• 1 Post
  • 156 Comments
Joined 1 year ago
cake
Cake day: July 15th, 2023

help-circle



  • I searched for the actual question text and found:

    Q19a. The immigrants entering the country illegally today are poisoning the blood of our country.

    The split was 14% completely agreed and 20% mostly agreed.

    I’m not as surprised by the results as the headline would have suggested because of the use of the word illegally. It biases the question negatively.

    The 20% who mostly agreed may have agreed with some negative connotation surrounding illegal immigration while ignoring the racism of “poisoning the blood.” In other words, if I put myself in the shoes of someone who feels strongly about securing the border, I could understand how those respondents would lean towards agree simply because of the use of the word “illegal.”

    To further support this interpretation: In the same survey, more than 40% of respondents favor or strongly favor building a wall along the US-Mexico border.

    Maybe I’m just optimistic that only around an eighth of the country is completely crazy and that is just a less clickbaity title.










  • That’s correct, it is just plain text and it can easily be spoofed. You should never perform an auth check of any kind with the user agent.

    In the above examples, it wouldn’t really matter if someone spoofed the header as there generally isn’t a benefit to the malicious agent.

    Where some sites get into trouble though is if they have an implicit auth check using user agents. An example could be a paywalled recipe site. They want the recipe to be indexed by Google. If I spoof my user agent to be Googlebot, I’ll get to view the recipe content they want indexed, bypassing the paywall.

    But, an example of a more reasonable use for checking user agent strings for bots might be regional redirects. If a new user comes to my site, maybe I want to redirect to a localized version at a different URL based on their country. However, I probably don’t want to do that if the agent is a bot, since the bot might be indexing a given URL from anywhere. If someone spoofed their user agent and they aren’t redirected, no big deal.


  • User agents are useful for checking if the request was made by a (legitimate self-identifying) bot, such as Googlebot.

    It could also be used in some specific scenarios where you control the client and want to easily identify your client traffic in request logs.

    Or maybe you offer a download on your site and you want to reorder your list to highlight the most likely correct binary for the platform in the user agent.

    There are plenty of reasonable uses for user agent that have nothing to do with feature detection.





  • I’m not sure how true this perception is in more recent years. Many popular sites, with enormous traffic volumes that could drive digital impression ad revenue, are instead pushing subscriptions or other monetization models.

    For instance, the New York Times makes — by far — more money on digital subscriptions than digital advertising. Digital advertising revenues are also declining for them.

    Another example is Spotify, where ad revenue from their ad-supported tier did not cover their operational costs and now represents around only a tenth of their revenue compared to subscriptions.

    The exceptions to this are generally search and social media sites, where the product for sale on these sites are the users themselves. They’re just advertising platforms, which of course make their money from digital advertising.

    So I’d say one issue with digital advertising is that it often does not pay the bills for the site owner. Its value is tied to its ability to convert visitors to buyers, but it has to be ramped up to such an extreme level it instead only creates bad experiences.