Cloudflare Ditches Sites That Use Coinhive Mining "malware"

Mark Wilson writes: Bitcoin has been in the news for some time now as its value climbs and drops, but most recently interest turned to mining code embedded in websites. The Pirate Bay was one of the first sites to be seen using Coinhive code to secretly mine using visitors' CPU time, and then we saw similar activity from the SafeBrowse extension for Chrome. The discovery of the code was a little distressing for visitors to the affected sites, and internet security and content delivery network (CDN) firm Cloudflare is taking action to clamp down on what it is describing as malware. Torrent proxy site ProxyBunker.online has contacted TorrentFreak to say that Cloudflare has dropped it as a customer. The reason given for ProxyBunker's suspension is that the site has been using Coinhive code on several of the domains it owns.

Good

[lactose99]

Coinhive with no alert and option to disable is bullshit anyway.

Re:Good

[BronsCon]

Came here to say this.

Re:Good

Coinhive with no alert and option to disable is bullshit anyway.

It is client-side javascript. How can you have a SlashID that low and not be able to detect and disable Coinhive?

You want to trust the Internet?!? Come on, you're old enough to know better.

Re: Good

He is saying an easy way for EVERY user. Not just tech savvy ones. He means for it to be Opt in. But you knew that you smug smuck.

Re:Good

[DivineKnight]

There are some people who aren't aware that JavaScript is the Internet's equivalent of an STD...

Re: Good

He is saying an easy way for EVERY user. Not just tech savvy ones. He means for it to be Opt in. But you knew that you smug smuck.

There is NO SUCH THING. You can ask, and hope, and want, and wish for RAINBOW POOPING UNICORNS, but that will not make them exist. You know that too, you just want to whine about what will not exist rather than take personal responsibility.

E.g., Do Not Track.

Question

[squiggleslash]

Genuinely interested (no strong opinion of my own - I have a gut feeling this software slows down your machine) - would you prefer ads or background JS running Bitcoin miners funding the websites you visit?

Re:Question

[PIBM]

Personnally, I`m fine with coinhive. In no time we will have cpu caps at 5% of a core on browsers which we can waive for legit sites, so those miners costs us almost nothing, and no ads is great :) Also, the browser already has to fight for cpu against my own miners. Beside, it`s not as if we didn`t have tens of other cores available for what we need to do on our computers should we core lock stuff .. oh well, to me it's a non-issue.

Re:Question

Ads, they're much easier to block. Js is easy to block too but can be a bit annoying if the script you want to block is self hosted and bundled with other "good" JS.

Re:Question

The only thing we should be mining is clean America coal

Clean Coal is the future for America, not some dubious digital currency

Re:Question

[corychristison]

uBlock Origin already has rules to block CoinHive by default.

Re:Question

Genuinely interested (no strong opinion of my own - I have a gut feeling this software slows down your machine) - would you prefer ads or background JS running Bitcoin miners funding the websites you visit?

Given that the advertisements have quickly gone beyond informative, to annoying, to outright criminal deceit, I might almost prefer the coin-miner, but I have to be honest, I expect the coin-miners to go the same path.

So um...is there an option that doesn't make me wish Batman's parents had been killed by Nigerian 419 scams so he'd be avenging them by cleaning up the Internet? Actually, can I get that? Because that'd be cool.

Re:Question

[Dixie_Flatline]

I've been thinking about this, and if there were a standard API for harnessing my CPU for a few cycles while I browsed, and a setting where I could decide how much time to give on a site-by-site basis, I think I'd be much more willing to do this than have ads. The thing that bugs me is the underhanded nature of it right now, but it's honestly kind of a good idea.

Of course, for this to work, several things need to be in place and the red tape in getting this off the ground properly would probably be a huge hassle. But as a way to pay for content, this is kind of brilliant.

Re:Question

I have a gut feeling this software slows down your machine

Worse. It crashes the browser.

Listen here, jerks! When I visit your streaming video site, I don't want to find you're mining coins in the background, because I don't have enough memory on my mobile device to watch streaming video and mine coins at the same time. Don't trojan me bro.

Coinhive, blacklisted. Jerks.

Re:Question

[GNious]

See: Brave browser

Re:Question

[UnknownSoldier]

> would you prefer ads or background JS running Bitcoin miners funding the websites you visit?

False Dichotomy, much?

The answer is: Neither:

* Ads are immoral -- they don't respect my time, space, bandwidth, or money, so Fuck-Off with your blatant greed,
* Stealing my CPU resources is just as heinous.

Your monetization problem is not my problem.

Re:Question

Genuinely interested (no strong opinion of my own - I have a gut feeling this software slows down your machine) - would you prefer ads or background JS running Bitcoin miners funding the websites you visit?

I block ads and trackers by default and do not whitelist any sites. I block Coinhive by default, but whitelist sites that document their use of Coinhive.

I would much rather trade my CPU cycles and electrons for content than my personal privacy.

Re:Question

How far does it go? Can it detect it if it's renamed? If it's part of a single JS fiels for everything the site uses?

Re:Question

[squiggleslash]

I didn't offer any dichotomy. I asked you which you prefer. I'm well aware there are reasons to dislike both, but that doesn't mean you can't have an opinion on which is better, or, if you'd prefer, which is worse.

I don't have the power to limit your choices to two ways to fund websites, and I'm not sure why you think I would have that power, or why you'd think I was demonstrating that.

So... do you have an answer to the question?

Re:Question

[gnick]

But as a way to pay for content, this is kind of brilliant.

If this was an alternative to ads and had some CPU cap, I'd agree. But this is being deployed in addition to ads and I don't know how aggressive it is about consuming resources.

Re:Question

[DamonHD]

Ouch!

What about providing something to help cover the costs of creating content you consumed? Do the words "immoral" and "heinous" apply there in any way?

Rgds

Damon

Re:Question

[gnick]

Ads are immoral -- they don't respect my time, space, bandwidth, or money...

Of course they respect your time - They're buying it from you. Your time, space, and bandwidth are what they're purchasing in exchange for access to the content they're linked to. Your money is the ultimate prize. How can you say ads don't respect those things when they're literally the entire goal?

Maybe you're saying that they don't respect your time because they're demanding more than you think is fair? Browse elsewhere or pay for ad-free premium content.

Re:Question

[MightyYar]

I'd like to see a system where I can let the miner do its thing if I want, OR let the site deduct some agreed-upon amount from a coin balance that I have. This would let people who want a free-as-in-beer experience on the web do their thing and also let people willing to part with a few pennies have a better overall experience / better battery life.

Re:Question

[UnknownSoldier]

What part of ...

The answer is: Neither:

... do you not understand??

Re:Question

[squiggleslash]

That part where it's not an answer to the question I asked.

Here's a better idea: if you don't want to answer the question, just don't reply to it. Don't post some bullshit putting words into my mouth claiming I've made a "False dichotomy" when all I've done is ask which of two options is better.

Re:Question

That part where it's not an answer to the question I asked.

Here's a better idea: if you don't want to answer the question, just don't reply to it. Don't post some bullshit putting words into my mouth claiming I've made a "False dichotomy" when all I've done is ask which of two options is better.

Are you the sort of bullsit artist who complains I respond "But I don't" when you ask "when did you stop beating your wife?"
If you want the answer to the question you think you asked, then ask the right question - e.g.

"If you had to pick one, which do you prefer?"

You did, indeed present a false dichotomy -

The false dilemma (or false dichotomy) is a fallacy of reasoning that omits consideration of all reasonable alternatives. Sometimes called the either-or fallacy, one poses what looks like a true dilemma--I must pick one or the other--when, in fact, there are other viable alternatives.

Re:Question

[squiggleslash]

I didn't provide a "false dilemma" or anything remotely similar. I asked of two things, which was preferred. For it to be a false dilemma (or false dichotomy) I would have had to suggest that the two were in some way the only solutions to some other problem that has multiple solutions.

I did not.

What you're doing is the equivalent of hearing someone ask "Hey, do you prefer Whoppers or Quarterpounders" and then smugly butting in, and saying "ACKSHURELY NEITHER, YOU'RE MAKIING A FALSE DIKOTOMEE WHAT IF I DON'T WONT A BURGGER".

If you don't have an answer, fine. Maybe the answer in your case is "I'm too fucking stupid to know what ads or bitcoin miners are", and that's fine, what you do in that case is shut the fuck up.

But don't waste my time arguing with me.

Are you the sort of bullsit artist who complains I respond "But I don't" when you ask "when did you stop beating your wife?"

No, you are. You're the bullshit artist who, even now, having had it clarified for you, still thinks I was claiming there are only two ways to fund websites and that you're obliged to pick one of them. YOU, not me, are the moron putting words in my mouth.

You are wasting my time. You are wasting everyone's time. Go away.

Re:Question

[squiggleslash]

That part where it's not an answer to the question I asked.

Here's a better idea: if you don't want to answer the question, just don't reply to it. Don't post some bullshit putting words into my mouth claiming I've made a "False dichotomy" when all I've done is ask which of two options is better.

(Original missing for some reason)

Re:Question

How about you let me shove my cock so far down your throat it comes out your ass?

Re:Question

You're a fucking idiot. A false dichotomy is something like "We need to choose between banning all guns or having mass killings every few months", not a question about whether you prefer A or B.

People like you read a book on fallacies and think you can lawyer your way out of any argument. You're why Slashdot is so dumb. Grow up little boy.

Re:Question

[maglor_83]

The thing that bugs me is the underhanded nature of it right now

It's no less underhanded than ads are. Sure, you know that the ads are there, but the vast majority of people have no idea of all the tracking and selling of their information that's going on behind the scenes.

Re:Question

Oh my god, get a room you two.

Re: Question

It's bad guys now but when netflix does it with extra cycles in your blu ray player or roku device... then it's legit , right ?

Re:Question

[TheReaperD]

Then you can choose option 3: Pay them money for their service. Or, don't use it.

Re:Question

[UnknownSoldier]

> I was claiming there are only two ways to fund websites and that you're obliged to pick one of them

That is indeed what you were doing when you rejected the answer "Neither"

... would you prefer ads or background JS running Bitcoin miners funding the websites you visit?

Here is an example:

Q. Would you like Cake or Pie?
A. Neither, I would like Ice-cream.

Now what part of OR do you not understand?? There are AT LEAST 4 different permutations:

A=Ads B=Bitcoin
A=0 B=0 I'm NOT OK with either one.
A=0 B=1 I'm OK with Bitcoin
A=1 B=0 I'm OK with Ads
A=1 B=1 I'm OK with either Ads or Bitcoin

Gee, if only there was MORE then 2 options to crowdfunding.

What you should have asked is this:

Q. For funding the websites you visit would you prefer -- pick all that apply:

[ ] Ads, or
[ ] Background JS running Bitcoin miners OR
[ ] Patreon, OR
[ ] Donate button, OR
[ ] Other. Please specify _ _ _ _ OR
[ ] Nothing. I don't want to financially support you.

QED.

--
You can't fix stupid, but you can fix ignorant

Re:Question

[tepples]

I didn't offer any dichotomy. I asked you which you prefer.

Let me try to rephrase the answer you got:

Distracting interest-based ads and cryptocurrency mining are tied for unacceptable. It's futile to argue which is farther below the threshold of acceptability when at least one third option exists and is above this threshold. In this case, there are two third options: subscriptions and cessation of business.

Re:Question

My stomach will digest your dick first.

Re:Question

[tepples]

Maybe you're saying that they don't respect your time because they're demanding more than you think is fair? Browse elsewhere

When I tried that, I got modded down for saying I couldn't RTFA.

or pay for ad-free premium content.

If I "pay for ad-free premium content" on one site, which other sites will honor my having "pa[id] for ad-free premium content"?

Re: Question

I'm not the person you're arguing with, but you are a fucking tool. Congrats.

Re:Question

I believe an ad-infested video streaming site my dad frequents started mining some cryptocurrency recently. It opens up a small pop-up window to do the work.

It makes the laptop's fan spin up to very loud and causes the mouse cursor to slow down to a rate of about 2-4 fps.

Yeah, it shouldn't do that thing with the mouse and I have no idea why it does, but I'm not geek enough to debug Windows 8...

Re:Question

[UnknownSoldier]

> when all I've done is ask which of two options is better.

You are assuming that either option is better. I disagree with your premise.

Analogy(*) Time!

Q. Would you like to be:

* Raped first, then murdered? OR
* Murdered first, then Raped?

A. The response NEITHER is a VALID answer.

There are at LEAST _four_ different answers -- some sick fucko might go "Both?"

/Oblg. I could explain it for you ...

(*) I neither approve nor condone. This imaginary example is just for illustration purposes only to make a point how stupid some people's logic is.

Re:Question

[dissy]

would you prefer ads or background JS running Bitcoin miners funding the websites you visit?

Given just those two options and only a few minutes to ponder on it, I'm actually leaning towards the bitcoin miner.

In theory, javascript is supposed to be sand boxed in the browser, while flash was never designed in such a way for that to be possible, so in theory the miner is supposed to be more secure.
Of course in reality that isn't really the case, as there have been plenty of exploits using javascript over the years too. That would also only apply to flash ads, which isn't as dominate these days.

Normally I am very much against running random strangers code on my computer.
Originally I didn't intentionally block ads, but I do run a script blocker which coincidentally blocks many ads too.

But another point in the miners favor and against ads is the aggressive nature they have become.
I now also run an ad blocker specifically for that reason, since ads tend to completely destroy a website.

Ever try to read slashdot without an ad blocker? It's quite literally not possible. By far ads take up over 80% of the screen and move around to fuck with the remaining small percent left over for content. You can't open an article from the main page since the ads force the page to scroll most of the way down, and once you scroll up it triggers the ads to move and push the comments off screen again.
Not to mention the postage stamp sized box you get to reply in without a script blocker or always updating your settings back to the old view layout.

Coin mining on the other hand wouldn't even show up on screen at all.
Both the miner and ads suck up CPU cycles, I'd assume the miner much more so, but these days I have plenty of CPU cycles to spare and doubt a single core pegged at 100% would be noticeable.

Ads also have a habit of redirecting you to scammy websites, or the site with the ad makes the entire background of their page a clickable element to hijack their own website to open an ad in a popup or popunder tab.

I can safely say between allowing a website to use ads in my browser, or doing without ever going to that website, I choose the latter.
A coin miner on the other hand would be a silly thing to deploy if it didn't actually report back to the website owner and gave random scammy sites access to it.

Of course in the end I don't think I'd put myself in any position where I'd only have those two choices.
For sites and content creators I love, they either get paypal donations or lately patreon pledges.
(Patreon has been an amazing game changer, I have a few hundred dollars per month in pledges to about 30 different people and groups. Not having to remember to paypal something every so often, or sign up for multiple subscription services, makes the entire ordeal so easy to setup and let do its thing)

The rest I can generally do without if it came down to it.

Re:Question

Oh, so you just expect people to serve you content for free? Seriously, GTfO.

Re:Question

[gnick]

If I "pay for ad-free premium content" on one site, which other sites will honor my having "pa[id] for ad-free premium content"?

