On Tue, Oct 17, 2017 at 11:00 PM, James Graham wrote:
> Are there cross-browser (i.e. wpt) tests for this feature?
Not that I know of, html/semantics/links/downloading-resources/ is
still empty. I added a comment to our bug.
--
https://annevankesteren.nl/
__
On 02/10/17 18:06, Anne van Kesteren wrote:
Bug: https://bugzilla.mozilla.org/show_bug.cgi?id=951104
Rationale: There's already a myriad of ways to obtain this data
through script. We might as well ship the protocol that both Chrome
and Safari ship in the hope that along with sendBeacon() it dec
Bug: https://bugzilla.mozilla.org/show_bug.cgi?id=951104
Rationale: There's already a myriad of ways to obtain this data
through script. We might as well ship the protocol that both Chrome
and Safari ship in the hope that along with sendBeacon() it decreases
the usage of the slower alternatives; u
On 2014-05-21, 4:38 AM, Frederik Braun wrote:
On 20.05.2014 23:33, Ehsan Akhgari wrote:
On 2014-05-20, 2:25 PM, Jonas Sicking wrote:
On Fri, May 16, 2014 at 7:45 AM, Justin Dolske
wrote:
However we do implement some additional features in private browsing
mode. For example we disable link c
On 20.05.2014 23:33, Ehsan Akhgari wrote:
> On 2014-05-20, 2:25 PM, Jonas Sicking wrote:
>> On Fri, May 16, 2014 at 7:45 AM, Justin Dolske
>> wrote:
>> However we do implement some additional features in private browsing
>> mode. For example we disable link coloring. I'm not sure what the
>> exac
On 2014-05-20, 6:43 PM, Jonas Sicking wrote:
On Tue, May 20, 2014 at 2:33 PM, Ehsan Akhgari wrote:
But I believe that that would be a pretty crappy private browsing
feature which I don't think anyone here would argue for.
Private browsing is mainly about giving you a new, throw-away,
identity.
On Tue, May 20, 2014 at 2:33 PM, Ehsan Akhgari wrote:
>> But I believe that that would be a pretty crappy private browsing
>> feature which I don't think anyone here would argue for.
>>
>> Private browsing is mainly about giving you a new, throw-away,
>> identity. The throw-away part is why we don
On 2014-05-20, 2:25 PM, Jonas Sicking wrote:
On Fri, May 16, 2014 at 7:45 AM, Justin Dolske wrote:
On 5/16/14, 6:38 AM, Curtis Koenig wrote:
Would this be disabled in Private Browsing? If not that might be
perceived as negating one of the reasons users have for using that
particular feature.
On 2014-05-16, 9:39 AM, Tim Taubert wrote:
Curtis Koenig wrote:
Would this be disabled in Private Browsing? If not that might be perceived as
negating one of the reasons users have for using that particular feature.
Are sync XHRs and HTTP redirects disabled in private browsing? :)
They are
On Fri, May 16, 2014 at 7:45 AM, Justin Dolske wrote:
> On 5/16/14, 6:38 AM, Curtis Koenig wrote:
>>
>> Would this be disabled in Private Browsing? If not that might be
>> perceived as negating one of the reasons users have for using that
>> particular feature.
>
> Private Browsing mode is about n
On 2014-05-20, 12:37 PM, Steve Fink wrote:
On Fri 16 May 2014 07:45:22 AM PDT, Justin Dolske wrote:
Private Browsing mode is about not storing _local_ data from your
activities. It is explicitly not an "anti tracking" mode because
that's extremely difficult-to-impossible to do robustly just on t
On Fri 16 May 2014 07:45:22 AM PDT, Justin Dolske wrote:
> On 5/16/14, 6:38 AM, Curtis Koenig wrote:
>> Would this be disabled in Private Browsing? If not that might be
>> perceived as negating one of the reasons users have for using that
>> particular feature.
>
> Private Browsing mode is about no
On Fri, May 16, 2014 at 2:54 PM, L. David Baron wrote:
> On Friday 2014-05-16 08:58 -0400, Wesley Hardman wrote:
>> Can you detect if is enabled? If so, having a preference isn't
>> going to be particularly useful as sites will just fallback to the redirect
>> method. If it is added as a UI p
On Fri, May 16, 2014 at 5:15 PM, Robert O'Callahan wrote:
> Seems to me we should indicate pings in the link status text (bug 401352),
> indicate pinging in the status text while we load the next page, and retain
> the about:config pref to disable pinging.
