Slashdot Mirror
Banner Ad on Myspace Serves Adware to 1 Million
An anonymous reader writes "Washingtonpost.com's Security Fix blog reports that a banner ad running on MySpace.com and other Web sites used a Windows security flaw to push adware and spyware out to more than one million computer users this week. The attack leveraged the Windows Metafile (WMF) exploit to install programs in the PurityScan/ClickSpring family of adware, which bombards the user with pop-up ads and tracks their Web usage."
Darwinism works!
And they wonder why consumers want to block all ads. Its because of illegal virus ads like this. If they prosecuted spyware companies the way they do with other virus creators we would not have as much of a problem with people setting up shop as if this is a legitimate business and then hijacking people's computers for profit and waiting for enough complaints to pile up that maybe the state attempts an enforcement action which at worst closes the company and more likely a few small fines and promises to behave in the future. Either way the owners of these companies never serve a day in prison for releasing their viruses.
This way we don't even have to read the article if we want to! We can just comment about the comments of the article. =D
Makes me question myspace, you'd think they have people watching for these sorts of attacks. And who's to say this isn't the first time it's happened?
There is a new variant of the WMF exploit that affects all Mac users running OS X. When a Mac user browses a web page that is displaying a banner ad with the WMF exploit, malicious code is run that silently installs Windows Vista on to the Mac users computer thereby completely replacing OS X with Vista.
Robert Oschler - RobotsRule.com
His solution to the hack that destroys a section of your profile is not that he will fix the site, but that you should install Flash 9.
Heh, I posted about this having been on Facebook earlier today in the Slashback article. I'm rather amazed that these things could have been active for days without getting caught and pulled by the websites. I'd ban the advertising company from my site after a stunt like this, no matter how much money they bring in. They just exposed hundreds of thousands of high school and college students to a virus for a quick buck.
Doesn't anyone think of the pedaphiles!
http://religiousfreaks.com/...by this shite. Her: J, can you help me with this pop-up problem? Me: What did YOU INSTALL? Her: Nothing, I was fooling around with my myspace profile though... Me: God damn Zango... Her: Zang-wha? It did uninstall without giving me any bull-shite errors/hoops to jump through, but still...
Myspace is a fad. It is a fad that may be here for a long time, but it too shall pass. This type of abuse, as well as the abuse by sexual predators and antagonistic peers will eat away at its usefulness until it is outlived and replaced by the new "cool" thing.
I am sure myspace execs did not notice and they are all about the money anyways ($$$). Did you see the picture of the CEO on the front of Wired? Tell me he does not make millions off of that company. MySpace is a cancer on the internet (IMHO) and since we all must post about our drunken night of sex and debauchery at the age of 14, it continues on.
As for the users and the million of computers out there. Using Microsoft is a bad thing but a necessary evil because it is on every computer sold at Best Buy, Dell, and well everywhere. When Linux is easy, we will have the same exploits for libraries.
P.S. - Windows people should WindowsUpdate daily if you value your PC as well as your privacy.
"It's called My Space not Your space for a reason."
-MySpace Vice President In Charge Of Revenue Generation
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
If your OS puts out a security fix, it's probably for a reason. This could have been avoided for everyone just by keeping up-to-date.
Go corporate America!! Way to get your message heard in the most unobtrusive, sincere fashion. I'm sure you'll gain a lot of proud customers through dumb marketing ideas, just like "Let's spam a million people and get 10 suckers to give us money! Woohoo!"
It is pitch black. You are likely to be eaten by a grue.
1. Use Mozilla Firefox.
2. Uninstall Flash, you don't need that proprietary junk, 99% of all flash animations are ads/banners anyways.
3. Maybe you want to "block loading of images from third-party sites".
4. Use the Adblock extension for Firefox, you can get it at http://adblock.mozdev.org/ and get some rules for it.
5. Use a more secure operating system.
I hate Myspace, it is a website that caters to retards, it is so dumb.
