tags:

views:

51

answers:

2
Q: 

How to track users across domains?

We got pitched this idea yesterday. A user visits our site and are marked. Then when they visit other sites like CNN they are targeted with adds for our site. So once they are exposed to us, they start to see us everywhere, creating the illusion we are bigger than we are.

The person pitching it said it was done by cookies. I was very skeptical since I don't believe there to be anyway to see what cookies a different domain has set. So I wanted to try an figure out how it was accomplished. The salesman called this technology pixel tracking.

I have never heard of pixel tracking but from my research I have found that it is placing a 1 pixel image that references a script on another domain with parameters to be executed. My first thought was, OK maybe its possible this way.. But I still don't know how?

Can anyone explain how they are able to mark you as visited our site, and then see this mark on another site? Is it from your IP?

+2  A: 

Included at the bottom of the (CNN) website in this case is an img tag like:

<img src="http://www.webmarketingCompany.com/pixel.php?ID=623489593479"&gt;

When a user visits the (CNN) website, and the browser renders the page, it sends http requests for all the images as well, including a request to http://www.webmarketingCompany.com for the image pixel.php which includes the ID as a get parameter. pixel.php not only returns an image, typically a 1x1 transparent gif (so it isn't visible in the rendered page), but can do a whole host of additional processing using the ID value; and it also has access to any webmarketingCompany.com cookies, which are also sent with the http request.

Of course, CNN have to agree to include the img tag in their html. Typically it's used as a tracker by third party marketing companies working on behalf of CNN to identify who is visiting their site, what pages they're viewing, etc.

But because it's a PHP script, it can do a whole host of extras, such as setting further cookies. If webmarketingCompany.com also handle ad-serving on behalf of CNN, they can do some creative selection of the ads that they choose to serve.

Such cross-client "pollination" is frowned upon, certainly here in the UK.

Mark Baker  2010-10-28 13:56:55
Ahh, I didn't realize CNN's cookies would be sent in that request.
John Isaacks  2010-10-28 14:04:22
Did I say CNN cookies? I meant webmarketingCompany.com cookies.
Mark Baker  2010-10-28 14:09:26
CNN.com's cookies aren't sent, but when the user visits CNN.com and loads the advert, the cookie set by the advertising company lets them know who the user is to look up in the database where they've been recently.
Andrew Aylett  2010-10-28 14:10:27
Gotcha, I was still a little confused but I think I get it now. They visit my site and set a cookie on webmarketingCompany.com then visit cnn.com and it checks for the same webmarketingCompany.com cookie.
John Isaacks  2010-10-28 14:13:14
That about sums it up. As long as webmarketingCompany.com is doing adserving or tracking or whatever for CNN, then they'll be able to send their identifying cookies back to their servers whenever you access CNN. If webmarketingCompany.com does its work on a lot of busy sites, then they can track a lot of user activity... needs to be a company with the significant, big contracts though: they can't track you (legally) on sites where they don't have a contract... but if they're a big player in the tracking/analytics marketplace (Google or Microsoft for example) then they do have the resources.
Mark Baker  2010-10-28 14:19:18
I hasten to add that while I work in the tracking/analytics marketplace, my company does not cross-reference between clients in this way. Even if a user visits several of our client company websites, we treat the client/user reference as unique and neither log nor promote inter-client activity or analytics.
Mark Baker  2010-10-28 14:22:26
+1  A: 

What you are describing is pretty standard for all advertisement networks. The only difference here is that they will place that cookie on your site as well.

As long as the browser has "accept third party cookies" set to true, this will work as the salesman said. Most browsers has the setting set to true by default, the only exception I can think of is Safari.

olemartin  2010-10-28 14:03:21

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases