Why not make the ad provider pay compensation? After all, providing malware damages the reputation of the SDMB, doesn’t it? And it puts the staff to a lot of work, and time is money, isn’t it?
So when the ad contract comes up for renewal, how about adding to the contract a compensation clause? Say $10K per instance.
That should provide a strong incentive for the ad provider to check the ads they provide more thoroughly.
Because they would never sign it.
Taking them to court for damages would be possible but insanely expensive with no guarantee of success.
I think you misunderstand the problem. The ad providers already have a pretty strong incentive to not let this stuff happen. The problem is, most are so large, and Flash is so complicated and vulnerable, that it is impossible to properly police everything.
We need a more secure advertising system with much more restricted access to the system. Making it open source would really help with that.
Why not? Penalty clauses are standard business practice. Sounds like an opportunity for someone if they won’t.