How about Myspace as well? It is easily argued that Myspace controls the banner space and content added to the 'global' site (ie every page). This is akin to aiding and abetting.
The sad thing is that a million PCs were infected, and probably 500,000 of them will -stay- infected. And will this even remotely hurt Myspace's market share/traffic? I seriously doubt it.
Please help metamoderate.
expect to pick up something special for the ride home.
I'm not trolling, but I can't stand myspace-type blogs.
People need to understand that the net costs money. If you didn't pull out your credit card to pay for the resources you consumed, you'll be pulling in something into your PC...and when the intelligence quotient is double-digit...
I've visited myspace exactly once. By accident. I'd consider it to be a sesspool of the Internet if I saw more than one profile. My sister, too, has been affected by the WMF exploit in a myspace profile. Let me just say that telephone support for Win98 on an ancient laptop is less fun than most things, including elevator rides with those people that feel that the body cleanses itself.
My perspective -- if one goes to myspace, one deserves its effects.
At least that way, you're less likely to get infected. As safe as I can be, I simply don't trust banner advertisements, and adware/malware is one reason.
Another reason why not to use Windows and have a Myspace.
Linux, because a PC is a terrible thing to waste.
My solution to solve this problem is to block the domains of the servers that host these ads such as (pagead2.googlesyndication.com) by using a dns server. This is better than firefox ad-blocking or most other systems. This system prevents any connection to the advertising server. I have a dns server for ad-blocking that is publicly avaiable at 68.147.32.114.
Click here to see if you configured your dns properly.Exactly - every time you delete a cookie an american flag bursts into flame.
Ads can be a growing security risk in the future. I'd like to ban all ads at work, but I can't do that since IE6 is the only allowed browser here and no extra software is allowed to be installed. Once I surfed to Dilbert website for comics that I thought would be safe, but Errorsafe malware tried to install itself to my machine (by ActiveX component in an ad). See http://koti.mbnet.fi/jnyman/dilbert.html screen capture here (the dialogue text is in Finnish, but the bottom line asks "Do you want to install Errorsafe program to your computer to check your computer for free (recommended)?". I complained about this to Dilbert website's webmaster and to Scott Adams and they replied that they're looking at the problem, but after that nothing. Haven't visited Dilbert website since at work. Hope this is not a growing trend.
I'm not sure what a better argument in favor of encouraging ISPs to set up web proxies for customers running adzapper than this (unless we're talking dialup, in which *not* downloading ads really saves on time).
Help us build a better map!
> Exactly - every time you delete a cookie an american flag bursts into flame. So what happens when you clear all cookies from you machine?
The shocking part is that there are still people using Windows. I've got a laptop sitting around here with Windows on it that I use as a novelty once in a while, but it's not like it can really do anything useful. The package management system is horribly antiquainted, the dependancy checking leaves a lot to be desired, and then there are the security holes in the stock applications that come with the OS. Maybe some day it will mature enough to be useful, but for now it's just a novelty that still isn't up to being used in a production environment.
Circumcision is child abuse.
And they wonder why consumers want to block all ads. Its because of illegal virus ads like this
I thought I followed the field fairly well, but I have never heard of any previous virus ads like this.
... they DO end up with less stench on them at the top of the ride than at the bottom, since convervation of mass means that the stuff suffocating me had to come from somewhere...
Help poke pirates in the eyepatch, arr.
Just another reason to block all ads no matter where they are serverd from. The ads are bad enough much of the time, but with this kind of activity going on, why take any risk?
God kills an American kitten.
Please stop APK.. you're only hurting yourself.
wow... ok so not to interupt and windows hate fest.
but the WMF exploit has been patched since jan of this year
anyone that got hit by this only has themselve to blame.
actually I am happy to see you, however that is in fact a banana in my pocket.
It's amazing the lengths we have to go through to keep a windows pc secure.
On my Windows XP box I run Firefox with Adblock installed and Spybot and I edit my host file to block sites that get past any of those. That's not even counting my virus utilities and a firewall.
