#pid20594
(Apr. 10, 2022 08:46 AM)cattleyavns Wrote:  And BoringSSL is a very good candidate.
Unfortunately not. I did a little more research and the very first thing its description says is "Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don't recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability." I am reminded of the difficulties caused by switching from the 0.9.x that Scott originally used and the 1.0.x that Proxomitron Reborn uses, and think patched OpenSSL will probably be the best choice for now. I haven't had time to figure out how to compile OpenSSL 1.1 yet (TLS 1.3 - might be part of future fingerprinting - is the most needed from that) but once more sites start doing this stuff I'll be forced to do it at some point.]]>
(Apr. 10, 2022 08:46 AM)cattleyavns Wrote:  And BoringSSL is a very good candidate.
Unfortunately not. I did a little more research and the very first thing its description says is "Although BoringSSL is an open source project, it is not intended for general use, as OpenSSL is. We don't recommend that third parties depend upon it. Doing so is likely to be frustrating because there are no guarantees of API or ABI stability." I am reminded of the difficulties caused by switching from the 0.9.x that Scott originally used and the 1.0.x that Proxomitron Reborn uses, and think patched OpenSSL will probably be the best choice for now. I haven't had time to figure out how to compile OpenSSL 1.1 yet (TLS 1.3 - might be part of future fingerprinting - is the most needed from that) but once more sites start doing this stuff I'll be forced to do it at some point.]]> <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20593#pid20593 Thu, 26 May 2022 10:34:12 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20593#pid20593 <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20416#pid20416 Sun, 10 Apr 2022 04:46:42 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20416#pid20416 Just we'll need to use non-OpenSSL code/recompile OpenSSL to achieve perfection. And BoringSSL is a very good candidate.]]> Just we'll need to use non-OpenSSL code/recompile OpenSSL to achieve perfection. And BoringSSL is a very good candidate.]]> <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20415#pid20415 Thu, 07 Apr 2022 07:55:35 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20415#pid20415 <![CDATA[Cloudflare captcha [split] prox-config-sidki_2019-01-26b1]]> https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20414#pid20414 Sat, 26 Mar 2022 00:20:11 -0400 https://www.prxbx.com/forums/showthread.php?tid=2623&pid=20414#pid20414 (Mar. 22, 2022 03:02 AM)cattleyavns Wrote:  Should I share the whole progress ? I think you've given sufficient information already; on the other hand, browsers' ciphersuites and user-agent strings are not exactly secret either. There's a nice list of their ciphersuites here:
Code:
https://www.ssllabs.com/ssltest/clients.html
Removing the SCSV from OpenSSL requires a patch/recompile (it's hardcoded) so it is not easy to do, but on the other hand, looking through that list, it seems besides bots some older Android and Apple systems will send it. (They might also be using OpenSSL internally.)

The other thing I'm considering is allowing Proxomitron Reborn to use one of the varyingly-compatible forks of OpenSSL like BoringSSL, which is used in e.g. Chrome and doesn't send SCSV. Another alternative is the native Windows Schannel, but it's significantly different in API and would require quite a lot more work. Stock OpenSSL is indeed quite bot-like in its default fingerprint, no doubt because it's a widely used default SSL library for everything---except, unfortunately, most browsers.]]> (Mar. 22, 2022 03:02 AM)cattleyavns Wrote:  Should I share the whole progress ? I think you've given sufficient information already; on the other hand, browsers' ciphersuites and user-agent strings are not exactly secret either. There's a nice list of their ciphersuites here:
Code:
https://www.ssllabs.com/ssltest/clients.html
Removing the SCSV from OpenSSL requires a patch/recompile (it's hardcoded) so it is not easy to do, but on the other hand, looking through that list, it seems besides bots some older Android and Apple systems will send it. (They might also be using OpenSSL internally.)

The other thing I'm considering is allowing Proxomitron Reborn to use one of the varyingly-compatible forks of OpenSSL like BoringSSL, which is used in e.g. Chrome and doesn't send SCSV. Another alternative is the native Windows Schannel, but it's significantly different in API and would require quite a lot more work. Stock OpenSSL is indeed quite bot-like in its default fingerprint, no doubt because it's a widely used default SSL library for everything---except, unfortunately, most browsers.]]>