Is the Web Heading Toward Redirect Hell?

← Back to Stories (view on slashdot.org)

Is the Web Heading Toward Redirect Hell?

Posted by timothy on Thursday September 23, 2010 @07:09AM from the here-let-me-bounce-you-a-few-times dept.

Ant snips from Royal Pingdom this excerpt: "Google is doing it. Facebook is doing it. Yahoo is doing it. Microsoft is doing it. And soon Twitter will be doing it. We're talking about the apparent need of every web service out there to add intermediate steps to sample what we click on before they send us on to our real destination. This has been going on for a long time and is slowly starting to build into something of a redirect hell on the Web. And it has a price."

59 of 321 comments (clear)

Min score:

Reason:

Sort:

How do you get offenders to stop? by alain94040 · 2010-09-23 07:09 · Score: 4, Interesting

Funny just this morning I noticed that it took at least 5 redirects or more for Google to let me login to Analytics. It felt like my browser had a life of its own!
The real problem though are the link shorteners. I'd like to vote with my feet and never click on them, but for many, they are like drugs, because they let you track your influence (how many people clicked) in real-time. It's especially bad on slower connections such as smartphones. Not everyone has 1MB/s.
Any ideas on how to convince people to stop?
--
Don't work on your startup project without a safety net
1. Re:How do you get offenders to stop? by duguk · 2010-09-23 07:11 · Score: 5, Insightful
  
  Not everyone has 1MB/s.
  Any ideas on how to convince people to stop?
  Surely it's the latency, not the bandwidth that is the problem with 301s?
  They can't be much more than a few hundred bytes!
2. Re:How do you get offenders to stop? by TooMuchToDo · 2010-09-23 07:12 · Score: 3, Interesting
  
  Any ideas on how to convince people to stop?
  Create a web service where you can provide a shortened URL and it will respond back with the full URL. Make sure this web service caches the redirect for at least 24 hours. You instantly kill any reason for the redirect to be there (their counts will no longer be accurate).
  If someone wants to use this sort of service, I'd be happy to throw it together and provide it for free.
3. Re:How do you get offenders to stop? by sarx · 2010-09-23 07:20 · Score: 2, Interesting
  
  I agree; but to be fair, I think it is easy for people with a little less knowledge to heuristically lump bandwidth and latency together, especially if they aren't dealing with (say) satellite links, because links with very low latency are in practice somewhat more likely to have high bandwidth. So if it is wrong, it is at least understandably wrong.
4. Re:How do you get offenders to stop? by tom17 · 2010-09-23 07:22 · Score: 5, Informative
  
  Like this? http://unshorten.com/
  
  I just 'thought of' that only to find it was done aages ago...
5. Re:How do you get offenders to stop? by religious+freak · 2010-09-23 07:23 · Score: 4, Informative
  
  There is an RFC out there (I forget the number off the top of my head) which limits redirects to five. IE6 went above spec and allowed ... 20... I think. IE8 has shortened to allow 10 redirects. FF and Chrome allow the same or less. There is a limit on redirects by RFC, but many websites don't follow the rule and many browsers are forced to compensate because of this.
  
  Ironically, I was just recently accessing a gmail based email system with an Android phone and suddenly I get the message "too many redirects". So now there's no way my google phone can access my google mail. -1 for that one Google.
  
  --
  If you can read this... 01110101 01110010 00100000 01100001 00100000 01100111 01100101 01100101 01101011
6. Re:How do you get offenders to stop? by dyingtolive · 2010-09-23 07:28 · Score: 4, Interesting
  
  Nice. If that got turned into a firefox plugin to realtime decrypt the links...
  
  --
  Support the EFF and Creative Commons. The war is coming, and they're supporting you...
7. Re:How do you get offenders to stop? by skids · 2010-09-23 07:29 · Score: 3, Interesting
  
  Not to mention, when a shared medium or statistically multiplexed PtP link of low bandwidth has congestion, latency is higher than on a higher bandwidth link, which has a much shallower queue built up and/or takes less time to wait for the 1500 byte packet that just started being transmitted to get out of the way. The distinction is only really relevant when you're discussing technicals of TCP window scaling and bandwidth delay product. Certainly not to the end user: "slow" is "slow".
  