The amount of computer knowledge that is needed to keep a windows pc secure is much more advanced than what it takes to run an install of just about any Linux distro out there.
At least with the popularity of MySpace and this exploit, I'll finally convince my less tech savy co-workers to update windows and run a spyware detector. It will freak them out when I tell them their beloved MySpace installed that adware/trojan.
Firefox and Spybot for them all! The thought makes me smile!
HTC EVO 4G LTE w/ CM 10.2 | NookColor w/ CM 10.2 | Samsung Epic 4G w/ CM 10.1
Several of the computers here at work ended up with this somehow - at least now I know how it got it. Our particular problem broke Adaware and made it reboot as it started scanning, I spent two days fixing the fallout... what a wonderful pain in the ass this was. This explains it, all right. Glad to see people at least weren't doing this crap intentionally. Spysweeper, incidentally, does a good job of disinfection - it kept reinfecting after each reboot when we tried with other things.
(Fortunately IT still doesn't know it happened - we don't need ALL access revoked.)
Anyone know if Windows Defender will catch the spyware component of this exploit? I suppose its a moot point since people who run IE unpatched aren't going to run Defender anyway.
You mean like the government wants our ISPs to track and monitor our web usage and keep copies of all our IM's, searches and emails? Or how about our libraries revealing what books we check out? Maybe AT&T could provide a log of all your phone calls. How about the banks reveal all your financial transactions?
Oops, I forgot - the Patriot Act, among other obscure laws, already allow this.
Innocent until proven guilty no longer applies in the land of the free - why should it apply to corporate America any different? Oh yea, I forgot, they own the politicians.
Why can't Microsoft patch the holes in it's software? Why can't MySpace screen it's advertisers? They aren't showing porn site ads, because they 'screened' the ads, correct? So, how come they are serving adware?
If it's ok for the government to be constantly running background checks (illegally I might add) on it's own citizens in a 'FREE' country, then MySpace should also be responsible for spreading viruses and spyware. Of course, they won't ever have to answer for it. News Corp may as well be owned by the GOP...
Only if Myspace knew what was going on (which they almost certainly did not).
I'll make this very simple for you: Is myspace responsible for the content they put on their site, or not?
When you are a website the size of myspace, failing to vett your advertising borders on gross negligence and incompetence.
Furthermore, if you study how 'responsibility' plays out in the business world, particularly with lawsuits- the first party on the food chain is responsible. If that company wants to take action against its employees, suppliers, etc- so be it. But the buck, figuratively, stops at "round one".
Please help metamoderate.
Well,that's what happens when you use windows.
I have no fear of this type of internets. Until betting on horse races becomes a common place in every American's house, the tubes will be entirely too clogged to deliver this to me.
When is President GW Bush going to realise that America is part of the Axis of Evil, and carpet bomb these Adware people back to the stone age?
Sent from my ASR33 using ASCII
Before we go on with all the Myspace and Windows bashing it's important to note who is at fault here.
Myspace isn't at fault and neither is Microsoft
Sure they make shitty products for the below average user, but that isn't the problem. Myspace administrator's don't choose exactly which ads are dissplayed on their pages, they sell their ad space to an ad company with a few constraints on what types of ads are allowed to appear. The company who provides the ads then chooses specifically which ads it wishes to display on each of Myspace's, and for that matter, hundreds of other web site's web pages. And the users who didn't update their Windows OS arn't any more at fault either. Is it my fault if I leave my window unlocked and I get robbed because of it? No.
Another important note:
Myspace users were not the only one affected by this banner ad
So enough with the flame wars, go fuck the adware companies that are fucking everyone over.
You can add that when we browse on Windows its imperative to use a user account that does not have any rights to install software. If we place this on top of your list, the others are an overkill..
I use a similar ad blocking hosts file on both my Linux computer and on the Windows XP computer. I have been using "Mike's Ad Blocking Hosts file" for several years now on both computers. Like the modified hosts file you mentioned, Mike's modified hosts file also diverts the URLs for most ad servers to the 127.0.0.1 loop-back address that all computers have. His webpage has instructions for using his modified hosts file in either Windows, MAC, Linux and Unix. He regularly comes out with updated versions of his hosts file.
You also mention using a more secure operating system, I use Linux instead of Windows most of the time at home. Of course I don't use Internet Explorer on the Linux computer since it isn't even avilable for Linux and would not want to anyway. I use the Linux version of Firefox instead. Spyware, viruses and worms are almost unheard of under non-Microsoft operating systems such as Linux or Mac OS X.
If this was news the Washington Post would have had it in the paper instead of some security fix blog.
omg. wow. who would've thought that so many nerds would have such hate for a SOCIAL networking website.
Now all we need is a little energon, and a lot of luck. -Optimus Prime
...quickly upgrade all flash ads and video to Flash9 this morning. I was just prompted to upgrade to Flash9 (I don't really keep on top of Flash updates) an hour or so ago.
Although I'd like to see MySpace increase its response time, a week response time is fairly fast for corporations. Apple took two weeks to patch the vulnerabilities discovered last February and they were applauded for having a fast response. The shame is that Microsoft's glacier-like response to security vulnerabilities makes two weeks look speedy, and one week look positively instantaneous.
I realize that it will be popular to bash MySpace around here over this but the real culprits are, in order from least to greatest responsibility, the users who hadn't patched their OS with the latest updates, Microsoft for pushing such crappy code in the first place, and greatest of all, the ad agency that didn't catch this little beauty. They should lose their contract at the least over this, IMO. I use a Mac, Safari, and an adblocker style sheet, but I want to see an end to this. Kids shouldn't be used to propagate malwarez and if I was a band over at MySpace I'd be plenty ticked off about this, too.
The Splintered Mind - Overcoming
So that's what's meant by that term?
(You know I've been waiting to say that for weeks now)
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
I hear kittens taste like chicken, but I prefer mine raw.
What pisses me off is that the company which created this ad is not being punished (at least it seems so). Ordinary people are raided, have their property literalily stolen for breaking into servers (which is right) or sharing hashes of some copyrighted material (which, at least in the cast of The Pirates Bay, *wasn't* illegal).
Now some company breaks into a million computers (using whatever means) and even though they make a lot more damage pretty much nothing happens to is. [Hint: you may also try substituting "Sony" for "some company".]
In Poland we have a law that states something like (IANAL) "accessing or modifying information stored on a computer system without authorization is illegal". I bet it's similar in most highly developed countries.
IMO, if anyone, the company who created this ad and Sony (for their rootkit) should have their servers raided and execs(?) arrested/prisoned.*)
On the other hand, it's amazing how powerful some governments are when a small company (often only allegedly!) doesn't pay all the taxes it "should" - often leading them to bankrupcy..**)
*) I know I'm talking about different countries, different jurisdictions, there's that damned "lobby", etc.. But from a common sense point of view that's exactly how things are.
**) There have been a couple of well known cases of this kind in Poland. But I'm guessing that althougt this country is a WTF on it's own, it's not alone when it comes to this sort of things.
I clicked one and it installed Windows XP on my computer.
Yes, it's an online dating site. No, I haven't met anyone on there yet. Shut up.
Troll me, but I only have one thing to say.. MoHaHaHaHaHaHaHaHaHaHA!
Y'know unauthorized modification of a computer system and all that stuff?
Tampering with 1 million computers without permission and AFAIK without good reason. Isn't that a serious criminal offense?
That's what annoys me the most about all those "antihacker" crusades. Don't the same laws apply to spyware, unauthorized adware etc? Even Sony's DRM crap.
But no, the FBI and other authorities round the world seem to prefer trying to jail people who are pretty harmless (like that brit looking for UFOs).
If directors/owners of companies doing such stuff were sent to jail (or even seriously threatened with jail), you'd see a lot less spyware or nasty adware around.
Instead there's one law for the small stupid amateur and another law for the incorporated pros.
And that is the real reason why there's so much spyware around. Not because users are clueless (even though they are) or click on attachments without thinking.
When this happens on slashdot?
Most people on MySpace have so much spyware to begin with that no change was noticed in their daily activity.
Rupurt is just letting his evil scientists have a little fun. At the bargain price of $500 per computer he can infect, he now controls the largest DDOS IRC network in the world. All This and More From the Internet's Largest Topological Superstore!
I have the following filters in the Firefox's Adblock extension:
http://delb.myspace.com/*
http://debr.myspace.com/*
http://dehp.myspace.com/*
http://demr.myspace.com/*
http://desk.myspace.com/*
http://defp.myspace.com/*
http://uhpfp.myspace.com/*
http://defg.myspace.com/*
http://desb.myspace.com/*
http://defb.myspace.com/*
http://desb.myspace.com/*
http://dewb.myspace.com/*
http://deeb.myspace.com/*
http://defv.myspace.com/*
This filters pretty much all advertisements from myspace. Would it have protected me from this exploit, I wonder?
Just another reason for me to boy-cott MySpace. I cancelled my account there and now, it seems like I have very good reason to say, "For Security reasons." For all I know, my current employer could have been reading my blogs there. It doesn't matter anymore, no longer a member at MySpace.
jagossel
MySpace: A place to go and get spyware, adware, stalkers and moral police supervision.
Sounds GREAT! Where do I sign up???
He who knows best knows how little he knows. - Thomas Jefferson
I don't care that MySpace didn't know that an exploitive ad was being served, they're still responsible for choosing that certain ad serving company. MySpace certainly must expect a number of things from this company, such as not serving ads for pr0n (at least in pages viewed by minors), among others. I can assume they're not happy about having served adware since they don't specifically profit from it and it ruins their image.
So, should they have ran an extensive background check on the ad serving company? That's entirely up to them and the risks they're willing to take. Detecting sleazeballs is not a precise science, but it's standard procedure when looking for a business partner (and if your revenue model is somewhat based around banner ads, then the company providing those ads certainly is a business partner).
What I do expect from MySpace is to give a damn about this and sue the sleazeballs for whatever they're worth on the grounds of breaching the expected quality of service, messing with their users' computers and ultimately ruining their image (an intangible asset) and reducing their number of users. They don't need anti-adware laws for this, I guess.
As a Slashdot discussion grows longer, the probability of an analogy involving cars approaches one.
I liked the fact that the writer avoided linking to the site so they won't get any boost on google from being mentioned on the Washington Post.
I myself use these tips except #2 (I have Flashblock for that) and #5 (I use Visual Studio). However, I cannot force my kids to abandon IE... they need it to install and run "free" games like MapleStory which appears to run only in IE (Kids love playing games such as this with their friends online). The result is I have to reformat their PC every couple of months because of Spyware like those from Zango (thanks 180 Solutions). Soon I will instruct them how to reformat and re-install the OS and software themselves and later on administer their own PCs. I figure this is the new way to make kids "online smart"... let them experience pain and then they will learn.
Funny, that's the same kind of excuse spammers use. "Oh, I'm not a spammer... I purchased this list of e-mail addresses in good faith, how was I to know they weren't all 100% verified opt in like the seller said?"
It's also the same excuse The Pirate Bay use. "Oh, no, we're not responsible... we just provide a service which other people use to serve up illegal content."
GCHQ Quantum Insert installed. If only our tongues were made of glass, how much more careful we would be when we speak
If an ad is hosted on a known ad-serving commercial, mapping ad servers to 127.0.0.1 can help defeat attacks like this. On my Linux and OS X machines I have a cron script automatically curl http://everythingisnt.com/hosts to my /etc/hosts file (after first archiving it) every so often, appending past entries I want to preserve and overwriting the previous list entries. The site has a Windows installer too, so I manually install on my Windows machines whenever an update comes out. I use this list on all my machines and it is pretty effective. My motivation isn't defense so much as it is not wanting to see advertisements at all or waste time loading them.
(%i1) factor(777353);
(%o1) 777353
Seems pretty common for MySpace to be serving up spyware ads. Another recent case was reported here of spyware from Starware being advertised with a banner they made by sticking Osama's face on the body of an Asian model in a bikini. Given the background of the founders of MySpace it shouldn't be surprising (they came from the spyware business according to references sited in that spyware report).
Khao Yai Land
I hate Myspace, it is a website that caters to retards, it is so dumb.
As opposed to say, slashdot?
So if you're not a Windows or Mac OS X (PowerPC) user, you're SOL.
You mean to tell us that a site that is pratically a shrine to petty teenage popularity contests, cliquishness, and ad-whoring for the biggest businesses in the world only supports the two OSes used by more than 2% of the market!?
Holy crap! What is the world coming to?
If it's for-profit but free, you're not the customer -- you're the product (e.g., the Slashdot Beta's "audience").
Thanks for the Add(ware)! Check out my profile! {lame animated GIF file here}
2) Alternatively, you could install FlashBlock and have the option of seeing the Flash you do want, like homestarrunner.com.
If it's for-profit but free, you're not the customer -- you're the product (e.g., the Slashdot Beta's "audience").
>a banner ad running on Myspace.com and other Web sites >used a Windows security flaw to push adware and spyware >out to more than one million computer users this week. >The attack leveraged the Windows Metafile (WMF) exploit want to be immune from crap like this? get a Mac.
Adrian Lamos cracks The New York Times and gets busted, that whistle guy whats-his-name cracks the phone company and spends years in prison, some sleazy asshole cracks millions of home machines and even though there's a clear and easy trail, no law enforcement agency in the world seems to care.
If you install software on my computer without my permission you have broken several laws in most countries, but nobody will give two shits.
Another thing to think about with this type of exploit is what the future will hold for us. Since we already know that in the future there will be new vulnerabilities discovered in image viewers, media players, flash players, etc, evil people will begin to distribute embedded links to files in advance where they can then come back later if an exploit is released and replace the file with a malicious one. For instance, if you create all those cute flashy images that myspacers seem to use in comments and host them on a site later you can come back and simply replace the image with an evil one. Same goes for shockwave or other media files as well. Just something to think about!
Yup! The virus evolved by itself from random bits and used WMF as a host, and then became active on users' PCs.... ;)
Quit with the MySpace hating you tools. Myspace itself is a great system. It allows users to put as much time and effort into it as they want. It doesn't matter if you're a n00blet or a 1337 master coder, you can still use it. Sure, the average MySpace user thinks less than old people fuck, but that doesn't mean MySpace itself is to blame. In reality, MySpace may be inspiring more people to learn to code. Look at all those "pimp my myspace"(God that's so redundant.) sites out there. Sure, the average layout may blow ass, but alot of the codes I've seen are rather well-written. Hell, one of my best friends learned HTML just so she could code her space. Now she's interested in learning C++, Perl, and all sorts of other programming languages. Don't write off MySpace as a cesspit just yet. I bet it's simply going through its "Me too!" phase. When the next big thing comes out all the tards will migrate to that and the only people left on MySpace will be the intelligent minority.
Although the hecklers are getting tired.
Kind Regards
"A few great minds are enough to endow humanity with monstrous power, but a few great hearts are not enough to make us w
I'll second that, I ran into this almost a year ago, I too wrote an email to complain and received no reply.
. jsp?docid=2006-012017-0346-99. I think it's a very serious matter to allow Errorsafe to inject malcious script into your sites exposing visitors to your domain to such a deceptive incidious organisation whose business is to cause damage and monetary loss to those unwary enough to fall pray to it. I could go so far to say that whilst Errorsafe may be beyond the law, you may actually be in part (or fully) liable for any damages caused by Errorsafe to those visiting your domain.
