digg

Facebook Connect Join Digg About

Microsoft censors MSN Messenger

virtuelvis.com Microsoft filters out any MSN messages containing "download.php" or "gallery.php". The messages are silently discarded without any indication being given that they have been blocked. To see a list of legitimate URLs that are now unable to be sent through MSN, put allintitle:download.php into Google. Many are Free Software downloads.

Who dugg this? Made popular Jul 2, 2006

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

138 Comments

show profanity settings
expand all
  • Oakes, on 10/12/2007, -26/+194Raise your hand if you're a digg user and you use MSN Messenger. Honestly.
  • OBKenobi, on 10/12/2007, -11/+50Training wheels for noobs. I'd rather make my own decisions.
  • blackmath, on 10/12/2007, -0/+37But I guess .asp pages are ok though right?
  • Nick_Circosta, on 10/12/2007, -1/+32Aparntly after a quick check on Messanger Plus forums its been like this for a while
    http://www.msghelp.net/showthread.php?tid=62334&pid=684617#pid684617
  • phelonius, on 10/12/2007, -7/+32I'm sorry. But my friends forced me! I'm sooo sorry! But it's so much fun to take over the other peoples desktop!
  • dbr_onix, on 10/12/2007, -1/+23Lots of people in the UK use MSN Messenger, which means a lot of UK digg users have two options, not be able to talk to friends online, or use MSN Messenger..

    I've had this really annoying.. erm.. feature? before when talking to a friend about PHP stuff, we couldn't work out why the feck messages for no reason would get sent properly, while others worked fine... This explains it totally (it must have had include("downloads.php"); or something in it..

    This seems a bad idea, or atleast very badly impliemented.. there must be a better way than stopping absoultly any link to ANY site, that ends in downloads.php.. It even removes despite it not being a link.. And all the worm writer has to do is change the scripts to ASP or HTM and it's bypassed...
    - Ben
  • drakino, on 10/12/2007, -1/+22Do you realize how many people are inconvenienced by this? I was trying to send a link to a download to a friend the other day that kept getting nuked and I couldn't figure out why. There is no notice this happens at all. This is as dumb as blocking .zip in e-mail, everyone just gets around it now by renaming the file and asking the people on the other side to rename it back.

    Microsoft just enjoys wasting peoples time these days and they call it "security".
  • leobaby, on 10/12/2007, -5/+25digg used to censor out links to

    http://en.wikipedia.org/wiki/Godwin%27s_Law

  • ViceVirtue, on 10/12/2007, -8/+27I'm sure heaps of Digg users use MSN messenger... most of us are forced to.
    This has been around for a very long time, IIRC, well over a year.
  • Nick_Circosta, on 10/12/2007, -8/+24omg its true, just tried it,
  • JoshHendo, on 10/12/2007, -0/+15> Does this censor from Trillian too? If you use a 3rd party software to connect to MSN?
    Yea, it filters it out when it gets to the MSN servers, so it doesn't matter what program you are using. I couldn't sent download.php in aMSN in Ubuntu. Well, it did send, but it told me it couldn't be delivered.
  • inactive, on 10/12/2007, -2/+15Yup, good thing we're blocking all of those sites being shared that use PHP and have downloads or a gallery of photos... I mean there's not a lot of sites that have either of those.... at all...
  • terminalpariah, on 10/12/2007, -0/+12Time was that you couldn't get an AIM account in Canada. It was either ICQ or MSN. Using ICQ resulted in getting a new trojan every hour or so, and 90% of people had Hotmail accounts to begin with.
  • KCorax, on 10/12/2007, -2/+13> Raise your hand if you're a digg user and you use MSN Messenger. Honestly.

    In the US aol rules the market but in Europe (most countries I collaborate with) MSN is the way to go.
  • foolfromhell, on 10/12/2007, -1/+12Does this censor from Trillian too? If you use a 3rd party software to connect to MSN?
  • JakeMcMahon, on 10/12/2007, -2/+12This isn't new. To send links through MSN/WML I always use tinyurl.com. Why should MS enforce their ***** upon me and censor my messages?
  • xerox, on 10/12/2007, -3/+12Anyone else see something completely wrong with this statement?
  • Arve, on 10/12/2007, -0/+9The censorship happens at the MSN server, so which client you're using to connect to MSN Messenger Service is not going to help.

    Your only option is choosing a different IM network.
  • Splizxer, on 10/12/2007, -0/+8I wonder if they will block downloads.aspx?
  • TheG2, on 10/12/2007, -28/+36Do you realize how many people are saved from virus's now? I mean, maybe if it was a feature turned on by default it could be made better, but Microsoft really is doing something helpful here, even if they went about it the wrong way.
  • znxster, on 10/12/2007, -6/+14I'm impressed that they are being proactive, too many users are getting bitten by IM attacks. I think it would be better to indicate the block however.
  • Trel, on 10/12/2007, -1/+9real question is if download.asp and gallery.asp is blocked ;)
  • aaryn, on 10/12/2007, -2/+10I don't and it doesn't matter because if you've read it already you can just move on to something else, instead of commenting as I'm sure there are some people who haven't seen this. You aren't the only one online! :P
  • stepnet, on 10/12/2007, -1/+9@Oakes - being a digg user? How is that relevant?

    In Australia the default messaging client is msn - I'd nearly go so far as to say the only major one is msn. (I know there's a few people still using yahoo). I mean sure - I can use something else.. but then I'd have no friends. (oh wait... don't worry).
  • buss, on 10/12/2007, -1/+8I think it could be debated whether or not this actually helps in preventing the spread of viruses. That being said, if they're going to discard the messages, then both parties should be alerted and given the option to have the message sent anyway. That's really the only option I see to avoid controversy.
  • raccettura, on 10/12/2007, -1/+7every hacker should include "/windows" and "microsoft.com" in their virus... so that MS blocks those too.
  • ahawks, on 10/12/2007, -0/+6To those who think this is being proactive against viruses:

    If that is infact their intent, they should not remove the ENTIRE message w/o notifying either user (sender or receiver), they should modify the message in some way such as: "(You received a message from which contains a link that may point to a virus. Click _here_ to view the original message)."