  --
  Someone had to do it.
8. Re:How do you get offenders to stop? by CannonballHead · 2010-09-23 07:29 · Score: 2, Informative
  
  But it's easy to explain the difference, so it's not entirely understandable.
  It's like understanding the difference between top speed and acceleration. Not a terribly hard concept.
  The real problem is the "internet" is a magic black box. Most people don't understand it's really just a big network, and works like a network... actually, somewhat similar to a much-quicker-delivery postal system, in simplistic terms. Except that there's a "request" thing, not just a "send" thing.
9. Re:How do you get offenders to stop? by spazdor · 2010-09-23 07:30 · Score: 2, Funny
  
  What an uncharacteristically even-handed Slashdot response!
  You must be a noob.
  
  --
  DRM: Terminator crops for your mind!
10. Re:How do you get offenders to stop? by CraftyJack · 2010-09-23 07:33 · Score: 2, Funny
  
  Funny just this morning I noticed that it took at least 5 redirects or more for Google to let me login to Analytics. It felt like my browser had a life of its own!
  Sure, but you're already saving 2-5 seconds per search with Google instant, so you still come out ahead.
11. Re:How do you get offenders to stop? by Anonymous Coward · 2010-09-23 07:34 · Score: 4, Insightful
  
  There's also the added DNS lookups to consider.
12. Re:How do you get offenders to stop? by shog9 · 2010-09-23 07:44 · Score: 5, Informative
  
  Close enough: https://addons.mozilla.org/en-US/firefox/addon/9549/
13. Re:How do you get offenders to stop? by kurokame · 2010-09-23 07:46 · Score: 3, Informative
  
  You know those exploding consoles on Star Trek? Did you ever wonder why someone would invent exploding keyboards? Now you know.
14. Re:How do you get offenders to stop? by Anonymous Coward · 2010-09-23 07:49 · Score: 2, Funny
  
  So you're saying the internet really is a series of tubes!
15. Re:How do you get offenders to stop? by eth1 · 2010-09-23 07:51 · Score: 3, Interesting
  
  Yeah. Load the page as normal, then, in the background, replace the redirects with direct links.
  As a bonus, if enough people started using it, it would so bork up the tracking stats (and the load on the redirect servers) that using redirects like that would be less appealing in the first place.
16. Re:How do you get offenders to stop? by omnichad · 2010-09-23 08:14 · Score: 2, Funny
  
  Oh, so THAT'S why Slashdot doesn't support a wider Unicode character set.
17. Re:How do you get offenders to stop? by Chninkel · 2010-09-23 08:27 · Score: 2, Informative
  
  disable javascript on google.com: right-click and save url works like a charm :-) (although this also remove search autocompletion and instant ...)
18. Re:How do you get offenders to stop? by zmooc · 2010-09-23 09:29 · Score: 2, Insightful
  
  Sounds just as brilliant as the classical idea to preload all links from a page... Addons like this kill the Internet. They're worse than the problem they're trying to solve.
  
  --
  0x or or snor perron?!
19. Re:How do you get offenders to stop? by martin-boundary · 2010-09-23 09:32 · Score: 2, Interesting
  
  Any ideas on how to convince people to stop?
  
  This would require a browser plugin to create a dictionary, by converting the short URLs into their long forms, and share that dictionary with others. Ideally, only one person would actually click through the shortened URL to learn what the long URL is, while everyone else would take advantage of that knowledge.
  Basically, this amounts to creating a community driven middle man for the URL shortening middle men. The required technology isn't more sophisticated than spam blocklists, which have been done before.
  If 80% of the most popular shortened links are community cached, then 80% of the most valuable browsing statistics will be unavailable to the shortened URL provider, and they'll have trouble monetizing their "added value".
20. Re:How do you get offenders to stop? by dgatwood · 2010-09-23 10:36 · Score: 2, Insightful
  
