I agree. As a veteran myself, I often wondered about the decisions to move from the proven 7.62 to the not-so-effective 5.56. Back in WWII, if a German soldier took at .30-06 in the chest from an M1, he wasn't getting up from it. Even the British Enfield and Vickers guns using the venerable old .303 (7mm) would put a man down reliably with a solid hit.
I personally know troops who have shot insurgents several times with M4s at lethal ranges (less than 200') and they took the hits and kept fighting long enough to return fire. Those same insurgents hit with a 7.62 slug would be DRT. Full stop. There is a reason quite a few Marines and soldiers carried .357 revolvers in Vietnam. The reason was the stopping power. The 125 grain .357 traveling at 1400 FPS boasts 96% one shot stops on human torsos that are not armoured. The .357 is still the gold standard for handgun stopping power. Like you with your 1911, I'm a .357 guy. If I cannot do it with six, I need something belt fed. Plus, like a lot of guys I know, I favour a New York reload anyway.
Although I quibble that I'm a Facklerite instead of a Marshall and Evans type, so I don't trust their .357 results, I'm specifically and convincingly told their data is just not of high enough quality to support their conclusions (I haven't investigated for real because since I was a teen the M1911 has fit my hand like a glove, so it's weapon choice/shot placement first, followed by the natural choice of .45 ACP over .38 Super, which I'll note is not the equal of .357).
The Martin Fackler camp believes that at service pistol velocities killing scales with the number of holes poked in a person, stopping scales with the area of the bullet. And all things being equal, .45 is a lot bigger than .357.
However I note that that famous .357 load has a nominal velocity that's twice as high as .45 ACP, so maybe it really is disproportionately effective (note that only the 10mm has really duplicated or rather substantially exceeded its ballistics, even .357 SIG doesn't quite reach the .357 Magnum).
One thing that got me to wondering in this direction is the "unreasonable effectiveness" of ~.30 caliber ball (FMJ) ammo (e.g. including the .303, German 7×57mm and Russian 7.62×54mmR). Absent construction like the relatively fragile West German 7.62 NATO round, like e.g. AK-47 rounds it's going flip, at least partly, before exiting without fragmentation, and without dumping much of its energy unless it hits solid bone or the like.
Fackler's general thesis about wounding is that permanent crush cavity counts, "hydrostatic shock" and the like don't much or at all, soft tissue by and large gets pushed out of the way and snaps back. Note that he got his start in this in Vietnam field surgery....
But when I look at the temporary effects of a high power 7.62 or thereabouts slug, I note that in most any torso hit their radius is going to encompass the spine. So I've been wondering if their proven effectiveness on the battlefield is a combination of a potentially temporary shock effect on the CNS via the spine (plus of course the direct effects), followed by bleeding out etc. before sufficient medical care can be rendered. The first being the "put down", the second being the "stay down", or at least weak enough not to get back up and be effective.
For what it's worth, I believe the original specifications for 9mm NATO involve a higher pressure than standard commercial 9mm (effectively +P, i.e., probably not something to fire a C&R WWI Luger, but again not quite a .357 magnum).
Cannot say I don't welcome Uber getting curtailed in all these places. Like many people have said, I doubt the drivers have the insurance to cover their passengers should something really bad happen whilst a passenger is in the car. Something to consider. Taxis are required by law to be insured in certain ways, as are bus companies and limo services.
Also, I like the traditional taxis and bus systems.
I really miss the "old days" of programming. Things were simpler then. I fondly remember the early 80s programming on a Commodore 64, then moving to the early IBM machines and DOS.
Even though I favour a nix environment, there is more sanity in Windows programming circles methinks. I have been thinking about getting into some .NET development these days and moving away from doing nix stuff, altho I really love the BSDs.
It's pulling teeth to get 3rd party library developers to make anything up to the standard of the BCL. A lot of times it feels like someone just copied a Java library into C# and did a bunch of global text replaces until the compiler stopped complaining. The BCL is very extensive, but if it's not already in the BCL, .NET is a pain.
If you install Ubuntu, for example, and do nothing but be an end user, no. If you install Debian or Slackware or Fedora, or CentOS and actually learn how the internals work by installing software, setting up networks, firewalls, proxy server, Web servers, then yes.
I started with Linux back in 1998 and it's still my primary desktop flavour (Debian). I prefer BSDs for servers being they are arguably more stable and nothing beats ZFS, the BSD notion of jails, and the TCP/IP stack.
Gentoo is a good learning experience, but only if you have a full weekend to start it. Last time I ran a stage 1 Gentoo tarball, it took 12 hours to bootstrap. Never again.
Slackware or CRUX Linux are great learning flavours. As is Debian if you do the expert install and make mistakes.
Go to a Linux Users Group when they have installfests. Have an experienced Linux sysadmin "break" your installation and try to fix it. This is how I learned. Going to my LUG and getting jobs where Linux and UNIX were prevalent. I'm making inroads with bosses where I work now to displace Windows. Slowly but surely. They see the savings and they see the stability. Win.
