Re: Past BBR stories established Nebuad only monitoring

Author	All Replies
TKJunkMail Enjoy the sun Premium join:2002-03-03 Avalon, NJ ·Sprint Mobile Broa.. ·Comcast	reply to funchords Re: Past BBR stories established Nebuad only monitoring said by funchords : Do you have a reason on attacking this report? Not attacking the report. Just pointing out that following reasonable browser security settings can make the Nebuad monitoring moot. If I was really paranoid about security I would subscribe to a public VPN service for all web access and then all traffic would be encrypted and untouchable unless someone got a Nebuad device between the VPN server and the internet at large. -- My BLOG .. .. Internet News .. .. My Web Page
	to forum · permalink · · 2008-06-18 19:50:26 ·
funchords Hello Premium,MVM join:2001-03-11 Washington, DC ·Verizon Online DSL ·Skype	said by TKJunkMail : Not attacking the report. Just pointing out that following reasonable browser security settings can make the Nebuad monitoring moot. Cool. That advice is always valuable. -- Robb Topolski -= funchords.com =- Hillsboro, Oregon HTTP is the new Bandwidth Hog...
	to forum · permalink · · 2008-06-18 19:57:24 ·
swhx7 Premium join:2006-07-23 Elbonia ·RoadRunner Cable	reply to TKJunkMail said by TKJunkMail : following reasonable browser security settings can make the Nebuad monitoring moot. By "make moot" I understand you to mean that avoiding the injected cookies and Javascript interferes with client-tracking efforts. That much is true, but it does not avoid having all one's packets going thru the data-mining machine. Theoretically (if the spybox company diverges from what they publicly say they'll do) it could still assemble a per-individual browsing history. Also it seems to me (though I've only briefly glanced at the materials) that the user can avoid the Nebuad cookies only by manually evaluating each cookie, because the fraudulent ones are inserted in headers via forged packets. The browser can't tell that they're not from the site the user intends to accept cookies from. And in the case of the Javascript, even with Noscript, I'm not sure there is any way to run JS from the real site without running the injected JS.
	to forum · permalink · · 2008-06-19 10:43:55 ·
TKJunkMail Enjoy the sun Premium join:2002-03-03 Avalon, NJ ·Sprint Mobile Broa.. ·Comcast	said by swhx7 : Also it seems to me (though I've only briefly glanced at the materials) that the user can avoid the Nebuad cookies only by manually evaluating each cookie, because the fraudulent ones are inserted in headers via forged packets. The browser can't tell that they're not from the site the user intends to accept cookies from. And in the case of the Javascript, even with Noscript, I'm not sure there is any way to run JS from the real site without running the injected JS. From my reading of the tests done as laid out in the linked PDF report, blocking the cookies is possible because the cookies involved are clearly identified as coming from faireagle.com. Also the javascript is an addon at the end that also is marked as executing from the faireagle.com domain. So the javascript can be avoided. Could Nebuad chg that? Maybe. But the way it is setup now, blocking is easily achieved. -- My BLOG .. .. Internet News .. .. My Web Page
	to forum · permalink · · 2008-06-19 11:08:43 ·
funchords Hello Premium,MVM join:2001-03-11 Washington, DC ·Verizon Online DSL ·Skype	said by TKJunkMail : From my reading of the tests done as laid out in the linked PDF report, blocking the cookies is possible because the cookies involved are clearly identified as coming from faireagle.com. Also the javascript is an addon at the end that also is marked as executing from the faireagle.com domain. So the javascript can be avoided. Could Nebuad chg that? Maybe. But the way it is setup now, blocking is easily achieved. Sure. They can change the faireagle domain to something else, to thwart your blocking. Domains are very cheap and you can't block the dictionary. Hell, they could inject 10 different javascripts into each page, until one eventually gets followed. They can forge HTTP redirects to drive you to the nefarious code, instead of using javascript to do it. I think this is similar to what Phorm is reportedly going to do now. They could also make deals with web portals so that the nefarious script doesn't have to be forged at all. They buy ad space or even a 1x1 pixel, that ad server realizes you're from an IP address with a NebuAd deal, the ad server loads you up with their profile-identification cookies, and no forgery ever takes place. Fortunately, this won't be allowed to happen by the best services. Most Yahoo's and Google's of the world actually are fans of the Internet and ultimately side with the user, despite our cookie-erasing habits. They don't want 24/7/365 eavesdropping on the internet, either. -- Robb Topolski -= funchords.com =- Hillsboro, Oregon HTTP is the new Bandwidth Hog...
	to forum · permalink · · 2008-06-19 15:39:32 ·
deitarion @teksavvy.com	And NoScript is based on Javascript whitelisting, so they'd have to embed the JS into the page and hope that the user is viewing a site they've granted JS execute permission to.
	to forum · permalink · 2008-06-19 20:05:58 ·
funchords Hello Premium,MVM join:2001-03-11 Washington, DC	I actually have it on this computer... disabled. There's a less agressive plug-in that I'm used to using, but it hasn't been updated for FF3. :-(
	to forum · permalink · · 2008-06-20 01:47:10 ·


Tuesday, 24-Nov 21:24:47	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF