rickadams.org

Rick Adams' little corner of cyberspace on the Whirled Wide Web.
Text and graphics copyright © 2006 by Rick Adams. All rights reserved. Opinions expressed are my own. Contents may settle during shipment. Not valid in sectors R and M. Do not operate heavy machinery after reading.

Welcome!

Formerly an investigative news reporter and video game programmer, I now do web programming and design. My other main interests are playing guitar, learning Japanese, and Japanese animation.

Features
The usual main sections of my website:

"The Eyes Have It."
Colossal Cave Adventure.
Yggdrasil Radio.
Challenger's Final Minutes?

Rick's journal

As a bit of election-year skullduggery, some clown registered what you might expect to be website names for DFL candidate for MN Attorney General Lori Swanson, "loriswanson.com" and "loriswanson.org," and redirected them to http://www.johnsonforag.org/, the website of her Republican opponent.

An obvious dirty trick, said the Swanson campaign, demanding that the Johnson campaign immediately "block" those sites. The Johnson campaign immediately responded that since they don't own or have any control over those website names, that would be impossible.

Ah, but that would be child's play, countered numerous tech-savvy observers, including the proprietor of this blog, who said, "I don't know why they couldn't contact their ISP, Hosting Matters, and have them block all HTTP requests coming from the loriswanson sites."

But it turns out it's not that simple. When you are on site A and click on a link to site B, you don't zoom through a tunnel from site A to site B... your computer disconnects from site A, and then your computer connects to site B.

If you follow a link, though, there IS one thing in your connection to site B that marks it as being "from" site A... a field in the request called HTTP_REFERER. However, in the case of a server redirect, which is the method being used to redirect the traffic for this little trick, this field does not appear. There is NOTHING in the request to distinguish it from a normal visit to the webserver by someone who legitimately wanted to visit the Johnson website.

I, too, thought it would be the work of a moment to block traffic from the bogus Lori Swanson sites, and confidently coded up a PHP script to do it, thinking to give it to the tech people at the Johnson campaign. Then I went to test it. After an hour of cursing and various experiments, I concluded it was impossible.

What is there in the request that would do the trick? REMOTE_ADDR? No, that's the IP number of the computer coming to the Johnson website, either because they went to the correct website or one of the bogus ones.

If the prankster had simply pointed the DNS name to the Johnson website, you could filter on the HTTP_HOST field in the HTTP request. Alas, they didn't do it that way... they actually bought web hosting, pointed the names there, and put up a page that does a redirect to the target website.

I have to remind myself that "Any sufficiently advanced stupidity is indistinguishable from malice" (my own conflation of Hanlon's Razor and Clarke's Law), but it does seem interesting that someone spent extra money to implement this trick in a way that would be impossible to block.

It's also interesting that the blog referenced above alleges that one of the bogus Lori Swanson sites earlier linked to a DFL website instead of the Johnson campaign, as it does now. No, it doesn't prove anything one way or the other, but it is intriguing.

Previous journal entries...

Site design, content and graphics by Rick Adams. But you knew that.