> The first two measures seem low-cost a
On Fri, May 16, 2014 at 5:35 AM, Jonathan Kew wrote:
>> You actually don't, since Google doesn't add the tracking stuff to
>> the link until you click it. But it adds it early enough in click
>> handling so that it affects what happens when you click the link.
> Yes; but even if I simply click t
Seems to me we should indicate pings in the link status text (bug 401352),
indicate pinging in the status text while we load the next page, and retain
the about:config pref to disable pinging.
The first two measures seem low-cost and constitute a strict improvement on
the current privacy situation
On Friday 2014-05-16 09:40 -0400, Curtis Koenig wrote:
> On 16 May, 2014, at 09:37 AM, Kyle Huey wrote:
> > The point being made is that the preference is not a real choice. If
> > you disable this feature you can still be tracked in the exact same
> > way by methods that exist today and are not
On Friday 2014-05-16 08:58 -0400, Wesley Hardman wrote:
> Can you detect if is enabled? If so, having a preference isn't
> going to be particularly useful as sites will just fallback to the redirect
> method. If it is added as a UI preference, it needs to be silent, or else
> the preference i
On 5/16/14, 6:38 AM, Curtis Koenig wrote:
Would this be disabled in Private Browsing? If not that might be
perceived as negating one of the reasons users have for using that
particular feature.
Private Browsing mode is about not storing _local_ data from your
activities. It is explicitly not a
Jonathan Kew wrote:
> On 16/5/14 14:37, Kyle Huey wrote:
>> On Fri, May 16, 2014 at 6:30 AM, Curtis Koenig
>> The point being made is that the preference is not a real choice. If
>> you disable this feature you can still be tracked in the exact same
>> way by methods that exist today and are not
On 16/5/14 14:37, Kyle Huey wrote:
On Fri, May 16, 2014 at 6:30 AM, Curtis Koenig wrote:
On 16 May, 2014, at 09:11 AM, Tim Taubert wrote:
I think it really might make sense to remove the
preferences altogether
Given our stance on privacy[1] and commitment to Real Choices, Sensible
Setti
Curtis Koenig wrote:
> Assuming I am understanding this correctly, it appears from this doc
> https://developer.mozilla.org/en-US/docs/Supporting_per-window_private_browsing
> that they maybe disabled in some instances of private browsing given changes
> in Fx 20.
The only thing I can see here
On Fri, May 16, 2014 at 3:40 PM, Curtis Koenig wrote:
> On 16 May, 2014, at 09:37 AM, Kyle Huey wrote:
>> The point being made is that the preference is not a real choice. If
>> you disable this feature you can still be tracked in the exact same
>> way by methods that exist today and are not cov
Assuming I am understanding this correctly, it appears from this doc
https://developer.mozilla.org/en-US/docs/Supporting_per-window_private_browsing
that they maybe disabled in some instances of private browsing given changes in
Fx 20.
> Forcing a channel into private mode
>
> Usually, network
On 16 May, 2014, at 09:37 AM, Kyle Huey wrote:
> The point being made is that the preference is not a real choice. If
> you disable this feature you can still be tracked in the exact same
> way by methods that exist today and are not covered by the preference.
True, but those methods are being
Curtis Koenig wrote:
> Would this be disabled in Private Browsing? If not that might be perceived as
> negating one of the reasons users have for using that particular feature.
Are sync XHRs and HTTP redirects disabled in private browsing? :)
- Tim
___
Would this be disabled in Private Browsing? If not that might be perceived as
negating one of the reasons users have for using that particular feature.
On 16 May, 2014, at 05:29 AM, Tim Taubert wrote:
> *Link to Standard*
> http://www.whatwg.org/specs/web-apps/current-work/#hyperlink-auditing
>
Curtis Koenig wrote:
> Given our stance on privacy[1] and commitment to Real Choices, Sensible
> Settings and User Control; I don’t believe removing the users ability to
> control this preference would be a positive move. David’s point is more
> correct in that we need to be careful as to how th
On Fri, May 16, 2014 at 6:30 AM, Curtis Koenig wrote:
>
> On 16 May, 2014, at 09:11 AM, Tim Taubert wrote:
>
>> I think it really might make sense to remove the
>> preferences altogether
>
>
> Given our stance on privacy[1] and commitment to Real Choices, Sensible
> Settings and User Control; I
On 16 May, 2014, at 09:11 AM, Tim Taubert wrote:
> I think it really might make sense to remove the
> preferences altogether
Given our stance on privacy[1] and commitment to Real Choices, Sensible
Settings and User Control; I don’t believe removing the users ability to
control this preferenc
L. David Baron wrote:
> We need to be careful to design the preferences we expose to the
> user in ways that make sense even if sites don't want to honor those
> preferences. It's not clear to me that it makes sense to have a
> preference to disable one particular tracking feature when sites can
>
I just use "Remove Google Redirection" for Greasemonkey, so I don't have the
redirects.
Can you detect if is enabled? If so, having a preference isn't going
to be particularly useful as sites will just fallback to the redirect method.
If it is added as a UI preference, it needs to be silen
On Friday 2014-05-16 13:35 +0100, Jonathan Kew wrote:
> Maybe that's OK, but I do think this changes things in a significant
> way, and we should give some priority to addressing the concerns.
> Maybe the send-ping preference should be exposed at a similar level
> to Do Not Track?
There's a tradeo
On 16/5/14 13:02, L. David Baron wrote:
On Friday 2014-05-16 12:49 +0100, Jonathan Kew wrote:
When I click a Google search result (for example), I can see --
thanks to the status overlay that shows the URLs being requested --
that it's redirecting me via a Google URL that is presumably being
use
Jonathan Kew wrote:
> When I click a Google search result (for example), I can see -- thanks
> to the status overlay that shows the URLs being requested -- that it's
> redirecting me via a Google URL that is presumably being used to track
> me. So although this is hardly an optimal UI, at least I g
On Friday 2014-05-16 12:49 +0100, Jonathan Kew wrote:
> When I click a Google search result (for example), I can see --
> thanks to the status overlay that shows the URLs being requested --
> that it's redirecting me via a Google URL that is presumably being
> used to track me.
You actually don't,
On Fri, May 16, 2014 at 1:49 PM, Jonathan Kew wrote:
> When I click a Google search result (for example), I can see -- thanks to
> the status overlay that shows the URLs being requested -- that it's
> redirecting me via a Google URL that is presumably being used to track me.
> So although this is
Anne van Kesteren wrote:
> On Fri, May 16, 2014 at 12:20 PM, Tim Taubert wrote:
>> Calling the whole idea of "disturbing" makes it sound like we
>> would introduce a whole new concept, we just provide a saner way to do
>> things that lots of web pages want. There is no obvious disadvantage to
>>
On 16/5/14 11:20, Tim Taubert wrote:
Jonathan Kew wrote:
"User agents should allow the user to adjust this behavior, for example
in conjunction with a setting that disables the sending of HTTP Referer
(sic) headers. Based on the user's preferences, UAs may either ignore
the ping attribute altoge
On Fri, May 16, 2014 at 12:20 PM, Tim Taubert wrote:
> Calling the whole idea of "disturbing" makes it sound like we
> would introduce a whole new concept, we just provide a saner way to do
> things that lots of web pages want. There is no obvious disadvantage to
> the user from my POV here.
It
Jonathan Kew wrote:
> "User agents should allow the user to adjust this behavior, for example
> in conjunction with a setting that disables the sending of HTTP Referer
> (sic) headers. Based on the user's preferences, UAs may either ignore
> the ping attribute altogether, or selectively ignore URLs
On 16/5/14 10:29, Tim Taubert wrote:
*Link to Standard*
http://www.whatwg.org/specs/web-apps/current-work/#hyperlink-auditing
A couple of quotes from there:
"User agents should allow the user to adjust this behavior, for example
in conjunction with a setting that disables the sending of HTTP
*Link to Standard*
http://www.whatwg.org/specs/web-apps/current-work/#hyperlink-auditing
*Summary*
Anchor tags can have a "ping" attribute that sends asynchronous pings
after or while navigating to the target page for auditing purposes.
*Motivation*
Since bug 786347 landed our Hyperlink Auditing
43 matches
Mail list logo