Link to home
Start Free TrialLog in
Avatar of rtod2
rtod2Flag for United States of America

asked on

hide url and traceability

Is it possible to hide my address in such a way that:
1. Google Adsense will still work (see concern) >> http://screencast.com/t/zg3iinUoJLN8 ?
-and-
2. Provide a way to mask the address with something untraceable?

The purpose of this is to provide a form to outsourcers where they can apply for a job, but are prevented from being able to find me directly.  I will also be trying to make some money with Adsense columns along the sides of the page.  I am not sure what the restrictions are that might affect the functioning of Adsense from there.
Avatar of R7AF
R7AF
Flag of Netherlands image

What address do you want to hide? Where do you want it to hide from?

If you want to hide your domain name, bad luck. If you want to hide your weblog from google, you can specify that in the admin. Or you can add a robots.txt file in the root of your domain.

Trackbacks and Google Adsense are different things. Google Adsense is a service to put ads on your website. Trackbacks are a way of communicating between two weblogs, to let weblog A know that something has changed on weblog B.

So before we continu, please let us know what you need and do some research about what is what. Your question is confusing to me.
Avatar of rtod2

ASKER

I mostly just wanted to make sure that by anonymizing a page such that people could not figure out where it really was, would not violate the terms of service for google adsense.  If it doesn't, then that isn't an issue.

Take for example, a test form page that would be at www.tedpenner.com/testformpage .  That doesn't exist currently.  If it did exist, how could I hide it so that the person filling out the form would not know that they were actually on the tedpenner.com site.
ASKER CERTIFIED SOLUTION
Avatar of Steve Bink
Steve Bink
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
I still wonder what you really need. From the user point of view, what do you want? Why would you want to anonymize a page? What is the reason for wanting to hide a URL? What can happen is someone finds out?

And what do you mean with "anonymizing a page"? If you want a page that you only use once, that is possible. So only one user can use it, and then it should be deleted. That would however mean that the page exists for e.g. an hour, the time the user has to visit the page. After an hour (or 30 minutes) the page is deleted, and the user should request a new page.

There are ways to protect a page, using a login procedure or using htaccess login. If you want to require a unique key to a page, the page itself can be found, but without the unique (combination of) key(s) it is useless to the visitor.
Avatar of rtod2

ASKER

In response to anonymous there is definitely a need for me.  I often write up a project on my website and point outsourcers to it.  Not only do I not want them to see my header, I also don't want them to be able to find me.  Forms are a great example of this where I want one-way-only traffic.  See www.tedpenner.com/form1 and you can see why I might want to anonymize.
Then you will need some kind of proxy mechanism, or have your outsourcers handle the relay of the information for you.
Avatar of rtod2

ASKER

onodot seems to be a good solution for now.  

Routinet, I sure wish I could I understand some of your previous post because you have a couple of really good things in there I think.
What questions do you have?  I would be happy to explain further.  Just ask...
Avatar of rtod2

ASKER

I think onodot has resolved the original question.
Avatar of rtod2

ASKER

you will get the credit none-the-less.  Thanks for your help


Can you explain the C grade you provided?  

The domaina.com and domainb.com references were part of a hypothetical example.
Avatar of rtod2

ASKER

I need to obscuficate (I think that is the right term?) and still don't see a resolution that I can implement posted clearly here.
I gave you two possibilities in #34461920.  My original post (#34460793) demonstrated the method for creating a proxy-style environment.  You said you would like to more, but never specified any particular concept to explore.

How does the domaina reference fit into this?

You mean obfuscate.  There is a maxim in our field: obfuscation is not security.  The point here is that using technical tricks or hacks to hide who you are does not provide the cover you think it might.  
Avatar of rtod2

ASKER

I agree.  It's step one though.  You are correct about the term, obfuscate.  That is what I should have started with.  Sorry for the confusion.
I'm still confused as to what additional information you want.  The two possibilities I offered were a proxy or an intermediate relay.  You found a service (onodot.com) that provides an intermediate relay.  What else do you need/want to know?  What other explanations are lacking?
Avatar of rtod2

ASKER

That's the clearest explanation I have heard.  I had no idea what you meant when you used the term.

