The Return Of The Pop-Up Ad

SYFer writes "Shortly after upgrading my Macs to OS X 10.3.8, I noticed that I was getting pop-up ads on Safari. It had been so long since I'd seen a pop-up, I completely forgotten how annoying they can be. I went over to Apple's Support site to see if there was a relationship, but learned that the timing is just a coincidence (even though there's a lot of the usual FUD and flailing of arms in the discussion forums). In fact, it turns out that the pop-up advertisers (what's the proper denigrating term here?) have finally defeated the pop-up blocking functionality found in many browsers. MacFixIt is running a front page article on the topic and says 'Contrary to initial reports, this problem isn't limited to Safari; subsequent reports have noted pop-under ads victimizing a number of browsers that provide pop-up-blocking features, including the latest versions of Safari, FireFox, Mozilla, OmniWeb, and Camino.'"

been seeing this a while

[aichpvee]

I've been coming across popup ads in firefox even with popup blocking on for a couple of months now, though luckily not too many.

Re:been seeing this a while

[Ayaress]

It's my understanding that Mozilla was designed with 20/20 hindsight, and got rid of all the ways that websites annoyed users through IE. It's just that the advertisers were a bit more resourceful than I would have thought, and managed to pull a new rabit out of their hat just for non-IE users. I've been seeing popups with Firefox for a couple months on certain sites, and now on a few others as well. Interestingly, if I use IE for those same sites, I get a other popups, but I don't get the ones that I was getting under Firefox.

Anyway, I'm not too concerned. I don't doubt that an update or plugin will be made soon to stop even these, if one's not already out and I just haven't noticed.

Re:been seeing this a while

[bazfum]

AdBlock FireFox Extension

Re:been seeing this a while

[sarahemm]

It's not a plug-in, but for protecting/removing annoyances from a number of users at a time, it's even handier.
Take a look at Privoxy.

Re:been seeing this a while

[Vulturejoe]

Even better, try flashblock. It's an extension for firefox that will block flash files from being loaded until you click on them, get it at flashblock.mozdev.org

Re:been seeing this a while

[Curtman]

I don't doubt that an update or plugin will be made soon to stop even these, if one's not already out and I just haven't noticed.

Setting 'browser.block.target_new_window' to true in about:config seems to work, I haven't noticed any.

Re:been seeing this a while

[ZorinLynx]

What gets me is that advertisers must realize how incredibly irritating popups are, and how much people hate them, yet they continue to use them to advertise. Won't this build ill-will against the product/company being advertised?

If folks go through so much trouble to block the darn things, advertisers should realize that it's not a good way to advertise, and switch to a less annoying method.

Same idea applies with spammers and spam filters. Why do spammers try so hard to get through to people who hate spam enough to block it? They're definitely not going to be customers!

-Z

Re:been seeing this a while

[ticktockticktock]

I found the following adblock filter on slashdot somewhere, but don't have the reference handy, so I just copied/pasted my copy. There should be no spaces in any of the lines, and all lines start with / and end with /. There are some false positives with these rules on some sites. But for most other sites, you just don't see ads on pages anymore. (I am not sure how well these rules would work against popup ads though.)

[Adblock]
/\/(ad|commercial|marketing|promo(tion) ?|shop|sponsor)s?\//
/((double|fast|ad)click|clic k(xchange|sor))/
/(page|side|text)_?ads?/
/rcm.* \.amazon/
/(adsdk|a1\.yimg|akamai|amznxslt|atdmt| atwola|bilbo\.counted|bizrate|bonnint|brides\.ru|e dge\.ru|hitbox|falkag|maxserving|promote\.pair|rea lmedia|santa\.imho|servedby|spinbox|tribalfusion|q ksrv|zedo)/
/\/ads?(\.[\w]*){2,3}\//
/(ima?ge?|a d)serv/
/(ad|banner|sponsor)s?_?(id|ima?ge?|[0-9] *x[0-9]*)/

Re:been seeing this a while

[Exluddite]

>>Interestingly, if I use IE for those same sites, I get a other popups, but I don't get the ones that I was getting under Firefox.

It wouldn't surprise me if the advertisers aren't trying to do more than just find ways to get the pop-ups to show. Depending on what products they are trying to sell, I'd think they'd try to circumvent a certain browsers blocker.

If you know that your demographic is more likely to use Firefox or a Mac, why waste time getting around IE's defenses?

Re:been seeing this a while

[shufler]

Of course advertisers know this annoys most people. However, the situation is the same as spam -- someone is clicking on those ads and buying the products. The number of people doing this is enough to make it worthwhile for them to continue doing this.

Re:been seeing this a while

The number of people doing this [clicking and buying] is enough to make it worthwhile for them to continue doing this [serving popups].

Re:been seeing this a while

[nacturation]

It's likely Flash which is doing the popup. Use Adblock to get rid of most of the advertising Flash files. Liquid Generation is a good test of whether or not your browser blocks Flash popups as it always seems to open up a new window.

Re:been seeing this a while

[Koiu+Lpoi]

Well, considering how long it's been going on, despite how god damn annoying it is, it must be making them money - otherwise, they would stop, correct?

Re:been seeing this a while

[koreaman]

Site with popups
Note that it doesn't always pop-up.

Re:been seeing this a while

[Thoguth]

Popups killed Yahoo, at least for me. Before I got reliable popup-blocking from Mozilla, Yahoo slammed me with popups every time I visited. So I quit visiting. Even when I got good popup blocking, I'd found other services to fill those needs, and Yahoo isn't, nor will it ever again be, my default "portal" for everything. I hope what they made with those popups was worth the ill will from me and (I'm certain) others like me who just quit visiting.

You know those cool X10 video cameras? I'm sure you saw the popups for those too. I might have gotten one if they weren't frickin' synonymous in my mind with popup advertisers. (Just like I'm never going to refinance my mortgage with a spammer, no matter how good a deal I'm going to get.) They look like a neat little geek toy, but I'm going to have to wait for another company to make them before I'll get one.

I guess I'm a little bit of ... a jerk ... when it comes to stuff like that. If a salesman is being pushy or otherwise "slick" I'll say so and walk out of a store, no matter how good the deal might have been. If a supermarket has long lines, I'll drop my stuff and leave. And if a website wants to make money by obtrusive advertising, I'll find another website that doesn't.

I know there are trade-offs and deals must be made in order to have low prices or provide good content for free. But there is a point at which I really feel like a place sucks, and at that point, I am willing to go through the inconvenince of finding someone else to deal with, rather than give money to those who would abuse me. It may work for other people, but if you don't serve me well, you don't make money from me.

It's not like there aren't other businesses who will take my money (or in the case of websites, my eyeballs) and give me what I want.

I wish more people did this, then maybe megacorps would treat people like .... people?

Re:been seeing this a while

[theguyfromsaturn]

True. Text Ads don't annoy me but popups and banners do. Incidentally, while I have been getting some popups in Konqueror I haven't gotten any on Firefox. I think that Adblock takes care of many of those nasties since I've been blocking all kinds of images and scripts from evil advertiser sites. I think the great genius of Google (however they may haver turned later) is to have understood that the non agressive ads are more likely to be tolerated. Animations are the worst. And what to say about those floaty frames that are not windows but are always in the way. They are the ones that made sure that Adblock is the first Extension I get.

Re:been seeing this a while

[Spazmania]

Has it not occurred to these advertisers that the folks who are willing to buy their products aren't annoyed enough to enable popup blockers to begin with? At the rate they're going, they'll force the technologies to be engineered out of the browser entirely, and then where will they be?

Re:been seeing this a while

[ckaminski]

http://www.photosig.com/

Re:been seeing this a while

Setting 'browser.block.target_new_window' to true in about:config seems to work, I haven't noticed any.

That isn't the only way advertisers are getting around popup blockers. This only applies to FireFox, as it's all I use:
There's an element called dom.popup_allowed_events in about:config, which has stuff like 'submit click dblclick' etc.
One website that's nefarious for insufferable ads (zophar.net) recently added code to make clicking legitimate links trigger popup ads. My solution was to remove all allowed popup events by making dom.popup_allowed_events = ""
Yeah, it'll probably break a few poorly written image galleries; but if everyone starts doing this, maybe people will stop thinking its OK to pop open new windows to show images.
This method should still allow target="_blank" tags to work in hyperlinks, but has its own problems as well. For what it's worth, I also have not seen any popup ads since doing this.

Re:been seeing this a while

[miskatonic+alumnus]

If a supermarket has long lines, I'll drop my stuff and leave.

Heh heh heh ... I've always wondered if other people do that. I just dump it right on the floor and leave while cursing up a storm.

Re:been seeing this a while

[Wizarth]

I try to give a message to advertisers, by not blocking Google Ad's. Yes, they are ad's, and they are not annoyance free, but they are SO much better then flashy GIF's or Flash animations or pop-up-under-over-around windows, that I'm willing to put up with them in the hope that advertisers will notice they are more effective at reaching their audience, and switch.

Knowing advertisers though, its a forlorn hope. Should they notice they are more effective, they will just start using plain-text ads AS WELL AS their existing annoying techniques.

Re:been seeing this a while

[khrtt]

No site should *require* Javascript.

True. But:

1. It would only make a difference if you could convey your above statement to the site designers of all the sites you browse enough time in advance of your browsing of the said sites that they would actually understand that their site is broken and fix it.

2. Javascript allows some sites to work faster. My bank is an example: filters and other commands that change the view of the data don't require any interaction with the server at all, so they are instantaneous. Without javascript every command means loading a page, which makes a noticable difference even for small pages.

Re:been seeing this a while

[Firethorn]

Actually, animations aren't the worst.

There's two that are tied for worse:
Those ones that play a sound. It's really annoying when you have two different java ads playing some sound. But here you are trying to read a page, and unless you turn your speakers off or something, you have an engine or something running.
The second are the 'fake popups', that are really obvious for me because they mimic the default windowsXP theme, which I don't even use at work (where I HAVE to use WXP & IE). They 'float' over the text you're trying to read.

Re:been seeing this a while

[Hes+Nikke]

i've been deleting bookmarks for sites that i used to regularly visit since september because of this "problem".

I'm vocal about it (see above) to convince people to stop viewing the sites that are infested with popups. It's the only way to resolve the problem - if a site endorses popups, they may get a short term boost in earnings, but they get a long term reduction in eyeballs, and in turn a reduction in earnings.

BOYCOT THE POPUP INFESTED SITES!