    And also un-linkify the suspected link.

    The evil here is not their effort to filter viruses, but the fact that neither user knows the message was filtered.
  • i440, on 10/12/2007, -2/+8I usually defend Microsoft, but this is ridiculous and going too far, even for me.

    Fortunately, I don't use MSN.
  • aaryn, on 10/12/2007, -8/+14"Training wheels for noobs. I'd rather make my own decisions."

    If you know enough to be reading this you can send your downloadable file another way. Like it or not MSN isn't made for techies and this is going to most likely save more people than annoy because of all the worms that send links and just plain mean people who take advantage of people that don't know better.
  • bbene, on 10/12/2007, -2/+7I noticed this a while ago when I was trying to send my friend a link to a linux torrent file. There is a really simple bypass though. All you have to do is create a tinyurl.com URL for it and you're all set.
  • bfirsh, on 02/13/2009, -4/+9This is why we should be using open protocols. Jabber anyone?
  • robbyt, on 10/12/2007, -0/+5uhh are you kidding?
    http://www.microsoft.com/technet/security/bulletin/MS02-072.mspx

    we're talking about microsoft here. Their software can be exploited if you look at it the wrong way
  • awhiteflame, on 10/12/2007, -1/+6In other news, IP addresses and personal information of people who send links containing '.mp4', '.avi', '.mpg', .'mpeg' and '.mov' are sent to the MPAA. '.wmv', however, is absolutely acceptable.
  • perrupa, on 10/12/2007, -0/+5Except one of those useless features Miranda doesn't support is webcam : In Canada it used to be all about ICQ and then somewhere around the time that the 2001b client came out all my friends switched to MSN whithin weeks of each other. Like there was a "cool memo" that went around orsomething. But now all my friends and everyone else I've met uses MSN Messengerwith a hotmail account. So yeah, that whole AIM thing is basically a US only thing.
  • inactive, on 10/12/2007, -2/+7"Do you realize how many people are saved from virus's now?"

    Yes! ZERO! Heard of redirects? Have Apache point index.html to whatever.php. God, took the Mission Impossible team to figure that out, didn't it?
  • MatttK, on 10/12/2007, -0/+5I have friends outside of Digg / computers, so I use MSN. I use Windows Live Messenger because Trillian seems to be rather buggy with the MSN network sometimes (it also doesn't catch offline messages). And GAIM just looks so faceless and ugly. :/ Honestly, Windows Live Messenger is pretty sleek when you strip out the ads (using "a patch" for MSN).
  • Haroldx, on 10/12/2007, -0/+4.pif

    (try and send it in a message)
  • Arve, on 10/12/2007, -0/+4As said above: The server does this.
  • inactive, on 10/12/2007, -0/+4Yea, almost every country except the US uses MSN as their primary messenger. They won't migrate to MSN like they won't migrate to the metric system.
  • Herolint, on 10/12/2007, -2/+6Quick fix. Simply stop using MSN and force your friends to contact you via something else. If they ask why, educate them.
  • TychoQuad, on 10/12/2007, -0/+4I understand WHY they did it, I just don't like HOW it's done. It rejects the messages at the server with no messages to say delivery failed or anything. Recipient just doesn't receive anything, and the sender is led to believe it arrived just like the rest of his conversation.

    Of course I believe this shouldn't be done in the first place as well. It's a huge hassle when trying to send a legitimate link. I wish I could have seen Scott Wendorfer's face (a lead Trillian Dev) when I told him about this...
  • Arve, on 10/12/2007, -0/+3JamesWilson: http://delx.cjb.net/pymsnt/
  • inactive, on 10/12/2007, -0/+3so the script kiddies just send a different url? big ***** deal. This does seem to be ms's version of security though, like the way outlook blocks .exe attachments without and option to allow them, pretty ***** annoying when your attempting to send a user a patch for something.

    all this does is inconvienence people, and provide the illusion of saftey.
  • Corvillus, on 10/12/2007, -0/+3@foolfromhell

    Nope this is server side. I use Gaim on Linux and have the same problem, and have had for quite a while now. I first heard of this on http://amsn.sourceforge.net/ back in November 2005.
  • stepnet, on 10/12/2007, -0/+3Am I the only one that was FORCED to set my MSN prefrences to include how to get my anti-virus to scan a file sent to me before it would let me transfer (recieve) it?

    It may possibly help to prevent some infections (viral or spyware) but I'd prefer a warning, rather than a silent block.
  • rockintom99, on 10/12/2007, -0/+3Meh, i use skype anyway. Voice chat = very useful, and even the text chatting works better on it. And free skypout is amazingly useful (Plus, caller ID doesnt pick it up, so it is most excellent for prank calls).
  • kuratkull, on 10/12/2007, -0/+3Gaim is the best alternative.
  • Pile, on 10/12/2007, -1/+4It is quite ironic that this story should make the Digg front page, right next to a story about how the government of Myanmar is keeping its citizens from using Google (replete with numerous comments about how great the U.S. is because we don't have that kind of censorship).
  • fishmasta, on 10/12/2007, -6/+9It may not be the best thing, but evil? Come on. Talk about hyperbole.
  • perrupa, on 10/12/2007, -0/+3That's like saying they're not sensoring television, just shows broadcast on television
  • Fetching more discussions...
    Show 51 - 100 of 139 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.