在桌機上面用 mobile.twitter.com 速度比 twitter.com 快很多，所以平常用桌機時都是用 mobile 這個版本在逛，但因為 mobile 版本對 css name 有處理過，使得 uBlock Origin 這類軟體不好處理廣告的部份...
前陣子在日本的時候發現頁面上多了一堆廣告，本來以為是在日本用日本 IP address 才會有所以就沒有太在意，結果回台灣後發現也出現了... 看起來是 css name 又因為改版被改掉而使得原本的規則失效了...
網路上找其他方法看看有沒有方向，結果找到「Block "Promoted Tweets" on mobile.twitter.com · Issue #351 · uBlockOrigin/uAssets」這篇，雖然最後的 commit 還是用 css name 的方式，但在留言處 Jud 提到可以用 Procedural cosmetic filters 中的 XPath 解決：
<div role="article"> 的元素，然後判斷下面的節點有沒有文字化開頭後是
Promoted by 」應該會比較好？也就是這樣：
mobile.twitter.com##:xpath(/html/body//div[@role="article"][.//div[text()[starts-with(., "Promoted by ")]]])
TechCrunch 上看到的，俄羅斯政府不只在美國選舉時這樣做，同時也在英國脫歐公投的議題上進行操作：「Twitter says Russians spent ~$1k on six Brexit-related ads」。
In response to the Commission’s request for information concerning Russian-funded campaign activity conducted during the regulated period for the June 2016 EU Referendum (15 April to 23 June 2016), Twitter reviewed referendum-related advertising on our platform during the relevant time period.
Among the accounts that we have previously identified as likely funded from Russian sources, we have thus far identified one account—@RT_com— which promoted referendum-related content during the regulated period. $1,031.99 was spent on six referendum-related ads during the regulated period.
With regard to future activity by Russian-funded accounts, on 26 October 2017, Twitter announced that it would no longer accept advertisements from RT and Sputnik and will donate the $1.9 million that RT had spent globally on advertising on Twitter to academic research into elections and civil engagement. That decision was based on a retrospective review that we initiated in the aftermath of the 2016 U.S. Presidential Elections and following the U.S. intelligence community’s conclusion that both RT and Sputnik have attempted to interfere with the election on behalf of the Russian government. Accordingly, @RT_com will not be eligible to use Twitter’s promoted products in the future.
AWS 推出了 AWS Single Sign-On：「Introducing AWS Single Sign-On」、「Announcing AWS Single Sign-On (SSO)」。
將 SSO 當成一個服務來賣的概念，可以將既有的 Active Directory 服務掛上去當後端，然後對外透過 SAML 2.0 接上各種服務：
us-east-1 上，AWS SSO 的部份不另外收費：
There is no additional cost to enable AWS SSO. It is now available in the US East (N. Virginia) Region.
從官方的截圖可以看到包括了蠻多常用的 SAML 2.0 服務，也可以自己設定：
看到「Plex’s DVR now lets you skip the commercials… by removing them for you」這篇文章，介紹 Plex 要推出去電視廣告的服務...
維基百科上的介紹比較清楚：「Plex (software)」，主要有兩個元件組成，media server 與 player：
- The Plex Media Server desktop application runs on Windows, macOS and Linux-compatibles including some types of NAS devices. The 'server' desktop application organizes video, audio and photos from your collections and from online services, enabling the players to access and stream the contents.
- The media players. There are official clients available for mobile devices, smart TVs, and streaming boxes, a web app and Plex Home Theater (no longer maintained), as well as many third-party alternatives.
Plex confirmed it’s rolling out a new feature that will allow cord cutters to skip the commercials in the TV programs recorded using its software, making the company’s lower-cost solution to streaming live TV more compelling. Unlike other commercial-skip options, Plex’s option will remove commercials from recordings automatically.
這讓我有些印像... 當年 TiVo 也有類似的功能，不過文章裡有提到 TiVo 是提供 skip 而非直接拿掉：
The new feature works by locating the commercials in your recorded media. It then actually removes them before the media is stored in your library. That sounds like it could be even better than TiVo’s commercial skipping option, for example, because you don’t have to press a button to skip the ads — they’re being pulled out for you, proactively.
不過主要是認識了 Plex 這個軟體... 如果是電視兒童的話應該用的到 XD 台灣目前的電視節目好像看的比較少...
TechCrunch 這篇「Trump and Clinton spent $81M on US election Facebook ads, Russian agency $46K」講到 Facebook 目前階段所判斷出來，能夠識別是俄羅斯政府投入的資金，只有 USD$46K，相較於美國兩黨投入了 USD$81M 差了 1760 倍：
While there might have been other Russian disinformation groups, the IRA spent $46,000 on pre-election day Facebook ads compared to $81 million spent by Clinton and Trump together, discluding political action committees who could have spent even more than that on the campaigns’ behalf.
而俄羅斯投入的廣告散佈率超過 1.26 億的 Facebook 使用者，以及 2000 萬 Instagram 的使用者：
Facebook today said that the Russians still reached 126 million Facebook users, as well as 20 million Instagram users.