Re:been seeing this a while

I was thinking this myself, but I realise that now with browser integration of popup blockers (even in IE), people aren't necessarily explicitly choosing to block popups anymore. I assume the advertisers figure that some of the people blocking popups are only doing so because it was on by default in their browser, and if they can get around that, they can sell to these people.

The corollary would be that if specific popup blocker applications that need to be actually installed by the user used different methods to block popups, the advertisers would theoretically not try to stop these. I'm wondering if these popups will still get around Pop-Up Stopper, actually - it uses a much more no-nonsense strategy for stopping popups (ie, you cannot open any browser windows at all beyond the first one unless you're holding Ctrl or Shift - I've simply gotten used to that instead)

Re:been seeing this a while

[marnerd]

I had actually made a couple purchases from X10.com before they started their pop-up blitz. I would certainly have been back, if not for the pop-ups.

Advertisers take note.

Re:been seeing this a while

[ArcCoyote]

Zophar and other sites that pop in Firefox seem to be using javascript that traps the click and mouseup methods on all links. If they don't get you when you click, they get you when you let up on the button. Technically, these are user-initiated pops, so FF doesn't block them.

You don't have to kill all allowed events, just hash out click and mouseup.

dom.popup_allowed_events = "change #click dblclick #mouseup reset submit" works well and still alows legitmate popups when you click form buttons and other user-requested behavior.

As always, you can always allow a site you need popups on.

Re:been seeing this a while

[elfurbe]

It's worth noting, though, that target="_blank" is deprecated in XHTML strict. If you're trying to write strictly compliant web pages (that is, XHTML 1.0 Strict/1.1), there's no answer except javascript for firing off a new window.

That said, I like the idea of NO popups of ANY sort without authorization. As long as Firefox clues me in that it stopped a popup so I can approve the site, I'm in. Though, I'd like to see a "one time" authorization. As in, I'm on some website I don't intend to be at again, I need to see one popup to complete some task, and that's it. I don't want it on my whitelist, I just want to see the one popup. Sort of like a firewall. Do I want to allow this: once, always, not this time, never.

Re:been seeing this a while

[bahamat]

I actually spent several hours researching this because I was getting them in Firefox on OS X, but not Safari or Firefox on Linux. When my roommate started getting them on Linux I was quite surprised.

In every case I eventually tracked it down to either Flash or Java objects loaded into a page that requested a window be opened. Also in every case it seemed to be a well known advertising site that the object originated from.

The reason I never got any in Safari but did in Firefox is because I use Safari as my main browser so I've got PithHelmet installed, which comes with a healthy list of things to block, whereas I use Firefox only for testing so I've got little to nothing listed in my AdBlock rules. At work where I use a Linux desktop I have a healthy list of AdBlock rules.

If you're concerned about your privacy, avoiding ads, or popups you need to have at minimum AdBlock, CookieCuller and X installed for Firefox. If you're using Safari, PithHelmet is absolutely the best.

Re:been seeing this a while

[phrasebook]

You must look stupid. You spend all that time walking around a supermarket gathering what you want to buy, only to dump it when you finally notice that the checkouts (which is where you entered the store in the first place) have long queues?!

Re:been seeing this a while

[blitz77]

The thing is, bad advertising is almost as effective as good advertising. Why, and how? Well, if you see an advertisement, be it good or bad, you'll remember it. Especially if it annoys you. However, a few months down the track you won't remember that it was bad; all you remember is the name and brand.

Then if you walk down a shop, and see different brands-which are you more likely to buy? One which was advertised, and so you've heard of before-even if it was bad advertising.

Re:been seeing this a while

[ettlz]

This behaviour might be instinctual, but not necessarily irrational. In my experience, there is a strong correlation between pushy salesmanship and poor after-sales service.

Re:been seeing this a while

[elfurbe]

You've just written inline javascript. window.open is a javascript method. Loading the target module would break strict doctype compliance, which is either fine or not fine, depending on your personal stance. I prefer to have the strict doctype and figure out a better way, myself.

Re:been seeing this a while

[welshmnt]

Bollocks, I've seen how much perfectly good food supermarkets sling in the bin (worked on rubbish/refuse collection for a while). If we're going to carp on about waste then this is the place to start.

welshmnt

Re:been seeing this a while

[jman+sr]

Flashblock http://flashblock.mozdev.org/ seems to take care of this. I can visit http://www.howstuffworks.com/ without any popups.

Re:been seeing this a while

[AstroDrabb]

FF gave me a nice message about blocking a pop-up. I also have AdBlock with the following rules and it seems to kill all pop-ups. I honestly have not seen on for about a year now.

*.doubleclick.net*, *ads.*, *.atdmt.com*, *servedby.*, *us.a1.yimg.com*, *ad.*, *jcontent.bns1.net*, *adlog.*, *banner_NUEVO.*, *banner.*, */ads/*, *.maxserving.com*, *.atwola.com*, *a.as-eu.falkag.net*, */side_ad_page.html, *.adserver.com*, *.fastclick.net*, *.tribalfusion.com*, *.questionmarket.com*, */banners/*, *.mediaplex.com*, */ad/*, */popup2/*, *as.casalemedia.com*, *.vibrantmedia.com*, *jnova.cjt1.net*, *super_sky.html, *.falkag.net*, *.adtrix.com*, */onlineads/*, */adjs.php*, *.x10.com*, *Measure.class, *spinbox.macworld.com*, *WeatherScroller.class, */fastclick/*, */sponsors/*, *edge.ru4.com*, */banner_imgs/*, *.websponsors.com*, *www.qksrv.net*, *.adtech.de*, *www.zipzoomfly.com*, *.spylog.com*, *.hotlog.ru*, */sitebanners/*, */advertisers/*, *.spinbox.net*, *.bluestreak.com*, *adsremote.*, */468x60.swf, */119x400.swf, */Adv/*, *.pro-market.net*, */images/aff_small.gif, *mainbanner/*, *.view4cash.*, *.realsexgirls.*, *.cash4members.*, *.teen-extreme.*, *.xp-hitz.*, *vote4warez.com*, *porno-*, *.emcrypt-network.*, *ads15.*, */adserver1*, */webadImg/*, *.dollarmachine.*

Sorry for the formatting but /. is crying about it with "Your comment has too few characters per line"

Re:been seeing this a while

[Thoguth]

Hey, I'm not talking about smearing bananas on the floor or something. I'm not that much of a jerk. I only do it when I'm in a hurry and/or I just want one thing, and the lines are really long--not "poor kid" long, but "incompetent management" long. I'll put non-perishables on an endcap near the registers, or if it needs to stay cold I'll put it someplace cold. I have worked retail before, and I know that it causes grief to the poor minimum-wage kids who have to put things back on the shelves.

But you know what? If those kids are working longer cleaning it up, they are getting paid by their incompetent manager. The same manager who could have paid instead for extra cashiers (the same kids). The kids still get paid for working a sucky job, and the manager--the guy whose fault it is the lines are too long--suffers lost sales and higher payroll. If the kid gets pissed and quits his job to go back to college, hey good for him, bad for the store manager jerk who is also out the expense of finding a new worker.

I've also worked direct sales, and I recognize a difference between a sales person doing a good job, and being unethical. When I walk out on a deal, it's typically because I feel like I can and should be getting a better deal.

And those X10 cameras ... I didn't try to DOS them or anything, I'm just not going to give them my business. Likewise Yahoo ... they have some really cool portal-type stuff. Even now I'd pick them over Google for many, many cool features on their site.

Well then...

[Realistic_Dragon]

...it's time for the return of my shotgun to active duty.

I tolerate text ads because something has to pay for the web, but popups and other abusive ads (like the huge flash ads in the slashdot TEXT ONLY service) just get blocked. The fuckwits deserve not to get any ad revenue for pulling stupid tricks like that.

Re:Well then...

[MutantHamster]

What good is a shotgun going to do? What are you going to do? Keep a log of all of the sites that use pop-ups, looks up who's personally responsible and then track them down by yourself in a vigilante style vendetta killing spree?

I'm coming too. I'll go get my shotgun.

Re:Well then...

[Zorilla]

What good is a shotgun going to do?

He uses a Compy.

Re:Well then...

[hatrisc]

"I had to, my mouth was a broken JPEG!"

Science Blog

[UID1000000]

I've had this trouble too just recently. I get one off and on at this site: http://www.scienceblog.com/cms/index.php.

Call me crazy (ok don't) but I thought I had spyware. I certainly don't. I'm running Firefox 1.0.

Hopefully they don't catch on too quick.

Re:Science Blog

[servoled]

Pop-up free for me, but adblock did block two javascript items which is probably why. With a combination of adblock and userContent.css in firefox I'm still pop-up ad free.

You might want to try something similar. If things get really desparate, using an blocking HOSTS file can help as well.

Re:Science Blog

[HangingChad]

I just tried that URL but don't see any pop ups. I'm also running Firefox 1.0 on Xandros.

In the arms race between pop ups and browser, I'll put my money on the Firefox team. There's no way to win the pop up battle against open source. Against MSFT, certainly. They develop at the speed of glacier.

I'm guessing the first couple pop ups the Firefox developers see they'll be writing a fix.

Re:Science Blog

[erroneus]

Thanks for the tip!

http://as.casalemedia.com/ -- added to my adblock list. (Firefox extension, Adblock, is a nice thing indeed)

Re:Science Blog

[X0563511]

Nothing here. Adblock is probably nuking the code. Here's the content of my Adblock filter:

http://3rdrangerclan.clangrounds.com/adblockfilter .txt

Re:Science Blog

[CastrTroy]

Wow. Kind of weird. Firefox says the add was blocked. After a little while though, it pops under. I've never seen this before, so I decided to investigate. Seems it pulls some javascript file from some other domain. Fastclick.net in this case. Is there a tool that blocks the site from bringing scripts in from other domains? Like blocking images from other domains? This would probably stop a lot of the problems.

Re:Science Blog

[CastrTroy]

Not to reply to myself, but, after further investigation, I have some more info. The script that it links to has a function called ffPop, which probably stands for firefox popup. This function does a document.write of an embed tag pointing to a swf file. http://cdn.fastclick.net/fastclick.net/ffp.swf That file, when loaded, will make firefox have a popup window. Maybe this will lead to having these popups blocked in future versions of firefox

Re:Science Blog

[CastrTroy]

oh, one more thing. Fill in a url querystring parameter to that url, and you get a popup with that address. For example: http://cdn.fastclick.net/fastclick.net/ffp.swf?url =http://www.google.ca

Re:Science Blog

[Brandybuck]

Using your link as an example, it's trivial to avoid with Konqueror. Perhaps that's why Konqueror wasn't mentioned in the article.

