its really quite simple to setup and do, the hardest part would be for ppl who dont already have java installed, heres my setup, i have dsl and a bunch of computers connected on a switch all connected to a gateway/router.

the gateway router is actually a redundant pc that i am running clarkconnect on, and if you have broadband and more than one comp, god ppl go out and spend 10$ at a garage sale or ebay or something for an old p1 or 486 and make yourself a gateway its so easy and so nice.

the gateway its self wont do stealth but it does have a good iptables firewall, squid proxy(with privoxy plugin), snort and several other fine programs

now i didnt setup the stealth proxy on this box for a reason, one its too easy to install on a single client, two i dont want some of the clients stealthed

with the gateway at max security i went and tested it with "Shields up" it found my ip addy and my ports were all closed, while closed is good it still means that another computer can see that your comp exists, but cannot gain access, thats great but we want stealth

heres the ringer, i found a java based anonymizer proxy from a german group on freshmeat its called "Java Anon Proxy" or JAP for short, its a java .jar excutable so to use it all you need is java running (1.4) and download the jar file, to start the program you just enter a short shell command to java, which i scripted and set a shortcut right next to mozilla so i can easily turn it on and off, then just edit your browsers proxy settings (piece of cake 127.0.0.1:4001 thats all there is to that) and then go test it

after doing this i went back to Shields up and retested the firewall test failed because it could not see the comp, and the port scan came back as all ports stealthed, the ip addy that it aquired was that of the programs domain in germany, now because your browser is not secure your not completely invisible, to do that your going to need to turn of scripting programs like javascript(the main one) and activeX, with those off and JAP running your pretty much invisible, atleast to privacy testing sites like heads up and the JAP test site

give it a try if your super paranoid like me, and tell me how it goes

Yes. Neat stuff. One thing though.....when I'm running shields up and I go to my browser home url(google) it's in German?
I had to install jre1.4.0. I have it in a dir /java
to get the command java -version I had to change my path env to
PATH=/usr/X11R6/bin:/usr/local/bin:/usr/bin:/
home/foo/jre1.4.0/bin

I downloaded JAP into the /jap directory and can execute it and it runs using
java -jar JAP.jar. However when I try other bash commands like ls I get an error message saying bash command not found?

I've run the JAP test and http://samspade.org
tests. Excellent product.
Thanks
re-v

sorry, i think you mis understood me, i meant the group of programmers that wrote it are based in germany, and as i found out if you are playing around with the configureation and hit go back to defaults it will change the program language back to german, that took me a bit to fix lol as for your "ls" question i dont understand what your asking or what your trying to do there where or why are you trying to run the ls command on jap.jar, what is the logic behind it please

if your wanting to make an excutable script to launch jap without opening a term, just create a new text file, and put something like this in it

#! /bin/bash
cd /home/user/folder that contains jap
java -jar JAP.jar


give it a name like japstart.sh (besure to end it with .sh) and link the file to your taskbar or an icon or a program launcher whatever you want

The loss of the bash commands is related to the path enviroment variable.
I found the documentation on the JAP site very clear.
Under prerequisites, JAP shows the user several ways to find out if java is installed on the users system.
The command they use is $java -version.
In order tio get this command to work I've kludged the PATH env. I have set the path to jre1.4.0 /bin at the end.
I noticed that when I change the PATH to get java to work , I lose my bash commands?
I lose the bash command on the terminal only ,
if I open another terminal the path reverts back
to the original. I have bash but no java.
thanks
re-v

what distro are you using, some of the general guides for installing java on a lin distro wont work here, i know the default for say redhat is not going to work for mandrake, mandrake uses different file strutures so the path will be different, if thats what your using let me know ill try to tell you how i got it installed or what path im using

I run Mandrake 8.2 on an hp Kayak xu800,256mb, scsi atlas 10 9gig.
Great linux box, everything auto detects.
Alos,I have it set up as a router for an Xp box.
Thanks
re-v

This is a great tool that provides an extremely useful service.

Unfortunately, reliability and data throughput suck. Some of the "mixes" are way overloaded for example. Additionally, unscheduled outages are a common occurrence, as the JAP homepage is quite open about.

Unless you're doing something really, really private, or you're overly paranoid, weigh it against the major performance/reliability hit. I'm not saying that it's not worth it; that's a personal decision. But you should be aware that it *is* a trade-off.

By the way, Shields Up! is a joke of a security tool. It only checks certain ports, and its results have been proven to be unreliable. An nmap (http://insecure.org/) scan is far more effective and provides more than the illusion of safety.

Also, the reason that Shields Up! was able to be fooled by JAP is because *you* initiated the scan via your browser. Usually *the one who's scanning* initiates the scan, and they just randomly scan whole netblocks of IPs, which will include your real one.

very true, but the ppl who would scan me in that manner, wont be the websites i surf too, and i dont use jap all the time, cause yes it is as with any free anonymizer service slows down especially with many ppl connected to the service (the program shows howmany ppl are connected to the server your on) i have used nmap on my setup and all the ports that are going to affect me as far as surfing are closed

no where in this forumn did i say anything about being hacker proof or anything of that sort by far i am not, and this setup is no way to become that, my goal was to surf anonymously, and i did that thats it

Sure.

Please remember that the forums aren't only for the ones asking the question. Other interested readers might stumble upon this thread in the future as well. I was concerned that someone just reading this might get the (wrong) impression that JAP is the magic bullet to end all their (surfing) privacy concerns, without realising that there would be some fairly pronounced negative consequences as a trade-off. So that particular point wasn't specifically addressed right at you.

As far as Shields Up! is concerned, you're right, my mistake. That *is* a good way of checking to see whether a site can see your IP, and you didn't say that it *was* a good way of ensuring that your comp is hacker-proof. Once again: my bad. Sorry 'bout that. :)

dont take wrong way, wasnt meaning to be spiteful, i really do appreciate the critism of the post, and the reason you just stated above is why i reposted what i did, in hopes to kind of clear up what, i thought, would be a given of knowledge "most" linux users are fairly advanced and would be able to fill in what i didnt say, but you are completely correct and between our posts i think we have cleared up any confusion that a hapless reader may get/have