Slashdot Mirror
FTC Shuts Down 'Pop-Up Trapping' Sites
Masem writes: "The FTC today ordered the shutdown of 5,500 sites owned by John Zuccarini, all of them the so-called 'typo' sites that common mis-entered URLs for popular sites (such as Annakurnikova.com); when the user visits these sites, their back button behavior in most popular browsers is modified as to open multiple pop-ups featuring ads for adult entertainment and gambling sites when pressed, and uses other technology to basically 'trap' the browser until the entire application has to be closed. While some sites are still operating, the FTC is going to take this matter to court, which may decide exactly how much control a web site can take over the end browser using JavaScript and ActiveX. CNet has the full story." Le Marteau contributes a link to the same story at the Washington Post.
I can know go back to browsing porn at work without the fear of getting caught.
Je t'aime Stéphanie
'nuf said
What gets me is not that someone registered those names and cybersquatted (I'm all for that), but that this kind of annoyance (popup Spam) is actually clicked through and these Casinos, fake/genuine Viagra, etc. sites make any money at all.
Are you the one clicking on them?
Blah blah blah... "IE sucks cuz I can turn off popups in Moz..."
And I thought X-10 was bad!
This type of advertising only frustrates users and creates animosity between advertiser and potential customer. This is an obvious and sometimes extreme nuisance, having to shut down your broweser at times!
Alienating your audience is not a good business practice.
I like fire ants. They are very spicy!
As much as I hate popups like that, government regulation of such is even worse. Also, what can they do about overseas sites? Are they going to try and put it under the same controls as overseas TV broadcasts?
The proper way to fix this is to fix the browsers so they don't allow this to happen.
FCC, stay the hell out of the net.
Hey, give the guy a break, he's trying. He closes down most of his sites, but whenever he hits the "back" button they all start up again. Those damn javascript-based admin tools...
Hope this will include the "Neverending popup", where you point to a site that popups a copy of itself, which popups a copy of itself, which popups a copy of itself...
I think the troll link "comp-u-geek.com" (DON'T GO THERE!) does that...
Good quote, too many chars. Seriously, the slashdot 120 char limit sucks!
er, I mean Zuccarini.
.. no scratch that, there's a night and day difference between registering typo sites and displaying a pile of non-porn ads, and registering those sites and trapping the user in a net where they can't get out and displaying pornography to them for the sole intent of making a buck. especially when said users could be children or people who find pornography offensive.
But seriously. There's a fine line between
I've seen a few sites who grab a typo site and just use it to promote their own (not indecent) site, but also provide a link on their site to the site that "you might have wanted" instead. I think that's fair enough, no big harm there, but to intentionally trap people. Wow. I never thought I'd be praising government intervention on the internet...
If God gave us curiosity
One thing that surprised me is that this slime ball has been sued for this before and lost 57 cases tied to 200 domain names and been fined $800,000 to $1,000,000. And he's still doing it. The only reason he would still be doing this is if it is profitable, above and beyond court costs and fines.
Who is falling for all this and patronizing the sites that trap you like this?
Even though I'm sure we all had good intentions (if not complete thoughlessness) when all these cool features were added to JavaScript. But really, isn't it time that this gets fixed at the Browser end? I cannot think of *any* good reason for browsers to allow JavaScript to modify how buttons like Back and Close opperate without confirmation by the user. (it would also be trivial to apply a reasonable limit, like say 3, to pop-up windows). Microsoft and Netscape should both be *really* embarrassed that this issue is being addressed by the governent and potential legislation before they've even had a chance to suggest ways of fixing the situation.
Wheres he hosting all these sites?
Where is he buying his domains from?
What OS is he using?
Sounds like alot of work for popup sites, he must be making damn good money after lawsuits.
Namely, You are connecting to THEIR machine.