Set the Javascript setting "open new windows" to "deny" (or "ask") and you won't get it. It will get through the "smart" setting, which is what I assume Safari is using.

p.s. Of course, that Konqueror has a setting to configure this indicates to many people that it isn't ready for the desktop. Go figure...

Re:Science Blog

[slitfinger]

Using something like FlashBlock will stop this ad from loading. Kill two annoying birds with one stone.

Re:Science Blog

[eight22]

I do see the pop under on Firefox/Mac.

The evil bit, really is where it says:

dc.write('scr'+'ipt language="javascript" src="http://media.fastclick.net');

notice how they are using javascript to include another javascript, and somehow have 'scr'+'ipt' to spell "script" is helpful.

Re:Science Blog

[MajroMax]

It works only because you're directly opening the SWF file. I believe that FlashBlock or its ilk only block/hide flash that's embedded in the page.

X10

[calebtucker]

So do those X10 camera ads still exist? I know they used to annoy the heck out of me, but it's been at least 2 years since I've seen one of those ads. I hope they don't come back.

correct terminology

[isecore]

it turns out that the pop-up advertisers (what's the proper denigrating term here?)

Poppers? Plippers? Flippers? Flappers? Wippers? Snappers?

Sorry, kinda high on Red Bull right now.

Oh man...

[FireballX301]

...am I lucky.

Lynx is, and continues to be, the ultimate browser for ad-less internet browsing.

Take that, 21st century!

Re:Oh man...

[useosx]

You know what the ultimate crime is? Naming a god damn web browser "links." Do you have any idea how hard it is to find info on the links browser?

Does anyone know if there some way I can get lynx or links to log into my US Robotics router? It uses standard home router authentication. But neither lynx nor links will work.

I'd try elinks but I can't find a Darwin binary and I don't have dev tools installed.

Re:Oh man...

[sahonen]

You still get ads on Google.

Re:Oh man...

[BusterB]

The second result on google for 'links' is the web browser. The first result on google for 'elinks' is a derivative web browser.

Re:Oh man...

Typical drivel from someone who graduated from a sans-serif school. If Slashdot supported ligatures, I'd really tell you off--oh sorry, you woudn't know about ligatures! Go steal a sheep, you cretin.

Re:Oh man...

[m00nun1t]

Well, I've *never* seen a popup ad in gopher. Lynx, bah....

Take that, 1990's!

I don't see a problem here...

[IO+ERROR]

Hm, Firefox's built-in pop-up blocking hasn't yet failed to block a pop-up ad, and the Adblock extension has gotten all the rest, once the offending sites were added to its blacklist. I rarely see an ad anymore, of any type, unless I'm looking for it.

In any event, it's going to be something of an arms race between advertisers and pop-up blockers. Ideally, these jerkwad marketers should realize that people using pop-up blockers do not want to see their ads and display them to someone else who does want to see them. If they can find anyone like that.

Re:I don't see a problem here...

[MutantHamster]

Oh, you naive web-user. They already know that nobody likes pop-ups, at this point they're just doing it out of spite.

Re:I don't see a problem here...

[FuturePastNow]

It's failed for me. I've seen a few popups in Firefox (and Safari) this week, for the first time since I've used those browsers. Fortunately, Adblock sometimes keeps the messages from appearing, so all I get is a blank window. But it's still annoying.

Anxiously awaiting a fix.

Re:I don't see a problem here...

[DoorFrame]

People who state that they don't want to see ads are traditionally considered to be the most profitable to advertise too. The logic has been that the person attempts to avoid being sold something because he/she KNOWS that they're too weak to say no to a good sell. The same logic, theoretically, holds true for people blocking web ads... hence the effort to get around pop-up and ad blockers.

The being said, I love my pop-up and ad blocking.

Re:I don't see a problem here...

[QuantumG]

No, you just don't go to the right sites to see this shit. Try going to http://www.spacedaily.com/ and observe absolute insane shit that FireFox still allows random web sites to do.

Re:I don't see a problem here...

[sfbanutt]

That one's easy. Use adblock to block everything from fastclick.net. I don't get any popups or ads when I go there...

Re:I don't see a problem here...

[YrWrstNtmr]

Ideally, these jerkwad marketers should realize that people using pop-up blockers do not want to see their ads

They do not care. The people putting up those ads are not the same people sellling you the piece of crap. The marketers, be it a division within, or a separate company, sells your eyeballs to the retailer/manufacturer. They don't care if you personally want the piece of junk or not. What matters is that you saw it. And they can sell that to someone.

One day, we will all realize that for a large segment of the industry, we are not the consumer. We are the product. The are selling your eyes/ears/minds/personal info. Every day, all day.

Re:I don't see a problem here...

[mr_snarf]

Thats an interesting idea, but I doubt that theory works for the majority of people who hate ads. Most people are probably just sick of seeing stupid ads all the time, they don't worry that they might click them.

Re:I don't see a problem here...

[tiltowait]

> people using pop-up blockers do not want to see their ads

Advertisers don't give a damn about that.

They know that some of those people -- admittedly a minute percentage, but in a game of millions a 0.1% click-and-buy rate can make you rich -- do not maintain the minimal essential commitment of an online citizen and refuse to ever buy something as a result of invasive, unsolicited advertising.

This is also the reason the telemarketing associations oppose the "Do Not Call" lists. They know that a portion of the people on these lists can still be persuaded to buy things from them.

Re:I don't see a problem here...

[miu]

I was interested enough in the spammer/pop-up advertiser mindset to read some of their drivel once... Their justification for attempting to defeat blocking is that ISPs and browser developers are making a choice for consumers (to block ads) without letting the consumer make a choice to do it themselves.

A silly bit of sophistry, but they can get really worked up about it. If you have a high resistance to righteous anger then follow one of their forums for a couple days to get some insight into how they think.

Re:I don't see a problem here...

[thinkninja]

Nothing using adblock and Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8b2) Gecko/20050221 Firefox/1.0+ (today's trunk build).

I did notice a popup the other day using adblock & 1.0+dfsg.1-2 (Debian package with Gecko/20050110).

Re:I don't see a problem here...

[sebster]

Actually it's not Firefox that allows it, but it's a third party plugin you yourself installed.

How the hell can you expect Firefox to block code that you yourself CHOSE to install, code that is provided by a third part??

On the bright side, Firefox DOES have mechanisms for blocking this stuff in this case: just use the adblock plugin.

The only proper way to solve this problem is to complain to MacroMedia, whose software you chose to run even though it allows this kind of "absolutely insane shit", (or even better, deinstall their evil software).

Hmmm...

[TWX]

I haven't had any popup ad troubles yet (Mozilla on Linux/x86) but the first time I tried to click on the "Read More" link below the story from Slashdot's main page, the web browser spontaneously closed itself. Interesting feature...

How it mostly works

[BWS]

Fundamentally, most browsers allows popup if it is cuased by a click. (eg, you click on a link and a popup window occurs).. So what they have done is figured around that. They wrap all links around javascript calls, it changes your current page to the new destination and popups up a new window (that's an ad). Here's some code I did that popups up 5 windows in Firefox..

<html>
<head>
<title>Test Page</title>
<script type="text/javascript">
function goLink(t1, t2){
window.open(t1, "pop1", "name=a1,width=400,height=400,left=10,top=10");
window.open(t1, "pop2", "name=a2,width=400,height=400,left=40,top=40");
window.open(t1, "pop3", "name=a3,width=400,height=400,left=70,top=70");
window.open(t1, "pop4", "name=a4,width=400,height=400,left=100,top=100");
window.open(t1, "pop5", "name=a5,width=400,height=400,left=130,top=130");
window.location = t2;
}
</script>
</head>
<body>

<A HREF="javascript:goLink('http://www.google.com','h ttp://www.fark.com')">Go TO Fark.com</A>
</body>
</html>

Re:How it mostly works

[BWS]

mistake in the code

the HREF line should read

<A HREF="javascript:goLink('http://www.google.com','h ttp://www.fark.com')">Go TO Fark.com</A>

basically, produces popups whenver you click on a link

Re:How it mostly works

[BWS]

arg.. that's suppose to be (no spaces between http)

A HREF="javascript:goLink('http://www.google.com','h ttp://www.fark.com')">Go TO Fark.com</A>

Re:How it mostly works

[WhatAmIDoingHere]

It's something that /. does.. with a UID that low you should be aware of it.

Re:How it mostly works

[dustpuppy]

That's not a low id ... mine is a low id :-)

Re:How it mostly works

[dgatwood]

That's not quite how they do it, though you're close. The websites that end up generating these pop-ups don't have any javascript in the links. They're being blown in by banner ads using an onload or other similar routine and then walking the DOM and adding an onclick property to (or possibly adding javascript to the href property of) various random anchors throughout the page.

Generally speaking, if javascript adds an onclick to a link that didn't have one in the original page contents, this should not be allowed to occur. Further, if javascript attempts to open a window as a result of clicking on a link whose HREF is a javascript link, the original page content prior to javascript DOM manipulation should be checked, and if the original contents were not a javascript HREF, the pop-up should be blocked.

Fix those two problems, and these pop-up ads should become a fading memory... at least until they come up with the next gross mechanism to do it....

Re:How it mostly works

[digidave]

I think the workaround is a FF extension that create a button on your toolbar to mark a site as blacklisted (or whitelisted), then have a central database so everyone who has that extension installed benefits when one person marks a site as such.

If you find that somebody erroneously marked a site as blacklisted then you whitelist it and eventually the good guys out vote anybody who's trying to do another site harm.

Re:How it mostly works

Next you can demonstrate how to get +15 karma in 2 minutes

Oh wait...

Re:How it mostly works

[JohnRoche]

I thought that was Geraldo Rivera. Also, how will they know how to fix it unless they know how it's broken?

Re:How it mostly works

[Jim+Buzbee]

You'd figure these kids would know what a lowid looked like by now..

Not another one of these threads :-)

Re:How it mostly works

[ArmorFiend]

What I don't understand is why window.open() is in the api at all. Or rather why there isn't a checkbox in the prefs:

window.open is no-op, except for these specifically white-listed sites:...