After a long holiday from Dilbert coincidently I visited Dilbert again just last night and to my shock got an even more agreesive form of attack which left me scanning my hard disk for a good two hours afterwards just to make sure that they hadn't used a browser exploit to infect my machine.
I emailed United Media again last night here's a copy...
I think you should know that one of the banner ads that is occasionally appearing when you visit the Dilbert comic website redirects you from the Dilbert site to another domain - www.errorsafe.com. Where upon you are continuously assaulted with popups attempting to get you to install Errorsafe's spyware software. This software poses as an antivirus application but in actual fact deliberately installs malware on to your machine, and then attempts to get you to pay money to remove it. This is basically outright fraud and blackmail, I have no doubt you'll find this company operates in a country beyond reach of litigation.
Errorsafe is notorious and well documented by numerous anti-spyware companies such as symnatec http://www.symantec.com/security_response/writeup
This has been going on for quite some time now (at least a year). I'm really quite shocked that such a high profile site such as United Media would be linked to such criminal activity.
In short, I really think it would be in your best interest to make sure that Errorsafe is not permitted to "advertise" on any of your websites.
Michael
I've since added this domain (www.errorsafe.com) to the list of no go domains for my browser to ensure that my computer never attempts to load content from that domain again. Can anyone suggest a reliable site that you might find a list of domains that a security conscious user should put in their ban list ?
Having some sort of service that updates a list of banned domains on your system would be a great way to nullify these sorts of attacks. However I guess this could become an extremely dangerous tool for an authority wanting to censor the web.
The dog is on fire.
Mr. T pitied this fool on 27 July 1992.
And they're alienating (or saving, depending how you look at it) Linux users by porting their media players to Flash 9...
Their reason for doing so is that Flash 7 has too many vulnerabilities and they are trying to help users get prompted to upgrade. What in the world?
Buckle your ROFL belt, we're in for some LOLs.
Then the few remaining 'true' Patriots turn the newly formed Islamic Republic into a large glass parking lot.
[Fuck Beta]
o0t!
Thats what you get for using myspace as your personal slut homepage.
True enough. I wish I could mod you up -- informative.
I'd hazard a rough guess and say that 90% of the typical user susceptable to ads would not be using a proxy. The other 10%? Bug your proxy admin like a fiend!
Beyond that, I've got nothin'.
I'd suggest that it's MUCH faster than using DNS.
Technical Nazis look away for a moment.
Imagine for a moment, to convert a friendly-name to unfriendly-name your computer needs to send a few packets out to your local DNS server for resolution, that server looks up its own tables, and if it doesn't exist it gets forwarded (subdomains?) to another DNS server. Yes yes, all this is cached etc etc, but the point is that the packets have to go all the way out, and all the way back. And this takes HUNDREDS of MILLISECONDS!!!!
Using a HOSTS file reduces the path to relatively zero (only a few milliseconds). In computer land, local is FAR better than remote...this includes heaps and gobs of porn.
Technical Nazis can look again.
Myspace Rocks!
Quit bitching and patch your boxes or get off my web!
Where else are you going to get free music, videos, straight from the bands themselves?
Myspace Rocks!
If you don't like the ad's then block em.
Be smarter than the ad's.
Myspace Rocks!
..and still get ads from the servers you haven't identified yet. Or you can really take charge of the situation, set up your own local nameserver, declare it authoritative for 2o7.net, and resolve every last one of their subdomains to dead IP space, forever, no matter how many they add in the future.
What sent me over the edge was when I found a cookie from 192.168.112.2o7.net (which resolves to a couple of IPs in 216.52.17.0/24). As far as I'm concerned, trying to masquerade like that is just plain malicious... They aren't trying to fool users, they're trying to fool admins. Now they and all of their fellow scummy advertisers that I come across are permanently blocked from purveying their wares to anyone here.
Thanks to the War on Drugs, it's easier to buy meth than it is to buy cold medicine!