Friday 24 May 2013
It is very time consuming scanning for proxy servers on random ports. This is why proxy scanners scan mostly on commonly used proxy ports, which gives the best and fastest result when scanning.
The proxy port 3128, proxy port 80, and the proxy port 1080 are usually the most commonly used ones, after that comes 6588 and many others.
On the proxy port 3128 and 3127 we often find CoDeeN proxy servers, which you should filter out, and that is also why some people remove these ports from their scan options altogether.
CoDeeN is a Content Distribution Network (CoDeeN) built by a group at the princeton university. It is a network of proxy servers, to deliver content to CoDeeN users.
Many people remove CoDeeN proxy servers from their lists. This is because all the connections to CoDeeN proxy servers are logged, which helps to identify abusers of the system. Usually, people who use proxy servers, use them because they do not want to be logged, and want to stay anonymous. Some CoDeeN proxy servers also have limitations like not supporting downloading of files, visiting protected websites (SSL), and others, which are only available to a number of CoDeeN users. Also, users have to enter the verification numbers from an image after using the proxy for some time, which prevents the use of the network by applications.
The proxy port 80 is usually also used for web servers, and the proxy port 1080 is well known as the port for socks4 and socks5 type of proxy servers.
Proxy port numbers usually scanned for proxies are the proxy ports 3128, 80, 1080, 6588, 2301, 7212, 8000, 8080, 8081 and 8888.
