Every day, some new member of Blogger Help Forum: Something Is Broken asks, innocently
What is all this traffic from dodgy websites?and after we explain what the dodgy traffic is, and why it does not reflect real traffic, the next question is
So why doesn't Google block it? Why should I have it polluting my Stats displays, and be unable to find actual traffic in my counts?and the unfortunate truth is simply that Google cannot block it, because it's not significantly different from normal traffic - and the insignificant difference is not easily detected.
At the risk of being politically insensitive, I'll ask an old joke from American low class humour
Do you know how to keep a moron in suspense?and if any of you have never heard the joke, and want to know why it's so funny, I'll simply suggest that you let me know when you decide that you don't know the answer. If I was asking you in person, I would simply continue talking, and change the subject of the conversation completely.
Now, I'll apologise to the American Autism Foundation, or whatever non profit might be offended by my use of the term "moron" - and I'll point out to you that, if you could not answer my joke, then you are - obviously - a moron.
And that is a non technical example of how referer spam works, and why it cannot be blocked. Now, we will attempt a (highly simplified) technical definition.
When you click on a link from, say, a post in Blogger Help Forum: Something Is Broken, to this article, your computer sends a single message to the Blogger server, containing three essential details.
- The IP address of your computer.
- The URL of a forum discussion, which contains a link to this article.
- The URL of this article.
- An IP address.
- The URL of the page containing a link to the webpage requested.
- The URL of the webpage requested.
Finally, the Blogger server starts sending web page content back to your computer, so your computer can display this article to you. As the webpage content is sent back to your computer, your computer receives, and displays, the received content - and asks for more content.
Simple enough? So, what is referer spam? Simply, a single message from a spammer computer, to the Blogger computer, containing three essential details.
- An IP address - possibly, but not predictably, of their computer.
- The URL of the website being pimped (the spammed website).
- The URL of the blog being spammed (your blog).
- An IP address.
- The URL of the page (supposedly) containing a link to the webpage requested.
- The URL of the webpage (supposedly) requested.
Finally, the Blogger server starts sending web page content back to the IP address provided. If the IP address does refer to the spammers computer, what is received is simply ignored. The spammer computer moves on, and sends another spam message to another server.
The problem is simply that no web server can detect a message from a client computer, that results in a response that is just ignored. Web traffic is lossy, and clients drop offline constantly. Even if the response could be detected as ignored, the ignored request might still reflect legitimate activity, initiated by a client that immediately went offline.
There is simply no way for Google to block the spam - because the spam is simply one message that results in a response, by the Blogger server, that is subsequently ignored by the client computer.
That's it.
Are you in suspense yet?
So why can't Google block the numbers generated by referer spam, as the referer spam hits the servers? Simply because the numbers may not really represent actual spam. They can, just as easily, reflect intense, legitimate activity - or possibly a secondary attack against a legitimate website. Specific numbers are observed in context - are blocked only after the same activity is observed against multiple blogs, over long periods of time - and the numbers are removed, retroactively.
All of this is a simple unavoidable side effect, of blog owners needing site activity figures that are not affected by script filtering by the blog readers, complicated by fraudulent activity by hackers and spammers.
D'Ohh!
>> Top
8 comments:
Glad to be 1 of several visitants on this awful site : D
Is there a way to block another site from hyper linking to your blog? I have had someone on a fetishist site list a link to my blog...creepy. I have temporarily changed the name of my blog and made a stub blog but can't figure out how to keep my followers in the loop, don't want to redirect the creeps too. Any suggestions are greatly appreciated! Old URL adventuresinbraces.blogspot.com new URL adventuresinbracesjawsurgery.blogspot.com
I'm not so worried about the stats being flawed. I'm getting a pop up window from AT@T.ro
the window looks something like this:
WAIT BEFORE YOU GO!! CLICK THE *Stay on this page* BUTTON RIGHT NOW...
I HAVE SOMETHING VERY SPECIAL FOR YOU!
Nancy,
The "AT @ T . ro" hijack is a problem that we've been watching, for a couple months.
It takes a bit of technical skills to diagnose the problem, in each individual blog. If you can post in Blogger Help Forum: Something Is Broken, we can help you with this problem.
Thank you for the explanation. It puts my mind at ease.
Thanks! I've been getting a lot of russian porn sites listed as referring sites to my blog. I had no idea that this could be faked or spam as you call it. I also used to get tons of spam comments with links to shady sites but since I turned on word verification they have stopped. Sure wish I could do the same for the referring sites but as you stated I guess they can't be blocked. At least now I know not to click all those .ru links.
Feeling a bit like a moron yes....but thanks for the clearup.
Orana,
Referer spam, like "nice blog" spam, is a con job. It took me 4 years to figure out what "nice blog" spam actually is.
Everybody gets conned, eventually. You're not the first person to click on a link, and get an eyeful of something nasty. Let's just hope that what you peeked at only looked nasty.
http://blogging.nitecruzr.net/2013/03/if-you-comment-on-blogs-extensively-you.html
http://blogging.nitecruzr.net/2009/03/why-we-should-all-moderate-comments.html
Post a Comment