It looks like an open reverse proxy. You appear to be able to browse the
whole Web through it. Handy for testing off site access permissions.
Steven
Steven Hayles - Computer Systems Developer, [log in to unmask]
Learning Technology Section, Computer Centre,
University of Leicester, University Rd, Leicester, LE1 7RH
Fax (0/+44)116 2525027 WWW <URL:http://www.le.ac.uk/home/sh23>
On Fri, 19 Aug 2005, Jon Dowland wrote:
> Lucy Anscombe wrote:
>
> > Dear all
> >
> > A 'new' TVU domain appeared in our stats package today -
> > http://www.tvu.ac.uk.redirect.keljob.com/
> >
> > Further investigation reveals that this URL seems to work for any site
> > http://www.cam.ac.uk.redirect.keljob.com/
> > http://www.salford.ac.uk.redirect.keljob.com/
> > http://www.bbc.co.uk.redirect.keljob.com/
> > (random sample)
> >
> > Keljob is a French recruitment site. Presumably this is a way to boost
> > their appearance in search engine rankings. Has anyone come across
> > this before? How does it work? Can we stop it?
> >
> This sounds a little bit like the '302 hijack' technique used to steal
> your page rank on google. I'm not sure if it still works. The idea is,
> their site is associated with yours internally to google's search
> algorithm because it redirects to it. Therefore it 'inherits' some of
> your google search ranking. When they judge it to be good enough, they
> stop the 302 from pointing at you and instead point it at whatever
> they're trying to promote.
>
> More at <http://clsc.net/research/google-302-page-hijack.htm>.
>
> However, when I visit <http://www.tvu.ac.uk.redirect.keljob.com/> I am
> not 302 redirected to your site. Instead, it appears that they've
> mirrored your HTML. It certainly looks like some kind of hijack trick (I
> notice a search hit on google is generated when I visit the page too)
> but I cannot fathom how it might work.
>
> --
> Jon Dowland
>
|