Using the Hosts File to block these sites is problematic as the True IP address can be used to redirect the Web Application instead of the URL address.

This does not however prevent the Packet Sniffing that the Phorm System is doing! ( I consider this totally illegal without the consent of both parties, or for proper legal or operational reasons)

This also appears to imply direct Packet Examination at the ISP level!
Which is under current UK law illegal monitoring, without the direct permission of both parties in the communication!

Please Note they also state the US Version Opt-out NOT Opt-in (not that this make any difference both are illegal under current UK legislation without the consent of both parties in the communication!)

http://www.nebuad.com/privacy/uk_servicesPrivacy.php

What is your description of a BT Broadband Customer & what Information have you released to Phorm about BT Customer Accounts, does it include all users connected to your Broadband Network, whether or not they are a direct BT Broadband Customer!

This potentially affects Sky, Orange….etc, Customers who are connected to the BT Broadband Network.

Remember that BT is also the Telephone Company & therefore has control of the Master Router/MAC, which can also potentially be viewed by BT as part of their ISP Network!

“AND THIS SUBMISSION ON FIRST ATTEMPT WAS BLOCKED BY MY ROUTER FIREWALL BECAUSE AN ATTEMPT WAS MADE TO RE-ROUTE IT THROUGH A “”"PHORM”"” ADDRESS!!!!!”

27. If the user has disabled cookies for CNN (viz: they don’t record their values and don’t supply them with further requests), then there is potential for an infinite loop – repeating all the 307 responses forever. The Layer 7 switch recognises this situation and records that future traffic (at least for a while) from the particular IP address to the particular (CNN) domain is not to be redirected.

28. If the user has set a cookie within the webwise.net domain indicating that they do not wish to be tracked, then this preference is passed to the Layer 7 switch during the process in paragraph 16 above. The details on how this is done were not explained by Phorm… but it is presumably related to the mechanism described in the previous paragraph.

29. If the user does not accept any cookies in the webwise.net domain then they will always be allocated a new identifier for every website they visit. This situation is detected by the Layer 7 switch and the IP address is “blacklisted” and future traffic is not redirected.

30. Note that the blacklisting of IP addresses by the Layer 7 switch (as described in the three previous paragraphs), whether general, or for particular domains, will apply to all of the users who are sharing a particular IP address, not just users with a particular UID.
However, because the “blacklisting” will time out eventually, the exact behaviour will depend upon the mixture of requests made by different users who have different browser settings.

27. If the user has disabled cookies for CNN (viz: they don’t record their values and don’t supply them with further requests), then there is potential for an infinite loop – repeating all the 307 responses forever. The Layer 7 switch recognises this situation and records that future traffic (at least for a while) from the particular IP address to the particular (CNN) domain is not to be redirected.

28. If the user has set a cookie within the webwise.net domain indicating that they do not wish to be tracked, then this preference is passed to the Layer 7 switch during the process in paragraph 16 above. The details on how this is done were not explained by Phorm… but it is presumably related to the mechanism described in the previous paragraph.

29. If the user does not accept any cookies in the webwise.net domain then they will always be allocated a new identifier for every website they visit. This situation is detected by the Layer 7 switch and the IP address is “blacklisted” and future traffic is not redirected.

30. Note that the blacklisting of IP addresses by the Layer 7 switch (as described in the three previous paragraphs), whether general, or for particular domains, will apply to all of the users who are sharing a particular IP address, not just users with a particular UID.
However, because the “blacklisting” will time out eventually, the exact behaviour will depend upon the mixture of requests made by different users who have different browser settings.

The customer could no longer connect to several http sites as of this morning, having noticed similar symptoms on BT, indicating Phorm activity!, I was able to advise the customer on how to re-establish connections to these sites.

This however was not an ideal mitigation, it involved altering certain Firewall settings!

It appears that a website can easily read your cuckoo in their domain by making the web page call for an image by a non-standard port. In view of this, any site or group of sites can easily and conveniently track all webwise-encumbered surfers. Please explain how this enhances their privacy. A website has a right to any cookies (including cuckoos) in their domain.

A surfer can block access to webwise.net. Will this break her browsing? Do you plan to prevent this legitimate reaction to your intrusion?

Do you plan to attach a “profile” mark to the user agent string (or elsewhere) of browsers you are profiling, as a courtesy to the websites, and to permit them to exercise their informed consent?