Welcome to Tesla Motors Club
Discuss Tesla's Model S, Model 3, Model X, Model Y, Cybertruck, Roadster and More.
Register

URL Question: (Google Tutorial to Avoid Phishing)

This site may earn commission on affiliate links.
SageBrush

SageBrush

REJECT Fascism
May 7, 2015
14,865
21,486
New Mexico
#1
Google offers a nifty quizz and tutorial on catching fraudulent URLs that are used in phishing schemes.
I find the last one difficult to understand, even after I skimmed the URL rfc written by Lee. The URL (with the scheme omitted) is

//google.com/amp/tinyurl.com/y7u8ewlr

Google says the TLD is tinuyurl.com and not google.com

I'd like to understand why. Obviously my current practice of identifying the TLD as the token to the left of the first single forward slash is wrong.
 
#2
Google is doing a redirect to what's after the /amp/. You are indeed going to google.com as the TLD, but then the browser follows google's instruction to redirect. This is specific behavior to google.com/amp/whatever, not a general browser behavior. Your current practice remains correct as far as I know.
 
  • Informative
Reactions: SageBrush
#3
kavyboy said:
Google is doing a redirect to what's after the /amp/. You are indeed going to google.com as the TLD, but then the browser follows google's instruction to redirect. This is specific behavior to google.com/amp/whatever, not a general browser behavior. Your current practice remains correct as far as I know.
Click to expand...
Wow.

Does that mean that a non-escaped period after the first forward slash is a redirect ?
 
#4
SageBrush said:
Wow.

Does that mean that a non-escaped period after the first forward slash is a redirect ?
Click to expand...
No, there's no general case here. This is purely a google.com/amp/ thing. It's something google is doing on their side for this one particular URL. Imagine if it was instead google.com?SendMeTo=tinyurl.com/y7u8ewlr. It's pretty clear that you're going to google, and passing along a URL as well, and that the backend code is going to redirect you. That's what's happening in the real case, but it's not at all obvious.
 
  • Like
Reactions: SageBrush
#5
kavyboy said:
No, there's no general case here. This is purely a google.com/amp/ thing. It's something google is doing on their side for this one particular URL. Imagine if it was instead google.com?SendMeTo=tinyurl.com/y7u8ewlr. It's pretty clear that you're going to google, and passing along a URL as well, and that the backend code is going to redirect you. That's what's happening in the real case, but it's not at all obvious.
Click to expand...
Can the behavior and URL construct be implemented by any server ?
I tried http://google.com/amp/comcast.net and received a redirection warning. Who is giving the warning, the browser or the server (or something else ) ?
 
You must log in or register to reply here.

Similar threads

Dutchmeeuw
Wiki Sudden Loss Of Range With 2019.16.x Software
Replies
16K
Views
1M
Model S: Battery & Charging
aerodyne
aerodyne
J
A Comprehensive Review of Leading Tesla FUD Touchpoints
Replies
9
Views
45K
Blog Archive
TSLA Pilot
T
Top
Back
Blog
New
Forum list
Marketplace
Menu