1) onodot - intermediate relay

I have tried that with moderate success.  I'm hoping to make it easier than that so I guess I need to look into the proxy.

How might I go about obfuscation with the proxy approach?
With a relay environment, the relay server is hosting its own form, and collecting the information from the user.  That information is then passed to your servers sometime later.  All of the work is done on the relay side.  This is relatively easy to set up since the relay just needs to collect information and pass it to your company in whatever manner you agree on.

In a proxy, you have a third-party server browse to your server instead of the user.  Using my previous example, say I host domaina.com and want people to see my content without knowing which server is hosting it.  So I contract with the people hosting domainb.com to provide a proxy service to my content.  The user will browse to domainb.com, which opens a CURL session to my server.  It takes the response from that session and spits it back out to the user as though it came from domainb.com, not my servers.  If the user submits a form, then domainb.com would POST that submission back to my servers in the same way.  All of this is transparent to the end-user side, and as far as they can tell they are talking only to domainb.com.  This requires slightly more effort to set up because the communication between the servers has to be agreed upon in advance, and coded appropriately.  The third-party, domainb.com in the example, does not actually store any content, nor does it collect any information from the user.  It is all passed directly to you.  In effect, it acts like a pipe between your server and the user, effectively hiding the real source of the content and the real destination of any form submissions.

These methods are not obfuscation - they are masking strategies.  Obfuscation is purposefully making things confusing or unnecessarily complicated in order to defeat someone else understanding the methods or environment.  For example, say I write some javascript code that I do not want someone to tinker with.  Instead of giving my variable names that makes sense (such as MyInputValue or TheLicenseKey), I would give them names like a and b.  This makes no functional difference in javascript, and only prevents the code from being easily understood by a casual observer.  Someone with the knowledge and time to examine the code will still be able to figure it out.  So, it provides no actual security - it only increases the amount of effort required.
Avatar of rtod2

ASKER

That's just the thing.  I wasn't asking for assistance in 'pursuing a resolution'.  I didn't ask the question to 'begin pursuing' but rather to 'end my pursuit'.  As such, the question is still open for me.  I accepted an answer none-the-less.
>>>  As such, the question is still open for me.

You should not have closed the question if it was not resolved.  You should have continued asking for more information or assistance until you were satisfied.  I even prompted you towards that option.

The difference in the semantics is the difference between giving you suggestions for how to resolve this (i.e., pursuing a resolution) versus giving you a ready-made solution to implement (i.e., ending your pursuit).  If you want a ready-made solution, you will need to find a commercial provider - no one here will develop this solution for you free - and I told you as much in my previous comments.  From your responses, it sounds like that is exactly what you did with onodot.com.  

The only other option open to us as experts is to assist in the development of a solution for you.  Given the scope of the project, this is certainly not the forum to pursue it.  If this is the tack you want to take, I highly recommend you find a developer-for-hire to engage, or begin development yourself and come back with specific questions when you hit roadblocks.

Once again, I am asking what other information you need or want.  You have said you needed "more", but have not defined the "more" requirement.  What questions do you have?  What concepts need further explanation?  What is lacking in the explanations to-date?  If you want an answer, you first have to ask the question.
Avatar of rtod2

ASKER

We disagree here but I sincerely appreciate your assistance.
On what do we disagree?

And again, what further information do you need or want?
Avatar of rtod2

ASKER

I accepted the solution.  It's fine.  It wasn't clear enough for me to implement but that is probably my fault.  I have no problem taking the blame.  I did assign the grade that I thought was fair.  Thank you for your kind reply.
Avatar of rtod2

ASKER

Give him an A or B.  That is perfectly OK with me.  The solution he recommends is not clear to me and I just don't want to waste any more time on it.