Brief Introduction to the pop-up advertisement evolution and website Countermeasures of broadband vendors (DNS hijacking evolution)

Consequences of advertising by broadband vendors:

1: false or false, misleading users who cannot tell the truth, think it is the advertisement of the website itself.

2: users are bored.

 

Early broadband vendors advertised, DNS hijacking:

 

What is DNS used?

Only one function: according to the request of the domain name, the IP address is returned, so the DNS itself does not return an advertisement.

Broadband vendors use DNS to point to advertisement servers:

Although no advertisement can be returned, it can return a fake IP address and direct the IP address to its advertisement server, so the browser directs the request to the advertisement server of the broadband merchant.

 

Broadband vendor technology:

Due to the large volume of data, it is impossible for broadband vendors to use the advertising server's contemporary server to request data and then return it. Therefore, the most primitive method is:

Get a static page, use js to play the advertisement, set an iframe inside, and still return the request from the original website, so that the advertisement server will not be under pressure, and only process one static html.

 

It is basically similar:

<Html>

// The advertisement code of the broadband service provider, which is omitted ......

<Iframe src = "http://www.cyqdata.com"/>

</Html>

 

Such early advertisements were worn by hats on the heads of major websites.

 

Response Policy: 

1: complaints. (If there are too many complaints, the broadband Chamber of Commerce will stop making requests to a user, and the rest will remain the same ...)

2: Modify DNS. (There is no chance for broadband vendors to play)

Broadband vendors have evolved their advertising, and gateway hijacking:

 

What is a gateway:

Your router is the gateway (usually 192.168.1.1), and the data will be forwarded to the next gateway for reporting at the first level. For details, ask google.

 

DNS can be changed, Gateway hijacking, but this cannot be changed:

No matter who you are, what users you use, what resolutions you use, you are my users, and your data will go through the gateway of brother.

 

Technology is also about time and location:

In order to ensure a harmonious society, the upper layer provides instructions to send and return packets for security check.

It is a good opportunity to detect and add a randomly inserted advertisement to return. Don't miss it.

 

The code is similar to the following:

 

General:

 

 

Response Policy: 

1: complaints... (This is the only way for Internet users)

2: website Detection:

At the bottom of the website's output, add a small js section to check whether iframe is currently included. If so, destroy it.

Record the corresponding IP address of the ad server, and then guide the user to the page where the advertisement IP address is blocked. This allows the user to clear the website and prevent the user from coming out of the advertisement for the next time ..

 

For the autumn-style ad killer, currently only the shielding of domain names will be handled. In the next stage, the shielding of IP addresses will be increased, because most broadband operators are using IP addresses to advertise.