Re: [Captive-portals] Starting to discuss Captive Portals
Warren Kumari <warren@kumari.net> Mon, 30 March 2015 20:19 UTC
Return-Path: <warren@kumari.net>
X-Original-To: captive-portals@ietfa.amsl.com
Delivered-To: captive-portals@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EB5341B29C2 for <captive-portals@ietfa.amsl.com>; Mon, 30 Mar 2015 13:19:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.023
X-Spam-Level:
X-Spam-Status: No, score=0.023 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, FM_FORGED_GMAIL=0.622, J_CHICKENPOX_81=0.6, NORMAL_HTTP_TO_IP=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KaokdawS3Wji for <captive-portals@ietfa.amsl.com>; Mon, 30 Mar 2015 13:19:35 -0700 (PDT)
Received: from mail-wi0-f176.google.com (mail-wi0-f176.google.com [209.85.212.176]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A57671AD35F for <captive-portals@ietf.org>; Mon, 30 Mar 2015 13:14:11 -0700 (PDT)
Received: by wiaa2 with SMTP id a2so898826wia.0 for <captive-portals@ietf.org>; Mon, 30 Mar 2015 13:14:10 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=AB0BeYySrjSClAT9pGWA4+/THlZZTLRD/L1tcSltS/A=; b=ZXCSKcXYKCIAQiaNpqPA0b9gTnqUYcarz/ecrTUMWDyl8S3RPLVjfGMRbDy0aUa8sW ank0ia8a5dFNCsxslL0e2lH/BvGMNUqMlWOqA9vKwTDMOx1W12NsO7DKPrYKZEhNH+wj qA6rcm1Nj1wcit7uCRT0jUU3SEAHU648cezdNp+yCYJPvpf6ydgqt4d88k+4MU008wsd 2d+JYicdewKs8nJO+5NfpIotCZIKFGCaaBKQj3eC+9HzPI3LAigsOI6AEJxK3Q7Qg6j8 nFKyTfU8DgDMT5I7wki6w6qU92gomsdG0M/hh2Mbp+iIwExBQeja2zm1DNC1wGrzm7tv P+pA==
X-Gm-Message-State: ALoCoQmIz3I0rw7xp3L7ZCpNbhoVUg3M9GYpOTjoPvjz7fNdelKuTTaRAaEO5eL9D0KWNb0KoAU3
MIME-Version: 1.0
X-Received: by 10.180.80.40 with SMTP id o8mr25450947wix.22.1427746450344; Mon, 30 Mar 2015 13:14:10 -0700 (PDT)
Received: by 10.194.110.97 with HTTP; Mon, 30 Mar 2015 13:14:10 -0700 (PDT)
In-Reply-To: <CABkgnnVTcShe6V8q7kbFr+yfAXx3hSxevzMyfJMDeefCduNfkg@mail.gmail.com>
References: <D4055D93-6FE3-475B-A782-6DAAEDD21CE8@mnot.net> <5518D429.8070503@gmail.com> <CAOdDvNrMUOKtDRR5=_iVkuR8ZOeoQExwt4M7yq+0c8BxjcktEg@mail.gmail.com> <CAHw9_iLcXOvwmtp+JUxDDVabp6hGEuj2dnP3Nw5NF0OS=ttFsg@mail.gmail.com> <4DEB8792-8B2F-448B-8E0E-64301481C2D5@gmail.com> <CABkgnnVTcShe6V8q7kbFr+yfAXx3hSxevzMyfJMDeefCduNfkg@mail.gmail.com>
Date: Mon, 30 Mar 2015 16:14:10 -0400
Message-ID: <CAHw9_iKAZCSMD+nLtEk1JivVFq+c4NNOvgxMzkpuc8MJeB-MKQ@mail.gmail.com>
From: Warren Kumari <warren@kumari.net>
To: Martin Thomson <martin.thomson@gmail.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <http://mailarchive.ietf.org/arch/msg/captive-portals/vX6_Rt_FszHpeLJ_EAdP9cj1Iu4>
Cc: Patrick McManus <mcmanus@ducksong.com>, Mark Nottingham <mnot@mnot.net>, captive-portals@ietf.org, Yoav Nir <ynir.ietf@gmail.com>, Yaron Sheffer <yaronf.ietf@gmail.com>
Subject: Re: [Captive-portals] Starting to discuss Captive Portals
X-BeenThere: captive-portals@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of issues related to captive portals <captive-portals.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:captive-portals-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/captive-portals/>
List-Post: <mailto:captive-portals@ietf.org>
List-Help: <mailto:captive-portals-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:captive-portals-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 30 Mar 2015 20:19:37 -0000
On Mon, Mar 30, 2015 at 3:38 PM, Martin Thomson <martin.thomson@gmail.com> wrote: > On 30 March 2015 at 14:35, Yoav Nir <ynir.ietf@gmail.com> wrote: >> So why did my hotel do this? It’s because they wanted me to see that page. > > Yes, this is the real problem here. It's eyeball-seeking behaviour. > So why not build in an I-need-eyeballs option? I suspect that we are going to be spending a significant amount of our time with the tension between making the user's life better, and also trying to maximize the CP operator's desires. The CP vendor *could* satisfy their desire for eyeballs (puts me in mind of zombies -- "Braaaaaiiiins... Eyeballls......") by having you sign in, and then presenting a "Thank you for using our super-awsome-internets service" (and whatever other ads they desire) and including a <META http-equiv="refresh" content="20;URL=http://192.0.2.1/congrats.html">. This would get them 20 seconds