Surely you can't tell me that EVERY DEVELOPER wants to be paid for his time or bandwidth! I'd like a subscription to the Internet, please.

Re:Question

[bill_mcgonigle]

I'd like to see a system where I can let the miner do its thing if I want, OR let the site deduct some agreed-upon amount from a coin balance that I have. This would let people who want a free-as-in-beer experience on the web do their thing and also let people willing to part with a few pennies have a better overall experience / better battery life.

There's a fork of CoinHive that lets admins put up a permission box to ask the user before mining and limit the CPU usage (to say 15%), and Google is still shutting down the adwords accounts of people using this code (see r/Monero from a few days ago). That code is probably lower impact than a typical Flash ad or a HTML5 autoplay.

There is finally a challenger to an ad-supported Internet and that means war.

Re:Question

Fuck uBlock Origin. Adblock Plus is the only way to go.

Re:Question

[MightyYar]

Yeah, I can see Google would be unhappy about that. Though if they were clever about it they could develop a platform where people could earn coins for watching ads and plug in to the infrastructure. Maybe they've gotten too big for such risky innovation. They were very disruptive, but now need to fight the disruption...

Re:Question

[squiggleslash]

I appreciate the attempt, but no, that's not an answer to the question, nor is it rephrasing the question. The question is literally "Is X preferable to Y". It's of the "Would you prefer Superman or Batman to deal with crime in your city" or "Do you prefer Coke to Pepsi" variety.

The idiot who responded to me was claiming that by asking the question, I was implying that people would be forced to take one path or the other.

Legitimate answers are "Ads", "Bitcoin miners", or perhaps "Hard to tell, they're both pretty shitty". Illegitimate answers would be "Never heard of them", your attempt at a rephrase (because it's off topic. It's "Oh, so Aquaman isn't an option? Well you suck", or "RC COLA PLZ!"), and "OMG HOW DARE YOU SUGGEST THE ONLY SOLUTIONS TO A PROBLEM YOU NEVER DEFINED IN THE FIRST PLACE ARE THOSE TWO. I shall look up in my dictionary of fallacies something that has some of the same words in the description and CLAIM YOU'RE DOING IT."

The latter is an accurate rephrase of the GP's comment. And by using the name of a fallacy he was able to sucker in some stupid moderators who modded his comment up despite it being literally either the product of poor literacy, or high jackassery.

Re:Question

[tepples]

Among the legitimate answers, "Hard to tell, they're both pretty shitty" is probably the closest.

Alternative to ads?

[mi]

Maybe it is, but it may also be a suitable alternative to ads for some people... For example, my main objection to them is not that use up my computer's resources (indeed, AdBlock often takes more ) — it is the screen real-estate, that the ads occupy. (And the incessant blinking of some of them.)

So, in exchange for accessing the content, I may be willing to let my computer do some coin-mining for the authors.

Re:Alternative to ads?

Yea thats all well and good until you realize the site you're visiting is doing BOTH displaying ads and using your CPU for mining bitcoins which is exactly what is going on.

Re:Alternative to ads?

[bill_mcgonigle]

the site you're visiting is doing BOTH displaying ads and using your CPU for mining bitcoins which is exactly what is going on.

Some are, some are allowing a slider between revenue streams, and some are only asking for permission on the mining (no ads).

Your blanket statement is false as written, but Google and Cloudflare are pretending it's true. Google is in the ad business and Cloudflare is squarely in the ad distribution business, so both stand to lose tremendously if the Web doesn't remain ad-supported forever.

Re:Alternative to ads?

[mi]

Kamrade, you are absolutely right! Revolution is the only solution to this problem. Workers will continue to be exploited as long as there are KKKapitalists alive.

Re: Alternative to ads?

+1 follow the money

Didn't see TPB doing this as a bad thing

[SensitiveMale]

I don't see the big deal about this as long as the site is up front about it. Who cares about a few CPU cycles compared to the onslaught of blinking ads and countless popups. Popups are the worst.
So, if visiting TPB, or some other site, means an ad-free experience with a small spike in CPU use, I'm all for that.

