> If we proxy the requests, I would recommend opt out (on by default). >
One concern is that proxying (might) break user's understanding/expectations. The user sees "request to mozilla. ok" but it is actually a proxy to Google. It boils down to whether chopping off the last octet is sufficient anonymity that we don't have to tell the users about this secret Google request. Personally, I am not sure 8 bits is enough. --dev > -Sid > > On Jun 29, 2012, at 17:31, Devdatta Akhawe <[email protected]> wrote: > >>> >>> Sound good? >>> >> >> You didn't mention whether it would be opt-in or opt-out. >> >> thanks >> Dev >> >>> -Sid >>> >>> >>> _______________________________________________ >>> dev-security mailing list >>> [email protected] >>> https://lists.mozilla.org/listinfo/dev-security _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