of luckless^w happy users looking at their ads. Another option would be "CP_SATISTISFIED_JABBERWOCKY; PERSISTANT" which would instruct the host to keep the "Congrats" page around (sure, the host might just ignore this, but, well, at some point we are going to have to assume that the CP vendors and hosts are not completely trying to make the user a sad puppy...) Ugh. Some of this discussion gets a little funny because we don't have good terminology for taking about captive portal techniques. I really suck at definitions and terminology, so someone else should write this, but for now I've been thinking of things like this: Interception - any of the things that CPs do to get you to visit them. These include: DNS interception - handing out fake answers to DNS lookups (fake is meant to mean "different to what the owner of the domain would have given", and is not intended to be pejorative) Passive DNS interception - doing the above by handing out answers when queried directly, for example by having the CP handed out (via DHCP) as the DNS server. Active DNS interception - watching DNS requests as they pass though the CP device and pretending to be the configured DNS server. <similar terms for HTTP interception, IP hijacking, etc> "Splash pages" - generic term for all of the pages that the CP generates and presents to the users. "Welcome page" - the first page that the user sees from the CP. Usually says something like "Welcome to hotel foo. You can get Internets for $price". May include a few more "help" pages, AUP, etc. "Login pages" - the page(s) that accept user input. These may accept things like credentials or credit card information, and so may need SSL/TLS. "Congrats page" - the page that thanks you for your purchase, and says that you are now connected to the Internet. "Status page" - a page that some CPs provide that tells you how much time you have left on your block of Internet (they usually ask to be left open). Some of these are simply a javascript thing that decrements the time, some do a periodic callback to check status, some actually keep your block / lease alive by periodically poking the CP. "Site page" - a page that the CP redirects to after the "congrats" page. After you pay and the CP has told you are on the Internet some CPs redirect you to a "site information page". This has "useful" information about the hotel / airport / location where you are (including stuff like ads for the hotel restaurant, etc.) "Banner insertion" - (the Fairmont hotel was doing this, but many attendees probably didn't see if because we'd already taken over the hotel network and replaced it with the IETF one.) Basically the captive-portal intercepts HTTP requests and injects an iframe which presents a banner at the top of the page with a logo and the time remaining. "Continue URL" - the URL that the user originally tried to access. When the CP has been satisfied, it may (should?!) redirect the user to where they were originally trying to go... Anyway, I *did* warn you that I suck at terminology -- but, we can use things like this until we have something better. W -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf
- [Captive-portals] Starting to discuss Captive Por… Mark Nottingham
- Re: [Captive-portals] Starting to discuss Captive… Yaron Sheffer
- Re: [Captive-portals] Starting to discuss Captive… Patrick McManus
- Re: [Captive-portals] Starting to discuss Captive… Warren Kumari
- Re: [Captive-portals] Starting to discuss Captive… Yoav Nir
- Re: [Captive-portals] Starting to discuss Captive… Martin Thomson
- Re: [Captive-portals] Starting to discuss Captive… Martin Thomson
- Re: [Captive-portals] Starting to discuss Captive… 🔓Dan Wing
- Re: [Captive-portals] Starting to discuss Captive… Warren Kumari
- Re: [Captive-portals] Starting to discuss Captive… Martin Thomson
- Re: [Captive-portals] Starting to discuss Captive… Yaron Sheffer
- Re: [Captive-portals] Starting to discuss Captive… Warren Kumari
- Re: [Captive-portals] Starting to discuss Captive… David Bird
- Re: [Captive-portals] Starting to discuss Captive… Warren Kumari
- Re: [Captive-portals] Starting to discuss Captive… Warren Kumari
- Re: [Captive-portals] Starting to discuss Captive… Martin Thomson