RE: [bug #57884] wget reveals my operating system to the server

: Monday, February 24, 2020 6:42 AM To: ge...@mweb.co.za; Tim Ruehsen Cc: bug-wget Subject: Re: [bug #57884] wget reveals my operating system to the server ge...@mweb.co.za wrote: > I wonder about the reason given: "To avoid compatibility issues." > That was - if I recall correc

Re: [bug #57884] wget reveals my operating system to the server

ge...@mweb.co.za wrote: > I wonder about the reason given: "To avoid compatibility issues." > That was - if I recall correctly - the reason for having the string > to start with: So that servers can format pages to suit the capabilities > of the browser and version used. That was how web

Re: [bug #57884] wget reveals my operating system to the server

fails developers, UA Client Hints are the right path forward. https://wicg.github.io/ua-client-hints/ Regards, Tim > > Gerd > > > - Original Message - > From: "Tim Ruehsen" > To: "Tim Ruehsen" , "Bruno Haible" , > gscriv...

Re: [bug #57884] wget reveals my operating system to the server

ginal Message - From: "Tim Ruehsen" To: "Tim Ruehsen" , "Bruno Haible" , gscriv...@gnu.org, "bug-wget" , dar...@gnu.org Sent: Monday, February 24, 2020 12:10:56 PM Subject: [bug #57884] wget reveals my operating system to the server Follow-up Comment

[bug #57884] wget reveals my operating system to the server

Follow-up Comment #6, bug #57884 (project wget): There seem to be concerns and actions taken by browser vendors about regarding the User-Agent header. It's about "freezing" the User-Agent string once and for all to avoid compatibility issues. Is this an option for us ?

[bug #57884] wget reveals my operating system to the server

Follow-up Comment #5, bug #57884 (project wget): I see the point but start be become curious about backwards compatibility and about how browsers and other web clients behave. Transmitting the OS type is likely not handled by GDPR, as it is likely not considered "personal data" (data that is

[bug #57884] wget reveals my operating system to the server

Follow-up Comment #4, bug #57884 (project wget): The HTTP 1.1 RTC, section 5.5.3 https://tools.ietf.org/html/rfc7231#section-5.5.3 , says that the version number is optional, and """A user agent SHOULD NOT generate a User-Agent field containing needlessly fine-grained detail ... Overly long and

[bug #57884] wget reveals my operating system to the server

Follow-up Comment #3, bug #57884 (project wget): What about the version number? It can reveal whether a system is regularly patched or not. A string like "User-Agent: Wget/1.10.2" would be an invitation to search for security vulnerabilities on all ports of the machine.

[bug #57884] wget reveals my operating system to the server

Update of bug #57884 (project wget): Status:None => Fixed Assigned to:None => rockdaboot Open/Closed:Open => Closed Fixed Release:

[bug #57884] wget reveals my operating system to the server

Follow-up Comment #1, bug #57884 (project wget): See the attached screenshot: "User-Agent: Wget/1.19.1 (linux-gnu)" is too much private info. ___ Reply to this item at: