Comments on: Want a cookie?

By: diabolika

diabolika — Thu, 09 Jul 2009 15:27:51 +0000

i was looking for how to cook cookies when i fall on this post , lol just jocking great post dude

By: Donace

Donace — Tue, 04 Nov 2008 16:57:19 +0000

To hide the refer via .htacces is difficult (I dont know how it can be done thus elimating forum cookie stuffing/ image redirects etc). With a php script though what you could do is something like this: BH.com/BHpage1.php -> BH.com/BHpage2.php -> WH.com/Wpage.php -> Affilate page So on your 'BHpage' what it would do is redirect ALL your traffic to the 'wpage' which will drop the cookie and act as your refer. To explain it another way you send 100 visitors to your BHpage (from ANY source) all of these will be redirected to your genuine landing page (i.e. a page that has that affilate links present) These will then fall target to a script as discussed in the article (i.e. a random cookie dropping script). This will result in the Affilate seeing 'wpage' as the referer to all the cookie drops. What this is effect means is you can redirect different traffic sources to BHpage and by tweaking the % on the 'landingpage' drop a fair no of cookies. SO BHpage1=

";

?>

BHpage2 =


";    

    }
?>

Whpage = (see pseduo script in post) This in effect will hide ALL traffic sources and referers and use the 'whpage' as a referer etc. OR an alternative: With the same model above (except with 1 less page) i.e. BH.com/BHpage1.php -> WH.com/Wpage.php -> Affilate page you could use is something like this:


";
echo "<**form action=\"" . $site2 . "\**" method=\"post\" name=\"frmClickTracking\">";
echo "<**/form>";

?>



";
	echo "<**form action=\"" **. $affiliate_link . "\" method=\"post\" name=\"frmClickTracking\">";
	echo "<**/form>";
}

?>

What the first script does upon landing on the page it redirects the user to your second 'legitmate' page which will then load the affilate page use the 'legitimate page' as your refer. These methods would not as mentioned not work with forum stuffing (as in my knowledge) the refreshes etc will not work though this will work well with CPA offers that limit traffic sources (the second method) or just help you provide more users for your 'cookie script page' (the first method). Also check out For a bit more info on controlling your referer NB every where you see '**' delete them as they are just there to stop the code being run in the comments

By: Chris

Chris — Mon, 03 Nov 2008 20:22:04 +0000

Thanks a lot for the reply Donace, I’m currently still tring to make a script or change the .htaccess so that it will hide the referer, having a lot of trouble working out how to do it. I have been pushed in the direction of HTTPS –> HTTP to hide the referer but can’t find too much info on the net about it!

By: Donace

Donace — Thu, 30 Oct 2008 12:14:47 +0000

Hey Chris sorry for the late reply your comment was caught by askimet…

Just need to clarify what you actually put in the php file ?

Also if you are using forums it would be easier to do the following:

Add this to the .htaccess:
Redirect /image1.jpg ww.SomeAffiliateWebsite.com/aff123

and then use the following format on forums:
[img]ww.SomeDomainOfYours.com/image1.jpg[/img]

add this to the .htaccess:

RewriteEngine On RewriteRule image1.jpg ww.SomeAffiliateWebsite.com/aff123/ [R,L]

and use this:

or use the tags as above.

Though if you are adamant on using a php add the following to .htaccess:

ForceType application/x-httpd-php

and add this to image1.jpg

< ? if(!$_SERVER[‘HTTP_REFERER’]){ header("HTTP/1.0 404 Not Found"); } else { header("Location: ww.SomeAffiliateWebsite.com/aff123/"); } ?>

Hope it helps….but remember cookie stuffing is bad and this is to help grow your knowledge ONLY! Also don’t forget to ad ‘http’ I didn’t because it was breaking the code tags.

By: Chris

Chris — Thu, 30 Oct 2008 02:36:13 +0000

I could not get this to work for some reason. I setup the .htaccess file and the php file and I changed the file extension of the php file to .jpg. All filenames were changed to my picture.jpg and all paths were correct but the cookie would not plant. I tried this in a forum, not on my own server so it was within [IMG][/IMG] tags. Any ideas what I have done wrong? Was it that I simply changed the .php file to .jpg? It is definately now an image file and not a xxx.jpg.php file.

By: Donace

Donace — Sun, 12 Oct 2008 11:49:10 +0000

Before I comment I would again state that this is for educational purposes only.

The basic gist though is you would write in the script a portion that tell it read the text file via the ‘file()’ command or fget()

// open the file and save each line as an array entry in $content
$content = file(‘myfile.txt’);

// count how many lines in the file
$numLines = count($content);

// loop through all the lines
for ($i = 0; $i < $numLines; $i++) {
// each line ends with a newline character
// you may want to get rid of this first
// using trim()
$line = trim($content[$i]);

// do whatever you want to do with that line
// ...

}

// open the log file and check if the it's opened successfully
if (!($fp = fopen('myfile.txt', 'r'))) {
die('Cannot open file');
}

// keep fetching a line from the file until end of file
while ($line = fgets($fp, 4096)) {
// trim to remove new line character at the end of line
$line = trim($line);

// do whatever you want to do with that line
// ...
}

You then set the result as a variable (you could use $line) but I would recommend using $refer = $line so it is more readable in the different sections of code.

You then enter this $refer in to your script...actually spoofing the refer is a different matter and so as not to write another post in the comment section I sugges you check out http://www.anthonyshapley.co.uk/2008/08/27/http-referral-spoofing-with-php-and-curl/

By: ximscreamingx

ximscreamingx — Sat, 11 Oct 2008 17:45:29 +0000

Could you be a bit more specific when you say:

“you basically tell the script that it is at location ‘x’ and you can hold multiple locations in a txt file for it to read.”

I have tried to blank and img tag for years with no avail.

By: Donace

Donace — Sat, 27 Sep 2008 13:37:40 +0000

im assuming you mean your doing this on your own site, just to get some more info, have you set the .htaccess so it reads as a php file?

Though rereading your comment i’m thinking you want it to display a picture as well as redirecting to php code. Though I have no idea if this is possible, as the code then would have to be embedded in to the file. A flash based cookie stuffer imo would work better if this is your aim.

By: ishtwan

ishtwan — Fri, 26 Sep 2008 20:02:27 +0000

has anyone successfully managed to serve image.jpg ( as img src=’image.jpg’ ) somwhere on the page so when the image is displayed the php redirection script is called which takes you to another php script which would than take you to aff.
For some reason I can only directly execute image.jpg and the code works fine but it does not work when served as img src=..

By: Donace

Donace — Tue, 02 Sep 2008 12:04:36 +0000

There are ways to do that; you basically tell the script that it is at location ‘x’ and you can hold multiple locations in a txt file for it to read.

The problem is though all these refers MUST be real, if your AM decides to check a refer that seems to be working well but it doesn’t exist….alarm bells will go off.

Again I would like to reiterate…cookies stuffing is wrong, this was just an educational documentation.

By: Jason

Jason — Tue, 02 Sep 2008 08:41:15 +0000

Any idea on how to either blank or spoof the referer?

By: Donace

Donace — Fri, 29 Aug 2008 19:48:55 +0000

LOL and don’t we don;t want to see a repeat of DP now do we?!

By: techtreak

techtreak — Fri, 29 Aug 2008 17:08:46 +0000

hehe i never tried cookie stuffing