Hacker News new | past | comments | ask | show | jobs | submit login
FBI recommends using an ad blocker (2022) (ic3.gov)
297 points by ysabri 33 days ago | hide | past | favorite | 223 comments



It's always an insane experience when you hop on someone's laptop/PC who has zero ad blocking installed.

POV:

https://m.youtube.com/shorts/iV3js9pd5IE


I have a confession to make. I don't really have ad-block. If your site is too ad-infested, I stop using it.


This is one thing I really like about Kagi - I don't have to remember which sites to not use due to ads, I simply add the site to my account-wide block list, and I never see it in search results again.


One can achieve the same thing for any website, not just their search results, with the browser extension 'uBlock'.

Yes, you have to write a pattern. It saves you money while not supporting the erosion of autonomy. What's better than free vegetables? Delivery.

I'm away from my computer right now but I'll copy one of mine later/reply with it. The edit window here is unfortunate.


Just missed the edit window! I'm here to deliver. Two kinds, either will be accepted in the "My Filters" section of the plugin. Edit as desired, the domain is just a recent example.

Eradication/filtering:

    ##a[href*="eng-leadership.com"]
Shown, but blocked on-access:

    ||eng-leadership.com^$document
To keep the hacker spirit alive, I leave the reader with an exercise. Consider other approaches or HTML tags. Anchors aren't their only vector, hence the document method.

HN has a 'hide' button that could be leveraged for nicer integration, removing related widgets.


Thank you for sharing, I'm sure people will find this useful. An extension is not very helpful for my needs though. I often use public computers at a local makerspace, and it is much easier for me to scan a QR code to sign in and then close the incognito browser when I'm done than it is for me to carry around my uBlock configuration.

Solving my problem the "hacker way" would essentially be reimplementing Kagi, or hosting a service to do it. I already host Open WebUI and that is really moving along; maybe it can replace my Kagi needs someday, but for now I am pretty happy with continuing to use Kagi.


Totally reasonable, thank you for explaining!

Again, my ultimate goal really is autonomy. There is still hacker spirit in your approach, fighting the status quo. It has my general support, even if I'm not a customer

I just wanted to remind people to look more nearby/within, too. This isn't a battle won once


It's been years since I've seen a Pinterest result for a query like "C++ variadic template"

That alone is worth the price of admission


Some nice user control features.


Ad-blocking is also about controlling what resources are loaded and executed by your computer. You won't know you were subject to a drive-by 0-day until it's too late and your computer is a botnet or your bank account drains. Not blocking ads also normalizes predatory ad-tech surveillance.

There is a lot more going on beneath the surface of just "annoying ads in my face" which need to be accounted for, since browsers do not ship with effective, granular security controls.


I do that too when my adblock is a little behind the adversary


Typically people with this attitude have no-JS or something though for privacy reasons. That would cut a lot of ads down.

Or do you not use any blockers at all?


I used to, I don't even bother with any of that. If I really need to I maybe bust out reader mode on Firefox, but very rarely.

Especially at work most sites I visit aren't ad infested hellscapes, like StackOverflow and its relatives are not ad infested, neither is wikipedia, etc.


That feels like a pretty fair approach.

If you don’t mind, I’m truly curious why you don’t Adblock? There’s no wrong answer here. ;)


I don't use one either. I actually think ads are a good system for supporting content, and I do want to support the creators of the content I consume.

I also have a low threshold for obnoxious sites, and will just bail and not return if I get annoyed.


Do you ever make a purchase due to having seen an ad, ideally by clicking on the ad? If not, then in some sense you're still getting something without paying for it. (You're paying with your time, but that's not valuable to anyone unless it ultimately results in paying with money.) But better to screw the people pushing ads than the content creators!


I would say not very often, but yes, very recently even. I've been researching new backpacking gear this summer, looking on sites that are known to me, so I've been seeing lots of ads for that type of stuff naturally.

One store kept popping up that I was not familiar with. So I clicked eventually, and did some online searching about the company to make sure they are legit.

Turns out they are a local independent store. I've made two purchases from them since, and price compared against them for other purchases. Their ads are more likely to catch my eye in the future now.


> I've been researching new backpacking gear this summer, looking on sites that are known to me, so I've been seeing lots of ads for that type of stuff naturally.

"naturally"


I personally have a long list of products not to buy. If you somehow repeat the same ad and I remember your product, I stop buying said product. If youre wasting your money on spamming ads, your product sure as shit isnt better than competitors', since they waste less on ads, more on product. I dont use ad blockers, they make it harder for me to find out who has the poorer product.


Wow, that sounds like a ton of work. I think a better idea is to use an ad-blocker, but run a program in the background that downloads the ads (or maybe just samples them, to save bandwidth and resources), processes them to find brand names, and then stores these brand names in a database so you can find their relative frequency and assign a score to each. Then you can just query the db when you want to buy something to find that brand's acceptability score.


Not the GP you are asking, but I do not use an ad blocker because I predominantly use Safari as my browser. I would absolutely love one, but after Apple made all those API changes years back, I gave up trying to find one that works well and is privacy friendly.


Check this out: https://kaylees.site/wipr.html. It's no UBlock Origin, but it still does an excellent job on many sites.


How do I know tools like this don’t send data home? Does Apple’s API work in a specific way to deny that?


AdGuard is pretty good when it comes to Safari, and has a way to convert uBlock-style rules into the Safari blocking framework (well at least as much as it can), so you can use Easylist/etc.


Why don't you just use a different browser that gives you more control?


I find the ecosystem integration and cohesion to be the most compelling reason. Everything "just works." Apple keychain is good enough that I stopped using other password managers and works great with Safari, Messages.app and Mail.app integrate well with Safari, AppleScript works well with Safari, etc..

I do have other browsers, but I only use them for specific needs. Like I keep some version of a Chrome-based browser around solely for if I need to Chromecast something. Other wise, I do not enjoy using third party browsers like Chrome, Firefox, etc., which I use at work all day.

Safari's web developer tools are not my favorite compared to other browsers, so I try not to develop much with Safari other than testing.


The changes Apple made were to increase privacy. Content blockers that have access to the page have no network access. A separate process that does can only update the blocking rules.

I quite like Ka-block


"The changes Apple made were to increase privacy"

Apple gobbles personal data too and processes it and sells it etc. They are simply rather better at looking ... friendly. They really are very good at that.


Where is Apple tracking your usage across the web? This data is sold to who? These are big claims.

Disclosure: I work at Apple, and have seen zero evidence of anything but trying to make things continuously more secure and private. This in fact makes my job (machine learning) much harder because I don’t have user datasets to leverage.


> Apple gobbles personal data too

What data and how do you know? This seems to be a popular talking point, but I’ve yet to see evidence. It doesn’t make that much sense to frame Apple’s privacy stance as similar to Google’s or Facebook’s. Apple isn’t an ad business, and Google and Facebook are, plain and simple.

I don’t work for Apple, and I don’t use an Apple laptop or desktop, but I don’t buy this Apple is as bad as businesses that are primarily built on ad revenue and are actively eroding privacy. I’m sure they’re not perfect, but I feel like Apple is relatively serious about privacy, making real changes that generally protect consumers, and setting a better example than many big tech companies. Are you sure they don't look better because they really are better?