Mail server administrators block spam because they are using their resources, why can't these people claim the same? After all, you're using THEIR resources, shouldnt they have the right to send any data on a connection that YOU initiated? (Though I realize you might not have intentionally made that connection; they can be sneaky, but the point remains.)
I just don't like regulation, If it's bad and wrong, it's the clients job to work with the received data. But noone's blaming Microsoft, Netscape, Mozilla, or Konq (and you really can't blame the last 2, they're implementing things to take care of this junk).
Target a solution, rather than the cause and punishment.
That's just my view.
Linux: Because a PC is a terrible thing to waste.
James Brents
I wonder if this would be considered as terrorism in Ashcroft's proposed law?
My aunt is furious about when her 6 year old child accidently does a typo and porn sites pop up everywhere. Perhaps if this stops, it will lessen the demand for filtering software. Filtering software, IMHO, is very bad; definately the worse of two evils. At least shutting down a web site could possibly have a court process attached to it...
This is a great thing. The FTC protects people from fraud and other illegal business practices. That is what they are doing in this instance. The FCC regulates the airwaves, television, and so forth.
The government isn't "getting involved in the internet" in any new creative way. They are just protecting consumers (us) from fraudulent illegal business practices
Next time get the FCC FTC thing correct before you post, it completely changes the context of the article.
looking for a bug in some Javascript (we maintain
our own web browser), and after delving down
through the deliberately obfuscated javascript
code, it became obvious what it was trying to do:
it went through all links in the document, attaching
a javascript "front-end" to each link that did an http GET request
informing the remote site what had been clicked on,
before actually following the link. the technique
used seemed fairly dodgy (the request was purporting
to be for a non-displayed image), but it's interesting
to see what a fairly reputable site is prepared
to do in order to get as much information off you as possible (without your knowledge).
how reasonable is that? i don't like it, but is that sort
of subterfuge the kind of thing we'd like to stop too?
[PS. apologies if this appears twice - it looked like
had rejected the previous ones; and then the whole
server seemed to crash: what was going on there then?]
This topic should clarify a lot of the hypocrisy among the /. crowd; What's *your* opinion on this issue? And how does that opinion compare to, say, what you would feel about the court shutting down your anti-Microsoft site?
Got Rhinos?
A spam message wastes some of my bandwidth and a few seconds of my time. A "hydra" pop-up ad wastes some of my bandwidth and more than a few seconds of my time. The fact that I posted my e-mail address on my web site does not give you permission to use my resources to market to me. Clicking a link at a TGP (list of porn galleries) must imply a little more consent, because I obviously put up with banner ads, but I don't see why it should imply any more consent than "you may display things in this browser window". Not "you may open new browser windows or otherwise make it difficult for me to leave your site".
We deal with spam by first by black-holing rogue networks, then through government regulation, and perhaps occasionally through international pressure. Why are we skipping straight to government regulation for pop-up ads, rather than trying the black-hole approach first?
The shareholder is always right.
It's difficult to draw the distinction without getting into questions of intent, and that's dangerous territory. In short, be careful what you ask for when talking about typo sites.
He's made $800,000 - $1,000,000 from these sites, which the FTC would like to take away. It does not say he's been fined for that much. Also, he lost 53 of the cases not 57, it doesn't say if he was fined beyond losing the domain names. Check your facts!
When you backclick or close, the next site(s) will attempt to pop up, but no further code will be loaded and hence the hell will eventually end.
I always click "work offline" before trying to exit or back out of any of these questionable sites now BEFORE the cascading crap starts...
Okay - I'll probally get flammed for this. But if you are using Internet Explorer you can start up IE with the -new command and have each browser open in a seperate process. That way, your main browser won't lock up or be forced to 'end task' if your popup windows get out of control.
People should be annoyed by popup trojan links and traps until they download AdShield for IE or use a browser like Konqueror that stops this crap out of the box. Microsoft should have added this to IE 6 but they are a bunch of lazy monopolistic twits. Netscape should have too but they are circling the bowl so I'll cut them some slack. I E is better because it lets you make the menus toolbar, and address bar go on one line at the top and lets you use more screen for viewing the page.
-- United States Supreme Court, Rowan vs. U.S. Post Office, 1970
how to invest, a novice's guide
They don't like what a piece of code does, so they ban it.
I can't believe people are supporting moves to dictate what you are or are not allowed to express in a piece of code.
This functionality is, i'm sure, in the W3C standard for Javascript, so criminilizing this is pretty stupid.
Now, if your browser is engineered so poorly that it allows you no control over this behaviour - i.e. a site author is free to mess up your web browsing experience, shouldn't you ask the manufacturer of that browser to do something about it?
Don't restrict this guy from publishing anything he wants to on the web. The control over whether to view that content should be in the user's hands.
I know that M$ etc. would love to turn the web into a heavily regulated, TV-like environment where most content is approved and published by a few mega-corps, with government regulations on what is or is not acceptable, but that idea makes me sick to the stomach.
i mean, how hard would it be to have a preference setting for 'ask me before allowing javascript to open a new window'? Give the user a choice, don't make it a crime to write this type of application (for which there are many perfectly legitimate uses)
Making rules for what types of applications you may or may not publish on the web is surely a free speech issue.
'Sorry, window.open() is now a federal crime.' doesn't cut it with me.
The problem is with the tools that web browsers expose to site developers. The site developers should be free to put any tags they like up on the web.
This is why web browsers are free to ignore markup they do not support.
I gots ta ding a ding dang my dang a long ling long
POPUP KILLER, sadly afaik win32 only but it works wonders on those annoying pop ups and pop unders
errr....umm...*whooosh* *whoosh* Is this thing on ?
Now I wish the feds would do something to stop the pop up adds that interupt my TV shows every 10 minutes. I hate those.
Because a bunch of morons thought that the web had to look like television, they put ActiveX, VBScript, Javascript, Flash and other crap into browsers and plug-ins. This, not surprisingly, lead to many vulnerabilities like the one exploited here. (Who is the genius that decided that the "Back" button should be able to be redefined by any website that the user viewed?) If the web simply displayed pictures and text, we would not have this idiotic problem. Lest you laugh, that's what books and newspapers have done for centuries and they still seem mighty useful and popular.
We have seen this overcomplexity lead to many problems. Look at Microsoft Outlook: some group of idiots decided that displaying text, or even pictures, was not enough. So they added Visual BASIC scripting to it. And HTML that you can't turn off. Suddenly any nitwit could create an e-mail Trojan horse that emailed itself to every person in the address book. Or Outlook could display some web site in the preview window, play annoying music, or provide confirmation to a spammer that you received and saw his message.
It's time that we started demanding robust, secure applications even if it means that web sites won't be able to display animated, dancing piglets.
An important technical point: it sounds like the Back button was not actually reprogrammed to perform a different action. Rather, an onUnLoad event handler was specified in the BODY tag to execute a bit of JavaScript code when the window was closed. There are legitimate uses for this that are not annoying, although offhand I can't think of any (probably cleaning up things that were previously set, perhaps on a site that is designed to use multiple small windows for some special purpose).
$x='S24;r)>63/* h@<5+oZ)32"5cz';$me='phroggy'x$];
$x=~y+ -xz+\0-Tx+;print$_^chop$me for split'',$x;
Registering typos is a smart, good thing (regradless of what you think =) but "trapping" is just plain WRONG.
I am pleassed to see this type of thing, assuming it actually gets implemented with some knowledge and thought.
Imagine surfing pr0n without holding your fingers poised over Alt-F4!
Oh, and to they guy who (anon) responded to my sig about being dyslexic as "we used to call you idiots who couldn't spell", I think we used to call folks like your mom "Dumb bitches who couldn't afford abortions"
Department of Homeland Security: Removing the rights real patriots fought and died for since 2001