Re:Didn't see TPB doing this as a bad thing

[Baron_Yam]

> Who cares about a few CPU cycles

Script miners are very inefficient to start with, and for all the cryptocurrencies I am aware of, more mining means lower efficiency. There is a very strong motive to max out your CPU because no matter how hard they peg the needle, they're not really getting much from you and the power costs them nothing.

Are you really OK with the same people who are OK with pop-ups, pop-unders, uncloseable window cascades, fake AV warnings and more - are you OK with them deciding how much of your CPU is OK to appropriate?

Re:Didn't see TPB doing this as a bad thing

[SensitiveMale]

Are you really OK with the same people who are OK with pop-ups, pop-unders, uncloseable window cascades, fake AV warnings and more - are you OK with them deciding how much of your CPU is OK to appropriate?

100%. (Get it?)

Seriously, absolutely. Who cares? So I go on some site and they peg my CPU for two minutes. Doesn't cost me a dime because my CPU is working anyway. I'd trade that for 20 ads, 3 pop-ups, and a pop under.

Re:Didn't see TPB doing this as a bad thing

[Baron_Yam]

I get that you don't understand a lot of computers - including pretty much every laptop - will engage in a lot of power saving that goes out the window with a CPU spike.

I get that you don't understand that a lot of people don't want their OS to become unresponsive just because they're visiting a particular site.

Mostly, though, I get that you have no clue that ad blockers exist.

Re:Didn't see TPB doing this as a bad thing

[SensitiveMale]

I get that you don't understand a lot of computers - including pretty much every laptop - will engage in a lot of power saving that goes out the window with a CPU spike.

Oh no. Not that. Anything but that. Why, it's best to just through it away after it.

I get that you don't understand that a lot of people don't want their OS to become unresponsive just because they're visiting a particular site.

The CPU can spike without dropping the whole OS to a standstill. Exactly how stupid are you? Do you think that's exactly what's going to happen every time? People will be fine with something as long as it doesn't impact them. Snagging a few CPU cycles won't. Ads will. As with everything, this will get more efficient and better implemented.

Mostly, though, I get that you have no clue that ad blockers exist.

Don't run an ad blocker on the browser. I run pi-hole which does everything for me.

Anyway, many sites need income to survive. Ads are an option. If I'm given the choice to either see ads, some ads, watch some sites go away, put behind a paywall, or simply have that site take a few CPU cycles that I'm not using and only while I'm there, I'll go with the latter.

Mostly, I get that you're an ass. Mostly.

Nah, total condescending ass. Yeah, that's it.

Re:Didn't see TPB doing this as a bad thing

Some of us leaves tabs open for days in the background. I'm going to be extremely pissed if I find out one of those sites has been stealing additional resources (yes, they are actually stealing now since it's something you no longer have and they took without asking: CPU, battery, heat, less time, etc..). If they want to use my CPU they can install Plan 9 and ask to share my resources.

Expect the next iteration of this to launch DDoS attacks against other sites.

How about I go around and hack into your wi-fi and use it while you're sleeping? It isn't costing you anything...

Re:Didn't see TPB doing this as a bad thing

[thejynxed]

Except in many cases now, it's not just the primary site running a single CoinHive script, but by multiple instances of it being run by every third-party site with JavaScript loaded on the page you're visiting.

This shit needs nipped in the bud.

Re:Didn't see TPB doing this as a bad thing

[SensitiveMale]

As long as it's optional and used how they say it will be, i'm perfectly fine with it.

Re:Didn't see TPB doing this as a bad thing

[SensitiveMale]

Some of us leaves tabs open for days in the background. I'm going to be extremely pissed if I find out one of those sites has been stealing additional resources (yes, they are actually stealing now since it's something you no longer have and they took without asking: CPU, battery, heat, less time, etc..).

