https://bugzilla.wikimedia.org/show_bug.cgi?id=72651
--- Comment #4 from [email protected] --- (In reply to ewulczyn from comment #3) > Another thing that came up in our research group meeting today is to add the > browser session cookie. “browser session cookie” can mean two things: * The whole HTTP Cookie header: Adding the whole HTTP Cookie header would add more bytes to the log lines than I'd be comfortable with. (Just doing the back of the envelope computation. We're currently around 700 bytes per log line that goes through kafka. Adding the HTTP Cookies header would add somewhere around 200-500 bytes [1] on top of those 700 bytes for around 1/3 requests. So that would be a quite considerable increase.) * Really only the session identifier: (So for example on enwiki, only the value of “enwikiSession”. No centralnotice_* cookie values, no centralauth_* cookie values) That would be more harmless in terms of data size. But it needs to get extracted on the varnish machines themselves. So the same objection as in comment #1 applies. Regardless of which of the above interpretations you aimed for, the But we should not track people without their consent. So getting their consent is more important to me. from comment #1 still stands for me. -- You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
