Referer Spoofing?

[natekapi]

Do a lot of people do http referer spoofing to hide where their clicks are really coming from? I've been toying with the idea of this for a while, but I haven't been able to successfully program something that works and I haven't found anything that looks like it does what I want it to do on google.

This seems pretty grey area/black hat, so I figured this was the right forum to ask on

 

[shaggz]

The basic way is to just set up a landing page with a 302 redirect. It will replace the incoming referrer with the url of the landing page.

Get firefox and the LiveHttpHeaders plugin to verify everything is working correctly while you're working out your solution.

 

[claudek]

Not sure why you'd bother. If you do not wish to let the webmaster know how you got to their page, you could turn off Referrer Logging in your browser. This way their log will not show how you got to their site.

 

[natekapi]

The basic way is to just set up a landing page with a 302 redirect. It will replace the incoming referrer with the url of the landing page.

Get firefox and the LiveHttpHeaders plugin to verify everything is working correctly while you're working out your solution.

Every time I tested 302's the referer wasn't replaced. I was using FF and LiveHttpHeaders. This is what I was doing:

I setup a test page, say www.example.com/index.html. I click a link on this index.html page, which links to www.site.com/refer. www.site.com/refer has an htaccess file with a 302, redirecting it to www.affiliate.com/refer-123.

LiveHttpHeaders shows the referal link as www.example.com/index.html when it goes to www.affiliate.com/refer-123

So, say www.example.com/index.html is bulletin.myspace.com. Don't you think it would be bad if your affiliates see your referal coming in from bulletin.myspace.com, meaning your probably spamming bulletins on myspace?

I'm not spamming myspace or trying to, it's just the easiest example I can think of off the top of my head.

 

[shaggz]

Every time I tested 302's the referer wasn't replaced. I was using FF and LiveHttpHeaders. This is what I was doing:

I setup a test page, say www.example.com/index.html. I click a link on this index.html page, which links to www.site.com/refer. www.site.com/refer has an htaccess file with a 302, redirecting it to www.affiliate.com/refer-123.

LiveHttpHeaders shows the referal link as www.example.com/index.html when it goes to www.affiliate.com/refer-123

So, say www.example.com/index.html is bulletin.myspace.com. Don't you think it would be bad if your affiliates see your referal coming in from bulletin.myspace.com, meaning your probably spamming bulletins on myspace?

I'm not spamming myspace or trying to, it's just the easiest example I can think of off the top of my head.

You're right, Nate. I got mixed up with another process i was doing. As you said, the straight 302 won't replace the referrer. What you can do is 1 of two things......

a) put a javascript redirect or a metaRefresh in the landing page. This will replace the referrer

b) put an iframe on the landing page and set the source of the lFrame to be your affiliate link.

 

[Stanley]

I'm fairly certain you can send the desired headers via PHP

 

[Neil Patel]

I have never done it, but yea I would classify it as a "gray" technique.

 

[natekapi]

I just played around with the meta refresh method and noticed a downside. Theres no referer string sent in the headers, so it looks kinda weird, like someone typed your affiliate link in directly to their browser...and how often does that actually happen?..

I'm sure you can send the http headers with php, it's just that I dunno how to do that yet.

 

[illusion]

I have never done it, but yea I would classify it as a "gray" technique.

Way to add to the conversation

Found this referrer spoofing script. You could just modify it so that instead of sending the data from the form you just input it yourself and use the backend when referring

 

[havokb8]

I use the refresh method, its always worked fine for me

 

[shaggz]

I just played around with the meta refresh method and noticed a downside. Theres no referer string sent in the headers, so it looks kinda weird, like someone typed your affiliate link in directly to their browser...and how often does that actually happen?..

I'm sure you can send the http headers with php, it's just that I dunno how to do that yet.

If you want to rewrite the headers, then you're acting more as a proxy.....i.e., the users request is going through you, and you're rewriting their headers and forwarding to the destination domain. I'm sure there's something out there that can do that, but that's getting a bit complicated.

If you use the iframe technique, the referrer will be populated correctly as you need it. That's probably the *easiest* solution for your requirement.

 

[Juicify]

What I can remember neither 302 redirects, meta refresh nor javascript redirection send any referer at all.

But do like shaggz said "Get firefox and the LiveHttpHeaders plugin to verify everything is working correctly while you're working out your solution."

 

[gixxer]

anonym.to | Anonym surfen und anonym Email versenden

 

[Nicod3mus]

I guess Im missing the point......why are we doing this again.....I mean what is the objective of masking your affiliate traffic.

 

[Nicod3mus]

NVM we are talking click fraud here aren't we?

 

[Saadh]

NVM we are talking click fraud here aren't we?

No, sometimes you just don't want anyone knowing where your traffic is from. Damn where does click fraud come from, we're not trying to steal from the aff. networks.

 

[lazar]

Click fraud wtf?
I redirect everything to strip out the referring urls.