Page 3 of 4

Re: how to Prevent Governmental blocking ruls ?!

Posted: Sun Apr 01, 2012 11:15 am
by peaceful1
I think Google is been hacked ATM (not sure)
http://img7.imagebanana.com/img/u54pixl1/Cer.jpg
http://img6.imagebanana.com/img/tdkyi2ci/Google.jpg
BTW my PC date & time is accurate so it's not a bug.

Re: how to Prevent Governmental blocking ruls ?!

Posted: Sun Apr 01, 2012 12:13 pm
by nitrox
Google isn't hacked. It looks like Man in the middle attack but I can't say for sure. You can read about in wikipedia http://en.wikipedia.org/wiki/Man-in-the-middle_attack

They did a man in the middle attack last year on gmail https://www.eff.org/deeplinks/2011/08/i ... nst-google

Can you check the serial number?

Click on details tabs in Certificate, and check the serial number field. The serial number I am seeing is

Code: Select all

‎2b 9f 7e e5 ca 25 a6 25 14 20 47 82 75 3a 9b b9
also check the Thumbprint field which is at the bottom if you scroll down on the same tab

Code: Select all

‎59 29 78 a7 2a 90 61 f7 0a d7 c4 4c 4d 44 9d cf 25 8c d5 34
Screenshots

http://img6.imageshack.us/img6/1626/sho ... 105812.png
http://img23.imageshack.us/img23/9048/s ... 105821.png

I am seeing the same certificate in firefox too http://img217.imageshack.us/img217/430/ ... 105505.png

Re: how to Prevent Governmental blocking ruls ?!

Posted: Sun Apr 01, 2012 3:08 pm
by peaceful1
I have the same serial.
thanks for the information.
Image

Re: how to Prevent Governmental blocking ruls ?!

Posted: Sat Apr 07, 2012 9:24 am
by peaceful1
if you live in Iran add these two rules to speed up your nets browsing time.

Code: Select all

||google-analytics.com$third-party
||google.com/js/plusone.js$third-party
& any other Google services that might load with https & some other third party scripts that are https as will.

Re: how to Prevent Governmental blocking ruls ?!

Posted: Sat Apr 07, 2012 11:00 am
by lewisje
I think some subscriptions already have them (at least the last one is in Adversity Antisocial and Fanboy's Annoyances).

Re: how to Prevent Governmental blocking ruls ?!

Posted: Thu Apr 26, 2012 9:29 am
by Guest
peaceful1 wrote:something near the whole net is blocked in my country. when a person tries to reach a certain site the page will be redirected to this URL:

Code: Select all

http://10.10.34.34/?type=Invalid%20Site&policy=MainPolicy
& after 30 seconds it will be redirected to another direction:

Code: Select all

http://peyvandha.ir/
I tried to prevent this matter but whatever I do it won't prevent the redirection behavior.
these are the blocking rules I use:

Code: Select all

10.10.34.34##HTML
peyvandha.ir##HTML
||10.10.34.34^
||peyvandha.ir^
it looks like there is a script that only functions when you're directly blocked by peyvandha.ir
http://userscripts.org/scripts/show/97071
& one thing I notice the only browser that automatically reacts is opera that blocks the redirection so the Government has blocked the download link.
my main problem is with Google chrome
can anyone help me with this situation
Peaceful1

Re: how to Prevent Governmental blocking ruls ?!

Posted: Thu Apr 26, 2012 10:30 am
by mapx
you could try kiss privacy extension

https://chrome.google.com/webstore/deta ... hmpbgmffii

Re: how to Prevent Governmental blocking ruls ?!

Posted: Thu Apr 26, 2012 3:47 pm
by peaceful1

Re: how to Prevent Governmental blocking ruls ?!

Posted: Thu Apr 26, 2012 4:03 pm
by mapx
i dont know why did you post all those extensions.

if you want to block some redirection you'll use "kiss privacy", I tested this one

Re: how to Prevent Governmental blocking ruls ?!

