[ale] Blocking ad sites with ipchains

Glenn C. Lasher Jr. glasher at nycap.rr.com
Tue Jan 2 12:29:42 EST 2001 


Your suggestion would block *that very server* that resolves from
doubleclick.net, but not any servers that fit the pattern
*.doubleclick.net.  There is www.doubleclick.net, ad.doubleclick.net,
m.doubleclick.net, phase2media.doubleclick.net, ln.doubleclick.net and
ad.au.doubleclick.net.  Presumably more could be added at any time. BTW,
these resolve to 199.95.206.201, 208.32.211.200, 206.65.183.25,
208.32.211.200, 208.32.211.200 and 203.147.254.136 respectively.  
Obviously, it was desinged to be a pain in the ass.

On Tue, 2 Jan 2001, Wandered Inn wrote:

> smn wrote:
> > 
> > OK, I found it... from the IPCHAINS HOWTO:
> 
> > I don't want any local process (ie. Netscape, lynx etc.) to connect to
> > doubleclick.net:
> > 
> >      # ipchains -A output -d 199.95.207.0/24 -j REJECT
> >      # ipchains -A output -d 199.95.208.0/24 -j REJECT
> >      #
> 
> Old message, but I was looking at doing the same thing and had a
> question.  When I pinged doubleclick.net just now, the ip retured was
> 199.95.206.201, so the above would not work.  Question is, could one
> have had just one line:
> 
> ipchains -A output -d doubleclick.net -j REJECT
> 
> When looking at 'man ipchains'  '-d destination' says check out syntax
> for '-s source' which says the 'source' (destination for -d) can be
> either an address/mask, hostname, or network name.
> 
> Or does doubleclick pull some other kind of stunts such as using
> non-doubleclick domain names.
> 
> What if you were to put a doubleclick entry into your /etc/hosts file
> that points to your own server that then points to a null html file??
> 
> ????
> 
> OR
> 
> Would it be better to just write a perl script that strips references to
> doubleclick from the actual html?  Invoked via a proxy service?
> 
> 
> 
> --
> Until later: Geoffrey		esoteric at denali.atlnet.com
> 
> "Great spirits have always found violent opposition from mediocre minds.
> The
> latter cannot understand it when a man does not thoughtlessly submit to
> hereditary prejudices but honestly and courageously uses his
> intelligence."
> - Albert Einstein
> --
> To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.
> 

-- 
glasher at nycap.rr.com
After 163 days, Verizon still couln't deliver Telocity DSL.

--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.

More information about the Ale mailing list