[PrivacyBadger] Pushing Privacy Badger's buttons, part 2

Mike O'Neill michael.oneill at baycloud.com
Sat Apr 9 11:31:52 PDT 2016 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Why not agree on a "block me" signal. Any reference to a third-party marked in a particular way will cause the request to be blocked by tracking protection i.e. PrivacyBadger

The Do Not Track (candidate) recommendation contains such a signal. A TSR (a JSON resource at //ad.aloodo.com/.well-known/dnt ) with Tracking set to "T" ( { "Tracking": "T", ... } when accessed with the DNT set (DNT:1), would signal refusal to stop tracking, i.e. block me. You could also do it by returning a Tk: T to any ad.aloodo.com  resource.




- -----Original Message-----
From: PrivacyBadger [mailto:privacybadger-bounces+michael.oneill=baycloud.com at eff.org] On Behalf Of Don Marti
Sent: 09 April 2016 18:48
To: privacybadger at eff.org
Subject: [PrivacyBadger] Pushing Privacy Badger's buttons, part 2

Still working on tools that a web site can use to
notify users when they're vulnerable to third-party
tracking.

Here's the problem.

 * If the script warns the user when a third-party
   iframe loads, it will falsely notify some users
   of an "untrained" Privacy Badger.

 * If we wait to notify until we're sure that a
   third-party cookie can be set and read on three
   sites, then we miss a chance to notify some users
   of list-based protection who haven't been to enough
   sites that include the iframe.

One solution is...put the https://ad.aloodo.com/track/
iframe everywhere!!1!1  Even if you don't want to run
tracking notifications on your own site, the iframe
will train Privacy Badger to block it, so the cookie
test will work when the user goes to a site that does
do notifications.  Still looking for other solutions.

Anyway, more here:

  http://blog.aloodo.org/posts/track-js-script/

Comments and suggestions welcome.

- -- 
Don Marti <dmarti at zgp.org>                   
http://zgp.org/~dmarti/
Are you safe from 3rd-party web tracking?  http://www.aloodo.org/test/
_______________________________________________
PrivacyBadger mailing list
PrivacyBadger at eff.org
https://lists.eff.org/mailman/listinfo/privacybadger
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
Comment: Using gpg4o v3.5.54.6734 - http://www.gpg4o.com/
Charset: utf-8

iQIcBAEBAgAGBQJXCUqXAAoJEOX5SQClVeMPDuoP/1TpcZ/gaj+OofXD2ztowphG
K7L9loRM5Ia4AM/mMBUkzPnxjj/gu3RlYCIRUPsP+E3MJU0iz+jyvmC8QsP2/IJY
gXqnyhtVjAoaBPgo7jsRZZyE2JeB2f7YVEludHZ/3M4SMcXnyMTsTRjEmDUXRGBZ
akjQKC8Spme25nioTW/0OIqB6UoWk89qWewdoIdiOF9oMev5OAiD9M2NJRpOLqe2
NCs+hzMqnKJwoIH0H9dcRmZlGniRcI5sgPTCGLvDie5SOECw/9CCeWXL6IY9deN7
yxCSRKaWZUNLaCL7+lby7yDbHXtkxtvzdBdrhzLinAAEToUDWRy2cIPQm7bl3lNm
W/gn4LzsIhHxJfOjZTfDrMiSeMI5qWnzWRU9q1uMkMnlsBq4FIsuOok2LppHnUY4
TnJYvw/wEuuus92C7CiqEpKQynxghi0QHL9rhoFXhoWVCdEla1gk+LP/1nZu/qt0
S4X/qF0EnxDVJMrOrtsCO/AdWObbTBUzHLF51Q9PFMDEjAiTxROvQ40GK3dSqwym
pVMBPrRKf/sBl9G2vc1Ijh/kmMI+zKtfnPrs5fPcKf9bWrK1rm+MSJ5q1vVgnrLN
cjbdxYlyseSa38y5YOIZe8RhSp482ucnidEHjgu84/WymLnzO2E4qmji5KZsxNfT
a7qO+MUxGd6+6VEeXuHj
=Xqno
-----END PGP SIGNATURE-----

More information about the PrivacyBadger mailing list