#898 privoxy-3.0.21 false positive, apple.com and bahn.de broken

current actionsfile
pending
5
2014-09-30
2013-04-25
cilly
No

Crunch: Blocked: http://metrics.apple.com/b/ss/appleglobal,applehome/1/H.25.2/s58171400618739?AQB=1&ndh=1&t=25%2F3%2F2013%2019%3A16%3A24%204%20-120&cl=63072000&pageName=apple%20-%20index%2Ftab%20%28us%29&g=http%3A%2F%2Fwww.apple.com%2F&cc=USD&ch=www.us.homepage&server=new%20approach&c4=D%3Dg&c5=macintel&c6=D%3D%22%3A%20%22%2BpageName&c9=10.8.x&c14=apple%20-%20index%2Ftab%20%28us%29&c15=no%20zip&c17=59%3A59&c19=flash%20not%20detected&c20=non-store%20kiosk&c25=global%20nav&c28=710&v43=mac&v44=705&c49=D%3Ds_vi&h1=www.us.homepage&s=1280x800&c=24&j=1.6&v=N&k=Y&bw=1279&bh=705&p=Flip4Mac%20Windows%20Media%20Plugin%3BiPhotoPhotocast%3BJava%20Applet%20Plug-in%3BQuickTime%20Plug-in%207.7.1%3BSharePoint%20Browser%20Plug-in%3BWebKit%20built-in%20PDF%3B&pid=apple%20-%20index%2Ftab%20%28us%29&pidt=1&oid=http%3A%2F%2Fwww.apple.com%2Fmac%2F_1&oidt=1&ot=A&oi=1&AQE=1

Crunch: Blocked: http://t.bahn.de/b/ss/dbbahnprod/1/H.25/s52422122438438?AQB=1&ndh=1&t=25%2F3%2F2013%2019%3A33%3A4%204%20-120&ce=UTF-8&ns=deutschebahn&pageName=BAHN_ASK_DEU_DE_BAHN_AuskunftVerbindungenHinfahrt&g=http%3A%2F%2Freiseauskunft.bahn.de%2Fbin%2Fquery.exe%2Fdn%3Fld%3D96240%26seqnr%3D2%26ident%3Dbc.05247240.1366910834%26rt%3D1%26rememberSortType%3DminDeparture%26HWAI%3DJS!ajax%3Dyes!%26REQ0HafasScrollDir%3D1&r=http%3A%2F%2Freiseauskunft.bahn.de%2Fbin%2Fquery.exe%2Fdn%3Fld%3D96240%26seqnr%3D1%26ident%3Dbc.05247240.1366910834%26rt%3D1%26OK&cc=EUR&ch=BAHN_ASK_DEU_DE_BAHN&events=event2%2Cevent45&c10=BAHN_ASK_DEU_DE_BAHN&v10=BAHN_ASK_DEU_DE_BAHN&c46=L01_S01_D001_KIN0001_qf-bahn_LZ003%3EBAHN_ASK_DEU_DE_BAHN_AuskunftVerbindungenHinfahrt&c48=ASK_INFO_ohne%2CASK_INFO_ohne%2CASK_INFO_ohne&s=1280x800&c=24&j=1.6&v=N&k=Y&bw=1279&bh=705&p=Flip4Mac%20Windows%20Media%20Plugin%3BiPhotoPhotocast%3BJava%20Applet%20Plug-in%3BQuickTime%20Plug-in%207.7.1%3BSharePoint%20Browser%20Plug-in%3BWebKit%20built-in%20PDF%3B&pid=BAHN_ASK_DEU_DE_BAHN_AuskunftVerbindungenHinfahrt&pidt=1&oid=javascript%3Acalman.toggleDisplay\('callink0')%3Bvoid(0)%3B&ot=A&AQE=1

Discussion

  • cilly

    cilly - 2013-04-25

    Description:

    on apple.com links aren't clickable
    on reiseauskunft.bahn.de the search fields are broken

     
  • cilly

    cilly - 2013-04-25

    Adding .apple.com and .bahn.de to fragile list solves the problem.

     
  • cbug

    cbug - 2013-04-27

    I can't confirm this.
    reiseauskunft.bahn.de search and ordering works fine for me.
    Posted links are 2x2p images. I dont think that they are the reason.

     
  • cilly

    cilly - 2013-04-28

    @cbug

    Try it with Apple Safari. The above link seems to be special with Safari browser only.

     
  • cbug

    cbug - 2013-04-28

    Looked into it. Also in Safari both links you posted are tracking pixels.

    Those omniture scripts are loading the blocked image. And since it 403, they stop working. While Firefox seems to ignore this, safari stops running javascript.

    You can try this block, and tell if it works for you, too. Be sure to delete safari cache.

    {+block{testblock omniture}}
    #http://images.apple.com/metrics/scripts/s_code_h.js
    /metrics
    #http://www.img-bahn.de/v/1000/js/s_code.js
    /(.*)s_code.js

     
  • Fabian Keil

    Fabian Keil - 2013-05-01
    • assigned_to: nobody --> fabiankeil
    • status: open --> pending
     
  • Fabian Keil

    Fabian Keil - 2013-05-01

    Thanks for the report.

    It's not clear to me either, why those two URLs shouldn't be blocked, though.

    Please provide a log excerpt as described at:
    http://www.privoxy.org/user-manual/contact.html
    that shows that the URLs don't lead to tracking pixels on your system.

     
  • cilly

    cilly - 2013-05-08
    • status: pending --> open
     
  • cilly

    cilly - 2013-05-08

    privoxy-3.0.21
    gentoo linux
    Safari Version 6.0.4 (8536.29.13) on Mac OS X 10.8.3

    url: http://www.apple.com and http://reiseauskunft.bahn.de

    debug 32768 # log all data read from the network

    logfile: see attached file

     
  • cilly

    cilly - 2013-05-08

    logfile 20130508

     
    Attachments
  • cilly

    cilly - 2013-05-08

    @cbug

    your workaround:

    {+block{testblock omniture}}
    #http://images.apple.com/metrics/scripts/s_code_h.js
    /metrics
    #http://www.img-bahn.de/v/1000/js/s_code.js
    /(.*)s_code.js

    solves the issue for those sites.

    I can confirm, that if you change the user agent string in Safari to Firefox, then the site is working.

     
  • cilly

    cilly - 2013-05-08

    There is another site containing such tracking images:

    http://p4.focus.de/fol/js/s_code_focus.js

     
  • cilly

    cilly - 2013-05-08

    There are still some other files:

    http://hints.macworld.com/s_code.js

     
  • Fabian Keil

    Fabian Keil - 2013-05-14
    • status: open --> pending
     

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks