So, what is a secure anonymous proxy?

There is nothing exactly like that or find one for free on the internet. But you can keep these in mind when looking for a proxy server.


You cannot simply add a tag like say, Elite or High Anonymity to the description of a proxy server and expect it to be secure. This probably sounds obvious but I have personally checked a huge list of supposedly 'Elite proxy servers' and to be honest no one could have configured them more securely.

Lets consider one of the very basic premises of running a secure,anonymous proxy server, what context is the proxy service running in. Do you know this about on proxy servers you have used?

The absolute worse thing you can do is run the proxy service as root, yet many are configured in just this way. The problem is that any bug or vulnerability with the proxy server could lead to the compromise of the whole machine. The root account gives complete control of the server, and with it all your browsing, all your logs and any traffic you send through that proxy. This sounds simple knowledge, but you can find that many 'free anonymous proxies' that appear in the net are configured exactly like this.

There is a common alternative which runs in the context of the user 'nobody". This is much better as the account has no special privileges which could put the server at risk. But neither is it a suitable configuration for a high anonymous proxy and the reason for this is that the account will still have some read and write privileges over public areas and directories. It will also have some rights over all logs created in the context of the 'nobody' user meaning potentially all users of the proxy have potential access to all the proxy logs and files created by this user.

The most secure alternative is where you can expect to see on any highly anonymous proxy,also where each user has a specific user ID for using the proxy server. This user account should have no other access rights whatsoever, each proxy session would run in the context of this individual user. This protects the security, anonymity of every user of the proxy and secures their files and logs from other surfers using the proxy service.

Configuring an anonymous proxy is extremely important and one should be really careful. A badly configured and insecure proxy server puts all of it's users and their information at risk. Remember whenever you use a proxy server, you are creating a single log of all your browsing in addition to your ISP logs - if it is not secure you can be putting your security at great risk, in fact much more than not using a proxy at all. So, if you really want a high anonymous proxy make sure you get one.