>I’m sure they’re not perfect, but I feel like Apple is relatively serious about privacy, making real changes that generally protect consumers

Then why do they push their crappy browser on iOS which doesn't allow ad-blockers?


You’re making assumptions. There’s lots of reasons Apple might want to make their own browser to go with their own OSes, and protecting their users from Google is one of them. Controlling their own software and hardware stack is another, and Apple is famous for this. Another one is providing better user and developer experiences. Better user experience is very debatable, since as an ex web developer, I’m aware of some of the ways Safari sucks and fails to meet standards or behave like other browsers, at least as of five years ago. Standards support is better now. Safari was the first browser to have 60fps scrolling, and developing iOS and web apps with Safari dev tools is the only option, that’s not something Chrome or Firefox do for you.


If their own browser that they force on everyone doesn't support ad-blockers, and they don't add ad-blocking to that browser themselves, then I don't see the difference: they're preventing users from blocking ads, and in effect forcing ads on their users. Their justifications are irrelevant.

Even Google (the biggest ad-tech company) isn't that bad: they obviously don't make an ad-blocker themselves, and they've worked against ad-blockers in the Android Chrome browser, but they don't do anything to stop users from installing an alternative browser which supports ad-blocking. You can install Firefox directly from the Google Play store. (Note that the same is not true for ad-blocking alternative YouTube clients like ReVanced or SmartTube, but you can't use those on iOS either of course. And even here, while Google won't allow them in the Play store, you can simply install them directly from the .apk files, something you can't do on iOS.)

By preventing users from exercising choice, Apple has taken on responsibility for them not being able to avoid ads.


As already mentioned in this thread, Safari does allow ad blockers, your premise is false. And even if they didn’t, there’s an absolutely massive difference between not being able to block ads and being the company both selling the ads and the browser that is engineering away your privacy.

Safari does take active steps to prevent tracking that Chrome does not. Apple has not actively worked against ad blockers the way Google has. And Apple also allows you to install a different browser on iOS, Google doesn’t get any gold stars for not preventing third party browsers on Android.

Google has a conflict of interest between your privacy and their primary source of revenue. That’s not true for Apple. Google isn’t that bad?!? Hahahaha BTW you moved the goal posts, the claim you were implicitly defending was that Apple was collecting and selling private data themselves. Nothing in this thread so far backs up that claim.


>As already mentioned in this thread, Safari does allow ad blockers

Does it? Then why do all the iOS users complain about having to watch YouTube ads? Sounds like it doesn't allow good ad-blockers.

>And even if they didn’t, there’s an absolutely massive difference between not being able to block ads and being the company both selling the ads and the browser that is engineering away your privacy.

This is completely wrong. If (for the sake of argument) iOS definitely didn't allow ad-blocking, then that makes them worse than Google, and it does mean they are "actively working against ad-blockers". If they weren't working against them (in this scenario), they wouldn't disallow them.

>And Apple also allows you to install a different browser on iOS

No, it doesn't. It only allows re-skins of Safari.

>Google doesn’t get any gold stars for not preventing third party browsers on Android.

Yes it does. Let me know when I can side-load an open-source ad-blocking YouTube viewer app on iOS, or even just installing the browser of my choice (not a re-skin).

>Google has a conflict of interest between your privacy and their primary source of revenue.

Sure, but they also allow you freedom with Android devices, and that's something you'll never get with Apple.

> the claim you were implicitly defending was that Apple was collecting and selling private data themselves.

I never defended that particular claim. I only made my own tangential claims.


> It only allows re-skins of Safari

This is irrelevant, you’re confusing the engine and the browser. Chrome on WebKit is not a re-skin of Safari, it’s a Google browser, and it’s Google’s choice to not support ublock Origin on iOS, but nice try. Plus you missed the news that non-WebKit engines are now allowed in the EU and it’s only a matter of time before it spreads.

Google has announced their intention to stop serving YouTube content to anyone using an ad Blocker. Maybe soon you’ll see first hand how misguided and silly your argument against Apple is.

> Does it? Then why do all the iOS users complain…

Weird, it seems like we just had this conversation. That question was asked and answered. Did the fact that Apple does allow ad blockers, and the difference between the YouTube app and the browser not make sense the first time we talked about it?

BTW, the first Google autocomplete response I get for “how to block youtube ads on” is “Android”. That is evidence that more Android users complain about YouTube ads than iOS users.

P.S. who puts the ads on YouTube that you’re complaining about and makes them hard to skip or block? Oh, right, Google.


Safari does allow ad blockers.


It does? I see constant complaints online from iPhone users asking how to, for instance, block ads on YouTube, only to be told "buy an Android and install Firefox" because ad-blockers on iOS don't seem to do this.


Are you talking about the browser or the YouTube app? Most iOS users watching YouTube use the YouTube app, not the Safari App, so they’re obviously asking how to block ads because the app isn’t a browser, not because Safari doesn’t allow ad blockers.


I'm talking about the browser. On Android, you can install Firefox + uBO and watch YouTube without ads. You can also install another handy extension so you can turn off the screen and the video won't pause, so you can listen to music on YouTube that way. You can't do this stuff in the official YT app.


> You can’t do this stuff in the official YT app.

So? That’s true on Android too. If you want to use a browser with an ad-blocker, you can on iOS, just like on Android. What’s your claim again?


This poster saw someone answer a question about iOS with “buy Android” so that must be the only possible solution.


1Blocker will block ads on YouTube on safari and has a local proxy that might work on ads in the app (not sure don’t use the app)


Yes. It does.

Android partisans will answer questions the way Android partisans answer questions I.e. buy Android.


I don't think Apple (or Google, Microsoft, …) sells your data. Or can you point me to the website where I can buy user data from them?

What I would admit is that Apple is maybe not as motivated to protect your data from unintentional leaking. Without user data, Google would be almost nothing. So they have to be extremely careful to maintain the trust of their users. For Apple (or Microsoft) their business is still sizeable enough with out user data.


I use the DNSCloak app and run the Adguard DNS VPN from their list. It is free and blocks many ads in safari.


NextDNS, Adguard, Wipr are a few that work.


I use 1Blocker


After the first scandal about one adblocker being bought out, and letting by Google ads, I tried the next one in the list, then kept hearing about the issues, and then I realized, I am better off just not visiting sites that:

A) Want me to pay to view a one-off article B) Want me to not see any of their content cause its ad infested.

To be fair, if Firefox's Reader Mode doesn't suffice as a bypass, then I really don't bother coming back.


There might be...


Because I don't know how to install one nor do I have any interest in learning how.


Makes sense. Pretty sad people think that’s downvote worthy. It reminds me how easy it is to be ignorant to users. :(


What's an example of a site that is on the high end lft amount/style of ads that you tolerate?


Good question, if I can't read the article whatsoever, then that's my time to leave. I don't mind ads, but if they take up all of the content, then its just not worth it. If you trick me with ads as if it were content, like some download sites do, I hate you.


It’s a good way to support sites that respect the user experience while steering clear of those that don't.


Yup, same here.


By then, its too late if there was malware on there.


If there was, I'd be really surprised if they built it to know how to run on an OS that isn't Windows dynamically.


It's no wonder people have gotten a lot more ignorant and less observant when they have to constantly fight the bombardment of their attention by unwanted distractions.

In that situation of using someone else's device, I've had to move windows half off the screen to be able to concentrate on an article when the ads on the side were constantly distracting me.


