search

AdguardTeam / cname-trackers

This repository contains a list of popular CNAME trackers
https://adguard.com/
MIT License
387 stars 37 forks source link

CNAME tracker of justuno.com #12

Open Yuki2718 opened 3 years ago

Yuki2718 commented 3 years ago

URL: https://yuzen-official.com/ (https://github.com/AdguardTeam/AdguardFilters/commit/bc8bb6a1d46d2a59e5e81a9123f36ae60be28f64)

About justuno: https://www.justuno.com/

slavaleleka commented 3 years ago

there are not many subdomains of justuno.com:

{
    "domain_name": "justuno.com",
    "cloaked_trackers": [
        {
            "disguise": "aly.jst.ai",
            "tracker": "analytics.justuno.com"
        },
        {
            "disguise": "scripttags.jst.ai",
            "tracker": "scripttags.justuno.com"
        },
        {
            "disguise": "esp.jst.ai",
            "tracker": "esp.justuno.com"
        },
        {
            "disguise": "analytics.jst.ai",
            "tracker": "analytics.justuno.com"
        },
        {
            "disguise": "cdn.jst.ai",
            "tracker": "cdn.justuno.com"
        },
        {
            "disguise": "assets.jst.ai",
            "tracker": "assets.justuno.com"
        },
        {
            "disguise": "graphics.jst.ai",
            "tracker": "graphics.justuno.com"
        },
        {
            "disguise": "my.jst.ai",
            "tracker": "my.justuno.com"
        }
    ]
}

and I suppose not all of them are used for tracking

so it might be handled manually, don't you think? @ameshkov @AdguardTeam/filters-maintainers

ameshkov commented 3 years ago

Does not seem to be used as a park domain.

Could it be that they provide a different domain for that?

Yuki2718 commented 3 years ago

Indeed scripttags.jst.ai doesn't look like tracker. I'll remove the filter.

ameshkov commented 3 years ago

scripttags.justuno.com can be a domain they use to download "tags" (like Google Tag manager tags and such) so it can be a tracker. I think it's fine to have their domain blocked, I just don't think it's used for CNAME cloaking.

Yuki2718 commented 3 years ago

This loads some jst.ai scripts which I haven't analyzed. BTW according to publicwww analytics.justuno.com is used as click-through.

ameshkov commented 3 years ago

Probably not a good idea to have it blocked in the DNS filter then.

Yuki2718 commented 3 years ago

Okay, https://cdn.jst.ai/vck-shopify.js called by the scripttags looks to be analytics and one of children aly.jst.ai sends some user info.