Previously: <a href="https://news.ycombinator.com/item?id=22677605" rel="nofollow">https://news.ycombinator.com/item?id=22677605</a>.<p>I think the specific thing being highlighted here is that some wording has been changed since the original post; it used to only read "Service Worker registrations" (<a href="https://web.archive.org/web/20200324185029/https://webkit.org/blog/10218/full-third-party-cookie-blocking-and-more/" rel="nofollow">https://web.archive.org/web/20200324185029/https://webkit.or...</a>) but now is "Service Worker registrations <i>and cache</i>". This section right under it was also added:<p>> A Note On Web Applications Added to the Home Screen<p>> As mentioned, the seven-day cap on script-writable storage is gated on “after seven days of Safari use without user interaction on the site.” That is the case in Safari. Web applications added to the home screen are not part of Safari and thus have their own counter of days of use. Their days of use will match actual use of the web application which resets the timer. We do not expect the first-party in such a web application to have its website data deleted.<p>> If your web application does experience website data deletion, please let us know since we would consider it a serious bug. It is not the intention of Intelligent Tracking Prevention to delete website data for first parties in web applications.
This was discussed previously at <a href="https://news.ycombinator.com/item?id=22677605" rel="nofollow">https://news.ycombinator.com/item?id=22677605</a>
How could browsers go further?<p>How about true opt-in? If you don't have to sign up for a site, with a login known to the browser, all interaction with that site is forgotten at browser exit or in an hour, and the site can't see any state from other sites.<p>If you do create an account and sign in, the browser should warn you that tracking has now started.
I am wondering when/if Safari and Chrome are going to address CNAME cloaking. Marketing and tracking companies are just having all their clients setup CNAME records to alias their domains back to the tracking domain and setting it to be a first party cookie to get around the new blocking techniques browsers are using.
In an unrelated note, Firefox just had a major screwup. They forced an update to Firefox 75 on users without asking. At least on Linux, the update is broken - right click menus are mostly blank.<p>There's no going back. Firefox now has "downgrade protection" - if you install an older version, it erases your preferences for "security".[1]<p>[1] <a href="https://support.mozilla.org/en-US/kb/install-older-version-of-firefox" rel="nofollow">https://support.mozilla.org/en-US/kb/install-older-version-o...</a>