  Simple. Same reason latency for packets varies, but in reverse. There's a huge volume of mail that moves from San Francisco to NYC, so they have air mail routes that optimize this. Because the distance from San Francisco to, for example, San Diego is relatively short and relatively low volume, they take it by truck, so it takes longer to get there, and probably stops in LA on the way (which is probably a latency disaster due to the amount of mail they process---going through LA can be like a corrupt BGP packet causing backbone traffic to be routed through your little home DSL router). With network traffic, it's the reverse; longer hauls are more likely to go to satellite, which spikes the latency way up. Shorter distances are more likely to be by cable, which has a lower latency. The point is that the haul mechanism determines the latency, and different links have different haul mechanisms depending on distance and expected load.
  
  --
  Check out my sci-fi/humor trilogy at PatriotsBooks.
21. Re:How do you get offenders to stop? by Surt · 2010-09-23 11:40 · Score: 2, Interesting
  
  If he thought it was actually a physical series of tubes, he was largely correct, as that's in fact what it is. Lots of plastic tubes filled with glass or copper.
  
  --
  "Who is the Journal of Quantum Physics going to believe?" --Stephen Hawking
22. Re:How do you get offenders to stop? by nametaken · 2010-09-23 11:57 · Score: 2, Insightful
  
  I don't love them either, but this won't happen. For nearly everyone browsing the web, shortened urls aren't a problem. It's a process that has added utility for both parties and "just works".
  Or put another way, when people stop liking Twitter AND knowing how many clicks they've gotten through urls... THEN it'll stop.
23. Re:How do you get offenders to stop? by Steeltoe · 2010-09-23 15:18 · Score: 2, Funny
  
  Fuck off!
  Creds. NOW!!!
  
  --
  http://www.debunkingskeptics.com/
24. Re:How do you get offenders to stop? by gullevek · 2010-09-23 16:27 · Score: 2, Funny
  
  Write in japanese and suddenly you can write a whole novel in 140 characters.
  
  --
  "Freiheit ist immer auch die Freiheit des Andersdenkenden" - Rosa Luxemburg, 1871 - 1919
It's a shame too... by bziman · 2010-09-23 07:14 · Score: 4, Insightful

I refuse to click on any "shortened" link, because I want to know PRECISELY where I'm going to end up. Thank you Slashdot and goatse.cx. If it's important enough to go visit, it's important enough to spell out properly. And thank you, but I don't live my life via SMS, so the few extra characters is worth my piece of mind.
1. Re:It's a shame too... by The+MAZZTer · 2010-09-23 07:19 · Score: 4, Informative
  
  TinyURL has a cool feature to help with this. For TinyURLs, of course.
2. Re:It's a shame too... by piquadratCH · 2010-09-23 07:39 · Score: 4, Informative
  
  With bit.ly, you can simply append a "+" to the URL and get an information page showing, between other information, which URL hides behind it, e.g. http://bit.ly/cTGasX+. I don't know if they have a setting to always display this info page, but I'm sure there are usersrcipts and bookmarklets out there that automatically append a "+" to every bit.ly link.
3. Re:It's a shame too... by mpicker0 · 2010-09-23 07:40 · Score: 5, Funny
  
  I prefer to use "lengthened" URLs: http://hugeurl.com/.
4. Re:It's a shame too... by zerocool^ · 2010-09-23 13:13 · Score: 3, Funny
  
  Myself, I prefer shady urls.
  http://www.shadyurl.com/
  http://slashdot.org/
  becomes
  http://5z8.info/aryanbr0ther00d_l9e5b_malicious-cookie
  
  --
  sig?
Techie price greater than luser price by apoc.famine · 2010-09-23 07:15 · Score: 5, Insightful

For those of us who use things like NoScript, the price can be that we don't get there. Ever.

I know that when I go to a site that can't work unless I allow a half dozen or more other sites to run scripts, I sometimes decide that it's not worth my time. When I click a link that then has to contact several domains, (sometimes ones I have specifically blocked) I might stop right there and close the tab.

The web isn't just headed towards redirect hell - it's turning into a damn sketchy web of tentacles working their way into every page. When I find ones that I'm not comfortable having around, I don't go back.