But they are asking. No, it's not stealing.even if it's something you no longer have. Rather than go into Megahertz and such, let's just say my CPU can execute 100 clock cycles per second. Now, if my computer only uses 20 in that second, I haven't "lost" 80. Nor can I store them to use later. So, if I have a choice to give some site 30 cycles a second, then I'm not losing anything.

If you know some cite is doing that and you decide to leave that tab "open for days" well, that's your choice.

Expect the next iteration of this to launch DDoS attacks against other sites.

Again, as long as it's open, I don't see a problem.

How about I go around and hack into your wi-fi and use it while you're sleeping? It isn't costing you anything...

They're not hacking and it's only occurring when I'm at the site so your example is rediculous.

But if I wanted to play along, if some site said "If you agree to share some of your bandwidth, we'll let you watch this streaming sports event for free and without ads" I'd accept that in a heartbeat.

Cloudflare must die

[ptaff]

Cloudflare must die. It's the ultimate cross-site tracking MITM — worse than ads and pixel beacons because there's no way around it — and its CAPTCHA mechanism makes Tor browsing a PITA.

Re:Cloudflare must die

Found the coinhive shill

Re:Cloudflare must die

[thomst]

ptaff (who has a really low /. ID number) thundered:

Cloudflare must die. It's the ultimate cross-site tracking MITM — worse than ads and pixel beacons because there's no way around it — and its CAPTCHA mechanism makes Tor browsing a PITA.

Can't sat as I've run into any CAPTCHA challenges using TOR. Then again, I only use TOR to access TPB when some media company is paying Indian hackers to DDoS it on the non-TOR web, so what would I know?

OTOH, I had to deal with CAPTCHAs all the freakin' time when one or another shitbag bot herder was hiding behind VPNUnlimited's San Francisco proxy. I entirely understood, though. If Cloudphlegm hadn't made life difficult for VPNUnlimited's other customers (like me, for instance), they wouldn't have had much incentive to identify and ban the bot herder ...

Re:Cloudflare must die

TPB has an onion address, so if you're using Tor to access it, you might as well as skip the clearnet part. No CloudFlare that way.

Me? Yes, plenty of captcha from CloudFlare when browsing via Tor. Not that I do it often. Worse, CloudFlare's captcha requires JavaScript to function... Kinda makes NoScript pointless.

Re:Cloudflare must die

[tepples]

Which CDN would you recommend to use instead of Cloudflare to mitigate request bursts and DDoS?

Coinhive

[b1ffster]

I thought TPB (and proxies) were 'trying it out'. They appear to still be 'trying it out' weeks later. Malwarebytes (full version) already blocks them so meh!

All for it

I'm all for it if a site is upfront about it.

They get to make some money off their content, I don't have to see shitty adds that clutter up the site. These days we all have multiple cores just sitting there idle.

Ads drying up, lets try Coinhive!

Oy vey goyim, it's malware!

Correct they do (2 ways, 1 is mine)... apk

Malwarebytes hpHosts hosts & recommends my hosts file program that blocks coinhive servers FOR LESS than their antimalware does, natively, using what you ALREADY HAVE in a hosts file in kernelmode operation (faster than user mode & FAR less resource consumption).

APK

P.S.=> APK Hosts File Engine 9.0++ SR-7 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

Had been considering it

Bloody annoying. I had actually been considering coinhive as a non intrusive way of using my readers cpu cycles while they read my stuff. Plan was to display site monetized by borrowing some cpu cycles while you read I could spare them seeing ads and I might get a tiny bit in return for making my content freely available, something that the ads despite thousands of visitors don't really do... Ah well.... Back to the drawing board...

Re:Had been considering it

[tepples]

Plan was to display site monetized by borrowing some cpu cycles

That plan wasn't viable to start off with for one reason: Good luck getting a lot of revenue mining on the dinky little ARM in a pocket mobile computer.

