NetConceal Anonymity Security Shield
NetConceal Anonymity Security Shield
NetConceal Anonymity Security Shield is an interesting offering providing users with the ability to choose their proxy from an automatically generated list. In addition to using the proxy for Web traffic, NetConceal also offers the promise of being able to use the proxy for other IP services as well, such as instant messaging or email.
Setup for NetConceal
You can also specify which geography you want the proxy to be from as well as specifying SSL-only proxies.
NetConceal options for selecting type and location of the proxy.
Once the proxy has been selected, NetConceal bounces you over to a new screen that is supposed to validate what in fact you’re running with a different IP address.
The NetConceal fake address page
Unfortunately not all of the proxies in the NetConceal list were as reliable as we would have liked. We experienced intermittent connection difficulties with various proxies where sometimes the proxy worked and passed traffic reliably and sometimes it didn’t.
The NetConceal start window in the browser warns that you need to stay in the same window to be anonymous. But once you start surfing, there is no indication either in the task bar, navigation bar or otherwise that you’re surfing with a different proxy. Additionally, not all sites were accessible, including the third-party sites we attempted to visit to verify the proxy and the IP address.
Once launched, there is no simple dashboard to just switch proxies or to switch a proxy off (other than closing the window that first started browsing with).
The ability to practically anonymously surf the Web is a great idea, but as was the case with the browser, proxy connections for non-browser internet activities were not always 100% reliable.
Let's separate fact from fiction and potential from practice...
Is your IP anonymous? Mostly, unless you have your own assigned address space (I do) or you're doing your surfing from a business or enterprise that has its own assigned address space. Finding out who is behind an ISP's dynamically assigned IP takes a letter from an attorney. Hardly an automated process.
Can your IP address reveal your geographic location? Yes, but only roughly. It will not reveal your address. At best it will reveal your town and in some cases, even that may be somewhat inaccurate depending on how your service is provisioned.
On the other hand if you fake your IP, any web site that uses geolocation services to target advertising, will offer you ads that are irrelevant. I'm on the fence with this. Which is worse? Relevant ads or irrelevant ads? Those of us who are experienced pretty much ignore all ads anyway.
Can your IP address be used to track you? Absolutely not. I can walk out the door right now and although I'll have to stop typing, I can guarantee you that nothing about my IP address will have given away the fact that I went to get a bottle of Coca-Cola from across the street.
Can your IP address be used to track your activities? Yes, to a limited extent, but due to the prevalence of dynamic IP addressing and the number of proxy -based systems (frequently used more for security in large companies than for privacy), generally nobody bothers. Cookies are a more reliable way to associate a person (or at least a computer) with their browsing habits. But for that to happen successfully some cooperation is required among the sites that place those cookies on your computer. Don't even get me started about cookies - another overblown source of panic.
SSL proxy connections. All very well and good for keeping prying eyes out of your local data stream but useless once the data leaves the proxy and finds its way to the web server. So at least it'll keep your ISP and your neighbor's young hacker kid off your bits 'n bytes.
Some of the other options really slay me. Why block info about your OS and your browser version? Seriously! And why strip HTTP Referer header info? A lot of this is used to help improve the web browsing experience for a viewer and in the case of referers, helps protect the site from abuse.
There are some other interesting purposes for web proxies that aren't directly related to privacy, such as circumventing ridiculous limitations on certain web services. It might help with the quality of your search results during your stay in China, or help facilitate access to P2P applications that are blocked from USA IP addresses, or help travelers gain access to USA web services that block or offer reduced functionality to offshore IP addresses.
A final note is that web browsing these days often involves a lot of extra plug-ins, multimedia widgets, peer to peer gadgets and so on. Not all of these blindly play along with proxy settings or proxy stacks. Some will do their own thing and some simply won't work at all. You'll have no idea if one of those pieces are dancing to their own beat until you run packet capturing software - a job not well-suited to those without propellor beanies. Those of us with the beanies know better than to care.
The privacy test IP Check uncovers that web proxy providers like Anonymouse.org can indeed not provide any privacy protection. Any arbitrary website is able to circumvent web proxies and to uncover the user's IP address and browser data, which should be actually protected by the proxy.
The respective security leaks are supposed to be present since up to 10 years in the code of these services. The question arised, whether anybody had seriously checked them for attacks before... You may find a demo of the numerous possible attacks here:
In the following, you moreover find a detailed description of the tests:
You find the main page of the IP Check itself here:
The question is: are web proxy providers intentionally deceiving their users regarding the security of their systems? Or do they simply lack the necessary competence in the area of IT security? Is it all about making money, or also about collecting detailed data about the users? In any case, it should be clear that the currently available web proxies are at the best suitable for the circumvention of Internet censorship, but in neither case for anonymous surfing.
It is possible that the IP check wil be blocked by some web proxy providers because of this demonstration. This would not be astonishing, as there is even in theory no protection against some of the used leaks. Whoever wants to make himself convinced should therefore do it now, before censorship will take place. However, you might realize any censorship of the Ip check as a confession that the web proxy providers are helpless against the attacks that are shown.