I'm not sure I like what the web has become. Thanks to NoScript, I at least know what it's become.

--
Velociraptor = Distiraptor / Timeraptor
1. Re:Techie price greater than luser price by Spazntwich · 2010-09-23 07:29 · Score: 3, Interesting
  
  I've noticed this as well, and just consider it the price I have to pay to avoid losing my nerd credentials along with my tiny bank balance.
  But it is becoming more prevalent, and I'm not sure what the solution is. Part of me worries this is one of the setup steps in someone's grand scheme to make the internet "dangerous" enough that the "only solution" is to grant absolute internet authority to agency x. You know. To protect the children from all the sexual predators hiding kiddie porn in bit.ly links.
2. Re:Techie price greater than luser price by interkin3tic · 2010-09-23 07:33 · Score: 2, Interesting
  
  My university seems to have come up with a plan to advertise themselves to staff and students who already work/study here: provide no direct link to the university e-mail. They want you to go to the front page, to see the latest news you're not interested in and ways to make donations to the university (hint hint), then login, and you'll be taken to more irrelevant news, links for course tools, and another link for e-mail, which will redirect you one or two times before getting to a google mail system.
  I have it automatically forward everything to a normal gmail account that is easier to access anyway, so it doesn't matter except for those few times when I need to access it directly. I usually make a mental note to spend 5 minutes finding out a more direct way and memorizing it, but then never get around to it.
3. Re:Techie price greater than luser price by omnichad · 2010-09-23 08:36 · Score: 2, Insightful
  
  Sorry - I meant to say:
  https://mail.google.com/a/schoolmaildomain.edu/
www.linuxtoday.com is the champion by bogaboga · 2010-09-23 07:15 · Score: 3, Interesting

Folks at linuxtoday.com have been doing this for a long time. It's one reason I fled the site. Instead of taking me to where I wanna go directly, they make me click twice on the same site. This I believe, enables them to collect 'vital information' to present to their advertisers.
The bad thing is that they lost me and many others in the process.
By the way, it's intentional for me not to link to them from Slashdot directly.
To be honest the web was getting a bit fast... by youn · 2010-09-23 07:16 · Score: 5, Funny

... so they had to find yet another way to slow things down... so the web could live up to its reputation of "world wide wait" ;)

--
Never antropomorphize computers, they do not like that :p
More ads, again... by Drakkenmensch · 2010-09-23 07:17 · Score: 2, Insightful

[Wait 30 seconds or click here to skip to comment]
optimize google by emkyooess · 2010-09-23 07:20 · Score: 4, Informative

The Optimize Google add-in for Firefox gets rid of some of their hellish redirects. Sadly, it doesn't update frequently and seems prone to breaking.
My Idea by wbav · 2010-09-23 07:23 · Score: 5, Funny

I want to create a redirect loop. Just imagine, google to tinyurl to bit.ly to dilv.it back to google.

Or you could always just make a really long way to get to someone who'll never give you up, never let you down.

--

=================
Unix is very user friendly, it's just picky about who its friends are.
1. Re:My Idea by NevarMore · 2010-09-23 07:33 · Score: 2, Interesting
  
  http://breakingcode.wordpress.com/2010/01/11/having-fun-with-url-shorteners/
2. Re:My Idea by clone53421 · 2010-09-23 07:44 · Score: 3, Interesting
  
  Done.
  http://tinyurl.com/25lsp67
  http://3.ly/2e5g64f
  bit.ly adds its own little blab page if it detects multiple redirects, which is entertaining in its own way I guess... never-ending loop:
  http://bit.ly/9bV4Re
  The preview feature is fun too...
  http://3.ly/RwuW
  http://tinyurl.com/k2w9uiz
  
  --
  Alexander Peter Kristopeit bought his basement from his mommy for one dollar.
3. Re:My Idea by clone53421 · 2010-09-23 08:19 · Score: 5, Interesting
  
  Infinite recursion that defeats browser infinite recursion detection:
  http://3.ly/3x5qdno
  http://tinyurl.com/36n5j5y
  (the tinyurl long link is <html><body><script>var t=setTimeout('window.location="http://3.ly/3x5qdno";',50);</script></body></html> encoded in a data: URI)
  