No. Go away. Nerd culture needs to be cultivated and rewarded. Full stop.
We, at least in the US and in Western Europe are no longer making anything. We are no longer makers. Sure, a few places make stuff, but the risk/reward idealism from being a nerd is now discouraged in favour of simply accepting what is by people who "know better than us". Sorry, most of what I know in life is because I cared enough to learn and grok stuff. I'm curious by nature and so are most nerds/geeks. If the sheeple want it easy, let them subscribe to those ideas, but never ever discourage those of us who want to be nerds/geeks to give that up.
I use *nix precisely because I don't want it to just "work". That's boring. This is why my kids are getting Raspberry Pi sets and Lego Mindstorm sets. They need to think it out and do something. Make mistakes. Learn along the way. Who knows. Maybe one of my kids will invent the warp drive or cure cancer. The nerd culture is what encourages the risk takers and the outliers with the ability to think for themselves. This is a gift and should be cultivated to the highest extent possible. Education today, sadly is delivered to the lowest common denominator in the class. This is why the West is losing... kids that cannot hang need to go to remedial learning like they used to, not drag the smart kids down. Damned liberals running the education the West.
This is a very good reason to never use software in the so-called "cloud". I also remember years ago when someone showed me "Track Changes" in MS Word and other programs and how you could go back and look at, say, a bid offer and see if everything was on the up and up. You could see, esp. if the document was a form letter or canned response, to which other companies were offered different terms, you name it.
I dislike revision-able software for a number of reasons. Privacy is the foremost reason. Yes, yes, "if you've nothing to hide, you've nothing to fear..." That old chestnut gets trotted out every time someone worries about security or privacy.
Since about 2000, I keep my documents in plain text only on an encrypted drive backed up several times over -- none of the backups are online, but I'm still good if my house burns down, my machines get stolen, you name it.
You can also take advantage of all the great bonuses of revisions and then before sending the document just copy/paste the content into a new document that doesn't include the revisions. That seems sensible too.
Does sound like a very fragile workflow (there's no reasonable way to tell a full-history doc from a "publish grade" doc by glancing at the file on the filesystem.
Keeping everything in proper version control (possibly unzipped, to give usable diffs even for office document formats -- or in something like markdown) -- would at least rise the bar a bit -- there'd be different process for sending a single version of a file, and sending all versions of (all) [a] file(s).
I suppose if you're already running an internal mail server, you could just do filtering there, making sure no version/history-rich documents pass out that way...
Yes, I know about this, and thank you for reminding me, but in the end, I just don't trust software.
I really do like old school and I stick with it. I write most of my docs as text in either vi or nano. I neither want nor need formatting beyond the basics. My CV is the only document I own that has formatting, and I used LibreOffice for it. It's a single page.
I try my best to break people of that awful habit. I also find that I'm usually happy enough dealing only with people who can manage to open a pdf (or any other non-proprietary format).
Yes. I hate receiving documents in .docx or any other proprietary format, especially if I have not agreed to that format prior to receiving them. I like plain text if at all possible. I'll happily receive PDFs because I can view them under Linux/BSD, but others piss me off. People THINK MS Word is the de facto business standard. It isn't. Text and PDF are the standards. Never had issues with either.
I had a friend tell me my CV should be in PDF and locked down to prevent recruiters and others from changing it to something other than the original. I know recruiters are fond of changing things up without informing you.
You can "print" the text file to a pdf for your CV and get the best of both worlds. My department only allows pdf uploads for CVs, so that's my approach.
There is something also mean-spirited about tracking users. Yeah, yeah, I've heard it's all anonymous, but I've been in the IT industry for a very long time, and I know for a fact they can identify the users with enough time. Because all of this is bought and sold behind the scenes.
I would be OK with ads that went straight to the site selling an item with no tracking other than click-thru stats but not using the IP address, not fingerprinting the browsers, etc.
It's sick that sites show one price to mobile users and another to desktop users. I've seen this by testing it myself. It's a sham. It's the seedy side of capitalism. Everyone should get the same price. Another reason to block ads, since allowing them means you're buying into the way they do business.
Nothing mean-spirited about blocking a very strong vector for malware, which we all know ad networks have become. I have a moral imperative to protect machines under my control, so we block all ads, disallow all tracking, use Disconnect, Ad Block Plus, and HTTPS Everywhere, along with other in-place tools to allow users a clean Internet experience. Let's not even mention how much bandwidth is saved by adblocking... That alone makes it worth it.
You are painting with a broad brush. My sites would be negatively affected by this plugin even though we sell our own ads (no network) and don't target them by fingerprint or IP.
It's also just kind of mean. By design it only messes with the sites that you yourself think are worth visiting.
> It's the seedy side of capitalism. Everyone should get the same price
This rant against price discrimination seems like a tangent. The behavior you're describing is something e-commerce sites sometimes do. It doesn't have much to do with ads and blocking ads won't make hotels.com show everyone the same price.
And car dealers sell the same car to two different people for two different prices. And Proctor & Gamble puts the same shampoo in an expensive bottle and a cheap bottle and sells them side by side.
