And many US ISPs inject extra http request headers containing a per-customer-tag into HTTP requests so that their bum-buddies can use the information so provided to more accurately track web usage to a single customer. This is more prevalent for "Telco" operators, particularly mobile data services. Bell Canada also apparently.
Using TLS prevents this tampering (provided the ISP is not running a poxy which bypasses end-to-end transport encryption). In the "olden days" when the great unwashed first started using the Internet the use of HTTP poxy's by ISPs (particularly those run by the completely incompetent Telco's (which is most of them)) use "transparent caching proxy" servers. They programmed these abominations (poxy's) to work improperly because it increased their profit margin. The easiest way to bypass them was to use TLS (as in HTTPS) since they did not have the competence to intercept and MITM TLS traffic. The world is a much more dangerous place now than it was three decades ago, and TLS was required to get past the mischevious little imps back then, and the need has only grown! --- The fact that there's a Highway to Hell but only a Stairway to Heaven says a lot about anticipated traffic volume. >-----Original Message----- >From: sqlite-users [mailto:sqlite-users- >boun...@mailinglists.sqlite.org] On Behalf Of Simon Slavin >Sent: Sunday, 10 June, 2018 17:29 >To: SQLite mailing list >Subject: Re: [sqlite] sqlite.org website is now HTTPS-only > >On 10 Jun 2018, at 11:25pm, Keith Medcalf <kmedc...@dessus.com> >wrote: > >> Transport security increases the level of security since it >prevents your ISP or other malicious poo-heads from tampering with >the datastream during transport. This is a good thing. > >Worth noting that two big ISPs in the United Kingdom experimented >with intercepting web pages you'd asked for and replacing all >identifiable ads (definitely Google ads, maybe others) on them with >advertisements from the companies which had paid the ISPs. This was >possible only with web requests using HTTP. > >One discontinued the experiment very quickly. I don't remember >hearing about the other one. For all I know it's still doing it, and >swearing every time one of its customers uses HTTPS. > >Simon. >_______________________________________________ >sqlite-users mailing list >sqlite-users@mailinglists.sqlite.org >http://mailinglists.sqlite.org/cgi-bin/mailman/listinfo/sqlite-users _______________________________________________ sqlite-users mailing list sqlite-users@mailinglists.sqlite.org http://mailinglists.sqlite.org/cgi-bin/mailman/listinfo/sqlite-users
