Slashdot Mirror

← Back to Stories (view on slashdot.org)

ISP Inserting Content Into Users' Webpages

Posted by kdawson on from the not-neutrality dept.

geekmansworld, among other readers, lets us know that the Canadian ISP Rogers is inserting data into the HTTP streams returned by the Web sites requested by its customers. According to a CBC article, Rogers admits to modifying customers' HTTP data, but says they are merely "trying different things" and testing the customer response.

19 of 396 comments (clear)

  1. Read between the lines by timmarhy · · Score: 5, Informative

    replace "trying different things" with "seeing what we can get away with" and your closer to the truth

    --
    If you mod me down, I will become more powerful than you can imagine....
    1. Re:Read between the lines by Anonymous Coward · · Score: 5, Funny

      And if after hours, a man puts his wii-wii in the mayonaise jar at the restaurant where he works, that's just experimenting too, to see how the customer will react.

    2. Re:Read between the lines by alx5000 · · Score: 5, Funny

      In other, unrelated news, alx5000 has been reported to have blown up a dozen Government buildings in the last 24 hours. When inquired about these events, alx5000 said to admit to modifying governmental property, but remarked he is merely "trying different things" and testing the Government response.

      --
      My 0.02 cents
    3. Re:Read between the lines by Anonymous Coward · · Score: 5, Funny

      Dude, I served my sentence and paid my debt to society ... it's not fair for you to keep bringing this up.

  2. Re:Dupe by A+beautiful+mind · · Score: 5, Funny

    This is not a dupe, it's merely your isp inserting outdated data in to your webpage because Slashdot didn't pay your ISP the brand new anti-crapification fee.

    --
    It takes a man to suffer ignorance and smile
    Be yourself no matter what they say
  3. Trying different things... by Z80xxc! · · Score: 5, Funny

    In other news, a mad internet subscriber broke into the headquarters of a Canadian ISP called Rogers. Upon entering, he hit shot two techs, broke 3 servers with a sledgehammer and then proceeded to start a fire in the CEO's office. Upon being apprehended by police, he was let go after informing them that he meant no harm and was just trying some different things to see how the company would react.

  4. Re:What's the problem? by patternmatch · · Score: 5, Insightful

    How else can they do it? Via email? They'd just send it to the email address they provide you with. Who really uses isp-provided email these days? it's all webmail, so they need some window to get through to you, and maybe http is that window.

    Or maybe, just maybe, they could ask you for your regular email when you sign up. This is not rocket science. There is no excuse for an ISP to be arbitrarily modifying the content of a subscriber's traffic.

  5. No problem as used in this case by iamacat · · Score: 5, Interesting

    It seems that the customer would be less unhappy about a warning that he is about to reach a bandwidth cap, page modifications and all, than just get a thousand dollar bill out of the blue. There is no set mechanism for the ISP to communicate with the customer over Internet, so creating one might be justifiable in this case. Write again when a (non-free) ISP injects ads or blocks competitor's websites.

    1. Re:No problem as used in this case by RedWizzard · · Score: 5, Interesting

      It seems that the customer would be less unhappy about a warning that he is about to reach a bandwidth cap, page modifications and all, than just get a thousand dollar bill out of the blue. There is no set mechanism for the ISP to communicate with the customer over Internet, so creating one might be justifiable in this case. There is a set mechanism: email. And if that's not sufficient they could easily write a little app to provided notification that could be run by users who are worried about exceeding their limit. There is no need for what they are doing. In fact what they are doing is probably copyright infringement: they are creating and distributing a derived work (the modified page) without the author's permission.
  6. Oblig xkcd by RuBLed · · Score: 5, Funny

    Are they doing that with Oven Mitts? No?! Lame....

  7. Re:What's the problem? by weorthe · · Score: 5, Insightful

    that software is very evil

    Yes. Imagine a world in which China/Bush's America/Hillary's America no longer censors the web but subtly modifies it instead. Maybe with the cooperation of Yahoo et al. All power inevitably becomes abused. What good is freedom of expression if you can't be sure your expression is your own?

    --
    cat * >> sig
  8. You've been rogered. by Seor+Jojoba · · Score: 5, Funny

    I propose turning their company name into a verb, "roger", which means to manipulate internet data without the receiver's permission. Everytime you exclaim, "I've been rogered!" or "They rogered my data!" the Rogers company name will hold on to its well-earned place in history. And yes, "roger" already means something else quite similar. With either definition, something is being inserted where it probably shouldn't go.