Re:How it mostly works

[querencia]

Here's another one: note how they split the string in the "write" call up so that the browser can't detect the javascript just by examining the original script:

<!-- FASTCLICK.COM POP-UNDER CODE v1.8 for spacedaily.com (12 hour) -->
<script language="javascript"><!--
var dc=document; var date_ob=new Date();
dc.cookie='h2=o; path=/;';var bust=date_ob.getSeconds();
if(dc.cookie.indexOf(' e=llo') <= 0 && dc.cookie.indexOf('2=o') > 0){
dc.write('<scr'+'ipt language="javascript" src="http://media.fastclick.net');
dc.write('/w/p op.cgi?sid=8288&m=2&tp=2&v=1.8&c='+bust+'"></scr'+ 'ipt>');
date_ob.setTime(date_ob.getTime()+432000 00);
dc.cookie='he=llo; path=/; expires='+ date_ob.toGMTString();} // -->
</script>
<!-- FASTCLICK.COM POP-UNDER CODE v1.8 for spacedaily.com -->

Re:How it mostly works

[ecesar]

This code just loads some more script code from fastclick.net

The secret sauce is an SWF file that opens the popup. I saw that coming when StrongBad was able to do it.

The next layer of code is this:

function ffPop(){
var encodedURL=escape(myFFURL);
var top=screen.height/2-300/2;
var left=screen.width/2-700/2;
var width=700;
var height=300;
document.write('<embed src=http://cdn.fastclick.net/fastclick.net/ffp.swf ?url='+encodedURL+'&width='+width+'&height='+heigh t+'&top='+top+'&left='+left+'" quality="high" wmode="transparent" bgcolor="#333333" width="1" height="1" name="popup" align="middle" allowScriptAccess="always" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflash player" />');
fcfocus();
}

Re:How it mostly works

[Phroggy]

Not another one of these threads :-)

Yep, 'fraid so.

Re:How it mostly works

[orthogonal]

Proxomitron regexes can be written to get around this.

While I don't have one that does exactly this, I do have one for the more common "send the real url as a GET parameter" -- Fark.com and yahoo.com like to do this. An example from fark:

http://go.fark.com/cgi/fark/go.pl?
IDLink=13658 27&location=http%3A%2F%2Fnypost.com%2F news%2Fregionalnews%2F40168.htm

So rather than go directly to the NYPost, you hit Fark first, and Fark get to tell its advertisers, look at all the clicks on our links. It also means most clicks take a good long time, to hit fark and be redirected.

The Proxomitron regex not only makes the url the real url, it adds an "[orig]" link in a small red font, just in case it really is necessary (as on Yahoo) to go via the redirecting link.

Here's the regex:
Match: <a (*href=)\0("|)\1(*(/|\?)*)\2(('|)http(%3A|:)(%2F|/ )+)\3([^&;=>"*]+)\4\5("|)>
Replace: <a \0\1\2\3\4\5\1><font size=1 color=red>[orig]</font></a>\r\n
<a $UESC(\0\1\3\4\1)>

The nice thing about Proxomitron is that I not only don't get pop-ups, I also don't even get many embedded adds.

For example: on Washingtonpost.com's front page, I see only text adds. Bypassing Proxomitron (it's done with a bookmark) shows me three additional ads in Firefox, but even bypassed I don't see many, as I have a second proxy behind Proxomitron to filter out the "always bad" sites like doubleclick.

From where I sit, the web is a calm place with no pop-ups, no annoying ads, no distractions.

Re:How it mostly works

[data64]

And the same with Privoxy which is cross-platform and uses Perl compatible regexp rather than a custom language.
I do think that Proxomitron has a larger following though and might be a bit more flexible.
Also note that Proxomitron is no longer being actively developed since it was not open source and the developer tragically passed away. There is however a new open source project Proximodo which is trying to re-implement the functionality and claims to be cross-platform.

I use Privoxy along with a "hosts" file and I hardly see any ads (popup or embedded).

Why???

[Avenger337]

Why do advertisers/companies think that annoying the hell out of people is a good way to make money?????

pop-unders? yeah

[ALpaca2500]

the macfixit article mentions that these are pop-under ads. i definitely have noticed a few of these in the past week, using firefox on windows...

it really confused me, since like the submitter, i havent really seen anything like it for over a year...

First noticed this....

[saihung]

while browsing macslash.org, oddly enough. Fortunately there's nothing really interesting enough to justify the annoyance. The best way to fight this is to stop using pages that have these, and to let the owners know why you're not giving them your eyeballs any more. Scratch that, the BEST way is to find out what's powering these new ads and kill it on the browser. Ad arms race (again), here we come!

They just don't get it, do they?

[Stealth+Potato]

We go through all this trouble to block pop-up ads, and they come up with some way to cram them through our browsers anyway. What's the point? Do they really think I'm going to buy anything from them, when it was me who installed an alternate browser/pop-blocker add-on so I'd never ever have to come into contact them in the first place?

It's sorta like this:

"SCREW YOU, POPUP-BLOCKING BASTARD!! Now buy our cheap cameras.

...Please?"

Hmm...

Re:They just don't get it, do they?

[AnonymousCactus]

That may have been true when you actually had to actively install something to block the popup ads, then they could figure that you were a little more aware than the rest, pass you off as a geek that would be annoyed and not likely to click on their ads on principle.

Now popup blocking comes enabled out-of-the-box on at least IE and FireFox so everyone, even those not aware enough to care, have popup blocking installed and the methods at getting around that standard popup blocking are targetting them. If they get the geeks too, then who cares - they'll be the first to adopt the next generation of popup blocking. Eventually the cycle will continue.

Re:They just don't get it, do they?

[lostguy]

Remember that these are the same people who think you want Viagra so badly that they should misspell it to get around your misguided spam filters, or that giving their messages subject lines like "Bobby, if you ever do that again I will kill you," will increase the chances that you'll buy their farm animal porn.

Drudge

[jimmyCarter]

Drudgereport seems to pop for me on Firefox all of a sudden. It just started happening w/in the last week.

Re:Drudge

[starrsoft]

Jimmy Carter reads Drudge Report?

Re:Drudge

[dspeyer]

The drudge-report page self-modifies to include the javascript at:
http://z1.adserver.com/w/cp.x;rid=52;tid=4;ev=1;dt =1;ac=26;c=209;
That javascript changes each time you load it (I think there are only a handful and the server picks one pseudorandomly). This means that sometimes it will hit you with popups, and sometimes it won't.

The code is obfuscated and I haven't sorted through it. The easy way to block it is to redirect z1.adserver.com in you /etc/hosts or block it at your firewall.

You may need to click on a link in order to experience the popup, though the links themselves are legitemate http hrefs.

Re:Drudge

[Kris_J]

It's a text adventure game of Metroid based on an old Penny Arcade strip. You can't actually go anywhere, it's kind of a simulated text adventure game. I wrote it (and the compression routine it's encoded in) for the 5k competition, but it looks like that's dead.

Adaptation

[Elpacoloco]

So....how long before firefox develops a popup blocker blocker blocker?

I think I just confused myself. Yikes.

tis true

[ronsta]

Having long been a loyal Firefox fan, I thought i'd seen the end of pop-ups after I left IE...that bitch. Turns out not only have they defeated the pop-up blockers, but they have moved on from even java-based ads to weird ones. Check out the example at www.drudgereport.com (that site is notorious for pop-ups). It's another one of those cat & mouse games. Once they programmers plug a pop-up hole, the advertisers will work harder (afterall, their wallet depends on it) to develop a new means of displayer their content. This leads me to one conclusion: Advertisers will become more selective of where to put their ads. On the one hand, it could be profitable to have your ads everywhere if you appeal to every audience... I think several advertisers realized long ago that placing a penis enlargement ad on the weightlifting section of www.sportsauthority.com or on www.gnc.com would prove more profitable than Hello Kitty ads on Slashdot. Ad space will not become more valuable if there is an arms race between programmers and advertisers. The great and horrible thing about something like Windows is that it's limited in its possibilities. It is what it is, so advertisers have to work with what they have. If the exploits are all gone, there are even fewer possibilities for advertising. In other words, advertising must be legit: no more registry hacks and spyware. Given this environment of ad-resistant browsers, there's a huge problem: sites like NYTIMES.COM, Yahoo, etc. that have huge amounts of traffic but few forms of revenue other than ads will have to make a choice: do they stop advertising altogether and abandon that model or do they ask all visiting users to respect their ad policy and disable ad-blocking features. This would be monumental because it would depend on the willingness of the consumer to be advertised to. What I suspect would happen after that is NYTIMES (just an example) would offer premium services that they have not yet developed now (image-laden news feeds to next generation cell phones, perhaps). Once again, competition does force companies to respect the lowest bidder in a way. If google chose to give its new operating system away in 2006, MS would be forced to think about giving a version of Windows away for free. So if a major news outlet chose to do away with the ad-based model, all others would be forced to follow suit to keep their readership. Pretty amazing. I wonder where it will take us. Your thoughts?

Adblock and Firefox

[MightyPez]

Lately I've been hearing complaints by people using Firefox of some sites having pop-ups come up again. The biggest complaint coming from people that visit The Drudge Report. I too have seen them.

However, ever since I started using the Adblock extension, as well as keeping an updated list of definitons, I haven't had these problems lately.

What's the matter with advertisers?!

[FunWithHeadlines]

How clueless must advertising executives be? Serious question, so if anyone reading this works in advertsing, would you please explain this to me:

How does defeating a measure designed to block your ads make good business sense? Does forcing your ads upon someone known to hate your approach produce good results? Does irritation equal a higher rate of return because people who hate your ads see them and have a change of heart? Do they say, "Hey, I had no idea those hateful ads were so interesting and useful to me. I think I'll buy their product."

Cuz my instinct is that when a person takes active efforts to banish you from their lives, forcing your way into their living rooms isn't a cost-effective approach. But hey, I don't work in advertising, as anyone who reads my About page on the headlines site knows. I like advertising in its place, but c'mon, if I kick you out of my house, stay there, please.

Re:What's the matter with advertisers?!

[miyako]

I don't work in advertising, but I would like to venture a guess.
People on average are stupid bumbling idiots that want life to be as easy as possible, even if it means sacrificing their ideals.
The end result of this is that most people see a popup for, say, brand X of a digital camera. Later, when they are trying to decide on a digital camera, they remember brand X, they don't remember where they remember it from, but because they've seen the popup so many times, they remember it, and are therefore more likely to buy Brand X of digital camera.
Compounding this is the fact that even if they remember seing a popup for brand X of digital camera, if they want a digital camera, they aren't going to be thinking, or care about "if I buy brand X of camera, that means I'm supporting popups".
Same with websites that have popups, most people hate them, but when it comes down to it, it's easier for them to put up with the popups than to deny themselves of free flash greeting cards to spam their friends with or whateve else they may happen to be browsing.

