Don Marti
Don Marti
There's a difference between Tracking Protection and DNT. DNT is just a header, which most third parties ignore. Tracking Protection will actually make Firefox refuse to connect to a third-party...
@coliff Thank you for reviewing.
There is an issue in the Topics API repository for a better opt-out in HTML, such as a meta tag. If there is a better opt out in the final...
@vadimdemedes as a regular GitHub user you can also go to their profile page and click "Report". Project maintainers can turn on "Accept content reports from collaborators and prior contributors"...
Updated issue description. A good example of a high-risk context is a non-commercial health-related support forum or educational site. These sites do not run ads, but often include third-party resources...
Technically it will be with the web site maintainer's knowledge, because they will send out a long "important updates to our terms of service", but many web site maintainers will...
@alextcone Yes, that's fair, thank you. The problem is what happens when third parties that didn't previously do something switch over to doing it. Possibly related: https://www.w3.org/TR/SRI/ (Maybe if all...
The problem is sites that have limited ability to change their HTTP headers (because of time, skills, or hosting plan) but have both high-risk contexts (such as health or financial...
I agree that a totally untrusted script can do more and can't usefully be protected against. In typical cases, though, the site wouldn't be embedding completely untrusted third-party scripts, but...
Yes, happy to discuss further.