[ NNSquad ] Re: Free Press/Public Knowledge Investigation Finds NebuAd Wiretaps Consumers and Hijacks Web Sites

NNSquad - Network Neutrality Squad
NNSquad Home Page
NNSquad Mailing List Information

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ NNSquad ] Re: Free Press/Public Knowledge Investigation Finds NebuAd Wiretaps Consumers and Hijacks Web Sites

To: "Barry Gold" <bgold@matrix-consultants.com>
Subject: [ NNSquad ] Re: Free Press/Public Knowledge Investigation Finds NebuAd Wiretaps Consumers and Hijacks Web Sites
From: "Nick Weaver" <nweaver@gmail.com>
Date: Wed, 18 Jun 2008 18:14:14 -0700
Cc: NNSquad <nnsquad@nnsquad.org>

Note also that it is already known how a site can defend against this:

http://www.cs.washington.edu/research/security/web-tripwire.html

Which will detect the injected Javascript as a modification.


Additionally, Phorm is slightly different (as a MITM redirector, per
Richard Clayton's anaysis), which ends up adding session cookies.  A
site like google, whenever the user redirects to HTTPS, can detect
these additional cookies and, if desired, notify the user.

References:
- [ NNSquad ] Free Press/Public Knowledge Investigation Finds NebuAd Wiretaps Consumers and Hijacks Web Sites
  - From: Lauren Weinstein <lauren@vortex.com>
- [ NNSquad ] Re: Free Press/Public Knowledge Investigation Finds NebuAd Wiretaps Consumers and Hijacks Web Sites
  - From: Barry Gold <bgold@matrix-consultants.com>

Prev by Date: [ NNSquad ] Re: NPR on Internet Usage Charging
Next by Date: [ NNSquad ] Re: NPR on Internet Usage Charging
Previous by thread: [ NNSquad ] Re: Free Press/Public Knowledge Investigation Finds NebuAd Wiretaps Consumers and Hijacks Web Sites
Next by thread: [ NNSquad ] NPR on Internet Usage Charging
Index(es):
- Date
- Thread