Encrypted subdomains for routing ads

[Sh1d0w]

Quote from https://github.com/StevenBlack/hosts/issues/801#issue-369134457

Some sites have started to use encrypted subdomain names to route ads. E.g. https://www.boston.com/culture/travel/2018/10/09/you-wont-need-an-airport-to-board-this-plane-which-will-get-you-from-boston-to-new-york-city-in-36-minutes routes ads through https://c-6rtwjumjzx7877x24yuhx2elttlqjx78dsinhfyntsx2ehtr.g00.boston.com/... Here's another: https://c-6rtwjumjzx7877x24bbbx2esfstanx78twx2ent.g00.newsweek.com/... from https://www.newsweek.com/kavanaugh-described-himself-and-friends-loud-obnoxious-drunks-1983-letter-1150388 Found something related that sheds more light on this g00 crap: uBlockOrigin/uAssets#227 and https://www.theregister.co.uk/2017/08/11/ad_blocker_bypass_code/

Currently those bypass brave shields and get loaded, can something be done to block them?

[Sh1d0w]

I think this can be blocked according to this comment

[srirambv]

cc: @bbondy @snyderp

[bbondy]

I think the problem is sometimes the encrypted subdomains both good and bad content comes through. cnet and orlandosentinal were fixed recently where we don't appear as an adblocker, the most recent beta has that fix right now. Is it still a problem?

[Sh1d0w]

@bbondy In the link from the quote it is very clear they can sneak ads through encrypted domains, see the screenshot. I don't know what the best solution will be at the moment, but I guess you guys will outsmart them. For me if anything is used to serve ads it have to be blocked, even if there is a chance good content to be there. Privacy is more important than some broken images on a page.