  9. I have not experienced this by eap · · Score: 5, Funny

    I am a Rogers [V1AGR4] customer, and I [MORTGAGE RATES FALL AGAIN!] think you're all just overreacting [VISTA - THE BEST WINDOWS YET!].

    Now let's have no more talk about this bizarre coverup.

  10. Getting away with murder by javacowboy · · Score: 5, Insightful

    So.... why aren't there any high profile lawsuits against Rogers yet?

    First they throttle BitTorrent traffic. Then, when BitTorrent users encrypted their connections, all encrypted traffic was throttled, making VPN connections unbearably slow.

    The only reason I can think of that they're getting away with this is that...uh...people in Ontario don't telecommute at all?

    Why is everybody letting Rogers get away with these shenanigans? Rogers' practises must be costing some business users serious money. I simply don't understand.

    --
    This space left intentionally blank.
  11. Okay, I know... by gillbates · · Score: 5, Insightful

    This is a dupe, but it's worth commenting on.

    The fundamental problem I see with this is that the ISP is changing the content of webpages to suit their own interests. There are a myriad of problems here, regardless of whether or not the customer accepts it:

    1. Copyright law: technically, the modified web page is a derived work. The ISP can now be held liable for copyright infringement if, say, Google, or the New York Times objects. The potential revenues sinkhole from copyright litigators is far greater than what any ISP could bear.
    2. There are ethical problems with an ISP artificially inflating the size of webpages, especially if they charge for the bandwidth.
    3. This smacks of 1984-esque censorship. Once it becomes commonplace for an ISP to change a web page, how long before government uses this for nefarious purposes.
    4. Consider how the above may be abused: a political rival logs onto Google, and the ISP replaces the normal content with child porn. Enter the police and 10 to 20 years in prison...
    5. If I can't trust my ISP to deliver an unmodified webpage, the only alternative is to use https for everything. While I'm personally favorable to such a thing, I realize it will disenfranchize a lot of part time and small time web operators who don't have the sophistication to setup an https server properly. Thus, one of the great egalitarian aspects of the web dies.

    In light of the fact that a certain ISP blocked access to union websites, this is an alarming event indeed. Democracy depends on the free flow of information, and I'm thinking that it might be appropriate to make such a practice illegal, if only for the sake of preserving democracy. It will first be used for commercial gain, and later, leveraged as a political tool.

    --
    The society for a thought-free internet welcomes you.
  12. Web Servers can detect this... by nweaver · · Score: 5, Interesting

    See this old Slashdot article on how servers can detect such modifications when they happen by using a bit of Javascript as an integrity checker.

    (Disclaimer, I'm one of the authors of the work)

    --
    Test your net with Netalyzr
  13. Yep. by Black+Parrot · · Score: 5, Funny

    And I wonder how many times they're going to insert this story into Slashdot.

    --
    Sheesh, evil *and* a jerk. -- Jade
  14. Re:I don't think so. by ScrappyLaptop · · Score: 5, Funny
    1. ISP inserts banner ads.

    2. Said banner ad space is sold to an company that sells it to the highest bidder.

    3. Highest bidder is a malware filled porn site.

    4. Banner ad fills your IE cache with goat porn that you've never viewed. Then it seduces your goat.

    5. Do not pass Go, do not collect $200.

  15. Re:I don't think so. by FatdogHaiku · · Score: 5, Interesting

    First, IANAL. I was raised in a law enforcement home and one of my best buddies is a lawyer, so I like to think about this stuff. What I find interesting is the legal defence issue. Evidence requires a chain of custody or it is just "some stuff we found somewhere". When the ISP tampers with the stream, they provide any defendant with proof positive that it is possible that the defendant had nothing to do with whatever it is that has the prosecutor's panties in a knot. The "tree" (internet connection) is tainted and thus it is NOT possible to prove anything except that the defendants connection was compromised. You could wear a jury out questioning every person that worked for the ISP, regardless of their position... when you have no proof you go fishing for doubt. Does someone at the ISP know someone at the prosecutor's office? That's doubt. Was the customer ever rude or mean to an ISP employee? Sounds like revenge... On and on you could go.

    --
    You have the right to remain sentient. If you give up the right to remain sentient, you will be elected to public office