[AusNOG] Telstra's Texan Teaser - Tin Foil Stetsun anyone?

Eric Pinkerton Eric.Pinkerton at stratsec.net
Tue Jun 26 08:39:35 EST 2012


If your testing two phones/apn's/browsers etc etc etc, you need to use a different URL on each, as the pages are cached the first time round and not requested again.

On my iphone 4s when i use safari it does the two requests. but another browser that I use most the time Atomic. Only does one request. Curiouser and Curiouser.




 On 25/06/12 6:21 PM, Seamus Ryan wrote:
Both using telstra.iph

I am quite puzzled.

Sent from my <insert "i" device here>

On 25/06/2012, at 5:35 PM, "Matthew Moyle-Croft" <mmc at mmc.com.au<mailto:mmc at mmc.com.au>> wrote:
Which APN is that using?

MMC

On 25/06/2012, at 4:56 PM, Seamus Ryan wrote:


Interesting, I saw the exact same results.

Just to throw a spanner in the works (if it's not already), I only noticed the mentioned behaviour when using my personal Telstra mobile.

My business/work supplied Telstra mobile was not followed up by a request from any additional IP's

Needs more foil....

-          Seamus



From: ausnog-bounces at lists.ausnog.net<mailto:ausnog-bounces at lists.ausnog.net> [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Joseph Goldman
Sent: Monday, 25 June 2012 4:48 PM
To: ausnog at lists.ausnog.net<mailto:ausnog at lists.ausnog.net>
Subject: Re: [AusNOG] Telstra's Texan Teaser - Tin Foil Stetsun anyone?

 Through a 40~ odd minute phone call, I was able to speak to a chap in `Level 2 Technical Support`, who has confirmed for me that it is a part of Telstra's core system, where they track the websites you have visited for bill reporting purposes.

 In other words, I confirmed with the chap (I have a reference for this call), that he could request billing to show a list of websites I have visited and how long I was on those websites.

 He informed me that these services hitting the same website is tied in with that system.

 It doesn't make sense why they would hit the site again as a GET, as they could pull this from a transparent proxy, and the purpose of scraping the website to gain extra insight about what i'm browsing, would suggest they would keep the path/query string instead of just hitting the root of the site, to actually see what content I am browsing.

 I was also informed that I can not opt-out of this occurring, so I plan to contact ACCC or TIO in the morning to see what they can tell me about the practise (who would you think is better?).

Interesting indeed.

On 25/06/12 3:38 PM, James Nicol wrote:
Eric, you should check this out.

http://www.zdnet.com.au/google-maps-coordinate-tracks-employees-339340095.htm

James

From: ausnog-bounces at lists.ausnog.net<mailto:ausnog-bounces at lists.ausnog.net> [mailto:ausnog-bounces at lists.ausnog.net] On Behalf Of Eric Pinkerton
Sent: Monday, 25 June 2012 3:30 PM
To: Matt Perkins; ausnog at lists.ausnog.net<mailto:ausnog at lists.ausnog.net>
Subject: Re: [AusNOG] Telstra's Texan Teaser - Tin Foil Stetsun anyone?

>Could it be that telstra are passing your browsing history in real time to a marketing company who are then looking at the site to gather some sort of marking info on the site you were just looking at.
Would explain why they are not looking at there own cache.

Last night I had a dream.  I dreamed I was walking along the beach with the Lord.  Across the sky flashed scenes from my life.  For each scene, I noticed three sets of footprints in the sand: one belonged to me, one to the Lord, and one to a marketing company in the US who was paying Telstra for my exact movements in real time.



Message protected by MailGuard: e-mail anti-virus, anti-spam and content filtering.
http://www.mailguard.com.au/mg







_______________________________________________

AusNOG mailing list

AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>

http://lists.ausnog.net/mailman/listinfo/ausnog

_______________________________________________
AusNOG mailing list
AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>
http://lists.ausnog.net/mailman/listinfo/ausnog





_______________________________________________

AusNOG mailing list

AusNOG at lists.ausnog.net<mailto:AusNOG at lists.ausnog.net>

http://lists.ausnog.net/mailman/listinfo/ausnog




--

/* Matt Perkins

        Direct 1300 137 379     Spectrum Networks Ptd. Ltd.

        Office 1300 133 299     matt at spectrum.com.au<mailto:matt at spectrum.com.au>

        Fax    1300 133 255     Level 6, 350 George Street Sydney 2000

        SIP 1300137379 at sip.spectrum.com.au<mailto:1300137379 at sip.spectrum.com.au>

        PGP/GNUPG Public Key can be found at  http://pgp.mit.edu

*/


Message protected by MailGuard: e-mail anti-virus, anti-spam and content filtering.
http://www.mailguard.com.au/mg

Report this message as spam<https://login.mailguard.com.au/report/1F0M1nTMOj/1zb8MckHCiJHgCz77Dtj9G/1.804>

-- 
Message  protected by MailGuard: e-mail anti-virus, anti-spam and content filtering.http://www.mailguard.com.au/mg

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20120626/7c15aa56/attachment.html>


More information about the AusNOG mailing list