Retaliations

If MY CPU is ever used by a web site to min any type of crypto, I will consider it a military attack and their server9s) will be subject to electronic retaliations. By even attempting to do so, they are accepting this and the repercussions of it.

Publishers unwilling to take my money

[tepples]

What about providing something to help cover the costs of creating content you consumed?

For one thing, the act of viewing a work of authorship does not consume the work.

For another, publishers often don't even want to take my money. Where's the lawfully made region 1 or all region DVD copy of the film Song of the South, the film Pinocchio and the Emperor of the Night, or the TV series Spartakus and the Sun Beneath the Sea (the English language dub of Les mondes engloutis)?

Not Bitcoin

If they are open about it it can be an alternative to ads. But this has got nothing at all to do with Bitcoin which you have not been able to mine on GPU or CPUs for years. The most recent cases were mining Monero.

How many subscriptions should one maintain?

[tepples]

To how many websites do you expect the median web user to maintain a subscription in any given month? For example, if the top ten results on Google Search for a given query are all subscription sites charging $4 per month, how many people would you expect to pay upwards of $20 to sample the majority of the results from a single query?

Hosts files do it BETTER by far & how/why

Hosts protect where addons can't (or as well):

Bad sites (past ads)
Botnet C&Cs
DNS down or poisoned
Trackers (dns logs/ads/transparent ISP proxy)
Dns blocks
Spam/phish payload
Slowdown 2 ways: adblocks & hardcodes
Hosts = Ez edit.

AB+ 151mb https://www.google.com/search?q=Adblock+memory+consumption&btnG=Search&hl=en&gbv=1/

UBlock 64MB https://www.google.com/search?q=UBlock+memory+consumption&btnG=Search&hl=en&gbv=1/

Hosts~16mb

Addons = ClarityRay defeatable & crippled http://www.businessinsider.com/google-microsoft-amazon-taboola-pay-adblock-plus-to-stop-blocking-their-ads-2015-2/

NoScript tag parses. Hosts block script prior to it!

No 1 addon does as much.

Stacked addons slowup.

ADDONS = EXPLOITABLE https://news.slashdot.org/comments.pl?sid=11166303&cid=55266729/

APK

P.S.=> APK Hosts File Engine https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

Adult Check: Grown-ups can pay for nice things

[tepples]

I'd like a subscription to the Internet, please.

That's what people think they're buying when they pay $60/mo to Comcast.

In the late 1990s, there was actually a service like that: Adult Check. A subscriber could pay $10 per month for access to all participating publishers' sites, and publishers would earn a commission based on page views. But nowadays, each publisher wants its own separate subscription. If the top 10 results for a Google Search query all want $4 for a 30-day subscription just to view one page, how is a viewer supposed to build a rounded picture of an issue by comparing articles from multiple sources? Just picking one site and preferring articles from that site "because I already subscribe" puts a reader into the filter bubble of that site's point of view.

Re:Adult Check: Grown-ups can pay for nice things

[gnick]

If the top 10 results for a Google Search query all want $4 for a 30-day subscription just to view one page, how is a viewer supposed to build a rounded picture of an issue by comparing articles from multiple sources?

By viewing ads.

Re:Adult Check: Grown-ups can pay for nice things

[tepples]

How is that possible while respecting viewers' privacy? As far as I'm aware, most web ads are served through a third-party server that not only serves ads but also builds an interest dossier based on tracking each viewer's request history across multiple websites. I guess websites could fall back to self-hosted ads when the browser fails to connect to the tracking server, but I haven't seen a lot of sites whose coding is smart enough for this sort of ad replacement.

In addition, sites end up playing the "Ads alone don't pay enough CPM to keep our writers fed" card.

When will the Cloudflare malware be stopped?

Every time I think I've got my computer cleaned, the Cloudflare 522 Error strikes again. When will that malware be stopped?