Ads teach to not pay attention.


Funny how here's HN, a site full of Software Engineers complaining about ad bombardment, and every single one of those ads were programmed by... a software engineer! We (as a profession) are the ones doing this! "Oh, but boss told me to do it!" some will say, as if it's a good excuse. Regardless of which manager told which developer to do it, at the end of the day, a developer typed in the code and pushed it to prod. We're at least partially to blame for what the web has become.


Despite what management might think we are not interchangeable parts.


This is completely meaningless. In any population big enough theres going to be a high variance in behaviours, including morality. Expecting all individuals in a huge collective to all behave "good" with little / no inforcement is incredibly naive at best and dangerous at worst.

Not only that, but you're wrong on a technicality too - > and every single one of those ads were programmed by... a software engineer!

Many ads are designed by creatives and placed and run by dedicated non-software engineering people, including deciding how many are run and their placement (i.e. bombardment or not). Sure engineers programmed the platform, but then you're just blaming the post office for the content of the mail, or the ISP for the content of the internet. What do you expect the software engineers to do? Limit 1 ad per page programatically and then every software engineer on earth must agree to enforce that limit and no matter how much pressure their superiors put on them, everybody holds the line?

This is not a rhetorical question, How do you expect all software engineers to be unified on a single solution to ad bombardment, given the internet is international, driven by market dynamics and capitalism and a non-trivial number of programmers are beholden to tyrannical managers because of their life situation (it can still be a minority, and ad bombardment emerges)?


> This is not a rhetorical question, How do you expect all software engineers to be unified on a single solution to ad bombardment, given the internet is international, driven by market dynamics and capitalism and a non-trivial number of programmers are beholden to tyrannical managers

By developing a consensus that it is not ok to do that type of behavior (bombardment of ads, surveillance capitalism, etc) and changing the culture


> By developing a consensus that it is not ok to do that...

That sounds cool...but such coordinated, idealistic behavior never occurs in human beings.


Yes it does- it happens all the time. It happens through talking about it publicly and coming to agreement.


Maybe we can apply this line of reasoning to crime too...


We do, and it mostly works


So there's no criminals now? News to me!


There are still criminals, but did you commit a crime today? How about your friends and family?


I don't understand your point. You say you want to change the culture, and that this has successfully been done in the case of crime, but this is blatantly false: every country has prisons with many criminals in them. In the US in particular (since most HNers probably live there), there are well over 1 million people in custody according to a quick google search, and over 5 million in corrections (so I assume most of those are on parole). Obviously, changing the culture hasn't worked, for there to be so many prisoners, and crimes committed so often that so many police officers are constantly needed. If your "change the culture" thing had worked, you wouldn't need police, or at least not many.

Changing bad behavior by corporations (esp. adtech/advertisers) is likely to be about as successful: it's not going to be done by "changing" the culture, but only by changing the laws, and then enforcing those laws and punishing offenders. Just like a rapist sees nothing wrong with raping a person, or a serial killer sees nothing wrong with murdering many strangers, or a "porch pirate" sees nothing wrong with stealing your Amazon delivery, an ad-tech corporation sees nothing wrong with feeding you psychologically manipulative advertising and blatant malware in search of profit.


> You say you want to change the culture, and that this has successfully been done in the case of crime,

No. They did not. They explicity said "mostly works".

> but this is blatantly false:

Of course it is. You set up a blantantly false strawman. Please don't use obviously piss weak rhetorical tactics, they make you look bad.

> every country has prisons with many criminals

And every country has varying incarceration rates, they are not all equal.

What should be looked at is countries by cultural attitudes towards crime and incarceration rates .. and the harder question of just how innately criminal imprisoned people are in various countries and whether they are just there from systemic features of a culture.

Again, there are no one size fits all answers and people aren't homogenous.


>Again, there are no one size fits all answers and people aren't homogenous.

That was my exact point with the previous post blaming "software engineers" for ads.


> If your "change the culture" thing had worked, you wouldn't need police, or at least not many.

Who said that police are not part of the culture?

I'm not arguing whether or not we need police, I'm arguing that if we come to a consensus (i.e., we agree that surveillance capitalism, etc, is not ok), then we can stop the problem. That may mean we even criminalize certain behaviors if we believe it is necessary. But the foundation is consensus. So let's do that- I firmly believe that surveillance capitalism and the bombardment of ads is not ok. What about you?


How many software engineers here work in defensive cybersecurity? Well, why they do they have jobs? Because of other software engineers who work on the offensive side.

I guess all the cybersecurity engineers should just quit because they're the ones to blame for all the malware...

Similarly, the only reason humans work as police is because humans commit crimes. So humans are really to blame for this problem.


I don't agree with their overall point but this is an either oblivious or bad faith take on their statement.


No, it's not bad faith at all. He's trying to use a collective blame argument: "software engineers" as a group are supposedly to blame for adware, in his argument, rather than a small minority of software engineers. It's absolutely no different than blaming all <minority group> for the crimes committed by a few <minority group> members, and paint them all with the same brush.


Just to clarify what I mean is it is a little bit of both: 1. Our profession is collectively allowing this by not having a widely agreed-upon ethical standard for conduct, and 2. (some) Individuals are actively doing it by actually building the bombardment code.

I feel the same way about software for war fighting, which obviously has higher stakes. The profession itself doesn't push back on the ethics of it AND individual practitioners are actively developing death-dealing software.


>1. Our profession is collectively allowing this by not having a widely agreed-upon ethical standard for conduct,

You're acting like the profession has some kind of central authority. It does not. It's like asking for agreed-upon ethical standards for dog walkers; you're not going to get it, because there's nothing resembling a centralized organization, nor any kind of licensing for this profession.

>I feel the same way about software for war fighting,

If you want to eliminate software for war fighting, this is a fool's errand. Weapons for war are absolutely necessary, unless you want to be a victim to some dictator who doesn't agree with your ethical principles. History is full of examples of peaceful people who couldn't withstand an assault by other people who didn't believe in peace. In fact, I'd go so far as to claim that eliminating warfare (and the military apparatus for it: armies and navies etc.) is impossible as long as separate countries exist. Only if we manage to either conquer everyone or get everyone to agree to join a single planetary government can war really be eliminated. And that assumes that hostile aliens won't ever be a problem.


> Our profession is collectively allowing this by not having a widely agreed-upon ethical standard for conduct

Even if there was some centralized group that created an ethical standard for conduct, do you really think that that would escape the influence of software companies like Google, Facebook, Amazon, etc. that have a vested interest in advertisement? Or that every software engineer would follow such a standard of conduct?


The idea that Russian and Chinese software engineers working for troll farms, bot farms, government cyberwarfare groups, etc. are going to follow an international ethical standard of conduct is completely laughable.


> It's absolutely no different than blaming all <minority group> for the crimes committed by a few <minority group> members, and paint them all with the same brush.

Members of a minority group, such as race or religion or sexual orientation are generally members of that group by birth, not by choice.

Members of the group 'software engineers' are members of that group by (career) choice.


"Every single one of those ads were programmed by... a human! We (as humans) are the ones doing this!"

See? That logic doesn't work so well. "Software engineers" are not a singular entity nor a homogeneous group. To maintain the status quo, it doesn't take more than just a few SWEs willing to implement ads and/or invasive tracking.


Your argument is a little lacking. Software engineers are directly responsible, is the difference.