Re:What's the matter with advertisers?!

Very simple explanation:

A lot of technically unsavvy people have their computers configured for them by technically savvy relatives (cousins, nephews, neighbor's kids, etc...). These folks are a desirable audience for the advertising industry and so getting around the blocks is a good way to get at them.

Re:What's the matter with advertisers?!

[AbbyNormal]

"How does defeating a measure designed to block your ads make good business sense?"

Uhm, How about SPAM? All it takes is one click to make it worth it to them.

Re:What's the matter with advertisers?!

[StarsAreAlsoFire]

Actually, thats a good point. Make it a policy to click on the ad. Every time. Do it.

The site has to pay ad revenue per-click, right? Not per purchase?

Re:What's the matter with advertisers?!

[Pfhorrest]

Would it be possible to write some browser plugin that automatically follow the links in ads and loads whatever page comes up "invisibly", off screen somewhere - just so that the avertiser registers a click and has to pay the site for it? With the sacrifice of a little bandwidth to load the advertised site in the background, you benefit the maintainer of the site you're reading (which presumably you'd want to do, if you like the site), and costing advertisers money for which they get no real return.

The two caveats I see are 1) How to distinguish ads and follow links only on them?

2) The lower purchase-to-click ratio would force the advertisers to pay less, so the site owners woudl have to advertise more to make the same ad revenue, and in the end you only see more ads.

Seems like a losing game to me...

[DeadScreenSky]

The Internet ad industry is causing an arms-race they won't be able to win. If the increasingly popular pop-up (or pop-under really in this case) blockers start getting defeated, that is just going to force the average browser user to start using a custom Hosts file of some kind to block nearly all ads. There isn't too much the ad industry can do about that, IMO, with the possible exception of making the ads come from the same server as the content. This will be okay for some sites, but I can't imagine too many people will want to give up that much control over their sites.

(But maybe that control is the ultimate plan of the ad industry - it would really make things easier on them...)

Me Too

[babba]

I've recently seen popunder ads for GoToMyPC. Using Firefox 1.0. I was on quite a few sites at the time, so not sure which did it, but I did see a site: paypopup.com included in my history. My best guess is that the popunder was triggered by an onclick event over a hidden link (I often click a page in an empty spot to make sure it has the focus before wheel scrolling). I have some of the "move or resize windows" disabled, so I didn't even notice the popunder for a while, was hidden at the bottom right hand corner of the monitor. Only after I maximized that that I saw it was a GotomyPC ad.

Mushroom mushroom

[tepples]

So....how long before firefox develops a popup blocker blocker blocker?

Blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, pop-up, pop-up

Blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, blocker, ARGH! Spam! A spam!

(apologies to weebl)

My Experience

[spamguy]

My heart dropped when I experienced my first popup ad in several years with Camino. It was one of the subversive, makes-me-want-to-hate-humanity-more ones: it hides outside the range of the screen, so it tracks your movements while you are blissfully unaware. Luckily I caught its existence with OS X.3's Exposé feature. F2, click on offending window, hit command-W makes short work of it.

Urge to download...NCSA Mosaic...rising...

Re:Pop unders

[Daimando]

I ended up disabling my Javascript and the pop-ups don't bother me anymore.

Re:Well then

RIGHT! lets get those fuckers. you get the guns and I'll get the fire-bombs. Now, who knows where these bastards live?

Re:hosts file

[geoffspear]

No, that's even better. It prevents you from accidentally not boycotting the stupid site that's using them.

Example of a site that has it

[Linuxathome]

I've also recently encountered more pop-ups in Mozilla and at first attributed it to the Macromedia Flash plugin. The following page from Hindustan Times (often linked from news.google.com) puts up a pop-up ad that is quite effective -- centered and blocks most of the content such that you have to move it or click it or close it (no chance to have it pop-under). See it/slashdot it here:

Gurinder Chadha believes Austen was a Punjabi in her previous birth!

Re:Example of a site that has it

[bleeware]

The 'popup' at the Hidustan Times link does not create a new browser window. The popup content is displayed on top of the html content using a CSS layer. --Bruce

Re:Example of a site that has it

[teknomage1]

That's just java script and a div tag that contains a flash element.

Re:Example of a site that has it

[AC5398]

The drudge report did not bring up a pop up, but the Gurinder site brought up a blank advert in the middle of the page.

If you turn off javascript, Gurinder's hack no longer works.

Re:Example of a site that has it

[iktorn]

Actually the CSS popups are beginning to be the most popular AND they are the most difficult to block!

I kick em out, they still want in!

[Man+in+Spandex]

if I kick you out of my house, stay there, please.

So Popup Ads are like Jehovah Witnesses?

Macslash had this...

[paulthomas]

until users complained.

I sent them a brief email:

Hi, I was disappointed to find that you are running advertisements that intentionally circumvent the settings of the user. I will not be browsing to your site again until you remove the annoying onclick() popups. You should share with your advertisers that people who see these ads are even more pissed about them than regular popups. I don't mind advertising, but I like to be in control of my computer. Opening new windows is not something I want someone doing from a web site unless I request it. And if I specifically make efforts to prevent someone from doing this and they maneuver around it, it is even more frustrating. Entirely unscrupulous and I am sincerely disappointed. Regards, Paul

I received an email from them soon after that they had sent to their advertising partner, TribalFusion:

Hi. I want to express my anger at the recent changes with your popunder ad technology. It is infuriating to both my readers and to me that you would write ads that do not respect browser pop-up blocking preferences. Just because you're able to fool Safari and Mozilla-based browsers into displaying pop-under advertisements does not mean that you should. In fact, it's among the most unethical thing I've seen by internet ad companies. The reason I allowed pop-unders on the site to begin with was because there was an easy way for readers to "opt-out" of seeing them by using browsers that they could enable pop up blocking with. After four great years of working with TF, that you would go to such lengths to subvert my reader's wishes tarnishes Tribal Fusion's image in my mind is disturbing. I've heard from 20 long-time readers just this week telling me they will no longer visit MacSlash because of these ads. Why on earth would you go to such lengths to antagonize my readers? It's unacceptable. Dismayed, Ben Stanfield Executive Editor, MacSlash

Needless to say, I was very impressed, am browsing Macslash again, and have yet to see any more of these pop-ups.

-Paul

Re:Macslash had this...

[dr00g911]

I got tired of dealing with the pop-up-blocking arms race several months ago and just decided to start filtering pretty much all advertising, full-stop.

There's a wonderful little extension for Safari called Pith Helmet that does a fair amount of adblock filtering, blacklisted hosts and some other voodoo. I can't remember ever seeing it 'break' a site or the design of a site: even ones using crazy CSS tricks to get revenge on those of us with adblockers. Combined with Safari's built-in popup blocking, I've yet to see the problem everyone has been metioning. There's a possibility that the ad servers responsible are in my blacklist.

PithHelmet is an extended site preferences and ad blocking plugin for Apple's Safari browser. The basic purpose of the plugin is to empower you the user to view the web as you like. You can block ad images, Flash, Shockwave or horrible midi loops - the world is your oyster.

This is just a series of hacks on top of Apple's WebKit framework, but it seems to work rather effectively.

Due to the manner in which PithHelmet blocks ad content, most types of advertising content can be caught in the filter - this includes images, javascript, css, text, iframes, popups and popunders.

At first I felt guilty for blocking all ads, even good-faith, not-horribly-annoying ones like on /. Then I realized than I could relax the filter on sites that I felt weren't doing any harm, and were using not-horribly-sleazy ad placing services, which I've been happily doing ever since.

God help you if you've got Flash, Shockwave or Java ads, though. All I see is a big white hole in the page.

Suffering from popups AND popup blockers

[dpbsmith]

A not-terribly-computer-savvy friend of mine is having problems with his AOL email.

So I suggested he sign up for Yahoo mail, because all the people I know who use it find it perfectly satisfactory.

He can't get signed up for Yahoo mail. I tried coaching him step by step over the phone. I can't be 100% certain of what's happening, but as I followed through the same steps on my own browser, he ran into troubles at exactly the point when Yahoo popped up a confirmation screen on my browser.

I'm about 95% sure he has popup blocking enabled and that's what's preventing him from signing up with Yahoo.

Of course, he doesn't know what a popup blocker is, or how to control it.

So, these days there are probably users who are suffering both from the new popups and from incompatibilities caused by the use of popup blockers.

Its the sites fault! - Re:What's the matter...

[matt_maggard]

Here's my (educated*) guess - These sites provide metrics to media buyers. Media buyers have no clue about the 'popup ad arms race' - all they know is they have effective response rates from popups and site XYZ can show that they show popups to N visitors. N is just the amount joe ad buyer is looking for. He doesn't know that the only reason this number is so high is due to circumvention of popup blockers and a royally annoyed audience.

So my guess is that it really is the sites that host the ads which aren't being totally honest.

* I was an advertising major in college and have a little experience with media buying - I would suspect that this is what is happening.

Wow, are you fucked in the head!

You "tolerate" text ads? How big of you.

Say, what are you paying these websites you're visiting? I don't see a * next to your name, so I take it you're not a subscriber to slashdot. I guess they should just be grateful for your presence, huh?

Contrary to what you may think, the websites don't make any money by just "showing" the ads. So when you don't click on the text ones, you give advertisers an incentive to make ads more and more intrusive.

Re:Wow, are you fucked in the head!

[iamacat]

I rather think slashdot should make money by selling access to knowledge. Every discussion gets posts by technical experts that would be otherwise highly paid for their opinions, and built-in moderation system filters most of the noise. They could build a knowledge base of posts and sell access to search. If each user also indicates weather he/she is available for employment or consulting, slashdot can also take some referral fee from such transactions.

Why defeat popup blockers? Some ideas...

[SnprBoB86]

Popup blockers are becoming standard issue. As a result, circumventing popup blockers is primarily to get to those people who could have been sucked in by a pop-up ad had they not run Windows Update and gotten SP2 auto installed.

Secondly, it might be the advertising services or the pages that host these ads that are trying to bypass blockers. The advertisers probably realize that people who go out of their way to block ads won't every buy anything, but many sites with ads or web ad providers just care about the impression count, not their click through rate.

Re:Which makes me wish...

Konqueror supports whitelisting sites for java/javascript access. The latest version even supports whitelisting sites that can use plugins. I think Omniweb supports that as well if you also have Macs. Another great feature is that user_agent spoofing in Konqueror is per site rather than a global setting like Opera/Firefox.

Re:This isn't that serious

[Da+Web+Guru]

Just turn off javascript in the browser you use. If a site requires javascript then don't go there.