I understand why you think this is unfair, but it just doesn't seem like that big a deal to me.
<Offtopic for others, but imp for forca - pls don't downvote>
Hi forca: With respect to your comment (https://news.ycombinator.com/item?id=8304139) where you stated you needed some surgery and sought help with figuring out your options? I replied to it (https://news.ycombinator.com/item?id=8334691) which you missed. I can help since I'm launching this very service.
As you don't have any contact on your profile so there was no way for me to reach you. I even contacted YC admin and they confirmed you haven't left an email in your profile :( Since then I've been tracking your comments page to maybe catch you live.
So let's talk? I can answer any/all of your queries and the ones I don't know the answer to I can figure out. Think of me as no-obligation, friendly discussion to clarify all your doubts. I hope you see this message.
I realize this won't be popular, but I really have no feelings for ad networks.
- They allow shoddy security on their servers
- They track users against their will
- Info on me is sold w/o my knowledge or consent
- Ads are a poor business model since they can be blocked
- There is no moral imperative for me to view ads since I've paid to access the Interwebs
I block all ads, tracking cookies, beacons, all of it... I whitelist my bank and my email provider. Everyone else gets nothing from me. I lie about my browser agent, I disallow scripts, CSS history, I disallow HTTP/S referrer, DOM storage, I use a European proxy where I need to. This all works great for me, as I have the right to move around the Internet as a customer, not a product.
I think if anything, this extension makes ad companies sit up and take notice. I won't be installing it, as I don't need it, but kudos to the authors for throwing the cat in among the pigeons. Ad revenue from most of these sites is based on tracking people and this is something I am against 100%.
> There is no moral imperative for me to view ads since I've paid to access the Interwebs
I dislike the ad model but this is dangerously wrong: you pay your ISP for transit – unless you're subscribing to a specific site, nobody else gets a dime from you to pay for their costs. Unless subscriptions or micropayments catch on, that means that sites are either going to rely on ads or will be limited to organizations with significant other revenue streams – neither of which is a particularly healthy prospect.
I agree that the point you're replying to is ridiculous, but I still think there's no moral imperative. An equivalent moral case is broadcast TV ads. You aren't obligated to stay in the room and pay attention; going to the kitchen, using Tivo, and flipping channels are all morally ok.
Part of the reason that subscriptions and micropayments haven't caught on is that people put up with ads. If ads stop working as a business model, I doubt we'll be looking at a bleak future of watching Love Boat reruns and rereading old Family Circle articles. We will find some other way of funding good content.
Indeed, when I look at the way the quality of television has improved over the last couple of decades, I think it's a reasonable argument that blocking ads would be the moral imperative. As anybody who has worked in ad-supported industries knows, consumers aren't the customers, they're the product. Rather than being served, viewers and readers are being served up to advertisers. The system has a conflict of interest at the heart of it. It's reasonable to refuse to support corrupt systems.
OTOH, the alternative to ad-supported content is paying directly for the content you want to read, which is even worse from a privacy POV because publishers will know exactly who you are instead of only knowing which "demographic" you belong to.
Paying directly changes the relationship significantly - a business is generally going to pay attention to their customers that produce their revenue than the "free" accounts that are the merely the product being sold to advertisers.
The Onion was right[1]. In the rush to sell out their "users" to to whomever is willing to pay, a lot of people seem to have come to believe that advertising is the only way to the internet can work.
The internet enabled many new ways of publishing due it removing most of the per-transaction costs. I suspect we haven't even seen most of these methods. While "Kickstarter" style funding and Wikipedia's "public television style" requests for donations, while interesting experiments, are only the first generation of what is enabled by the internet.
Unfortunately, untested and unproven (by somebody else) ideas do imply some amount of risk, which scares a lot of people back into the traditional method where the advertisers get to paint over everything.
Every neighborhood store I shop in knows who I am, and that's fine. Ditto every single online store. The problem with publishers knowing who I am is only problematic if they are also selling me out to advertisers. The easy fix for this is for them not to take advertising. Places like Consumer Reports and Cooks Illustrated do just fine that way.
A gazillion of websites that are run by collectives, communities, hobbyists and like-minded people are a big counterpoint to this. The internet got big on them, not commercial interests.
How does the survival of web sites that depend on ads create a moral imperative though?
These sites are instructing my browser to download content from ad networks using the ISP bandwidth that I paid for. I'm fully in my right to tell my browser not to download that content.
Not even close with the analogy. Unless the content is behind a paywall, it's "free". Want to make money? Charge access. If your content is THAT compelling, people will line up and hand you money. Using a backhanded revenue machine like ads that track me and violate my "anonymity" is beyond the pale. So, yes. If I arrive on your site and there is no paywall, I will gladly view said content without allowing ads. If there is a paywall and your CONTENT, not ads, is good, I will gladly pay. There are sites I do pay for. Willingly. Because there is nothing better. I still block ads on these sites.
You are free to ignore or block their ads. Sites may complain about blocking, but (almost?) none prevent it. But the sites are also free to put ads on their sites, why wouldn't they be, and how do you feel that this is "beyond the pale"? The people who run those sites are just trying to make a living in the same way that most popular media has tried to make a living for the past century.