The people on this site are a group of humans uniquely equipped to actually speak and interact with the people responsible for this bullshit.


Humans are directly responsible, too, so the difference you cite, simply isn't there.

> The people on this site are a group of humans uniquely equipped to actually speak and interact with the people responsible for this bullshit.

There's not any method whatsoever for the people on this site to force all ad software developers to stop developing ad software.


> every single one of those ads were programmed by... a software engineer

Your key point here is a tautology; it doesn't really lead to any insight.


I just go to ublock origin on firefox and install it, they'll never ask about it; i'm just doing them a solid.


Given the numbers of times I've had to disable ad blocker to fix some janky page I have to use, I don't think installing an ad blocker without explaining or even mentioning it is a friendly act.


I mention it, they usually have no idea what I'm talking about sadly. I don't think ad-tech is a friendly act. Infact, I find it insulting, invasive, and completely violating what they do with the personal data when they sell it 6 ways to sunday, but enough about that.

Usually if I'm on somebody else's computer it's because they need me to fix things for them, or speed things up or 'make it better' which means it's getting adblock. The amount of modals and tricks and things they fall for especially my elderly neighbors or people wanting their business laptops setup especially Windows that have jank ass webpages that have the 'Download' link be some arbitrary .exe for something completely not what they wanted to download put something on their system is crazy.. hell even Youtube is giving people scams.

I just fixed some women's sobriety center's computer for free and their user account had some anti virus secure browser opening 20+ 'browsers' on boot for 'AG' free anti-virus.

Never had an issue with ublock breaking anything important for me. Air travel, hotels, ordering things online, if something says disable my adblocker I close it out and never go to that domain again.

To each their own though. I don't do ads though and will save every soul I can. Ad-tech is cyber terrorism at this point, and I stick to my guns.


Absolutely agree. I often disable my ad blocker/cookie blocker when I'm about to make a big purchase (e.g. airline tickets) in case they interrupt whatever crazy redirect flow the airline and their payment processor have.


Never happened to me but I guess that kind of shop would simply loose a sale.


I don't think it happened to me, but then I don't venture outside Amazon, Newegg.. major sites that much. But even then.. if they need all those crazy redirects, maybe they don't want my business.


If you ever limit the number of redirects to one in Firefox by using about:config, you'll see that most sites do at least two per page. It makes me wonder how many useless portals there actually are just because people glue together CDNs and add more off-site frameworks like Akamai and Typekit.


I've been using Safari on occasion for the past year because it starts up faster. I was too lazy to figure out how to install an ad blocker there and the strangest thing happened. I saw an ad many months later and realized I couldn't remember seeing a single one until that point. I suppose it's because I've become so good at avoiding the types of websites that have ads that maybe I don't even need an ad blocker (I'm extremely opposed to seeing ads that aren't SuperBowl ads). There also aren't that many website I visit. I use GitHub. I watch Netflix and Amazon where I can pay extra to not see ads. I also pay for YouTube Red. I use Kagi which is another place I can pay to not see ads. I also read Hacker News, where I'm always super careful to check that the domain on a link looks like a real person's website (i.e. isn't something like nytimes) before clicking.


It's such a jarring difference when I'm browsing on my phone at home with Pi-Hole vs. when away. So much that it motivated me to set up a split tunnel VPN so all my phone's DNS requests go through my home Pi-Hole regardless of what network it's on.


I used to do this, but lately I just set my phone to use dns.adguard-dns.com as the DNS resolver which gives extremely similar results. It's a Russian operator, but I don't have much of a reason to trust any other DNS operator more.


Ads (with untrusted javascript and links) considered harmful.


Here's your YouTube link without the creepy Google tracking (and with the missing playback controls):

https://youtube.com/watch?v=iV3js9pd5IE


Looks like the same tracking, just main YT view not Shorts


Better not use mine...


Google has convinced regulatory agencies that they're not responsible for their own complicity with supporting link fraud. I wrote an article about Google's role in enabling link fraud[1], which shows how this is effectively a form of regulatory capture.

Here's a particularly salient critique of these very same FBI recommendations, from my article:

> The FBI suggests “Before clicking on an advertisement, check the URL to make sure the site is authentic. A malicious domain name may be similar to the intended URL but with typos or a misplaced letter.” — this is useless advice in the face of unverified vanity URLs

1. https://eligrey.com/blog/link-fraud/


Can’t an ad always just redirect traffic to a vanity URL while exposing a non-vanity URL to Google?


The core issue here is that Google does not effectively verify ownership of vanity URLs displayed to users. You may not ever connect to the vanity URL in the first place.


I don’t think it’s reasonable to expect zero link fraud facilitated by Google, in the same way I don’t expect zero money laundering facilitated through banks. But banks are heavily regulated and (at a minimum) have to go through the motions of KYC and disrupting illegal activity.

I think the issue here is we have allowed online platforms to reap the rewards of scale without requiring any responsibility of serving a billion+ people. Internalize rewards, externalize responsibility.


> I don’t think it’s reasonable to expect zero link fraud facilitated by Google

Link fraud is entirely preventable in an automated fashion. They just need to start enforcing their own policies.

Validating ownership of 'display URL' domains via DNS would completely eliminate the issue. It's quite simple.


AFAIR it's against their code, they do have strict rules regarding their ads.

But it's funny I remember adsense fighting the bs fraud ads on the internet, only to become the bs fraud themselves..


No-JS user here. A disturbing trend noticed in the past two months: can't login anymore to some financial/health services sites (bank/insurance/etc) without disabling all of NoScript - no amount of selective enabling of websites satisfies them, and those websites are using known infractors like Adobe.

In other words, there is code in the backend checking that all tracking/-ware has run on the browser, and refusing to let you login unless you let it all run, while none of it is necessary (as evidenced by older versions - and other sites - accepting only the top site being JS-enabled).

"We either track the living shit out of you, or you don't access the essential services you need, even though technically it is not needed."


uBlock Origin has some advanced filter syntax that can sometimes deal with sites like this. It can intercept, modify or replace JavaScript functions, objects, network requests, parsing data, cookies, etc. That being said, writing filters for sites like these is somewhat of a dark art, it usually involves reverse engineering the page's JavaScript to the point where you understand what it's actually sending and checking for to function correctly, then figuring out a way to bypass those checks by selectively modifying the JavaScript's functionality.

Things like this are why I worry a bit about the proliferation of things like WASM, while JavaScript isn't great, it actually gives a great amount of control to the end user, to both see, understand and the ability to actually modify what is running in their browser. With WASM, all of this becomes highly impractical. Instead of a (semi-)readable, modifiable block of interpreted code, with the ability to inspect and modify the state at almost arbitrary points, you just get opaque binary blobs that you basically can't do anything with. As more and more sites switch to using compiled WASM blobs for their logic, it will become increasingly difficult to observe or modify any behavior of these websites as an end user.


Do you have a list of offenders by any chance?


This has been happening to me too with PG&E. The page wouldn't load until the Amplitude calls finish.


Meh, I've noticed this without any blockers at all. I cannot log in to my power company's website from my PC (on any browser) and likewise for Delta Dental on any device. So far I have been able to work around this, but I don't understand how its possible to break login so badly that even unmodified Edge doesn't work and it stays like this for months.


I'd like to see society in general become less tolerant of unwanted ads.

