www.fabiankeil.de/blog-surrogat/2021/01/11/ksta.de-adblocker-erkennung-und-privoxy.html

Die ksta.de-Adblocker-Erkennung und Privoxy

Heute bin ich wieder als Adblocker-Nutzer erkannt worden und erneut war Fefes Blog die Quelle des Links.

Statt einer nicht passenden Anleitung zum Adblocker-Deaktvieren wurde allerdings gleich die Deinstallation empfohlen:

[Screenshot: ksta.de in Firefox. Cookies zustimmen. Bitte deinstallieren Sie Ihren Adblocker]

Um den "Akzeptieren und weiter"-Button zu sehen musste ich fast-redirects deaktivieren. Das sollte nur Privoxy-Nutzer mit aggressiven Defaults betreffen, aber die Änderung ist jetzt auch eingecheckt.

Anschließend konnte ich den Button nutzen und den Artikel auch ohne Deinstallation von Privoxy lesen:

[Screenshot: ksta.de in Firefox: Artikel-Überschrift 'Plattform Moodle Streikt']

Im Privoxy-Log habe ich vier Tracker gefunden, die durchgelassen wurden. Auch sie sind nun gesperrt.

Einer der Tracker wurde bereits vorher durch Filter stark komprimiert, der webbugs-Filter schlug gleich 13 mal an:

13:16:03.683 802adf000 Connect: Connected to 127.0.1.2[127.0.1.2]:9050.
13:16:04.292 802adf000 Connect: Created new connection to api.theadex.com:443 on socket 75.
13:16:04.306 802adf000 Connect: Performing the TLS/SSL handshake with the server
13:16:04.761 802adf000 Connect: Server successfully connected over TLS/SSL
13:16:04.761 802adf000 Connect: Encrypted request sent
13:16:05.511 802adf000 Header: scan: HTTP/1.1 200 OK
13:16:05.511 802adf000 Header: scan: Cache-Control: no-store, no-cache, must-revalidate
13:16:05.511 802adf000 Header: scan: Content-Type: text/html; charset=utf-8
13:16:05.511 802adf000 Tagging: Tagger 'content-type' added tag 'text/html'. No action bits update necessary.
13:16:05.511 802adf000 Header: scan: Date: Mon, 11 Jan 2021 12:15:58 GMT
13:16:05.511 802adf000 Header: scan: Expires: 0
13:16:05.511 802adf000 Header: scan: P3p: CP="CAO PSAa PSDa IVAa IVDa OUR UNI COM NAV"
13:16:05.512 802adf000 Header: scan: Pragma: no-cache
13:16:05.512 802adf000 Header: scan: Set-Cookie: axd=4248866896491805402; Path=/; Domain=theadex.com; Max-Age=7776000; Secure; SameSite=None
13:16:05.512 802adf000 Header: scan: Transfer-Encoding: chunked
13:16:05.512 802adf000 Header: Crunching incoming cookie: Set-Cookie: axd=4248866896491805402; Path=/; Domain=theadex.com; Max-Age=7776000; Secure; SameSite=None
13:16:05.512 802adf000 Header: A HTTP/1.1 response without Connection header implies keep-alive.
13:16:05.512 802adf000 Connect: Looks like we reached the end of the last chunk. We better stop reading.
13:16:05.513 802adf000 Connect: Done reading from server. Content length: 2705 as expected. Bytes most recently read: 1881.
13:16:05.513 802adf000 Re-Filter: De-chunking successful. Shrunk from 2705 to 2693 (-12)
13:16:05.514 802adf000 Re-Filter: filtering api.theadex.com/collector/v1/d/285/5184/cmframe/Lw0EHAiwAxA2GAIUhAK0AXaMBA?c=4248866896491805402 (size 2693) with 'img-reorder' produced 39 hits (new size 2693) (+0)
13:16:05.545 802adf000 Re-Filter: filtering api.theadex.com/collector/v1/d/285/5184/cmframe/Lw0EHAiwAxA2GAIUhAK0AXaMBA?c=4248866896491805402 (size 2693) with 'webbugs' produced 13 hits (new size 31) (-2662)
13:16:05.546 802adf000 Header: Removing: Transfer-Encoding: chunked
13:16:05.546 802adf000 Header: Content modified with no Content-Length header set. Created: Content-Length: 31.
127.0.0.1 - - [11/Jan/2021:13:16:05 +0100] "GET https://api.theadex.com/collector/v1/d/285/5184/cmframe/Lw0EHAiwAxA2GAIUhAK0AXaMBA?c=4248866896491805402 HTTP/1.1" 200 31

Wie Privoxy-Filter-Test zeigte blieb nach dem Entfernen der ganzen Webbugs nur noch eine leere Seite übrig:

The result of your filter is:

--- /home/fk/privoxy/privoxy-filter-test/original-538761656106547776-file-fetched.html	Mon Jan 11 13:30:18 2021
+++ /home/fk/privoxy/privoxy-filter-test/filtered-538761656106547776-file-fetched.html	Mon Jan 11 13:30:18 2021
@@ -1,3 +1,3 @@
 <html>
-  <body><img width="1" height="1" src="https://c1.adform.net/serving/cookie/match/?party=1010&amp;adx_id=285" /><img width="1" height="1" src="https://dsp.adfarm1.adition.com/cookie/?redirect=https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D14%26axd_fuid%3D%25%25COOKIE%25%25" /><img width="1" height="1" src="https://ih.adscale.de/adscale-ih/um/adex?cb=https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D4%26axd_fuid%3D__ADSCALE_USER_ID__" /><img width="1" height="1" src="https://audex.userreport.com/sync/put/adex?adexid=4248866896491805402&amp;redir=https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D216%26axd_fuid%3D%25s" /><img width="1" height="1" src="https://cm.g.doubleclick.net/pixel?google_sc&amp;google_nid=theadex_dmp&amp;google_cm&amp;axd_cuid=285&amp;c=4248866896491805402" /><img width="1" height="1" src="https://tracking.m6r.eu/sync/redirect?slashed/adexDmpUserId=4248866896491805402/target=https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D27%26axd_fuid%3D~~USER_BUYERUID~~" /><img width="1" height="1" src="https://match.adsrvr.org/track/cmf/generic?ttd_pid=theadex&amp;ttd_puid=285&amp;ttd_tpi=1" /><img width="1" height="1" src="https://ib.adnxs.com/getuid?https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D1%26axd_fuid%3D%24UID" /><img width="1" height="1" src="https://pixel.mathtag.com/sync/img?redir=https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D10%26axd_fuid%3D%5BMM_UUID%5D" /><img width="1" height="1" src="https://cms.analytics.yahoo.com/cms?partner_id=ADEX&amp;axd_cuid=285" /><img width="1" height="1" src="https://ws3.rqtrk.eu/pushpull?pid=78d82136-5780-45e0-88f1-39bc1d563741&amp;dmp=theadex&amp;return-unstable=true&amp;uid=4248866896491805402&amp;redirect=https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D90%26axd_fuid%3D%24BROWSER_ID" /><img width="1" height="1" src="https://sync.smartadserver.com/getuid?url=https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D59%26axd_fuid%3D%5Bsas_uid%5D" /><img width="1" height="1" src="https://trc.taboola.com/sg/adex/1/cm?redirect=https%3A%2F%2Fapi.theadex.com%2Fcollector%2Fv1%2Fd%2F285%2F5184%2Fi%2F2.gif%3Fc%3D4248866896491805402%26axd_pid%3D262%26axd_fuid%3D%3CTUID%3E" /></body>
+  <body></body>
 </html>
Fabian Keil
www.fabiankeil.de/blog-surrogat/ fk@fabiankeil.de
$Id: ksta.de-adblocker-erkennung-und-privoxy.html,v 1.2 2021/01/11 15:58:19 fk Exp $