[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] [OT[ New web-cookie policies on internet

On 05/30/14 13:36, Mike Cardwell wrote:
* on the Fri, May 30, 2014 at 02:51:33PM -0500, Joe Btfsplk wrote:

So the ABP filter is to block cookie notifications?  Meaning, users have
to already have cookie permissions set?  And for new sites, they must
remember when sites don't load or work correctly (notices are blocked),
it may be because cookies are required?   I guess that's OK, if users
remember right away that blocked cookies are causing sites not to work.
Unless, they allow all 1st party cookies, by default?

All it does is hide the notices yes. There is no reason to block first
party cookies from being set. It doesn't get you anything. What is
important is for the cookies not to leak cross-site, and for them to
be deleted when you leave the site.

Isn't blocking first party cookies useful in that it does not allow a site to track navigation within that site? Think of a news site, you don't want the site to know what type of articles you read. Now granted, using TBB, the site won't know the user is you, but for even more safety, wouldn't it be better to not correlate that the same user read articles 1 and 2, especially if there's enough time between reading the two articles such that the exit node has changed?
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to