The original Google site hit the perfect pitch, where they set a few unobtrusive ones out of the way alongside your results screen. Ironic they pioneered and eventually normalized what is now an epidemic of user-hostile spam all over the web. I feel as a whole we lose a lot more productivity and focus to this than we gain in economic activity.


> The original Google site

For your nostalgia and/or despair, I found a chronological list of screenshots: https://scaledon.com/the-evolution-of-google-ads/


Thank you! I actually tried to find an illustration, and your link fits the bill perfectly.


> Google Ads became more user-friendly in 2014. The yellow box that contains the ad disappears and users could quickly scroll through the ads section.

Can someone please explain these two sentences to me?



I've love to see what happens if ad-networks became legally liable for any scams or malware that they enable.

The counter-argument that they don't need to know their customer/ad and are just dumb-pipes doesn't sit well with me: Them having awareness of ad-content and display-context is ostensibly part of their business model.

P.S.: I don't mean just liable for a part of the damages, although that would be a good start. I mean that if your Aunt Tillie gets served an ad of "Your computer is infected, click here to contact a Microsoft Technican" there should be some negative repercussions for the company, even if your Aunt Tillie is secretly the hacker BakinC00kies and spins up a honeypot.


Previously:

The FBI now recommends using an ad blocker when searching the web:

https://news.ycombinator.com/item?id=34916239

734 points | 2 years ago | 430 comments


Recently, my grandmother got herself scammed when trying to pay her bills, because she clicked a Google search ad for a fraudulent website posing as the local gas company. She lost some money and, of course, some of her personal data as well.

When situations like this happen, I mostly place the blame on ad companies. It’s their product, so it should be their responsibility to prevent abuses. But there is scant regulation, and the ad industry itself has little concern for privacy and data protection. Why would it waste money being proactive and effective against malicious ads?

It is nice to see the government recommending ad blockers. However, it bothers me that it is up to us, users and customers, to deal with the negligence of ad companies.


I wonder what would happen if you (she) sued Google.


I wonder too, but suing is expensive and demands some time that we don’t have. Yet we did notify the cybercrime team at the police department, so maybe they will do something about it.


If the amount is/was under the small claims court level, that would be a vastly cheaper and easier route to take. Rules vary by state, but I believe generally you cannot select an arbitrary amount lower than the monetary threshold just to use small claims court, but you might be able to argue Google has 50% or some other culpability if that will get the amount under the threshold. IANAL.


We still haven’t reached peak Idiocracy.

YouTube/hulu/disney+ still cut to ads instead of displaying them around the border of the content.

Carl’s Jr/Brawndo still haven’t purchased the FCC.

We are pretty close though.


Too easy to block adverts around the border with cardboard.

They still need to make people actually think that adverts are good


Honestly, we are there. It just didn't make the news yet for some unknown reason.


For computer health your PC needs an ad blocker, but also for mental health. At what point will the CDC recommend using it


What's the current status of whole-network blockers that use DNS?

I tried pihole maybe 8 years ago, and it just broke too many websites for me to leave it on for my wife. It really frustrated her.


>I tried pihole maybe 8 years ago, and it just broke too many websites for me to leave it on for my wife. It really frustrated her.

I've been running pi-hole at home for three or four years with minimal issues.

The times when I have seen issues, I just go to the admin webpage, disable blocking for some period of time, and try again. And it's almost never Pi-hole causing the issue unless I'm trying to click on an affiliate link[0].

I mention this not as something your wife might do, but to clarify that pi-hole (with default settings) almost never blocks anything I click on, and when it does, I'm almost always glad it did.

As such, assuming your wife isn't clicking marketing/advertising/affiliate links, pi-hole should be just fine for your home IMHO. As always, YMMV.

[0] https://en.wikipedia.org/wiki/Affiliate_marketing


I don't use it personally but know several people that do. It has different levels of blocking, and so if you have the patience, you can go full block mode and gradually peel back the blocking to sites that you want to use. My friends thoroughly recommend it.


FYI - this is from December 21, 2022


Wonder if someone would make a YouTube video talking about using uBlock origin to block YouTube ads, citing FBI's recommendation, see if it gets taken down by violation of YouTube's ToS.


Linus Tech Tips just had a video on using adblockers, as part of their "how to de-Google your life" series, taken down by YT for posting "harmful or dangerous content".

https://www.youtube.com/watch?v=apdZ7xmytiQ


Wow, that sounds like something out of Russia's playbook.


PSA: Even among tech minded folks, a surprising number of people are still using adblock which is widely known to use sponsored whitelists to allow companies to bypass the filters.

The gold standard which works as an extension in both chrome and Firefox is uBlock Origin, annoyingly not to be confused with uBlock.

https://addons.mozilla.org/en-US/firefox/addon/ublock-origin

https://chromewebstore.google.com/detail/ublock-origin/cjpal...

Also be aware that Google continues to add restrictions to extension permissions such that uBlock Origin may not be as effective as it once was.


Not even that. Most of my software engineer colleagues do not use ad blockers at all. They are definitely aware of them, but they don't use them, and they don't bother to use them. Which is surprising.

You would expect that the people who have the ability to write perfect selector rules to block ads and understand how all of this works would be the first to use them. But no.


I've seen this too, and we see it right here on HN every time this discussion comes up. You can even see it on this discussion just above: there's a bunch of people here who just don't want to use them because they want to "support content creators" or whatever. There's even some people here who will tell you you're a bad person for blocking ads.

I find it baffling too.


Is the warning on uBlock Origin Chrome extension page due to it not using the manifest v3? Anybody know if uBlock is still the best option for Chrome?


Marginally related, I've heard that Brave (which is a chromium fork) is going to maintain support for V2 so uBlock Origin will continue to work on it, but I don't use it personally so take that with a grain of salt.


Thanks. Many friends of mine use and recommend brave.


> Also be aware that Google continues to add restrictions to extension permissions such that uBlock Origin may not be as effective as it once was.

That's fine. I don't use a Google made browser, so this would not affect me at all. It would also be very easy for this to not affect you too if you just had the courage to stop being a sheeple


I'm not sure who this comment is directed at and I can't speak for everyone but I do think some people have to use Chrome as a requirement from their jobs - such as UI/UX testing for frontend development.

So for them, it's better than nothing.


you can use what ever browser for UI/UX testing purposes, but it doesn't have to be your daily driver.


I must be a strange person because I don’t run any adblocker… if I happen to need to visit an ad stricken site I just toggle on reader mode. Get my info and get out… I never have to worry about clicking on a search result and it doing nothing … but also I rarely visit these ad sites…. For the cookie banners I just inspect and delete the elements when they get in the way…


> I never have to worry about clicking on a search result and it doing nothing

I can't remember the last time I noticed that the ad blocker even existed on my machine. Occasionally some clever site will basically say "if you can see this, we're supported by ads and could use your help" -- but it doesn't break things and I don't see ad links in search results.


A lot of food ordering websites don’t work for me on ublock origin. Banks are also 50/50. Reddit will occasionally flag me for bot traffic.


Do they remove the cookie banners?


An ad blocker would save you some extra clicks.


>Cyber criminals purchase advertisements that appear within internet search results using a domain that is similar to an actual business or service. When a user searches for that business or service, these advertisements appear at the very top of search results with minimum distinction between an advertisement and an actual search result.