That is not a viable option. 95% of the sites I (and almost every other web user) visit use javascript in some way, shape, or form. I don't want to take the mindset of "Flash is evil, images are a waste of bandwidth, java is pathetic (even though it is, but that's beside the point). The Internet is full of crap so I should just use Lynx." I like to see things other than plain text and images. I can deal with a couple of pop-up ads here and there until the next version of Firefox comes out.

Re:This isn't that serious

[evilviper]

95% of the sites I (and almost every other web user) visit use javascript in some way, shape, or form.

They may use javascript, but that doesn't mean it's necessary. I've been surfing without javascript (or java, or flash) for many, many years now, and there are only a select few sites that even have reduced functionality because of it.

Netflix, for instance, requires javascript only to allow you to rate films, and works perfectly without javascript other than that.

The only place where javascript is usually needed is with drop-down lists, which is rather stupid, as a single button next to the drop-down would eliminate the need for javascript for them.

If you find a site that needs javascript, complain loudly to the webmaster, and you will see it change, most of the time.

Re:nope

[Lord+Bitman]

I use Only tabs, and think "new window"s are an absolutely horrible bug which should never have been included. I loath new windows. I think it's sickening that you need to install a seperate extension in order to hack on a way to use only tabs. I _NEVER_ use new windows.
And I've been getting popups for the past couple of weeks. Like, one or two. (they open in new tabs, not windows, but they still pop up)

So, no, it's not that.

Sure-fire way to block these guys

[Todd+Knarr]

I'll second the recommendation of others here: block the ads at the DNS level. Windows users need to add entries to their local hosts file. Myself, running Unix at home, I use a three-step approach. First is a very small web "server" running on a scratch server. It's only job is to respond with a "404 Not Found" to any HTTP request (it does SSL and listens on ports 80 and 443). Second, I create a wildcard zone file for BIND that returns the address of my 404 server for any name in or below the zone's root. Third, I modify the named.conf file for the copy of BIND that serves my network, pointing each domain that's a problem (eg. "fastclick.net", "doubleclick.net") to the wildcard zone. Presto, as far as everything on my LAN's concerned any hosts in or under the domains I list now belong to me and my 404 server, not the companies who registered them. This can obviously be worked around by using IP addresses instead of hostnames in URLs in the ad HTML/JS, but nobody's doing that yet and if they do I can deal with it with some appropriate IP-level redirect rules in my firewall.

Advice to obnoxious advertisers: we control the clients, not you. If we don't like what you're doing, we'll do something about it. If you make it too hard to do something about it and won't change your ways, we can make you cease to exist. And with a Linksys router with custom firmware and configuration the non-geeks can get a turnkey solution too.

Safari solution: PithHelmet plugin

[sakusha]

I haven't seen any popups in Safari. I'm on MacOS X 10.3.8 but I suspect this is not due to OS or app upgrades, it's some new technology. There is, however, a better solution to popups for Safari users, the plugin PithHelmet. Stops popups and almost all ads dead. Other OS users may find successful solutions with gadets like Privoxy.

Now if only I could figure out a way to get rid of "pop-IN" ads, like those annoying popup-style ads that appear inside the browser window, it's some sort of DHTML trick to make a closable window inside a frame. It's used on sites like wunderground.com and I hate it. Nothing can kill those yet.

Solution

[brsmith4]

A solution to this is to install the AdBlock extension for Mozilla/Firefox. Once you've done this, grab this list of search strings. Once you've done this, import the text file and you should be home free. Try to keep that file updated as it should be a good starting-off point, but will become outdated as time goes by.

Re:This isn't that serious

[fm6]

Better yet, switch to a text-only browser!

Easy work around for Firefox

[Fnkmaster]

I haven't tried this with the specific examples referenced here, but it ought to work in general in Firefox and other *zilla browsers.

1) Type about:config in the URL bar
2) find dom.popup_allowed_events
3) change the value to the empty string

Now no events allow popups by default. That means if you want to let a site pop up a window from Javascript you will have to whitelist it.

This blocked the popups on drudgereport.com for me when I tried it a few months back. I don't leave this setting on, for now, since I prefer to choose not to frequent sites that maliciously abuse me with ads. However, if it starts to become a regular nuisance, I will set Firefox back to this aggressive anti-popup setting. After all, nobody really NEEDS to use Javascript popup windows, and if I can see where a legitimate site is trying to do so, it only takes a few seconds to whitelist them in FF's popup blocker.

Re:This isn't that serious

[persist1]

Just turning off JavaScript is horribly shortsighted.

As per the cousin post, there are good reasons for pop-ups in an application context; because JavaScript variables can be retrieved from spawned windows, pop-ups also make a good alternative to session cookies without placing anything in local magnetic storage.

But no sane developer is willing to rely on such an approach, mostly because of BOFH's with attitudes like that.

How to not get pop-ups and keep your javascript on

[Penguin+Follower]

Just turn off javascript in the browser you use. If a site requires javascript then don't go there.

That is not a viable option. 95% of the sites I (and almost every other web user) visit use javascript in some way, shape, or form. I don't want to take the mindset of "Flash is evil, images are a waste of bandwidth, java is pathetic (even though it is, but that's beside the point). The Internet is full of crap so I should just use Lynx." I like to see things other than plain text and images. I can deal with a couple of pop-up ads here and there until the next version of Firefox comes out.

Well, here is what I do in Firefox. I haven't received any pop-ups (yet). In the options dialog, under "Web Features" you'll find that on the far right across from the "Enable Javascript" checkbox is a button that says, "Advanced."

"Allow scripts to: " (remove check marks next to the following)

• "Move or resize existing windows"
• "Raise or lower windows"
• "Disable or replace context menus"

I also uncheck "Hide the status bar" but that's a personal preference.

After unchecking those along with having the pop-up blocker enabled I no longer get any pop-ups. And I really don't see unchecking those having any profound viewability problems on the web. If a site needs to resize your window, it's usually because they want to open a pop-up along side it. :P Same goes for raising/lowering too.

If you really, seriously hate ads,

[pair-a-noyd]

1. Get an old POS PC from a trashpile
2. Install Smoothwall on it. It's free..
3. Install Ad Zapper following THESE directions.

Any and ALL system that you connect into your lan will have ads blocked whether they want to or not.

Re:Ads, but no pop-up/unders...

[shaitand]

If the advertisements use images, animations, flash, or any other scheme that significantly impacts page loading or distracts from the content on the page, they are just as bad as popups/unders.

Also blocking popup/unders is easy. Blocking banners and flash ads is a little more difficult and those who are doing so will not be buying from your ads anyway.

And the fringe browsers?

[LeJoueur]

Though I've advocated (read, bored ppl with) firefox (FF) usage over the last 2 years, I've been brought to the boil with the pop-up ads coming to view on FF over the last few months, my tolerance having been extensively tested with the very sluggish page rendering of FF on Win XP as compared to FF on my Mandrake (Does anyone know why and can he/she be bothered to tune up the engine?) and I decided to try out Maxthon, despite knowing it's built on IE. Maxthon's not as versatile and add-on friendly as FF (unless someone can point me to untapped un-Googled resources out there?), but it's holding up to the pop-up on-slaught very well so far. And hopefully, :-p, this post won't bring Maxthon's usage to the attention of the pop-up coders...

Which, if I may digress, brings to mind the question, who are the people responsible for the evils- pop-ups, spamming, spyware? (ok, before you release the hounds, I'm not looking for M$ as an answer) Gasp, could they be among us? :-/ I mean theses are geeks and/or coders, who are they? Can someone drive some civic sense into their selfish criminal little brains?

Lynch them but don't you dare Flame away!

Block em wih css....

[artoffacts]

SafariCssAdBlock.css

/*
* This file can be used to apply a style to all web pages you view
* Rules without !important are overruled by author rules if the
* author sets any. Rules with !important overrule author rules.
*/

/*
* turns off "blink" element blinking
*/
blink { text-decoration: none ! important; }

/*
* hides many ads by preventing display of images that are inside
* links when the link HREF contans certain substrings.
*/

A:link[HREF*="ad."] IMG { display: none ! important }
A:link[HREF*="ads."] IMG { display: none ! important }
A:link[HREF*="/ad"] IMG { display: none ! important }
A:link[HREF*="/A="] IMG { display: none ! important }
A:link[HREF*="/click"] IMG { display: none ! important }
xA:link[HREF*="?banner"] IMG { display: none ! important }
A:link[HREF*="=click"] IMG { display: none ! important }
A:link[HREF*="/ar.atwo"] IMG { display: none ! important }
A:link[HREF*="spinbox."] IMG { display: none ! important }
A:link[HREF*="transfer.go"] IMG { display: none ! important }
A:link[HREF*="adfarm"] IMG { display: none ! important }
A:link[HREF*="bluestreak"] IMG { display: none ! important }
A:link[HREF*="doubleclick"] IMG { display: none ! important }

/* disable ad iframes */
IFRAME[SRC*="ad."] { display: none ! important }
IFRAME[SRC*="ads."] { display: none ! important }
IFRAME[SRC*="/ad"] { display: none ! important }
IFRAME[SRC*="/A="] { display: none ! important }
IFRAME[SRC*="/click"] { display: none ! important }
IFRAME[SRC*="?click"] { display: none ! important }
IFRAME[SRC*="?banner"] { display: none ! important }
IFRAME[SRC*="=click"] { display: none ! important }
IFRAME[SRC*="/ar.atwo"] { display: none ! important }
IFRAME[SRC*="spinbox."] { display: none ! important }
IFRAME[SRC*="transfer.go"] { display: none ! important }
IFRAME[SRC*="adfarm"] { display: none ! important }
IFRAME[SRC*="bluestreak"] { display: none ! important }
IFRAME[SRC*="doubleclick"] { display: none ! important }

xIMG[usemap] { display: none ! important }

/* turning some false positives back off */

A:link[HREF*="download."] IMG { display: inline ! important }
A:link[HREF*="click.mp3"] IMG { display: inline ! important }

/*
* For more examples see http://www.mozilla.org/unix/customizing.html
*/

Re:This isn't that serious

[CableModemSniper]

Isn't it easier just to use POST instead of coming up with elaborate javascript workarounds to hide the address bar?

DHTML pop-ups are also becoming more common

[Wild+Bill+TX]

Has anybody seen DHTML pop-ups around? They effectively utilize JavaScript and CSS in collaboration to unhide a centered page element containing an ad. They tend to contain a link to activate a JavaScript function to hide the block. I've also seen them disappear after a short amount of time.

