Web www.surf.org.uk

cyrus sasl
deliver patch
cyrus pwcheck
squid auth
BBC ticker
Latest from BBC
visual perl qt
piano chord & scale finder
contact us

This article is about a growing risk to your website called 302 Jacking. This is when website hijackers credit the content of your site to their site by putting it within the frame of their own site, and stealing your PR. The information provided below will make you more aware of 302 hijacking and help you with the process of solving this problem.

302 Hijacking: Is Your Site Safe?

By Keith Derr

I was absolutely floored; I was Googling my Wedding Directory site using the allinurl:www.website.com and I found six other websites that showed up in the results as being part of my site.
The allinurl will show you what internal pages Google has indexed for your site, and I had recently added a bunch of new pages to the site and was curious if Google had indexed them yet.

As soon as I clicked on those offending links I noticed that the pages were redirected almost instantly to another site. But the kicker was it was my Wedding site framed inside their site. With Google adsense ads floating around. Where ever you moved your mouse the ads would follow.

I have been working on my Wedding Directory site for years, I have more then 800 wedding professionals listed on the site. The last thing I wanted or needed was this to happen.

After trying to contact the site owners, which of course was useless I stared looking for ways to stop them, and also figure out how they where able to do it.

The first place I went to was "Search Engine Watch" forums. A favorite haunt of mine, and a great place to learn insider secrets to all things SEO related. I was amazed to find out that this has been going on for a really long time.

I found out that my site was being 302 hijacked.

What is 302 jacking?

302 redirects tell the search engines your site, or page, has moved temporarily to another site and to credit the content of your site to their site and thus stealing your PR.

I also found out that Google is very aware of it, but either can not, or will not do anything about it. That is until you report the offending sites to Google using the spam report form.

More research revealed that more then likely my website content was being stolen using a PHP script (name with held) and the use of DMOZ's data feeds.

DMOZ - The Open Directory Project for years has been the goal of many aspiring webmasters to get listed in this highly coveted directory, with people waiting years to get listed in it. Google pulls results from DMOZ and getting listed in their directory really helps boost a websites listing with them.

My wedding directory has been in there for many years now. But with DMOZ opening up their directory like this to any and all takers who want to abuse the data-feed like that, I am not so sure I want to be in there any more.

Article continues: 302 Jacking Part 2