Governments should start holding companies that sell ad space responsible for the ads they run. There's no way any company with the resources of Alphabet or Meta should be serving up phishing ads in their search results.

The fact that Google is presently trying to degrade the performance of ad blockers with Manifest V3 is not a good look. This is why we have consumer protection laws.


Thank you for the valuable information on the blog.I am not an expert in blog writing, but I am reading your content slightly, increasing my confidence in how to give the information properly. Your presentation was also good, and I understood the information easily. For more information Please visit the 1stepGrow website or AI and data science course. https://1stepgrow.com/advance-data-science-and-artificial-in...


And in China, using ad blockers is illegal. Go figure.


That's nonsense. Searching for "广告拦截" on Baidu returns hundreds of thousands of webpages and tutorials telling users how to install and turn on ad blockers, and Chinese smartphone brands often boast that their products perform better than competitors in blocking ads. What you are saying seems like a misunderstood version of the fact that some "ads" are whitelisted by default and you can't block them painlessly, mostly from the telecom giants that provide internet access for you.



> Before clicking on an advertisement, check the URL to make sure the site is authentic

Yeah, good luck doing that with all the various tracking links that mask the actual domain. Sometimes I try to click on links from legit account related emails that are blocked by UBO for being part of a tracker/ad network.


I hear this advice from other infosec people constantly, and it's starting to grate. In one breath we tell users "attackers are professionals who are doing this eight hours a day; they're probably going to trick you", and in another we're trying to get users -- who are busy doing their jobs -- to recognize the difference between an I or an l, or maybe go do a domain history lookup to see if businessandsons.com is some new knockoff of businessllc.com, or maybe figure out how to parse whatever the email reputation filter mangled the domain into.

I know perfect is the enemy of good and defense in depth and etc, etc, but this advice just seems crap.


I hope the raise of llms searching the web and acting as a middle-man makes websites ridden with ads obselete.

If you've ever looked for a recipe, you'll know how many obstacles there is without ublock. My hate is towards these type of websites.


> Most internet browsers allow a user to add extensions, including extensions that block advertisements.

This may be sadly outdated. Android Chrome and iOS Webkit probably account for majority of traffic nowadays, and neither allows adblock extensions.



Oh, thanks!


Can the FBI now arrest Sundar Pichai for obstructing justice with Chrome MV3?


That’s not how that law works.


If wishing made it so though


Jeff Johnson’s “Stop the Script” (iOS, MacOS). Blocks all JS, including inline. If a site doesn’t have a fallback to serve static content or is not readable when I disable JavaScript… I leave.


I make loads of browser extensions, is there any wins that can be had by building another ad-blocker? An manifest v3 compliant one.

Or does unlock origin lite cover everything?

I was thinking continent specific ad blockers etc


All work is pretty much already done by uBlock Origin Lite and AdGuard MV3.

Manifest v3 fucking sucks, and people will probably need to go to system-wide ad blocking such as AdGuard to block ads using all the filters, as v3 limits the number of filters you can use.


Is adguard a system level script interceptor like wire shark?


FBI has also warned against placement of smart home assistants (e.g. Alexa) in bathroom and bedroom.


What would tip the scales to justify including an ad-blocker in Safari by default?


The new version of Safari to be released this month has made very tentative steps into content blocking, but it's all manual by the user, and there's still been a lot of pushback on the feature by advertisers. I guess Apple may be wary of antitrust concerns.


[2022] - I thought I'd heard this before.


The FBI also suggests using VPNs.


People shit on the FBI (for good reason) for being a tool of the ruling class, but their cybersecurity recommendations are consistently solid. They were amongst the first to suggest disabling Flash and Java in the browser for instance back in 2012.


When a bartender screws up a customer gets over served. When the feds screw up people die. It’s good to be vigilant when it comes to government and it’s also wise to consider the scale and scope of federal operation. The CIA is where things start to get sticky.


This is where SEO leading to :(


Windows itself is malware.


[flagged]


> There is an unwritten social contract here.

There isn't, no matter how many times you say there is.

https://hn.algolia.com/?dateRange=all&page=0&prefix=true&que...


this has to be a troll account, they keep flip-flopping between advocating both for and against adblockers in every other comment.


The social contract only works when content providers choose an ad network that doesn't serve deceptive, misleading or outright malicious ads. I'd rather protect myself than be polite.


I'm not torn at all. Ads are cancer. They're either un-curated and malware, or curated on my private data and disturbingly targeted. I reject both types.


would you rather pay to access that content? how else could the site be funded?


How were websites funded when the WWW was first created? Tax dollars, hobby/altruism, university dues, etc.

Don't want to spend an arm and a leg for bandwidth? Don't include megabutts of JS, CSS, images, etc. Optimize and respect your users/guests.


That only worked because the traffic to bandwidth cost ratio was small.

Youtube would cost any normal company untold millions per month just in bandwidth costs alone, and there's actually so much more to it. I would bet money that even Discord's bandwidth bills are at least 1 million USD per month if not more.


>would you rather pay to access that content? how else could the site be funded?

I can't speak for GP, but don't care how a site is funded, unless it's my site.

If a particular site goes away, it's no skin off my nose.


Agree with a lot of this and also feel torn (though I've been settled on a side for a little while).

I've been debating with my neighbor the last few years about whether artists are still artists if they're charging for their "content". It's a bit of a facetious argument, but directionally if you have something you want people to hear, isn't the audience doing the favor by listening? Similar points have been made about Twitter (and social media generally) that folks have the right to say what they want, but not necessarily to be heard. A person can tweet, but not only can others block them (or just ignore and scroll by), the platforms/algorithms can not prioritize them in feeds. Folks aren't owed an audience. It's possible content is for the author. When it isn't, when authors wouldn't have put it up if it weren't for ad income, I feel less worried about what we're losing. That said, if I had to pay for everything, I would certainly read/watch less stuff I like too.


How do you define art? Does it stop being art once it's in a museum? Does it stop being art if the museum is a gallery? How many layers of indirection have to happen between the artist and the gallery for it to be art?


This idea that content owners need compensation for making their content available needs to go. There was an entire generation of kind souls doing exactly that until the culture was suffocated to death by late-stage American capitalism. I and many others gladly made content available to others at our own cost.

The mission of making knowledge available to those less fortunate than oneself (especially in this inflated first-world lifestyle) should supercede the need for financial gain.

But once the actual moneyed assholes come in and take over, everything gets expensive and unaffordable and now you absolutely need a business model just to build something. Perhaps ad blockers and piracy are the much-needed counterbalancing force keeping the monster at bay.


I'm with you. I really am. I genuinely miss the web when it seemed wild and free and not just a collection of five companies.

The problem is that the old way is dead. And its own popularity killed it. Just for example; There is no way a video hosting site the size and scope of YouTube could have possibly existed when the Internet was a hobby.

What do we do with that?


The issue is that I'm generally willing to watch some ads for youtube or such. I get that it's expensive to host that and I get my time/money's worth. But then I load a random recipe site or code docs site and get the page 40% covered by shitty ads for near-pornographic content and I install an ad blocker.

So many sites just cramming ads into every single square inch of their sites ruins it for almost everyone else. I get a visceral reaction to banner ads now.

I totally understand the economics of it, and the fact that you can't bootstrap something like Youtube by charging for it, but that's just how it is. It's a shame that the responsible sites are getting painted with the same brush, but so much of the internet has gotten so insanely greedy with ads that there's just no other choice.


but why are you ok with watching video ads on youtube, but static images on doc sites go too far?