How is a web browser supposed to block that kind of pop-up? Why don't we just all disable JavaScript since it is going to be abused so much? And like a previous poster has mentioned, not too many sites seem to absolutely require it; I surf with JavaScript disabled for quite a while before remembering I turned it off.

it should not be called pop-up blocking

[Doppler00]

I hate hearing this term because it makes it sound like a webbrowser is inherintely designed to show pop-up windows. It is simply a JavaScript command. If your web browser chooses not to implement it, then it doesn't show up. There is nothing to "block" you simply "ignore" the command to show the pop-up window.

Re:Um, no

[Micah]

> Your ID is not low.

Neither is yours, you newbie! :D

Digital Millenium Copyright Act and popup blockers

[voss]

Pop up blockers are security feature...anyone who writes a program that deliberately circumvents a security is liable under the DMCA. Anyone who distributes code that does the same thing is also liable.

If the corporate boys are going to screw us using the DMCA why cant we do the same thing?

Re:Um, no

[Ricdude]

Teach me to wait to sign up for an account...

Privoxy anf Mozilla

[phatandy]

I've been using Mozilla and Privoxy http://sourceforge.net/projects/ijbswa/ for over six months now and haven't had a single problem with popups. Granted, sites that are heavily dependent on javasctipt and flash are not always functional.

Dude, you are so out of touch:-)

[khrtt]

Haven't you heard of gmail?

Are you really going to complain loudly to the webmaster of every little javascript-based site you want to use and wait for them to redo the site?

Do you realize that many sites are actually faster with javascript on, because there is a non-trivial application running on the client site, and it needs to download no (or very little) data for many of the requests, as opposed to loading the whole damn page every time you want to change the width of a column in a table?

Re:Dude, you are so out of touch:-)

[evilviper]

Haven't you heard of gmail?

Yes, I've used gmail, and though gmail uses javascript, it doesn't NEED to for any reason. About the only functionality you would lose is keyboard shortcuts if they made a normal HTML version of it.

Yahoo mail is the same. It was updated with a much better interface, but in the process, they made buttons like DELETE depend on javascript. There's no rational reason for this.

Are you really going to complain loudly to the webmaster of every little javascript-based site you want to use and wait for them to redo the site?

No, there are perfectly good alternate sites 99% of the time... News sites are a good example, some of them are starting to make their links javascript code (for no reason), so I just avoid a few of those news sites... there are plenty of others.

Do you realize that many sites are actually faster with javascript on

Yes. Now ask me if I care. The small speed-up you get from one site can't possibly be worth all the problems that come along with javascript.

But besides that, you seem to be someone that believes that web-pages should be desktop applications, not just documents... I couldn't disagree more. Just imagine where we'd be today, if the DNS system was just a form on a web-page, and not it's own protocol.

Re:Digital Millenium Copyright Act and popup block

[Legion303]

"why cant we do the same thing?"

Just a wild guess here, but possibly because they're not necessarily copying anything and the blocking features aren't necessarily protecting intellectual property.

DMCA has nothing to do with it. I'm personally more in favor of hunting these fuckers down and torturing them with pliers, myself.

browser.block.target_new_window

[cbr2702]

Wouldn't that also block user-initiated javascript popups? Many sites use these legitamately (though they are annoying).

Re:browser.block.target_new_window

[CryoPenguin]

Yes, it blocks all new windows. Which I like. A web site should _never_ open a new window, and it should open a new tab only if I specifically ask for it by middle-clicking on a link.

Re:browser.block.target_new_window

[s0l0m0n]

What works for your style may not (does not) work in mine.

The grandparent's method would not work well for me. I hope that there is indeed a browser patch on the way, and that it doesn't turn into an escalating battle like with spam filters.

Is it harder to find new ways to pop up a window in a browser than it is to defeat a mail filter? I suspect so, but I think that with Firefox and alternate browsers gaining popularity, the advertisers will continue to innovate.

Just blackhole the source

[owlmon]

In my opinion, here is the proper way to deal with this and any similar scourge:

1. Install Privoxy. It writes every bit of HTTP activity to its log file.

2. Wait for a pop-up ad to appear.

3. Immediately consult the Privoxy log file. Determine what URL the pop-up came from.

4. Block out the entire domain from which the pop-up came from. Use whatever IP blocker you like best: Your DNS relay, your firewall, your hosts file, or Privoxy.

5. Repeat as needed.

Re:How to not get pop-ups and keep your javascript

[swell]

Penguin Follower has it right. This works for me; but there is another factor.

Go to the children's sites (porn, games, sports, entertainment, ad nauseum) and you will have no end of marketing technology blasted at you.

Go to adult sites (corporations, universities, respected publishers, etc) and you will enjoy relative freedom from that foolishness. Why, it's just like the real world!

Re:This isn't that serious

[BoomerSooner]

Not always, plus it isn't elaborate window.open() location=no.
Sometimes you use querystrings that pass values and you validate any input. Plus if someone really knows how to hack at all post won't stop a damn thing (I can write an example in about 30 seconds to demonstrate). In web apps like C programs you always assume the data you are processing is trying to do something it shouldn't, and as a consequence you validate everything. I don't fuck around when it comes to HIPAA. Going to jail for not properly securing PHI is not an option.

Plus click reply and look at the location bar on slashdot.

I wonder if there's a law to prevent this.

[Bruha]

In the back of my mind I keep thinking there was a law on the books about people taking control of a computer without the users consent. Now it seems to me that circumventing a pop up blocker to open a new window violates this law and the advertiser and possibly the website could be held liable.

I know this law is on the books maybe someone could point it out.

Re:Howstuffworks popup dies!

[koreaman]

That's only one of the popups. They have more than one. The one that gets past doesn't always show up.

Not Again

[FyberOptic]

I've been noticing some popups squeezing their way through Avant's popup blocker, myself. A recent upgrade fixed it somewhat, but I have a feeling it won't be the end of'em.

Sometimes I just fail to see why these companies keep forcing ads on us like this. I mean, we don't want'em, we go out of our way to prevent'em, we never click on'em. And when it comes to email ads, anyone with half a brain knows not to try and get refinanced by a company who slipped an email past your filters by using horrible language and spelling.

But then I remember that a majority of the world is filled with stupid people, who will in fact click these things, and even go as far as to buy things from'em. So unless humanity's intelligence factor happens to spike suddenly, I don't see an end to these ads anytime soon.

use modified hosts file

[mclaincausey]

You can modify your hosts file to point back to localhost for ad hosting sites. Mike Skallas maintains one here. There is even an installer for Windows users.

Mod parent up

[Headius]

This is very useful. It's worth noting, also, that removing all "allowed" popup events doesn't completely kill your ability to use sites that need popups...it just causes Firefox to warn you that it has blocked something, allowing you to adjust settings for that site.

Seems to have fixed all those new popups for me.

IE7 wish checkbox: ignore onLoad / onUnload

IE7 wish checkbox: ignore onLoad / onUnload

This simple option in the upcoming IE7 (or any other browser) will KILL ALL UNSOLICITED POPUPS FOR GOOD! No more 3rd party popup blockers will be needed anymore!

As a stopgap measure, HTTP proxies can be 'recoded' to 'rename' onLoad / onUnload on the HTML that passes through them so the Javascript interpreter won't see them. However, this tatic will likely be construed as some sort of copyright violation by the media bigwigs and will be fiercely opposed....

The only unblockable advertising left will be that of webmasters PERSONALLY hosting ads alongside their content on their domains....

Re:This isn't that serious

[forkazoo]

I am right there with you. I'm sorry, but there just aren't any websites that are so important to me that I feel the need to beg for bullshit by turning on a bunch of pointless features.

The very concept of a pop-up blocker is stunning to anybody who has been using the web since before Javascript became common. (To say nothing of the folks who have been using the Internet since before it had websites on it!) I can think of very few features that were so bad that users begged for ways to prevent the feature from being used... And said feature wasn't removed from the product!

Can you imagine if car makers started including bombs in all their cars, and you had to get or make a special explosion-blocker? You'd think that it would occur to the manufacturer to just not install the bomb, rather than working on the ultimate explosion blocker!

I'm using more exclamations points than is my habit, but only because I find the situation so excrutiatingly baffling. If, in IE6, MS had simply not bothered to include the code to open new windows automatically, the world would be a better place, and few people would have felt the need to switch to better browsers. Any sane web designer has come to realise that their user's hate popups. Further, any sane web designer has to deal with the fact that their 'legitimate' popups are likely to be blocked. Thus, any sane web developer should just stop using popups as part of the actual site, so all popups can be assumed ads, and we can just abandon the feature entirely.

To quote Mr. Jeff Foxworthy's guide to UI design... When you have features that make front page news when they get used, because your users hate those features so vehemently, you might be a bloat-peddler.

Re:Mod parent up

[ahdeoz]

Why do we want to surrender functionality? Don't give up the web to those that abuse it. Kick them off it by boycotting. Google has almost singlehandedly re-launched the dotcom boom by getting the eyeballs of people who choose to reward good sites and ignore bad tactics such as pop-ups, excessive banners, animations, and blurring between content and advertizement. You have the power to determine content. Don't bow out by surrending both the content and the functionality.

Re:Um, no

[rk]

Hi! I just heard about this site from some of my hacker friends, and just wanted to say hi to you people!

Re:This isn't that serious

[CableModemSniper]

This is my point though. If you don't trust any input from the query string, or POST or what have you, why are you going to make your users go through the extra song and dance of enabling popups?

Re:nope

[tweek]

Damnit slashdot stripped out my script tag even in plain text! Go to snopes and view source for the page and you'll see:

document.write('<scr'+'ipt src="http://www.burstnet.com/cgi-bin/ads/ad1874c.c gi/v=2.0S/sz=468x60A|728x90A/'+rnum+'/RETURN-CODE/ JS/"></scr'+'ipt>');

Proper Denigrating Term

[donnacha]

... what's the proper denigrating term here?

Ploppers

Bad behaviour should be curbed, not rewarded.

[digital+photo]

It would seem that the problem which exists is as follows:

• Businesses get money from people who come in through these intrusive advertisements. Since they make money, they continue to employ the techniques or pay money to people to do it for them.
• People who study this technology and use it to intrusively put ads on peoples' browsers when they don't want them. They get paid well by the businesses, so they continue to exist to improve their technique.

Since you really can't dissuade the middlemen in a material way, you need to dissuade the businesses from continuing in employing such practices.