俄羅斯這團隊的水準真不賴... 只可惜大概沒辦法寫在 resume 上。
參考「Ad blocking is under attack」這邊，有業主
functionalclam.com 透過 DMCA takedown notice 發信要求 Easylist 移除過濾條件 (參考「2017-08-02-LevenLabs.md」)，對應的 commit 參考「M: Removed due to DMCA takedown request」) 這邊。
這件事情再次證實了 DMCA takedown notice 被濫用的情況，明明不是侵權的情況卻被拿來濫用 (因為對原提出者唯一的處罰必須過反過來提告，然後要得自己舉證因為這樣受損)。
目前看起來 EFF 願意介入，就來看看後續了。
查資料的時候發現 uBlock Origin 的「Static filter syntax」已經自己實作
:has() 了 (雖然有一些限制)。
這個 CSS4 (draft) 的特性目前還沒有瀏覽器支援，所以 uBlock Origin 決定自己來：
This is a planned CSS4 operator, but no browser supports it yet. I decided to go ahead and implement it so that it can already be used. See The Relational Pseudo-class: :has() in the Selector Level 4/Editor's Draft.
由於效能問題，要求一定要有 hostname，而不能是 global rule：
uBO's implementation is simplified so as to ensure performance. The :has operator must be used with at least one hostname (it must be specific), and must be of the form (example)[.]
這對於 html block 長的幾乎一樣，只有在某個地方多出
Promoted by ... 之類的結構處理起來很方便，可以拿來找出「裡面有廣告
Promoted by ...，而是連廣告內容都拿掉)
華盛頓郵報整理出來了 Facebook 的廣告所使用的 98 個個人資訊：「98 personal data points that Facebook uses to target ads to you」。
基本的個人資訊 (甚至是朋友的)，以及使用什麼瀏覽器都可以預期；而 Like 或是參加的 Group 都會被計算也是意料中的事情，不過連信用卡的種類也都在內就頗特別的...
來檢視一下自己的防禦機制有哪些... 瀏覽器預設擋下第三方 cookie：
用 Ghostery 預設把所有外部元件擋下來，再用白名單開想要看的部份。用 uBlock Origin 擋下所有廣告。
另外用「Force Facebook Most Recent」強制 Facebook 轉到 Most Recent 的 Timeline 上。
最後來列出這 98 個條件：
- Education level
- Field of study
- Ethnic affinity
- Income and net worth
- Home ownership and type
- Home value
- Property size
- Square footage of home
- Year home was built
- Household composition
- Users who have an anniversary within 30 days
- Users who are away from family or hometown
- Users who are friends with someone who has an anniversary, is newly married or engaged, recently moved, or has an upcoming birthday
- Users in long-distance relationships
- Users in new relationships
- Users who have new jobs
- Users who are newly engaged
- Users who are newly married
- Users who have recently moved
- Users who have birthdays soon
- Expectant parents
- Mothers, divided by “type” (soccer, trendy, etc.)
- Users who are likely to engage in politics
- Conservatives and liberals
- Relationship status
- Job title
- Office type
- Users who own motorcycles
- Users who plan to buy a car (and what kind/brand of car, and how soon)
- Users who bought auto parts or accessories recently
- Users who are likely to need auto parts or services
- Style and brand of car you drive
- Year car was bought
- Age of car
- How much money user is likely to spend on next car
- Where user is likely to buy next car
- How many employees your company has
- Users who own small businesses
- Users who work in management or are executives
- Users who have donated to charity (divided by type)
- Operating system
- Users who play canvas games
- Users who own a gaming console
- Users who have created a Facebook event
- Users who have used Facebook Payments
- Users who have spent more than average on Facebook Payments
- Users who administer a Facebook page
- Users who have recently uploaded photos to Facebook
- Internet browser
- Email service
- Early/late adopters of technology
- Expats (divided by what country they are from originally)
- Users who belong to a credit union, national bank or regional bank
- Users who investor (divided by investment type)
- Number of credit lines
- Users who are active credit card users
- Credit card type
- Users who have a debit card
- Users who carry a balance on their credit card
- Users who listen to the radio
- Preference in TV shows
- Users who use a mobile device (divided by what brand they use)
- Internet connection type
- Users who recently acquired a smartphone or tablet
- Users who access the Internet through a smartphone or tablet
- Users who use coupons
- Types of clothing user’s household buys
- Time of year user’s household shops most
- Users who are “heavy” buyers of beer, wine or spirits
- Users who buy groceries (and what kinds)
- Users who buy beauty products
- Users who buy allergy medications, cough/cold medications, pain relief products, and over-the-counter meds
- Users who spend money on household products
- Users who spend money on products for kids or pets, and what kinds of pets
- Users whose household makes more purchases than is average
- Users who tend to shop online (or off)
- Types of restaurants user eats at
- Kinds of stores user shops at
- Users who are “receptive” to offers from companies offering online auto insurance, higher education or mortgages, and prepaid debit cards/satellite TV
- Length of time user has lived in house
- Users who are likely to move soon
- Users who are interested in the Olympics, fall football, cricket or Ramadan
- Users who travel frequently, for work or pleasure
- Users who commute to work
- Types of vacations user tends to go on
- Users who recently returned from a trip
- Users who recently used a travel app
- Users who participate in a timeshare
作者提到了現在的影音廣告愈來愈誇張：「A few months ago, I brought to light the insane state of today's advertising...」。
作者放了一個空白頁面，裡面只放了一個影音廣告，然後打開後發現，光是一個影音廣告就會產生 5559 個連線 (喂喂) 與 53MB 的流量，而且還會無止盡的成長 (不會停，會一直讀取新的廣告)：
To showcase just how evil they still are, I took a single AdX ad tag and put it on an otherwise empty page. A static image ad loads, but it's secretly a VPAID one. It then randomly switches to a video, then back to a static image, then back again - it's like a never-ending self-reloading cascade of garbage.
Right now after several minutes of just leaving this one single ad open, I'm at 53MB downloaded and 5559 requests. By the time I finished typing this, I was at 6140 requests. A single ad did this. Without reloading the page, just leaving it open.