A. Most of the ads on sites aren't static and many are full video embeds now.

B. Because I get that the cost to deliver me a 30 minute video is fairly expensive even for Google. Most text websites, the cost in bandwidth to deliver the ads is orders of magnitude more than the site itself. I host text based websites and they cost literally a dollar a month. The overhead of my single visit to a text/image site is a tiny fraction of the cost of me watching even a 5 minute YT video.

If you build a blog or generally text-first site in a sensible way, the cost of a single visitor is ~free. Making me see and load 4-5 ads at any time is just abusive. As was said elsewhere, if you think your content is good enough to cost money, then try charging for it, but there really just aren't that many people talented enough to successfully demand living income for writing or recipes or other mundane stuff people put on the internet.

We could wish for a world where it's easier to frictionlessly give someone a penny or such for reading their site and let that add up for those who get the views, but that's just not a thing right now.

The ability to have a total stranger see your work even once is the outlier that the modern era as brought. People have jumped from that to "and thus I deserve to live off of this" and that just doesn't follow. Even making a pittance is unlikely and that's still better than any of us was likely to get even 20 years ago.


Why do we need video? Is there a good reason beyond the fact that moneyed interests have brainwashed people into thinking they need it? That they've destroyed attention spans so nobody knows how to frickin read? Maybe it's time to emerge from this dopamine-induced brain fog.


So, I actually think that if YouTube went poof tomorrow, totally gone, and was not replaced by a similar ad-supported medium, it'd be a boon for makers of quality video content and disproportionately harmful to clickbait chum-farms. Ad-supported video is the incentive system that delivered us Elsagate, and the scale of YouTube w.r.t. feasibility of paid hosting isn't all that it seems.

Every single YouTube creator I watch with any degree of regularity has a Patreon, merch shop, or some other way for those who appreciate their stuff to directly contribute to its production and continued existence. Many say that they rely on those sources of income a lot more than ad revenue, especially those in non-advertiser-friendly niches who have to worry about demonetization. In a no-YouTube world, even assuming p2p video streaming never works out, those folks would be able to pay for hosting with those non-ad income streams, because YouTube's scale is deceptive. Most of the ones I watch don't even have all that many views relative to the big boys - five to six digit, usually - so their viewer:contributor ratio is a lot higher than that of a successful clickbait slop video with ~zero genuine dedicated supporters but a lot of incidental ad views. This dynamic implies that creators with dedicated followings would have a decent shot at supporting themselves even if they had to pay for bandwidth, because their bandwidth spend to revenue ratio is a lot better than average.

The thing about YouTube is that slop outweighs quality content by such a massive margin that if you do napkin math around the raw cost of hosting n hours of streaming video, you end up with a way higher number than you'd have if you stripped out the bulk of the material that wouldn't be economically feasible in a non-ad-supported environment.

A corollary is that without competition from low-quality ad-supported material that couldn't hack it in a donation-centric environment, the good stuff stands out that much more. It's kinda like how you can't really post a recipe without it drowning in an ocean of algorithmically generated fake-ass life stories about grandma's cookies with seven ads before you hit the first ingredient. Without those, organic content, even paid/donation-supported organic content, has a much better shot at encountering the kind of eyeball that'll shell out for the good stuff.

I think the existence of spaces like Bandcamp (for now, anyway, fingers crossed re acquisition) demonstrates that donation-supported streaming can be economically viable. I've spent far more on Bandcamp albums I could have just kept streaming indefinitely for free than I ever did on CDs, because I know that the bulk of that money is actually going to the people who made the stuff I liked, rather than getting siphoned off into corporate middlemen a la legacy record businesses / Spotify and its ilk. Direct-to-artist support in places like Bandcamp has enabled a flowering of high-quality, niche content. People may complain about a simplistic top 40 or whatever, but I'm running into more music right up my alley than ever before, and that's largely due to the newfound ability to cut out the middleman and go right to the creator. YouTube is like the old record industry; it benefits the lowest-common-denominator painfully-focus-grouped artist far more than it does the auteur.


> However this culture of expecting websites to host the data then freeloading off it by blocking the tracking and ads is also a bit ugly.

Let's use Facebook as an example.

You can't not get tracked by Facebook if you have a Facebook account. If you use it, they track you and monetize you somehow. All of your interactions with the site, and all your interactions with other users.

Blocking as much of Facebook's ads and tracking as you can while keeping the site working means you are monetized somewhat less. You're still not freeloading.

This is similar with other companies - you have to use the product, and they monetize your use of the product. Whether or not you see the ads in Gmail - they are still aggregating all of your data and monetizing it.

Adblockers can be seen as a system of checks and balances and incentivize certain types of monetization over others.

Don't get me wrong - I'm sympathetic to your argument. Google and Facebook can't run a service without being able to make a profit on it. I believe users should have measures of control over how they are monetized, and there should be clarity about how they are being monetized. Example: Google Maps keeps prompting me to turn on my location history. If I do, the TOS says they get to sell that to a bunch of people. That prompt to turn it on should be clear about this compromise. My wife doesn't mind; I do, but I had to read the TOS to understand the compromise is there in the first place.

As an aside, I find it really interesting how content creators are being sponsored by companies in much the same way early radio shows had sponsored ads. Everything old is new again, and I find this un-blockable type of advertising to be totally fair, fine and normal.


>You can't not get tracked by Facebook if you have a Facebook account. If you use it, they track you and monetize you somehow. All of your interactions with the site, and all your interactions with other users.

Actually, Facebook will track you even if you don't have a Facebook account[0].

In fact, Facebook and others[1] track you whether or not you use their "services" or not.

[0] https://www.howtogeek.com/768652/what-are-facebook-shadow-pr...

[1] Google (but we knew that, didn't we?) and data brokers[2] (but we knew that too, didn't we?)

[2] https://privacyrights.org/resources/registered-data-brokers-...


Yeah, I knew that but with enough effort you can block that too.

I was being precise.


>Yeah, I knew that but with enough effort you can block that too.

Can you? As of 2021, there were more than 500 registered data brokers in the US alone.

And those brokers don't just use your Facebook profile (shadow or otherwise). Rather they source data from thousands of retailers, insurance companies, credit "rating" agencies, banks, etc., etc., etc.

How exactly do you (because I certainly don't know how to do so) keep hundreds of discrete businesses from collecting data on you? Do you squat in a lean-to on private land not owned by you? Do you have a phone purchased by you (even with cash, most retailers have surveillance cameras)? Do you own a car? Is it registered? Do you not live in New Hampshire (the only state which doesn't require auto insurance)? Do you have a credit card in your name? Do you have any professional certifications? Are you married? Divorced? Pay taxes?

If you really think you can block the level of tracking that goes on, you're either delusional or have a multi-billion dollar set of skills/ideas. Which might it be, do you think?


I was only speaking of Facebook off-site tracking.


>I was only speaking of Facebook off-site tracking.'

Fair enough.

And while it's not a bad thing, it's just a small part of the problem, as I was reminded a few minutes ago when I received an email about this class-action lawsuit[0].

To be clear, I'm not trying to bust your chops or be dismissive of your point of view. Rather, I'm just (through serendipitous receipt of notification of the lawsuit discussed in the linked article) providing an example that Meta's evil ways are just the tip of the iceberg.