The best way to do this would be to create a list of businesses which employ such techniques and enter them into a boycott database. Ala RBL.

Another method might be to employ a plugin which, when it encounters a site which attempts a pop-up, pop-under, or pop-revenge and the site is not a pop-approved site, the plugin will continue to suck a variety of files from the site. Be it the advertisement media or something else "heavy" on the page.

With enough people with the plugin and continually sucking bandwidth from the business's site, this will incur a bad-behaviour-curbing financial cost to the companies which insist on making money at the expense of web-surfers.

If enough people have the plugin, then the business' ill-behaved website will get a "time out". Businesses, after a while, would potentially get the hint and stop employing such techniques... or take the MPAA/RIAA route and start suing their own potential customers.

Either avenue hurts their business or their business image.

If businesses claim to be looking out for their customers, they should act like it. They should conduct business legally AND ethically. To employ means to circumvent a protective function on a web browser is basically, breaking into someone's house to post banners and advertisements. It is, in my mind, just a stone's throw away from malware/adware/spyware.

Limiting Firefox to One Popup

[Dr.+Envy]

If you want to curb the popups until Firefox releases a new patch, you can set dom.popup_maximum to 1. This will keep 99% of legit items that pop up working while limiting the amount of popups you have to take care of yourself.

Why is this so hard?

[Quiet_Desperation]

The browser has to do a number of things and call and API function to open a new window. Is it that hard to make it check and see if the window request comes from me clicking on a link?

Re:About that HOSTS file...

[iCEBaLM]

Actually no, they're not.

The DNS Service in WinXP and 2000 Pro are simply caching services, you can disable them and have DNS still work. I do at home here because I have a DNS caching server on the gateway machine so I don't need another cache, it does speed things up in the proper configuration.

Code example

[theolein]

I too noticed this, but contrary to most, realised that they must simply be doing what has been possible for a long time but which no one had really bothered with, with the exception of porn sites and other spyware "value adders", until now.

Basically, it just uses the age old technique of using the document.write method, but obfuscated, to write other, obfuscated tags which are not recognized by the blocker as being new script tags, which themselves call a new obfuscated pop.js code that actually, in yet another round of obfuscation, produces the actual pop-under code: In essence, if one can block any request for the server of the obfuscated pop.js, or pop.cgi or whatever code, one will be in peace for a while. This can be done via adding the following lines to the hosts file on Windows (C:Windows(or WinNT)\System32\drivers\etc\HOSTS) or on Linux or MacOSX (/etc/hosts) or simply via your firewall software, which I'm sure we all use, don't we?

127.0.0.1 www.fastclick.net
127.0.0.1 media.fastclick.net

I have the code from the above server, as used by scienceblog.com, but I won't post it, as it's copyrighted, because the last thing I want is some internet low life trying to sue me for their own low life purposes.

Nah... Better boycott the advertiser...

As (almost) everything in the IT field, people will always figure out a new way to overcome the blockings.

So, if those are "official" pop-ups, the ideal would be to boycott the advertisers... Start a campaign against them... etc... Ok, it is naive and idealistic, but it is the only way they would feel for sure the pain on their side, too.

Unfortunately unrealistic. Oh well. :(

Absolutely Hilarious!

[Mister+Transistor]

Yes, it did block the popups, but plastered across the front page:

"COMING TOMORROW: HOW SPYWARE WORKS!!"

Bugzilla bug #253831 for Firefox

[Val314]

if you see PopUps in Firefox, please file them here : https://bugzilla.mozilla.org/show_bug.cgi?id=25383 1 (no link, Bugzilla doesnt like /. links)

Re:This isn't that serious

[Mant]

Go look at Google maps and Gmail. You can do some really good stuff now with Javascript, particularly as you can make a request back to the server with it and update part of the page without a reload.

Like any web tech it can be abused, but if you are a half decent developer the reason you are putting in JavaScript is to make the app a better experience for the user.

Maybe you want a world of basic pages and lots orf reloads, but most user seem not to.

My website uses pop-ups legitimately

[CGameProgrammer]

My website uses pop-ups for viewing images (here's an example post; left-click the images to view them). I used to have regular links directly to the images, but felt it was actually more annoying that way. I, for one, prefer having a pop-up sized to exactly fit the image; when I'm in 1600x1200 resolution, viewing a 640x480 image, I appreciate it not taking up the entire screen, as a new tab or window would do. Anyway, do you agree I've used them legitimately, or do you think even this sort of thing should be done without pop-ups?

Re:My website uses pop-ups legitimately

[CGameProgrammer]

If you're in 640x480 and open a large image, that works fine -- the window will be is no larger than 640x480, and has scrollbars. JavaScript is used to check the screen size or the browser's inner dimensions when it can. Your point about expected behavior makes sense to an extent... but you assume the user would ever want to completely replace the current page with the new one. In my case, he'd usually want to open each of the images, and then read the post or its comments... it's not like he's loading an entire new webpage, exactly. Originally, I allowed the images to respond normally to middle- or right-clicks, so you could middle-click to open in a new tab or right-click to do whatever... and only left-clicking would show the pop-up. But I had to abandon that due to the way I'm handling Google ads... it's complicated.

Re:My website uses pop-ups legitimately

[baadfood]

Personally, I hate websites that do that.

Actually thats too strong a word.

Now that I think about it, I dont know how I perfer it. Two basic ways come to mind:

1. Setup the site with raw images. This means the default context menu works - Save As, Open in Tab, Open In New Window.

2. Sites with an image browser. Once a thumbnail is clicked, then you can use next and prev to step between images. In which case I tend to open the image browser in a tab.

Point being that a site that opens in a new window tends to break my tabbed browsing, and also breaks the context menu functionality.

Re:My website uses pop-ups legitimately

[Taladar]

As someone who is regularly annoyed by windows smaller than the screen-size (or moving themselves for that matter) I would strongly suggest you leave the decision wether a new window should be opened to the user and let them resize the window as appropriate.

Re:This isn't that serious

[evilviper]

What about complaining loudly to a webmaster that inflicts pop-up ads on you that are purposely written to get around pop-up blocking techniques?

That will work, a little, in the short term, but not much.

You can't restrict yourself to a handful of websites your entire life. Sooner or later, you are going to visit a new site, and they are going to have thousands of pop-ups. Maybe it'll be a site you just visit once, or perhaps a site by someone who doesn't care how much they annoy you... Trying to convince everyone to restrain themselves from using the tools you've given them, is not a permanent solution to any problem.

You might as well try complaining to spammers who purposefully try to get around your spam filters...

Popup demo

[Swedentom]

In August of last year, I made this demo, which shows how to easily popup a full-size page. This is done by submitting a form on onLoad, which targets a new frame. Works in Safari, but not in Firefox.

http://tom.lightheadsw.com/etc/safaripopup.html

Avast ye popups!

[teknokracy]

Frankly I don't think that the people who make these ads are trying to circumvent the protection methods in Firefox and Safari, since those two account for a very very small percentage of the browser market. The more likely explanation is that the advertisers have come up with a way to block the SP2-instigated IE popup blocker, since that was the bane of advertisers since it was added in the Summer. So, now we have a method of popups that is getting around the IE popup blocker, and because of these new methods, is probably getting around Firefox and Safari's blockers as well. The most obviously geeky explanation that FF And Saf are being targeted might not be the right one! They're still better browsers anyway though. Kind of sad to see I cant say "Hey, I can just turn on popup blocking to stop that ad.... oh wait...."

Re:Overcome this.

[acariquara]

javascript.enabled = false

My favourite way of blocking bullshit.

I believe you weren't formally introduced to Gmail.

Javascript can be a good thing.

FIX FOR FLASH POPUPS

[Barbarian]

https://bugzilla.mozilla.org/show_bug.cgi?id=17607 9

- go to about:config
- right-click and select New/Integer preference
- make a pref called "privacy.popups.disable_from_plugins"
- set the value 2

Now plugins are treated just like javascripts trying to open popups--they get blocked by the popup blocker. You have the option then to show the popup or to allow them for that site if you want.

Oh yeah...

[WWWWolf]

A week ago I had problems getting Firefox to close.

Turns out some site had opened a popup window offscreen. I tried to adblock the contents from - wonder what it was - 888.com or something.

Thank heavens that it opened offscreen. Otherwise I might have actually seen the popup. (What's the point of opening popups offscreen anyway? I just got spam that was titled "Do not read this" or something like that.)

Re:Overcome this.

[jaredmauch]

This is why i'd like to see a per-website ability to disable plugins and javascript. Some websites use it for evil(tm), others use it because it's the best way to do a good thing. I rarely use flash, primarily only for my pal Strong Bad. The fact that all these websites seem intent on sending me Flash ads is annoying. It's one thing to use the screen space, it's another to waste a lot of cpu time animating something.

If there's some way to disable java/javascript/plugins per-website, please let me know.

Simple tricks

[springbox]

Most pop up windows these days are let through by the browser if the user first clicks on a link or something to open the window. I've seen some web pages where they will capture the clicks for the entire document then open a pop up window.

Re:Not the point...

[Le_Batleur]

Norton Internet Security does exactly this, and has done for many years.

Switch off all the "intelligence" of the package, like auto-program recognition, and set the firewall to "paranoid plus" (only specific ports to specificcally permittied programs) and then set the defaults to non-script/activex/java, etc.

Works for all browsers, since it installs an invisible proxy (not as bad as it sounds - none of my *really* weird software conflicts with it, and software doesn't need to be proxy aware), and all traffic is rerouted through that, so it appears like a secure TCP-IP stack. Damn bulletproof, in my opinion.

Winds up the GF, who has to ask me to relax the security on a new site occasionally (twenty seconds click-work), but that's a small price to pay knowing that only sites that prove trustworthiness to me get to use flash/java/script/activex/cookies/popups.

I'm *not* affiliated with Symantec, and the only downside with NIS is their new fetish with key-based software activation, which means I'm looking for a similarly-accomplished alternative firewall package for this reason only. But I've not found it yet.

I use them for target practice

[InterStellaArtois]

I don't mind the fact that pop-up ads have started to worm their way through the firefox blocker recently.

If, like me, you play first-person shooter games, you'll probably have the hand-eye coordination to 'head-shot' the close button before the window has barely rendered.

So yes, I'm seeing more popups lately, but any advertising content in said windows has barely 'spawned' before it's sent back to oblivion!

Re:Overcome this.

[pizza_milkshake]

flashblock replaces all flash with an (F) icon, which can be clicked, enabling the flash to play. 99% of the time i don't want flash, but in the case of strongbad, of course, i click :)