Hacker Read

kuschku · 2016-07-08 13:35:59+00:00

You also obviously have to allow the standard CDNs and such, but the result is that 90% of the web then "just works", without most of the tracking or problems.

zeroimpl | karma 593 | avg karma 1.4 · | 2018-04-03 23:02:07

Yes unless the websites are using a CDN with shared IP addresses. I wonder what % of the web that covers nowadays.

ceejayoz | karma 74610 | avg karma 3.33 · | 2021-07-22 12:09:06

There aren't many sites that aren't, including "otherwise healthy websites" hosted without a CDN.

nickelpro | karma 2006 | avg karma 4.46 · | 2021-06-08 07:26:05

DNS didn't fail, and there's nothing you can do in HTML/CS/JS if your CDN fails to serve those things

sp332 | karma 55607 | avg karma 2.75 · | 2018-10-18 18:54:22+00:00

If you're not using a CDN, you can just enable it for your own site. They explained in the article why they didn't think enough sites would do this to make it worthwhile.

muzani | karma 8388 | avg karma 1.47 · | 2019-08-05 05:57:16

A CDN isn't necessary for a large website to keep running either.

stephenr | karma 7998 | avg karma 1.42 · | 2019-04-17 08:18:05+00:00

A data-whoring mega-corp isn't forcing anyone to use a CDN, and a CDN doesn't mandate Javascript (and CSS to punish visitors who block that JS).

jslakro | karma 542 | avg karma 1.45 · | 2021-06-08 05:35:45

Why no other sites bypass the CDN and go directly?

abhidilliwal | karma 2 | avg karma 0.22 · | 2012-12-03 21:22:17

but.. it just allow static content, good to make it a CDN :D

minus7 | karma 197 | avg karma 3.79 · | 2022-03-05 16:18:44

Literally no significant extra effort to download the files and put them with your website. If you fetch them from a CDN with a fixed version you're not getting updates anyway.

MacsHeadroom | karma 2958 | avg karma 2.23 · | 2021-02-05 15:05:11

CDNs are server side trackers. Even when not serving up browser side tracking code that makes yet more requests (which they often do), they're collecting location and other data based on response times and headers. Google's gv2 beacons, newrelic, cloudflare, etc.

This is why tools like decrentral-eyes exists. Unfortunately, tools like actually introduce additional unique identifiers.

Even with Javascript disabled, web fonts are tracking you. Even with javascript and web fonts disabled, images and CSS are tracking you. Even first-party images and CSS track you, even over VPNs and Tor.

First class web experiences that can't track are only possible by routing all traffic through a trusted remote privacy-by-design pre-caching hash table, like via a trusted IPFS node. Then you also need to only transact with the non-web (e.g. server hosting) service over a routeless protocol.

The latter requires the service to support non-custodial routeless protocols for payment and control. This is something dApps do well.

It sounds complicated, but every Web3.0 (not to be confused with Web3.js) service already supports this by necessity, even in outdated browsers, simply by choosing a trusted node and updating your browser or device's DNS and proxy settings. No additional software required.

reply

paulddraper | karma 16686 | avg karma 1.72 · | 2016-08-03 14:42:33+00:00

> CDNs make users much more trackable across sites.

How does has CDN do this in a way that a "regular" web deployment wouldn't?

reply

ChikkaChiChi | karma 2406 | avg karma 2.32 · | 2014-08-08 17:53:12+00:00

You can still use a CDN through your own domain. It wouldn't be perfect, but it would be something.

hexo | karma 678 | avg karma 1.65 · | 2022-01-30 05:49:40

Yes, it would. Actually so many uses of CDN's are nonsensical. I mean, I literally block those requests and sites just work OK. (For my definition of OK. If I don't see autoloading autoplaying video it's only a big big plus)

HelloNurse | karma 2862 | avg karma 1.35 · | 2022-06-21 02:12:13

Your box running your web server is far less complicated than using a CDN and worrying about countless additional points of failure. Network problems are only a minor risk.

jvdongen | karma 215 | avg karma 2.65 · | 2012-08-13 16:07:29+00:00

Not really - if a one of the CDN's mentioned develops a security issue my sites are among the 26.6% that are unaffected.

TeMPOraL | karma 106045 | avg karma 3.04 · | 2018-01-09 20:38:43+00:00

It's unfeasible, but also completely unnecessary. CDNs can give you some speedup, but they don't magically make a site smaller and less resource-intensive to use.

flukus | karma 10283 | avg karma 1.36 · | 2018-08-08 04:33:07+00:00

This is what CDNs are designed for, the allow a few companies to get a monopoly on your browsing data. This is why I prefer uMatrix, it blocks all third party requests, a lot of stuff breaks but it breaks because their tracking you.

spoondan | karma 1301 | avg karma 6.29 · | 2011-06-16 19:59:59

The browsers aren't going to be disallowing CDNs any time soon.

LunaSea | karma 1565 | avg karma 1.36 · | 2022-09-20 16:17:20

So your point is that there is no reason to not serve everything behind the same origin, it only requires setting up a full fledged CDN to do so.

I'm sorry but that's simply not an acceptable constraint.

reply