[0] https://news.ycombinator.com/item?id=41497486


I don't expect them to host anything for me. I'll use it if it's available to me, sure, but I don't have any expectations at all.


By my estimation the ad networks and publishers are the primary violators of the social contract by allowing malicious ads on their systems. They could absolutely stop essentially all bad behavior by 1) not allowing any rich or dynamic ad content and 2) having a human look at every ad before it goes live. Those measures would negatively impact their multi-billion dollar profits, though, so they don’t, therefore I block ads and don’t feel bad about it.


> There is an unwritten social contract here.

I never agreed to this contract the same way I never agreed to watch ads on my television or listen to them on the radio. I reserve the right to change stations temporarily, mute sound, and block ads.

I hereby invoke a social contract that states that everyone who reads this comment must reply with their demographic data so I can sell it. Be polite and conform, please. My time is valuable and these comments don't write themselves.


Even google can't keep the malware from getting through their ads, so eff them. Ads are not safe. It costs me more to reimage my machine than they would get from the ad, so I block ads. Super simple concept.


>There is an unwritten social contract here.

I don't feel that is an accurate take. Websites tried charging money for access and the internet citizenry responded pretty clearly that the overwhelming majority of websites were not worthy of payment for access.

So websites tried a run-around - advertising. And the use of ad-blockers exist because internet users are again voting that they would rather the website(s) disappear than be forced to watch a level of obtrusive advertising they found unacceptable enough that they turned to adblockers. And I would suggest to you that if website owners were to find a way to defeat adblockers, the majority of them would lose their traffic.


>ad-blockers exist because internet users are again voting they would rather the websites disappear

Clearly not, or they would just stop using those sites. Instead they want the content at zero cost.


It's not like links come with ad warnings. I don't know or care which sites try to show ads, but I'd be fine with them all shutting down. It'd simply make room for everyone else.


This is kinda just the reality of it. The promise of the internet was that anyone could put anything they want on the internet for anyone to see and access, but there was never a promise they'd get paid for it, even to cover the cost of hosting it.

There's an entitlement now to "Well, I put it online so you must pay me" and frankly, not everyone deserves it. Or at least not everyone deserves it as much as they think they deserve it. Does this mean many astute and skilled people I like don't get paid what they deserve? Absolutely, but that was already the case for centuries before. They just didn't used to have the option to go "it's freeeee" and then have half of the world spy on me in exchange for it, and maybe that's not a good thing.


Service quality is inversely proportional to advertising revenue. Why would I let poor quality services profit off of me when they can’t even provide me with the answers I seek? You appear to have this idea in your head that it‘s independent websites running the bulk of advertising, when in fact it‘s SEO scams and low quality services like Google. If a website provides me consistent value, I chip in a few bucks, but as it stands I will never turn my Adblock off.


Yeah, there seems to be some kind of assumption by some here that just because I visit a website, that they're entitled to some money for that visit (in the form of ad revenue). Sorry, but no: I usually visited that site because they made themselves available, frequently dishonestly with SEO, through a Google/Bing search because I was looking for some information. Much of the time, when I visit a site, I don't find the information I'm looking for, and instead find a bunch of low-quality, low-effort "content", like "blogspam". It's a waste of my time. I can't know the site is garbage until I visit it and see for myself. So no, I reject the idea that these sites are somehow entitled to money for their "service". If they go out of business because of my ad-blocking, I'm not going to miss them.


  There is an unwritten social contract here.
No there isn't. Don't make your content public if you don't want it public.

Paywalls make very clear what a companies true value is and that terrifies every shareholder and C-suite.


>Websites are willing to host and organise a vast number of content because that'll attract an audience for ads. If there are too may freeloaders resisting the ads then services won't host the content,

That's as may be. I won't use your (that's the generic, "you" here) site if you insist (by blocking me from accessing the site with an ad blocker enabled) on making me watch ads.

But I won't complain about it either. It is, after all, your site and not mine. As such, you can do as you like with it -- and good on you for making your own decisions about your own property!

That said, my browser belongs to me, and I will make my own decisions about what displays in my browser and/or runs on my hardware.

tl;dr: I control my stuff and you control your stuff. If we can come to an agreement, that's great! If not, that's fine too!

Edit: Clarified prose.


Adblock would break most websites nowadays. It's commonplace to detect adblock and disable the website if adblock is detected.


I have uBO, a pihole, and noscript between me and the web nowadays. I'd say I run into a website that intentionally bricks itself once every 3-6 months.

It's an uncommon practice in my experience, and it's easy to understand why. 90+% of websites nowadays are click farms - their content is totally interchangeable with, if not plagiarized from, hundreds of other sites. The one site that implements an anti-adblocker measure simply gives up a portion of its traffic to another site that doesn't. The far more lucrative strategy is to try to subvert the ad blocker, which many sites actually do.


Even just pure uBO is good enough to stop the vast majority of anti-adblock efforts without any custom tweaking.


Hmm, it most definitely does not.


A lot of this anti-adblock nonsense is also blocked by Ublock Origin nowadays. I can't remember the last time a webpage succeeded in bricking itself intentionally, though I do occasionally get accidental cases where the website is just poorly designed and hangs because of shitty javascript failing to load some tracker links. Usually payment flows. Though it's pretty painless to just disable UBO for a few seconds in those cases. I'd rather have to click that button every now and again than have almost every website be unusable all of the time, but you do you.


The only time I ever get such messages is following links from HN, and even then I'd describe it as fairly uncommon.


Yeah, better not to install any kind of adblock even as a test. No one else does. You would be alone.

Also, people who use adblock are antisocial.

Also, I'd be mortified if I visited a web page, then the site told me that I cannot continue because I have adblock installed. I wouldn't want that to happen to me even once.


Uh, it's more that I had adblock installed and found myself needing to disable it for most websites just to access it. Adblock ended up being more of a hassle to use than the small handful of sites where it actually worked.


Oh, I see that I misunderstood the motivation behind your comment.

I've noticed an increase in sites that do what you describe, but so far I've responded by no longer hanging out on those sites, and that feels OK.


My adblocker is Ublock Origin Lite (the one that is expected to continue to work on Chrome indefinitely).


This hasn't been the case for me and I've been using ublock origin for maybe a decade now.

The only sites that break are streaming sites. Which is expected, I mean they need to make their ad money and they sell ad-free tiers.

All except paramount plus, funny enough. Yes, you can get ad-free paramount plus for half the cost if you just use ublock origin! I guess they forgot to put in that little bit of logic.


[flagged]


In addition to the threat to children, there's also terrorism to consider. It is frightening to consider that the World Trade Center towers might still be standing were it not for ordinary users who foolishly assumed that nothing really bad could happen if they installed adblock.


When I have a time to unwind and think less sensible thoughts, I can't help but wonder whether anti-fossil fuels movement would try to capitalize on 9/11 if it happened today and not in 2001 by trying to ban use of planes due to amount of fuel used.

"Terrorists use planes. You are not a terrorist, are you?"


Yes, famously the established miliary industrial complex, fiercely anti-fossil fuel.

Never mind the end result of 9/11 was used for... pro fossil fuel reasons. And the entire war fought afterwards was done for, let me just check my notes here... oil. Oh. And we didn't even invade the right country? hm.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: