Linux Format forums

Dutch_Master · LXF regular Joined: Tue Mar 27, 2007 2:49 am Posts: 2354

I know there is a recent thread about HTML5, but it doesn't address this issue: Earlier this week the NY Times ran an story about HTML5 and its effect on users privacy.

johnhudson · LXF regular Joined: Wed Aug 03, 2005 2:37 pm Posts: 767

But as this is out in the open one would assume that the risk is primarily to closed source browsers. Can't see the FOSS community allowing this to go on for long.

Dutch_Master · LXF regular Joined: Tue Mar 27, 2007 2:49 am Posts: 2354

The FOSS community can't afford to let it happen in the first place... Remember, the likes of M$ and Apple will closely follow the way FOSS browsers will handle this and if even just one fails the marketing guys will have it in the papers for weeks, implying FOSS as a whole, not just the one failing browser. FUD, remember.... Evil or Very Mad

ollie · Posted: Sun Oct 17, 2010 11:01 am Post subject:

As long as you can locate the stored information, it can be deleted. The tools just need to be developed and built into the browsers to delete data from all possible storage locations. Just another new way of tracking potential customers.

Dutch_Master · LXF regular Joined: Tue Mar 27, 2007 2:49 am Posts: 2354

Known locations isn't the problem Ollie. But it appears cookie-writers have complete control over where the browser will/must store their cookie, and that may be somewhere where their code can be executed to harvest data and "call home", i.e. a trojan. IMO it's the browsers job to not only keep track of any and all locations but also prevent these cookies to be stored outside the known and therefore monitored locations. Cookies can be written with executable code in it, so the browser should be aware of the concept of "executable cookies" and eliminate these, better: refuse them while warning the user for action to be taken.