BenAnderson.net

a window into my world.
 
 

Fair Eagle taking over the world? ISPs being compromised or just cheap?

by Benjamin Anderson 12. June 2007 20:59

Updated July 25th, 2007

I've noticed something recently; there has been an overwhelming number of Fair Eagle ads showing up all over the place.  This occurs on my Mac and my PC and after investigating the issue further I've found that the ads are being appended to all .com domain HTML requests.  It appears that this is the result of a proof of concept from an advertising agency which will append the JavaScript for the advertising to every .com site's HTML.

The code is on every website from penny-arcade to apple.com, but it doesn't always show the ads.

image

This really frustrates me, and to an extent is a violation of our contracts with the ISPs.

It’s a possibility that the proof of concept uses an exploit for firewalls or other networking equipment, but I just feel violated.


I’ll post more when we find it.

Here is the JavaScript being appended to the HTML files:
<script language="JavaScript">
nebuad_c="P10025";
nebuad_d="00000046";
nebuad_u="3464188158";
nebuad_v="1.2";
nebuad_ts="1182529944";
nebuad_g="6286";
nebuad_p="aHR0cDovL3d3dy5tc24uY29tLw==";
</script>
<script language="JavaScript" src="http://a.faireagle.com/a?t=s&c=P10025&d=00000046&u=3464188158&v=1.2&ts=1182529944&g=6286&p=aHR0cDovL3d3dy5tc24uY29tLw=="></script>

 

Update: It turns out this a is a hardware solution for ISPs to make backend revenue.  Apparently the money you pay for their service isn’t enough.  This is the case for both personal and business customers of Redmoon in DFW.

More info can be found here:
http://jaiku.com/channel/twit/presence/4880265

Update 2: They have turned the ad injection off.  As to whether or not the hardware is still sitting on their network and sniffing out data, I don’t know, but the ads are gone.  Either way this has left a bad taste in my mouth and I plan to switch providers.

Update 3 (July 25th): The University of Washington security and privacy research group and ICSI have created a measurement infrastructure to help answer these questions. By visiting their web page, you are helping out with our experiment. http://vancouver.cs.washington.edu/

Update 4 (July 16, 2008): http://arstechnica.com/news.ars/post/20080715-congress-goes-after-nebuad-again.html

Currently rated 5.0 by 1 people

  • Currently 5/5 Stars.
  • 1
  • 2
  • 3
  • 4
  • 5

Tags: , , ,

Categories: mental dump | webhosting

Permalink | Comments (4) | Post RSSRSS comment feed

Comments

Sponser

I review for BookSneeze

About the author

Benjamin is a software developer for an solutions provider in Allen, TX.  He spends his free time playing video games, programming, doing graphics design and photography, and reading.

Page List

    Books I'm Currently Reading

    Pagan Christianity?: Exploring the Roots of Our Church Practices by Frank Viola & George Barna
    Microsoft® .NET Framework Application Development Foundation by Tony Northrup
    Professional Team Foundation Server by Jean-Luc David
    Everyday Greatness by stephen covey
    Programming Pearls by Jon Bentley
    Hacker's Delight by Henry S. Warren
    Flickering Pixels: How Technology Shapes Your Faith by Shane Hipps
    Less Clutter. Less Noise.: Beyond Bulletins, Brochures and Bake Saless Your Faith by Kim Meyer
    Young Guns: The Fearless Entrepreneur's Guide to Chasing Your Dreams and Breaking Out on Your Own by Robert Tuchman
    The Snowball: Warren Buffett and the Business of Life by Alice Schroeder

    Categories

    Tags

    © 2005-2008 Benjamin Anderson. All rights reserved. Powered by BlogEngine.NET 1.4.5.0