  --
  Alexander Peter Kristopeit bought his basement from his mommy for one dollar.
It's money, not knowledge by Morth · 2010-09-23 07:24 · Score: 2, Informative

If someone is paying me for the clicks I send to their site, I need to count it so that I know how much I should charge, and they need to count it as well to know I'm not lying. They could make the count on the destination page, but usually it's far more easy to make a special service for it.
A redirect page is usually just a couple of hundred bytes large. Cookies might add some clutter, but probably still less than 1k in each direction, still fits in a single packet. I don't see the problem here.
Sampling can be good by amplusquem · 2010-09-23 07:25 · Score: 2, Insightful

Google and Facebook both use these "intermediate steps" to weed out malware infested sites and warn the user. Sampling can also be useful in judging if something is NSFW, or more importantly, rickrolling prevention.
Not all that new by shoptroll · 2010-09-23 07:27 · Score: 4, Informative

Jeff Atwood hit on this issue in a blog post last year: http://www.codinghorror.com/blog/2009/06/url-shorteners-destroying-the-web-since-2002.html

--
Insert Sig Here
Why it has to be so technically impractical? by Anonymous Coward · 2010-09-23 07:28 · Score: 4, Interesting

Less fragile and less of an unnecessary intermediary on this Web 2.0 (or whatever) age would be to catch the click of a link with onclick, set a cookie, and open the original, intended link. When user would again come back to the site, this cookie would be dumped to the site that so much wanted the information it was clicked. Even if the user would have some sort of embedded resource from this site open somewhere else, it could harvest the information and send it back.
Instead, we seem to be ending up with endless chains of redirectors and opaque identifiers that are bound to organizations that don't necessarily exist in a year. What a joy to use technology which is driven by needs of utter morons and greed of those interested to press most information out of the morons...
advertising funds nothing serious by FuckingNickName · 2010-09-23 07:28 · Score: 4, Insightful

and there is no useful (i.e. non-light-entertainment) content created primarily through advertising revenue. Slashdot developers who have made their money over the last decade producing tat by not overestimating the intelligence of the general public cannot bear to admit this, but you simply cannot produce high-calibre content when your primary aim is to suck in as many as possible of the kind of people who take notice of adverts.
Murdoch, often maligned for his lack of business sense but mysteriously still richer than all of us, seems to have tried and failed at pushing the subscription model. Obviously there are other viable models for producing information on the web such as government sponsorship (BBC, academia) and well organised groups of hobbyists (e.g. ham radio), but how will the sites who do not already have a dedicated subscription base through off-line heritage sustain themselves? Or maybe the answer is that they will not, the moment they take their eye off the advertiser as customer and start worrying directly about satisfying the desire for the reader to intellectually advance himself.
Facebook by Xacid · 2010-09-23 07:32 · Score: 5, Informative

To play the devil's advocate - facebook's redirects started as a way to filter out all the spam links.
Said the Rich Executive: by Even+on+Slashdot+FOE · 2010-09-23 07:41 · Score: 2, Funny

Oh dear God yes! We can abuse JavaScript more to get more clicks!
wasn't there a time.... by bickerdyke · 2010-09-23 07:46 · Score: 3, Interesting

when it was considered a security hole if you DIDN'T use a redirect on your page? IIRC there used to be an attack vector where malicous sites used links from freemail pages to steel session IDs from the referer-headers.

--
bickerdyke
1. Re:wasn't there a time.... by JesseMcDonald · 2010-09-23 08:29 · Score: 5, Informative
  
  To be fair, that is nothing more than a workaround for several other major security issues:
  1. The referrer header itself. This header serves no useful purpose, and leaks information that the destination website has no need to know. There is no way to use the referrer information securely, since it can be trivially forged, but it does serve as an invaluable tool for malicious attacks and unwanted tracking.
  2. Session IDs should be validated to prevent hijacking. At the very least the session ID should be ignored if it comes from a different IP address than the one which created the session. It's not a perfect solution, given dynamic IPs, NAT, and proxies, but it would block most attacks without inconveniencing normal users.
  3. No private information, including session IDs, should ever go in the URL. HTTP POST requests or cookies are a better solution here. (Naturally, cookies should be valid only until the end of the session unless the user explicitly indicates otherwise.)
  
