Old Proxomitron Forums

Proxomitron Filters - Discussions welcome => Site Specific => Topic started by: Checkout on April 04, 2002, 10:02:47 AM

Title: www.idzap.com
Post by: Checkout on April 04, 2002, 10:02:47 AM
Hi.  I've subscribed to an anonymising service - idzap - which has an SSL service called IDsecure.  When I reach their web page (www.idzap.com) I select IDsecure, which takes me to their login page.  Once logged in, I can visit anywhere I want to on the web, navigating by the address bar they build into each page.  Consequently, I have two address bars on each page!  The top one belongs to Internet Explorer, but if I use that one, then I bypass IDsecure!  I hope that's clear?

So, my problem is this:  can Proxo recognise when I'm on the login page and submit my ID and password for me?  After that, can it hide IDsecure's address bar (because it takes up room on the page) and also transfer any URL I type into IE's address into IDsecure's address bar, so I can't accidentally surf outside of IDsecure?

 
Title: www.idzap.com
Post by: Checkout on April 12, 2002, 11:15:24 AM
Hmmm...I'm not getting much further.  Maybe another example would help - how could I use Proxomitron to automatically login here?

That's to say, I would like to have Proxo recognise this page when I visit it (say, by clicking on a "avourite" link or by setting it as my browser's Home Page) and then filling in the Username and Password fields and submitting them (without me having to click anything).

Is that possible?

Many thanks.



Edited by - Checkout on 12 Apr 2002  12:18:26
Title: www.idzap.com
Post by: JD5000 on April 12, 2002, 11:37:37 AM
Maybe something like Jak's CGI proxy config?

http://asp.flaaten.dk/pforum/topic.asp?ARCHIVE=&TOPIC_ID=419

As far as the automatic login.... I would think a another header filter would work... Can you login with cookies?

--------

"Imagination is more important than knowledge" - Einstein
Title: www.idzap.com
Post by: JD5000 on April 12, 2002, 11:40:16 AM
A header filter like this?

In = FALSE
Out = TRUE
Key = "Cookie: Elder Fellowship Private login"
URL = "everquest.scalpnet.com"
"/cgibin/forumdisplay.cgi?action=topics&forum="
"Everquest+-+Private+Forum&number=3&DaysPrune=20&LastLogin="
Match = "*"
Replace = "astLogin=2452234.1705; LastLoginDT=11-20-2001%2005%3A05%20PM"

--------

"Imagination is more important than knowledge" - Einstein
Title: www.idzap.com
Post by: Checkout on April 12, 2002, 12:53:42 PM
quote:
Can you login with cookies?

Alas, no.  In the HTML I can see:

input type="text" name"username"
input type="password" name="password"
input type="submit" name="Login"

So I presume that I need to get Proxo to recognise the URL of the login page, substite my username and password for the variables above, and somehow cause a submit.

Yes?  Grateful thanks for your response, BTW!

 
Title: www.idzap.com
Post by: JD5000 on April 12, 2002, 02:00:37 PM
When you open the log window, can you see a url with your username & password?

--------

"Imagination is more important than knowledge" - Einstein
Title: www.idzap.com
Post by: JD5000 on April 12, 2002, 02:02:33 PM
There is a filter to fill forms, but I don't know about automatically submitting...

--------

"Imagination is more important than knowledge" - Einstein
Title: www.idzap.com
Post by: sidki3003 on April 12, 2002, 02:02:37 PM
The HTML snippet is a login form. This could be managed by proxo.
Have a look here:

http://asp.flaaten.dk/pforum/topic.asp?ARCHIVE=&TOPIC_ID=162
The timeout in those filters is 5000 ms, you can set it to 0.

But that would only solve the first part of the problem.
Concerning the URL you posted in the Q&A, i'm meanwhile pretty sure, that this service encrypts the URLs. In that case Jak's CGI filter won't work


 
Title: www.idzap.com
Post by: JD5000 on April 12, 2002, 02:03:51 PM
One problem down.

--------

"Imagination is more important than knowledge" - Einstein
Title: www.idzap.com
Post by: sidki3003 on April 12, 2002, 02:09:18 PM
Oops, two posts by JD5000 while i was typing. I'm a slow writer .
Just want to say i mean Checkout when quoting "you posted in the Q&A".


 
Title: www.idzap.com
Post by: JD5000 on April 12, 2002, 02:15:39 PM
Yikes, I just saw the URL in the Q&A forum. Was that from the log window?

--------

"Imagination is more important than knowledge" - Einstein
Title: www.idzap.com
Post by: Checkout on April 12, 2002, 02:17:54 PM
Maybe two problems down!    After logging on, the next page (where you input the URL you want to visit) is also a form!

input type="text" name="asurfl" value="http://"

How about that!  Have a great weekend guys - I'll try this out next week!

Thanks you!

 
Title: www.idzap.com
Post by: sidki3003 on April 12, 2002, 02:19:27 PM
And JD5000 is a bloody fast typer
Checkout, the code "setTimeout('document.MyForm.submit()',5000);" may well interfere with other "killer-filters", take care.


 
Title: www.idzap.com
Post by: Checkout on April 12, 2002, 02:27:38 PM
Will do.  Cheers.

 
Title: www.idzap.com
Post by: Checkout on April 16, 2002, 10:13:30 AM
My brain is still in orbit.  Gak.  Can't get this right!

