HTTPS in

HTTPS in http://www.dslreports.com/forum/r20177830 en Wed, 02 Dec 2009 19:17:25 EDT Wed, 02 Dec 2009 19:17:25 EDT Re: HTTPS http://www.dslreports.com/forum/remark,20180191 jap :

said by factchecker :

Phorm uses an algorithm that scans webpages as they are loaded and finds "key words" and uses them to customize the ads for the user. The Register had a good summary of how Phorm works a few days ago...

»www.theregister.co.uk/2008/03/07···rtegrul/

Cripes. I never thought of backtracking to scan referring url. Bastards. No way for a client to detect presence of such a server tool either. Maybe some kind Mozilla user - who doesn't work for a data mining company :uhh: - has created a redirect plugin. Time to locate some form of local referrer washer.

Thanks for the Register link. Evil for server owners to install such a tool. :mad:

[reminisces the pre-commercial web days] ]]> http://www.dslreports.com/forum/remark,20180191 Mon, 17 Mar 2008 16:27:51 EDT Re: HTTPS http://www.dslreports.com/forum/remark,20179655 anon :

said by TKJunkMail

:

Would it? They would still have the URL you went to whether it was HTTP or HTTPS. So if you went to HTTPS://IhaveCancer.org they would still have that info to sell.

They would see the URL, but that is it.

HTTPS would definitely go a long way toward foiling Phorm. Phorm uses an algorithm that scans webpages as they are loaded and finds "key words" and uses them to customize the ads for the user. The Register had a good summary of how Phorm works a few days ago...

said by »www.theregister.co.uk/2008/03/07···rtegrul/ :

Explain for our readers how Phorm's profiling system works.

Marc Burgess: What the profiler does is it first cleans the data. It's looking at two sets of information: the information in the request that's sent to the website and then information in the page that comes back.

From the request it pulls out the URL, and if that URL is a well known search engine such as Google or Yahoo! it'll also look for the search terms that are in the request.

And then from the information returned by the website, the profiler looks at the content. The first thing it does is it ignores several classes of information that could potentially be sensitive. So there's no form fields, no numbers, no email addresses (that is something containing an "@") and anything containing a title like Mr or Mrs.

]]> http://www.dslreports.com/forum/remark,20179655 Mon, 17 Mar 2008 15:11:19 EDT Re: HTTPS http://www.dslreports.com/forum/remark,20178428 gaforces : A better solution is to make the data mining backfire on them by inserting a worm into their database that sends info back :) Or it could do worse things ...

Payback is a mofo. Parse THIS, sucka.]]> http://www.dslreports.com/forum/remark,20178428 Mon, 17 Mar 2008 11:16:42 EDT Re: HTTPS http://www.dslreports.com/forum/remark,20178040 russotto : But they would not get »https://medicalstuff.org/ihavecancer -- just medicalstuff.org

Still, encryption is a very heavyweight solution for a problem that is easier fixed by NOT HAVING THE ISP TRACK MY PACKETS.]]> http://www.dslreports.com/forum/remark,20178040 Mon, 17 Mar 2008 09:56:42 EDT Re: HTTPS http://www.dslreports.com/forum/remark,20177887 TKJunkMail :

said by jjoshua

:

Web can use https by default. Performance may be slower but that's a tradeoff that some sites may be willing to take.

That would solve the problem.

Would it? They would still have the URL you went to whether it was HTTP or HTTPS. So if you went to HTTPS://IhaveCancer.org they would still have that info to sell.
--
My BLOG .. .. Internet News .. .. My Web Page]]> http://www.dslreports.com/forum/remark,20177887 Mon, 17 Mar 2008 09:19:17 EDT HTTPS http://www.dslreports.com/forum/remark,20177830 jjoshua : Web can use https by default. Performance may be slower but that's a tradeoff that some sites may be willing to take.

That would solve the problem.]]> http://www.dslreports.com/forum/remark,20177830 Mon, 17 Mar 2008 09:01:43 EDT