But actively trying to disrupt how they make a living goes beyond that. Imagine a museum that has a donation box but where you can go in for free if you want. You don't have to donate, but gumming up the slot so no one else can donate either goes beyond being not thinking the museum is worth paying for (although, for some reason, you're in it) to not thinking it should be in business at all.
By arguing that instead of taking donations they should just charge admission, you're just rationalizing bad behavior.
It's more like a donation box that automatically takes money out of your pocket unless you are vigilant, with most patrons not noticing that it took their money. The analogy sort of fails because it's not a zero sum gain. You could actually argue that targeted ads are a benefit to users.
I glady pay for Internet access, cable TV, the cinema, magazines, other content I view. The problem I have is with tracking. Ads should never do anything save show an ad. There should be no attempt to learn about me or track me or sell my data. Magazines I buy don't track me. I ignore ads in the cinema by whiling away that time on my mobile, I FF thru DVRd programs at home. I've paid already. I'm not viewing your dreck.
Working in technology, you probably make a lot of money. Could be wrong. $5 a month probably means more to the general population.
Personally, I feel far less privacy when making online payments and giving out my credit card or trusting some middle provider than I do when visiting a site that has ads which I can disable.
So you don't mind ads as long as they are completely random ads that you may not care about. But if they try to get some info about you to show ads that you might actually be interested in, then you are pissed? What!? What do you think they are doing with this information? All they are doing is catering ads to your preferences.
You raise an interesting point - that there is a tension between respecting the privacy of a user and making ads most useful to them.
That said, I don't think the rest of your post is well supported. Surely they are using the info to try and target ads, but what prevents them from using it in other ways (including selling it to other people who want to use it in other ways) if they think it can make them more money? Probably, most of these companies aren't going to knowingly sell it to anyone who will use it illegally because they could be culpable... but there are probably things I don't want done to me that don't involve actual illegality. An example off the top of my head might be feeding embarrassing info to a tabloid. And even that stays out of the realm of "what if things really went bad?"
What you cite as "my preference" is really "what the advertising backend has deduced I'm most likely to buy" - that's certainly better for the advertising company, very likely better for whoever's receiving revenue from showing the ads (averaged over all users because yes, targeted ads do work better), but it's not actually _better_ for me. From my point of view as someone who didn't actually want to spend any money, it's worse, because I'm now more likely to spend the money.
Bullshit. There are hundreds of extensions that block third-party cookies and any form of tracking; what we are talking about here is hurting any content creator who wants to monetize their content without creating a paywall and therefore dealing with customers, chargebacks, credit card fraud, marketing, ads (the irony).
No one is advocating anything except not tracking users. I already block ads like most people here. They are a vector for malware, they track users, they sell that data.
Make money by charging for content. I miss the old days when people had to pay for stuff with tangible money, not with their anonymity. I would gladly pay to access content I found useful, just no tracking. Be content with the money and move on. No need to profile me, sell my profile to make more money. I pay to use several sites. I also block ads on these site, because the third parties don't respect privacy.
I don't use the software in question. I only use AdBlock Plus and some creative OS-side tweaks under Linux to accomplish what I need. I don't need to use the software to go after ad companies.
I repeat myself: Its extremely naive to believe everyone who needs access to the content in the internet has a credit card to pay for every bit of it that they need.
First, not all ads attempt to track you or sell your data.
Second, it sounds like you would be well served by an ad blocker. Is there some reason why that's not enough and you have to actively try to destroy ad-supported sites?
When I go to McDonald's I don't have to pay for wear and tear on the roads because I already put gas in my car!
Wait, that is actually how it works. In US typically you pay more for the gas because it has rolled into its cost the cost of maintenance for the roads.
It is a flawed analogy line to begin with. But even here you can see how there are cases where this happens.
It would probably be more accurate to say that you get a free McDonald's if they can send one of their clowns home with you and he can watch you eat it and records everything. Here the author just block the clown from following him. And presumably would prefer to actually pay for a McDonald's sandwich.
(I personally would pay a negative sum for it, but that is just me).
I don't pretend to know what will come next, only that the UX and beauty of anything I do on a phone or a browser is severely diminished by the presence of ads. I will go to great lengths to make them go away.
For these reasons and more, it strikes me as likely that advertising as a business model has a limited shelf life. It will exist only so long as there is no better alternative and not one moment longer.
Strongly agree. Ads (and even ads placed by primary distributors and authors) hijacked the internet without permission from browsers/surfers and routinely have additional negative consequences. The reader doesn't need permission to defend themselves.
Ex-Advertising layout designer here for Hearst. Ads in a newspaper are typically laid out in a pyramid fashion to specifically avoid breaking up news articles into more difficult to read formats. 'Flow' is important when laying out every page. Ads on the web adhere to no such flow and often inhibit the experience of reading. Newspapers want their ads to be as unobtrusive as possible while still being seen. Advertisers on the web tend to scattershot ads and want to be seen at all costs without consideration for the viewer. I can easily skip the flow of ads in a newspaper only looking at those that interest me if I choose, I have no such options on the web and so block them all to be less distracted and able to easily digest content.
It seems like your complaint is about the poor design of news sites (which I generally agree with) more than it is a philosophical objection to advertising.
(There are some print publications with quite terrible ads too. Not everyone has the standards or resources of Hearst.)
These design principles were taught to me while I attended university and are not solely employed by Hearst. Publications that flagrantly disregard lessons learned from the past are horrible and obtuse to read. My point is that publications backed by experienced teams tend to adhere to these lessons, very few web publications could claim the same. Since advertising on the web is much younger, and lacking similar historical perspective, we have an intrusive system for advertising delivery. Advertising in a properly formed publication means the ad layout is determined by an experienced individual and attempts to strike a balance between obtrusiveness and visibility . It seems marketing divisions determine ad placement on the web more than it does in print media and visibility is held to be more important than being less obtrusive, the balance is way off.
Anyway, I'm not using adblock for the last few years because internet isn't that bad (at least the sites I visit). Before adblock it was awful and I think it was adblock that made it go away. Thanks to users ability to respond we have balance.
To see a single text ad? To see a series of gifs? To have an autoplay video start? To accumulate tracking cookies? To accumulate permanent flash storage? Permission to do some reverse lookup and call your phone? Permission to capture later browsing and re-write links in a i-Frame?
I am not currently using an adblocker/clicker (broke too many things). By a similar argument if the site doesn't want to serve content to those not reading they ads they can selectively choose not serve it. Isn't something being placed in public implying some permission? I really don't understand why so many people are unsympathetic to attempting to defend oneself.
>Isn't something being placed in public implying some permission?
It seems to me like it's a two way street. The site is implying permission to consume the content by placing it out there, we imply permission to have ads served at us by going to the sites knowing the ads are there.
If the site is serving up malware why patronize it to begin with? There is a distinction between an ad and malware.
The sites don't always know the ad servers have been compromised. A person visits a site, allows ads/3rd-party cookies, is surfing with admin rights, the ad servers gladly push their drive-by malware and ta-da... infected user. It's that simple...
Blocking ads, disallowing cookies (whitelisting), blocking the general ad industry is the only safe way. It's like sex: use protection.
Lets extrapolate this to the real world and see if implied permission works.
You actively walk into a bar. For what ever reason, you can't pay your bill so the bar owner break your leg as a lesson. Alternative, the bar owner will sell you into slavery so you can pay your bill.
Should we imply that you gave permission for all this by walking into the bar? What if there is a 400 pages long contract, which by entering, you silently agreed to by staying in the bar?
Implied permission created from non-action are a horrible concept that only exist on-line.
Your analogy doesn't make any sense. There are no implications since the already in place rules of commerce would preclude any ambiguity.
I'll throw you and your analogy a bone though. You walk into a bar, bars are smokey, you don't want to smell like smoke, but you want a cocktail more than you don't want to smell like smoke. You've implied that you're okay with smelling like smoke as long as you get your martini.
The rules of commerce exist outset the net, I fully agree on that. If we applied similar rules on the net, the implied permission will go away in favor of a common set of rules.
And that is what the EU is trying to do for private data. When it is illegal to track users, then users can't silently give permission by visiting the website. The whole question about implied permission goes away when rules of commerce specify what is and isn't allowed.
> There is no moral imperative for me to view ads since I've paid to access the Interwebs
I am not sure I agree with the implication, but I agree with the conclusion, for a different reason.
If I send an HTTP request to a server, and that server replies with content, this does not imply that the creators or publishers of that content have the right to dictate how I should enjoy that content on my own machine, or that I have any moral imperative to follow their wishes. I may be using an ad-blocker, I may be blocking images, I may be using lynx, I may be just saving it to view it offline later. It's my choice. If you do not agree, do not provide your content for free to anyone who asks.
There may be a moral imperative to support the creators and publishers of content you enjoy. This does not imply that it must be done via the convoluted route of viewing the content in a certain way so that a certain third party believes that a human mind has registered a certain message and pays the publisher for this.
While the spirit of this extension is good, it will ultimately harm the websites you frequent and like the most. Eventually those sites will get blacklisted from their ad networks due to what will be perceived as "fake clicks" (something ad networks are very, very sensitive to in order to guard against rouge site-owners clicking their own ads or having their buddies click). This extension will click the ads every time you visit the page, which is not a normal pattern, to say the least.
An ad network cannot tell the difference between a real click and a fake click based on the HTTP request itself. They have to rely on probability models to guess whether clicks are real or fake. The mere existence of an extension like this should prompt them to reconsider their options.
If you think about the ad model for print and broadcast media, they don't bother trying to track eyeballs. They know it's impossible. You pay for your ad to appear a certain number of times, and hope people pay attention to it. You can't know whether a specific newspaper gets read by a dozen people in a hotel lobby or lands on a driveway in the morning, to be trashed, unread, at night. If an ad runs on television, the advertiser doesn't know if it's being watched by the whole family, or just the dog.
