科技回声

This article seems to have a threat model where a website is “compromised” into sending user data to a third party, but I don’t really see anything that protects users from a website whose owner actively wants to track them. This is an odd threat model to have.Also, as an aside:> For example, by detecting whether the browser supports the Calibri font family, we can assume that the browser is running in WindowsI’m pretty sure that Safari has stopped allowing the use of third party fonts for exactly this reason, and now reports a standard set of fonts as being available.

I like the idea of loading all linked content at page load time.

Previous discussion:<a href="https://news.ycombinator.com/item?id=16157773" rel="nofollow">https://news.ycombinator.com/item?id=16157773</a>

Afaik doesnt work on Firefox.

Css is fundamentally breaching the contract by messing in any way whatsoever with content.

I like the idea of loading all linked content at page load time.

Previous discussion:<a href="https://news.ycombinator.com/item?id=16157773" rel="nofollow">https://news.ycombinator.com/item?id=16157773</a>

Afaik doesnt work on Firefox.

Css is fundamentally breaching the contract by messing in any way whatsoever with content.

Tracking Users with CSS (2018)

5 条评论

Tracking Users with CSS (2018)

5 条评论