From the page member.idzap.com/index.php, I get:      [form method="POST" action="/login.php"]
      [td][font size=2]Username: [/font][/td]
      [td][font size=2][input type="text" name="username" size="10" maxsize="20" value=""][/font][/td]
      [td]  [/td]
      [td][font size=2]Password: [/font][/td]
      [td][font size=2][input type="password" name="password" size="10" maxsize="20" value=""][/font][/td]
      [td]  [/td]
      [td][font size=2][input type="submit" value="Login"][/font][/td]
      [/form]

My Proxo filter (search and replace) is:

[form1 name="username"2 name="password"3 [/form]



[form name="MyForm"1 name="username" value="xxxxxxxx"2 name="password" value="????????"3 [/form]
[!--/setTimeout/--][script language="JavaScript"] setTimeout('document.MyForm.submit()',50); [/script]
"
"$STOP()"

Can anyone spot the non-deliberate mistake?  I've based this on other filters I've seen in the Proxo web filters list.



 
Title: www.idzap.com
Post by: JakBeNymble on April 16, 2002, 07:22:11 PM
Hi GUYS,
       Looks like you are right after it! Keep on keeping on. I looked at the Html values, and I can't see right off hand why this doesn't work. But I'm kinda green at HTMl, so maybe one of the other memebers can spot what has escaped me. I was sure thought that the Redirector would work though. If you loggin, fetch a page and capture the whole URL, and then delete the Url of the fetched page, you should have captured IdZap's url with the loggin info already contained in the Url. I thought you could replace the CGI's Url in the Redirector Filter with the IDZAP/loggin Url. Then with that filter enabled, everything should be redirected through IdZAP service. I haven't tried it yet, but when I get a minute, I'll check it out. (It was just a thought)
I hope that you have a wonderful and Blessed Day, MY FRIENDS!
"JaK"

 
Title: www.idzap.com
Post by: sidki3003 on April 17, 2002, 12:23:59 AM
Checkout, i have trouble reading your filter. Could you copy and paste it from proxo's default.cfg?
Anyhow, my idea would be something like this:

Name = "Idzap Form Filler"
Active = TRUE
URL = "www.idzap.com/...more is needed here.../"
Limit = 2048
Match = "<form1"
"name="username" size="10" maxsize="20" value=""2"
        "name="password" size="10" maxsize="20" value=""3
        "</form>"
Replace = "<form name="MyForm"1"
        "name="username" size="10" maxsize="20" value="Buddha"2"
        "name="password" size="10" maxsize="20" value="Shakyamuni"3
        "</form>
"
        "<!--//--><script language="JavaScript">"
        "setTimeout('document.MyForm.submit()',300); </script>
"
        "$STOP()"


 
Title: www.idzap.com
Post by: JD5000 on April 17, 2002, 12:40:36 AM
Sidki3003's filter works. Just make sure you have Proxomitron set for secure pages & you have "Use ssleay32 & libeay32" in your proxo config.

--------

"Imagination is more important than knowledge" - Einstein
Title: www.idzap.com
Post by: Checkout on April 17, 2002, 10:50:54 AM
I've got the SSLEAY and LIBEAY stuff set up correctly.  Here's what I've got in default.cfg:Name = "IDSecure Login"
Active = TRUE
URL = "member.idzap.com/index.php"
Limit = 2048
Match = "<form1"
        "name="username" size="10" maxsize="20" value=""2"
        "name="password" size="10" maxsize="20" value=""3"
        "</form>"
Replace = "<form name="MyForm"1"
          "name="username" size="10" maxsize="20" value="myname"2"
          "name="password" size="10" maxsize="20" value="mypaswd"3"
          "</form>
"
          "<!--//--><script language="JavaScript">"
          "setTimeout('document.MyForm.submit()',300); </script>
"
          "$STOP()"

Looks pretty identical to me - but it doesn't do the business!  :(

Hmm...I've got quote marks after 3 and Sidki3003 hasn't.  Can that possibly be it?


 
Title: www.idzap.com
Post by: JakBeNymble on April 19, 2002, 05:28:38 AM
Hi Friends,
          I thought this might help.

$RDIR(url)The RDIR (redirect) command is used to transparently redirect URLs to a different location. It's also possible to redirect to a local file by using the "http://file//filename" URL command syntax. The new URL must be of a type The Proxomitron understands (http, or with SSLeay, https).

 $JUMP(url)Similar to the RDIR command, the JUMP command is used to redirect a URL to a different location. However, JUMP just tells your browser to go to the new location. With JUMP your browser is aware of the redirection and the URL you see will be updated to reflect the new location. It works best for redirecting an entire page, while RDIR is better at invisibly redirecting individual page elements like images or java apps. Use RDIR when you want the redirection to happen "behind the scenes" and use JUMP when you want to simply go to a different site from the one requested. Use both RDIR and JUMP commands in the replacement section of header filters only. It's important to note that for outgoing headers the redirect will happen before the original site is ever contacted, but when used with incoming headers, the initial site must be contacted first. These commands have no effect in web filters since by this point the original page has already begun loading into your browser.
If you want to look at the whole document, here is the link. This is one of my favorite sites.
 http://www.sankey.ws/proxlang.html
Have a Wonderful & Blessed Day, MY FRIENDS!
"Jak"

 
Title: www.idzap.com
Post by: Arne on May 09, 2002, 10:01:10 AM
quote:


Looks pretty identical to me - but it doesn't do the business!  :(



I tried this filter and it works like a charm for me.

Best wishes
Arne
Imici username: Arne