That's why ratings services, like Nielsen, exist. People get paid to have their habits monitored, and those samples are extrapolated.
Ad networks can, if they so choose, blacklist sites based on a perception of "fake" clicks. Those sites are not necessarily responsible for fake clicks, and they certainly can't do anything to stop them. You would not, therefore be harming the site operators. You would be harming the ad networks that pretend that they know more about their own service than is possible.
Destroying the viability of pay-per-click is (arguably) something that would be an improvement in the world of HTTP publishing.
> An ad network cannot tell the difference between a real click and a fake click based on the HTTP request itself.
No they can't, however they can tell what is a real user and what is not. Real users don't click every single ad presented to them on every single page. Real users don't click ads as soon as a page loads. Real users don't click on all ads at the same or near-the-same time. (If this worked, without getting flagged/blacklisted, site operators would have built bots long ago to click their own ads as there is a lot of money to be made that way)
You absolutely will harm site operators. Ad networks do indeed blacklist sites that get high volume of perceived "fake clicks", whether they are fake or not. You will only harm the sites you like the most and frequent the most.
This is a very naive view of how ad networks operate, and a very naive approach to "solving this problem" (likely built by someone who has not worked with ad networks, nor has operated an ad-driven site, ie. someone with little to no experience in the domain they are trying to solve a perceived problem).
You really can't tell the difference between a real person who decides to click one ad per page view and a script that does the same thing. Whatever criteria you use to differentiate between fake and real can be reverse engineered and fed back into the robot to look more human.
Never mind about cyborgs, or script-enhanced humans, which are what users of this add-on will become. You can't even tell if a script was launched by a human or by another script.
It's the Iocaine Powder of ad-serving. The only way to win is to be immune to the effects of playing.
In this case, only ad-serving networks that do not change their visible behavior in response to clicks can win: no site-bans in response to visitor behavior, and no click-through bonuses or payments per impression. And that is the sort of ad network I find most tolerable.
Pay the site operator based upon sound judgement as to what the value of ads on those pages are worth, and toss the site traffic analysis in the trash. You need to have an actual human determining how popular a site is likely to be, because an automated script is never going to be able to differentiate between human and another automated script that knows--or can guess at--the first script's algorithms. Do it correctly, and you won't need to compensate for temporary spikes from HN, or Slashdot, or SomethingAwful, or a Chan, or an SEO firm, or anyone else. The ad campaign pays out according to the agreement, and if the site becomes permanently more popular, the operator and the salesperson renegotiate the rate afterward.
That involves actual ad sales employees with some familiarity with the subject matter. If you purely fight bots versus bots, the programmer with the most knowledge of the other guy's program wins. And in this case, that advantages the attacker more.
Do you know the difference between in-band and out-of-band signaling?
The ad networks are using an automated Turing Test based on statistical models to differentiate between "real" and "fake" requests. Until someone commits real dollars to make a purchase, there is no out-of-band verification of the requester's humanness. When you click the ad, your tamper-proof mouse does not take a tiny blood sample to verify that you are a real person, and communicate that via magical ansible to the ad network servers. Until the check clears on a purchase, the only data the ad networks have come through the HTTP requests, as in-band signals.
In-band signals can always be faked. Ask anyone who has ever blown a modified whistle from a cereal box into a phone handset, or modified a Radio Shack tone-dialer to produce the old payphones' "quarter inserted" tone.
So any script writer that either knows or can guess at the algorithms used to automatically sort "fake" from "real" can produce automated behavior that fools the automated sorter. What's more, those models are brittle. If the real behaviors of real humans change, such as by ad-blocking or running other response-modifying scripts, the models become decreasingly accurate classifiers.
A script that blindly clicks all blocked ads on a page is the tip of the iceberg. You can substitute the "click everything" strategy for a "click like a woman pregnant for the first time" strategy, or a "click like a male gamer, aged 17-25" strategy.
If web traffic ever has a significant number of browsers impersonating the browsing behaviors of other types of people with the help of scripts, ad networks can't trust any of their traffic to know "real" from "fake". That is an intractable problem for them.
You have to be able to verify a statistically significant portion of traffic as real humans before your models will work. And that is what Nielsen does with its consumer tracker devices.
People forget, we half-stumbled into this ad supported content idea. The only thing keeping it that way is inertia. I think we've finally started to feel the limits -- it means being tracked 24-7.
Are you doing anything about it? I mean, personally, I listen to about a half dozen podcasts, but haven't signed up for any of their monthly "donations" (most have re-occurring payments from paypal or amazon to help support the network/show). I do occasionally click through one of their product endorsements based on their review (often tagged with amazon affiliate links), so that is a small part.
I'd be interested in a "Kickstarter for articles" sort of site. Interesting article pitches presented to an audience, those that are most useful, interesting or unique are funded and writers get paid slightly more directly for their work.
The difficulty would be determining whether to cut off certain types of content from the site, and where the line gets drawn on extreme material.