Posted: Tue May 01, 2012 6:08 pm
by peaceful1
oh, I misunderstood your statement.
now I get it.

Re: how to Prevent Governmental blocking ruls ?!

Posted: Thu May 31, 2012 6:01 am
by lewisje
IDK whether peaceful1 is still on here, but in case the Persian Underground hasn't spread the word, this portable encrypting local proxy is popular in Iran: https://simurghesabz.net/

Be warned about downloading trojanized versions from other sites: http://nakedsecurity.sophos.com/2012/05 ... issidents/

If necessary, I can send you a copy of this program, Green Simurgh, via another channel (I think you had said that you can't access HTTPS sites...)

Re: how to Prevent Governmental blocking ruls ?!

Posted: Thu May 31, 2012 7:46 pm
by peaceful1
thank you very much!

I browse the forum nearly every days. It worked fine.
thanks for the great share.
:)

Re: how to Prevent Governmental blocking ruls ?!

Posted: Wed Jun 27, 2012 7:59 am
by peaceful1
this site shows if a site is blocked by the Iranian government

http://www.blockediniran.com/

Re: how to Prevent Governmental blocking ruls ?!

Posted: Sun Aug 19, 2012 11:42 pm
by Guest
peaceful1 wrote:something near the whole net is blocked in my country. when a person tries to reach a certain site the page will be redirected to this URL:

Code: Select all

http://10.10.34.34/?type=Invalid%20Site&policy=MainPolicy
& after 30 seconds it will be redirected to another direction:

Code: Select all

http://peyvandha.ir/
I tried to prevent this matter but whatever I do it won't prevent the redirection behavior.
these are the blocking rules I use:

Code: Select all

10.10.34.34##HTML
peyvandha.ir##HTML
||10.10.34.34^
||peyvandha.ir^
it looks like there is a script that only functions when you're directly blocked by peyvandha.ir
http://userscripts.org/scripts/show/97071
& one thing I notice the only browser that automatically reacts is opera that blocks the redirection so the Government has blocked the download link.
my main problem is with Google chrome
can anyone help me with this situation
Peaceful1

Re: how to Prevent Governmental blocking ruls ?!

Posted: Tue Sep 04, 2012 7:07 pm
by smartgig
lewisje wrote:Have you considered changing your DNS settings to use these servers?

Code: Select all

156.154.70.22
156.154.71.22
These are for Comodo Secure DNS: http://www.comodo.com/secure-dns/

Also, I have gone ahead and copied in that UserScript; just copy the text, save as "peyvanda.user.js" and use it with Chrome, Firefox with GreaseMonkey or Scriptish, or Opera, or any other browser that allows UserScripts...

Code: Select all

// ==UserScript==
// @name              Remove peyvandha.ir
// @namespace    http://userscripts.org/users/293637
// @description    Replaces the Islamic Republic of Iran censored content notice page with this message: "Content has been censored by the Islamic Republic of Iran!" and allows you to load the censored content from Google web cache.
// @include           *
// ==/UserScript==

var filters = ["http://10.10.34.34/"];
var iframe = document.getElementsByTagName("iframe")[0];
var loc = document.location;

for (var j = 0; j < filters.length; ++j) {
	if (iframe.src.indexOf(filters[j]) != -1) {
		var cache = "https://webcache.googleusercontent.com/search?q=cache:" + loc + "&hl=en";
		var text = document.createElement("p");
		text.innerHTML = "Content has been censored by the Islamic Republic of Iran! <a href = '" + cache + "'>Click here</a> to try loading it from Google web cache.";
		iframe.parentNode.replaceChild(text, iframe);
	}
}
For Safari, the author's extension is here: http://www.multiupload.com/KOX1F1FIV6
I've used the script and this is nice.
I just want to modify the script to automatically load the url from my socks5 proxy instead of showing the phrase '"Content has been censored by the Islamic Republic of Iran! <a href = '" + cache + "'>Click here</a> to try loading it from Google web cache.";'

Please help.

Thanks