Thread: Authoxy

My friend has a MacBook with OSX 10.5 (Leopard). We live in the same hostel, and there's a Squid proxy server set up with basic (plaintext) authentication for internet access.

The problem is, a lot of her programs can't get through the server. Firefox and Safari works fine, but Messenger for Mac doesn't. Same goes for Skype.

So I googled around, and found Authoxy. In theory, it acts as a proxy server right in your computer. It should capture and forward HTTP(S) requests to the main (squid) server.

So I installed that, and set her proxies to point to 127.0.0.1 port 8081 and set up the ports in Authoxy accordingly. Then I started Authoxy, and it says that 1 daemon is running in 8081. So all seems good right?

But no, I set her Messenger for Mac and Skype to go through Authoxy (and thus put 127.0.0.1 and 8081 in their proxy respective proxy settings), and both still complain that they can't connect.

Safari and Firefox works because their proxy settings are set to use the proxy directly.

Any ideas? Or any recommendations to what software she should use? I've set up her proxies in system preferences as well and tried to use "automatically detect proxies from system prefs" with no luck. Her authentication credentials are also in the proxy settings (in system prefs and in Authoxy). I tried to set up the proxies in System Prefs to use Authoxy, and with no luck.

Don't Squid proxy servers only work for HTTP requests on port 80? Most programs other than web browsers use different ports and protocols.

Mmm yeah, well it's 8080 (http alt) in my case. So web browsers work fine, since they can do proxy authentication, but not with other programs. So that's where authoxy comes into play. It runs as a proxy and should forward the requests made to it to the main Squid proxy at port 8080. But authoxy can take the requests from any local port (that's configured in its settings page).

There's a catch to the proxy though. This proxy (not authoxy) allows some programs to go through some ports directly. I can play most online games, except those with nProtect GameGuard in them. For this to work however, I have to tell the admin my physical address. I'm not having problems (I'm using XP myself), apart from the fact that Nokia Software Updater won't work.

Edit: Oh, and BitTorrent works (I'm using uTorrent as my client).

Squid includes limited support for several other protocols including TLS, SSL, Internet Gopher and HTTPS.[1]


That's from wiki. What OS is the proxy running on. Perhaps it's just the default firewall of the OS stopping you. 80 and 8080 should always be open so the traffic outside would go:
In on 80 > OS Firewall (OK!) > Caught by Authoxy and chached (OK!) > Your computer (OK!)
and
In on 43230 > OS Firewall (AHAHAHAHAAHA no) ||

If they set up the squid, to allow only https traffic through a manually updated whitelist you out of luck!
Since Skype likes to use a secure outgoing 443 port, squid won't allow it, and there are just too many supernodes to add!

MSN has no reason for not to work, it keeps same IE information and proxies, but you probably need to authenticate FIRST then connect.


Since you said you two can access the same proxy, can you under your computer, run all thoses programs?

Yes, and keep in mind she's running OSX and I'm running XP. And I can play online games as well (Ragnarok Online to be specific). But that's only when I give my MAC address to the admin.

And I'm pretty sure there's no firewall running..

Tried: Mac OS X 10.5 Help: Accessing the Internet through a firewall ??
Because realy, if you can access, the problem is on your friend's computer blockin the access, not on the proxy server.

Or Authoxy is screwing up something

Yeah, shut Authoxy right off. That's just going to cause problems. If you can get through, then she should be able to get through.

Also, if you have to give you MAC to the admin for a game, that means he does have some sort of firewall running, as the router/proxy server has to pass info from XXXXX port to the IP assigned to your MAC... I think. Usually MACs are used more for auto-authentication, but I suppose...

In any case, when you authenticate with a server like that for web access, once you do so, you should have global web access through all ports allowed by the firewall, untill the session time, deemed by the server's settings, expires.

What Is My IP Address? - How do I change my MAC address?
You might try that... change her MAC address to match yours (take your machine down first though), and see what happens. There's no reason that should work, but I'm not sure exactly what your hostile admin is up to either, so...

Right I'll try that. I'm pretty sure there's no firewall running in her system was what I meant. It seems that.. he's using the MAC addresses to ensure that he can properly implement the billing system for those ports that Squid can't handle, or for programs that can't do authentications.

But this doesn't explain why Nokia Software Updater (in my system) doesn't work.

Oh, and Warcraft III works (my other friends can play through Battle.net). Think it's through the standard port 6112.

And that gets me thinking... I'll reconfirm with her whether she's passed her mac address to the admin yet....