Out of curiousity, if you were to go to one of your favorite sites that is currently ad supported, and the site admin presented a popup that states "We've detected you're using an ad blocker, we respectfully request not visiting our site." Would you respect the request or ignore it?
I wouldn't respect it. Because they publish a free content, and are taking advantage of many other Internet services, which provides them with free marketing - search engines, aggregators, social sites, etc. I can download their content and then display any subset I want - that is how WWW works. If they want to prevent me doing that, they should implement a pay-wall.
I believe that you and anyone else should not have moral reservations to visit any site with an adblocker even if they request you not to do that.
>free marketing - search engines, aggregators, social sites
But, judging from this quote you don't know what you are talking about. Search engines and social network traffic is anything but free in any category that has significant competition.
"Free marketing", doesn't make the creation of the content effortless. If you found an interesting article via Google or Twitter, (ostensibly) "free" marketing channels, does that mean the article magically popped into existence or did the journalist/content creator still have to put in time and effort to create it.
In the long run, ad blockers should evolve to become undetectable by websites. I don't see any way to reliably stop that from happening, without making the internet more Orwellian.
That said, I agree that if a website respectfully asks visitors with ad blockers to leave, then leaving is the nice thing to do.
Can you clarify, does that mean AdBlock Plus kills the http "request" as in your request to go the site is aborted (boo, no content), or the request that you not visit is automatically ignored (yay, free content)?
It's not the same thing, because leaving a tip doesn't cause any privacy or security issues. If all ads were just static images, no scripts/tracking, I wouldn't mind them.
Yes, I am not paying for the content, but the content creator also doesn't pay for the right to present his website publicly. It only pays for the webserver space and bandwidth. (I am following your logic).
World Wide Web works in a way, that I can create a http request, and then do what I want with it, for example I can only take the text and throw away anything else. I paid for the data transport, as you said, and then I don't have any other obligations after downloading those data.
However, I agree with you that display ad networks suck. I'm also not sold on the idea that the web should be free. The happy medium is to have users pay for content, making it so advertisers don't need to track users to verify that they're real humans, and improving the web for everyone except poor people.
One way that this could be done is to use bitcoin for tiny micropayments, billed frictionlessly. Rough for legal reasons among others, but ideas like this are sensible if only for human verification reasons.
If you want the web to largely free content, to pay for that you must accept privacy-destroying ad networks to bear that cost. We've created a situation where the choice is to free ride on other people, or to surrender privacy.
If you want the web to be largely teasers for paid content, then you can have significantly more privacy also. Instead of the articles being articles, you will get articles that are actually big ads for paid content (already the case for a huge number of popular search results).
Spreading tools like these kills free content like snaps fingers loudly that. I'm indifferent. Users might not be.
> I'm also not sold on the idea that the web should be free.
I see it exactly the opposite way. The web IS free, it works that way (unless someone erect a paywall, which I find perfectly acceptable), and no entity is entitled that the web should "provide" it a profitable business avenue. If someone successfully exploited the web and created a business relying on ads, that's fine, but he don't have an implicit right for that. Internet users are not obliged to display data he provides through http the way the creator expects.
As in, should most web content be free if more and more people are declining to have display advertising render properly in their browser? It can't be at scale and consistently without a revenue engine of some kind.
>If someone successfully exploited the web and created a business relying on ads, that's fine, but he don't have an implicit right for that. Internet users are not obliged to display data he provides through http the way the creator expects.
No, they're not. As this trend continues, the assumption that underwrites a lot of free content will stop being nearly as true. When the assumption stops being accurate, that business model fails, and more free 'content' winds up being ads gussied up as content. This is not exactly what the visionaries of the web had in mind, but them's the breaks.
In print, there are free publications handed out on street corners and in boxes. They tend to have low ad rates because the distribution is unverifiable. On cable, ad rates are still super-high, because the distribution is verifiable, and the cable networks have all the data they need about you on your cable bill + viewership surveys to aggregate for sale to advertisers.
Frictionless billing is harder than it sounds, because it opens the door to frictionless fraud. If I can automatically bill you for a thousanth of a dollar I can automatically do that hundreds of thousands of times. If it's with bitcoin I can obfuscate the destination of the money.
Agreed. Question is whether it's harder or easier than restricting traffic fraud, and if you can comply with know your customer laws and still protect privacy.
I wonder what the viability of setting up a subscription service proxy that mobile users (and others) could point their mobile phones to that strips out all the dreck? I know there are VPS offerings that do this. Webhosting companies do offer unlimited bandwidth, so theoretically, bandwidth is not a problem.
That is a good question. I would not use such a service because of the trust problems with secure communication.
Mmmmh, but I could use a proxy on my own server, through which I route my VPN traffic anyway. Of course, such a proxy product must be light-weight and easy to use. It should be a proxy that I can trust - OSS or self-written. It should enrich a page with a button which sends me to a block configuration for that domain - like that one you would get from a adblock plugin.... git init... ;)
As a workaround, you can use custom firmware (like DD-WRT) on your home router with a custom hosts file to block all ads. It takes some work and is only good for when you are home and connected to WiFi, but after you set it up it's great because all devices on your LAN are protected.