  --
  "The state is that great fiction by which everyone tries to live at the expense of everyone else." - Bastiat
Infinite loop by ron-l-j · 2010-09-23 07:50 · Score: 2, Funny

I think we could just write a Java program that will loop through a range of your top 10 urls every minute. Then you would never have to click. Call it autoBrowser. Because no one should actually click on things.
Re:The AJAX Solution by farble1670 · 2010-09-23 08:25 · Score: 2, Insightful

your browser's SOP (same origin policy) prevents you from doing this. scripts aren't allowed to make net connections to sites outside the domain of the current page. this is to reduce XSS (cross-site scripting) attacks.
i understand there are standards in the making to allow such things, securely.
Shady URL's by sirrunsalot · 2010-09-23 08:42 · Score: 5, Funny

Personally, I find the trend of redirecting to innocent sites via shady URL's much more alarming: http://5z8.info/foodporn_e0g0l_taliban-meetup
(I promise I'll get modded "troll" by someone who glanced at the link and assumed the worst. Hard to blame them, but I do love using those links whenever possible...)
It's called onmousedown! by spage · 2010-09-23 09:14 · Score: 3, Informative

Yes you are really missing something! Just by viewing source you should notice on the a tag
onmousedown="return rwt(this,'','','','3','AFQjCNElSuk8pqYMVk5pKG9sycYfDSh7zg','UsteGasJKDRPW0uis7I9Ig','0CCsQFjAC')"
class="l"
href="http://example.com/the/original/URL"
So on mouseover you see the original URL, but on click, function rwt ("rewrite"?) sends you to Google first with all that tracking crap, which then redirects you on your way.
If I right-click and Copy Link Location, I get a Google URL in Firefox with this tracking crap. If I feed that to curl, I don't get a status 301 redirect, I get a small piece of HTML back containing both a script that changes the window.location and a meta http-equiv refresh tag.
Disable JavaScript to disable all this.

--
=S
1. Re:It's called onmousedown! by spage · 2010-09-23 09:28 · Score: 2, Interesting
  
  Hmm, it varies. In Firefox if I'm logged in to Google a search result has an href with a plain URL but the onmousedown rewrites as I described above. If I log out the href is a Google URL and there's still an onmousedown rewrite. But in Konqueror where Google knows nothing about me, I get a plain href and no onmousedown handler.
  So maybe another way to avoid Google tracking is use an obscure browser?
  
  --
  =S
And yet, there's no need! by mcrbids · 2010-09-23 10:52 · Score: 2, Informative

It would be trivial to do something with javascript - put an onclick handler that does an xmlHttpRequest to save the "needed" information without even needing to worry about header redirects and the like. The link can be something like
<a href="http://www.thesite.com/path/to/page.html" onclick="return notifyBigBrother(this);">
where notifyBigBrother() is a function that sends the click info to the search engine site. Why isn't this done?

--
I have no problem with your religion until you decide it's reason to deprive others of the truth.
that's why I like the MVP HOSTS file by PJ6 · 2010-09-23 10:59 · Score: 2, Informative

They get most of the major offenders in the list. Sure it breaks some links, but it's worth it.
The ones I hate most... by Reziac · 2010-09-23 12:51 · Score: 2, Informative

...are those that come in perfectly legitimate email, stuff that I actively subscribed to. They already know where I came from, their own damned email. Why does it need to go through a redirecting clicktracker?
Furthermore, it lets even legit emails send me somewhere not only unanticipated but also a pain in the ass, like links that unexpectedly open a whopping great PDF.
Many thanks to folks who posted links to two URL de-obfuscator services, which are now permanently on my toolbar.
http://unshorten.com/index.php
http://www.longurlplease.com/

--
~REZ~ #43301. Who'd fake being me anyway?