科技回声

10 条评论

kogir超过 13 年前

Best I can tell, there is zero incentive for Quora (or any other site, for that matter) to care. Their current redirect logic in no way hurts their user experience.Right now they protect their users' privacy. What benefit do they realize by providing their users' viewing history to other sites?I personally think that the referer header was never a good idea. I disable it in my browser, and appreciate sites that do right by their users with privacy protecting default behaviors.

评论 #3487726 未加载

评论 #3487052 未加载

yuvadam超过 13 年前

I hate to crash the party, but why is the premise that "overriding links is absolutely okay" taken for granted?Says who? Google and their `/url`? Facebook and their `l.php`?

评论 #3486146 未加载

评论 #3487206 未加载

评论 #3486207 未加载

评论 #3485614 未加载

sequoia超过 13 年前

This is probably not the case, but is it possible that Quora is intentionally stripping the referer header? Duck Duck Go does just this in the interest of user privacy: why should site X know where I came from and what I was searching? <a href="https://duckduckgo.com/privacy.html" rel="nofollow">https://duckduckgo.com/privacy.html</a> Seems unlikely in this case but possible.Incidentally, it seems that encrypted.google.com does this but not regular google. EDIT: This happens for all https->http requests, it's not a google feature (TIL).

评论 #3485521 未加载

评论 #3485499 未加载

entropyneur超过 13 年前

I don't see how this could be a result of simple mistake. There doesn't seem to be any reason to do redirects this way except hiding the referrer.

评论 #3484896 未加载

buddydvd超过 13 年前

It's most likely done intentionally to protect against leaking the clicker's identity. See the issue Facebook had back then: <a href="http://www.benedelman.org/news/052010-1.html" rel="nofollow">http://www.benedelman.org/news/052010-1.html</a>

评论 #3486018 未加载

ck2超过 13 年前

We let you create surveys and display those on your website in a “targeted” mannerA better title for your article would have been:why to never rely on referers(which can be blocked or purposely malformed)

评论 #3486086 未加载

gecco超过 13 年前

Would we get the right referer if 302 is done via quora redirect?

评论 #3484775 未加载

mnutt超过 13 年前

Since you are a hosted service, you could periodically loop through all of the Quora redirect links you've received and resolve them. This might be against Quora's TOS, though.I believe Twitter does this with URL shortener links posted in tweets.

mthreat超过 13 年前

Has anyone asked on Quora, why Quora does this?

评论 #3486569 未加载

评论 #3485914 未加载

casca超过 13 年前

So Quora works for you now? That must be nice...

评论 #3484979 未加载

10 条评论

kogir超过 13 年前

评论 #3487726 未加载

评论 #3487052 未加载

yuvadam超过 13 年前

I hate to crash the party, but why is the premise that "overriding links is absolutely okay" taken for granted?Says who? Google and their `/url`? Facebook and their `l.php`?

评论 #3486146 未加载

评论 #3487206 未加载

评论 #3486207 未加载

评论 #3485614 未加载

sequoia超过 13 年前

评论 #3485521 未加载

评论 #3485499 未加载

entropyneur超过 13 年前

I don't see how this could be a result of simple mistake. There doesn't seem to be any reason to do redirects this way except hiding the referrer.

How not to do URL redirects (… the way Quora does)

10 条评论

How not to do URL redirects (… the way Quora does)

10 条评论