Sites love to view user history. It helps them build up a profile to sell to marketers. You want to deny sites access to this info if you can, In FF, you can do this by toggling to "false" layout.css.visited_links_enabled under about:config
I would prefer not to as I find this useful. What I'm really trying to determine is whether this setting alone is responsible for leaking history metadata.
I'm using Firefox with NoScript and I have Firefox set to clear everything except saved passwords when I close it (which I do frequently). I'm hopeful that is good enough because it looks like JavaScript is needed for the leak to occur, right?
The site has been down for years but you can find it on The Internet Archive.
wtikay.com
whattheinternetknowsaboutyou.com
There are some other sites that use the same or slightly different tactics to throw everything against the wall and see what sticks.
They read your history right out or your cache using timing or logic to know if you've already visited the sites in question they want to query for. They also read the color values of the links to know if you've visited that link before.
This was a known issue that someone brought up 10+ years, no 15+ years ago before we had Firefox and they were working on the not production ready Gecko codebase and still just trying to pass early CSS acid tests. Gecko builds early on had this issue and it was raised and to this day no one has fixed it.
No, I'm not a coder/developer as yet and it is over my head and I don't have the time to research it to devise a solution and send a patch upstream. If I could I have serious doubts it would be mainlined. I have the impression that many in the mozilla organization are for improving security and privacy but that some of them are MORE than happy to sacrifice our privacy for money or simply don't take things as seriously as others.
I found a bug report in bugzilla using google that I can no longer turn up regarding silent basic authentication for tracking:
http://user:trackingcookieaspassword@example.com/possiblymor...
This is proven and observable at http://ip-check.info.
In this bug report someone I believe who works with them submitted a test xpi authtest.xpi to negate/nullify/disable this exploit between sites and only allow it on the same visited domain.
The bug report can no longer be found and all current versions of firefox are still susceptible.
And while I'm at it, is there a way to prevent a website from rewriting a url when I click on it? sites like Google and DuckDuckGo show the actual url in the href, but when you click it (or right click and copy it) it becomes something like http://example.com/something?url=encoded_real_url and I detest that.
Blocking the referrer in Firefox is easy, just go to about:config and search for the string 'network.http.sendRefererHeader' then modify it from the default 2 to a 0 (zero).
This breaks some sites.
None I use.
I've read it is a problem for last.fm users because of some social chat thing they use I forget the name of.
Anyway.
I do this too, kind of.
I use either refcontrol or smart referrer.
I let sites have referrer on their domain but no 3rd parties by default and can add an exception if I want.
You can test this at http://ip-check.info regardless if you're using Tor or not.
I haven't found the time to do it my self yet but will if someone doesn't beat me to porting Window Name Eraser to firefox from chrome.
window.name is great for the site your visiting to use on their site. They have absolutely no business using it crossdomain, period.
Not even if they own the other domain. There are legitimate ways to do that but they are too lazy, dumb, or opposed to using encryption.
I will allow a fucking cookie if I want to login or allow them to store or gather anything!
No supercookies, no flash cookies, no evercookies.
I use cookie monster, cookie culler, cookie self-destruct, and Cookie Controller that applies my regular cookie rules/disposition to DOM storage cookies as well.
Browsers, all of them, should behave and act the way they do after I make them go all green on ip-check.info.
In addition to that they have no fucking business knowing what the monitor resolution is.
They ONLY need the canvas/inner window of the browser to render their damn site right.
I will pull down videos and watch them offline without flash phoning home or to anyone else to give them anything to fingerprint my devices with.
They aren't entitled to this information and I'm against them having it.
If I were like Carrie or the Twilight Zone kid who sends people into the Corn field and does other "fun" stuff they would have very good reason to be worried. >=/
Says a guy whose job is selling your attention to advertisers. As Sinclair said, "It is difficult to get a man to understand something when his salary depends upon his not understanding it."
The analogy is, of course, false, in that restaurants have a substantial marginal cost of production per meal consumed. Publishers today don't. A better analogy would be walking by and enjoying the smells coming from the kitchen, or looking in and appreciating their decor. A still-better analogy would be borrowing a friend's book to read, or reading something at the public library. Or, horror of horrors, listening to NPR without donating.
I have no intention of viewing your ads. I'd be happy to state that in an http header. Or you could detect it. Then you could serve me or not, as you wish.
I personally know troops who have shot insurgents several times with M4s at lethal ranges (less than 200') and they took the hits and kept fighting long enough to return fire. Those same insurgents hit with a 7.62 slug would be DRT. Full stop. There is a reason quite a few Marines and soldiers carried .357 revolvers in Vietnam. The reason was the stopping power. The 125 grain .357 traveling at 1400 FPS boasts 96% one shot stops on human torsos that are not armoured. The .357 is still the gold standard for handgun stopping power. Like you with your 1911, I'm a .357 guy. If I cannot do it with six, I need something belt fed. Plus, like a lot of guys I know, I favour a New York reload anyway.
Stay safe.