Verizon Vomits Your Identity All Over the Interwebs
-
HTTPS!
Extra post padding because "Body is invalid; try to be a little more descriptive"
-
More reasons to enable HTTPS and enforce it's use.
I think it’s a good idea to always provide HTTPS on a website, but unless your website uses authentication, please don’t enforce it.
The SSL handshake can make a noticeable load time difference on slow Internet connections.
-
The ID that is included in the headers is an anonymous ID that doesn't directly link to your identity. It's just an advertising tactic, similar to what Google already does.
Perhaps, but I assume that this ID will be passed around while you're browsing in incognito mode (or whatever the browser of your choice calls it). I don't want my browsing history at sensualvegetables.com to affect the adverts that are served to me while I'm on other websites.
-
It's Verizon, for God's sake. You should assume they're doing something nefarious.
Have they sorted out their little maths problem yet? I know it's only been 8 years, but...
-
slow Internet
we have a wonderful thread about it:
http://what.thedailywtf.com/t/milwaukee-pc/4329?u=aliceif
-
Sidebar to this Side Bar thread:
This was in a category that I neither ignore nor watch, but was moved to a category that I watch. It stayed as Regular, didn't change to Tracking. Not sure if bug...
-
Discoursistency?
-
The task to update subscriptions probably only runs when a thread is created.
-
Stop giving Discourse reasonable explanations for things.
-
-
The shock and amazement are that you would actually look something up rather than rant about someone not spoon-feeding you.
I'm with @blakeyrat on this one. His point stands. Just keep in mind his rants are for amusement material and not to be taken as offensive, & you'll do fine. ;-)
I can say this because I know the Law of Scott Adams: "Everyone is an idiot, not just the people with low SAT scores. The only differences among us is that we're idiots about different things at different times. No matter how smart you are, you spend much of your day being an idiot."
-
Well fuck? I can't edit my posts apparently. Thanks Discourse.....
@discoursebot, you've been summoned...
-
@redwizard - Days Since Last Discourse Bug: 0
-
Since this story is now old, /. just posted it.
-
Not available in my country (something's not available in the USA?!?) But I know the song and gave it a like anyway. :)
-
Perhaps, but I assume that this ID will be passed around while you're browsing in incognito mode
Hacker News claims that this header is getting added into any and all HTTP requests made by the phone. Because HTTP is the Universal Firewall Bypass Protocol, this means that a shedload of previously more-difficult-to-correlate data streams became trivial to correlate.
-
Well fuck? I can't edit my posts apparently. Thanks Discourse.....
Ok - I'm changing the (non-ninja) edit window. I thought at the time it was changed that 1 day was far too draconian, and recently a sufficient number of people have had a problem with it in one way or another. I've extended it to a week.
I will note in passing however, that the old CS window was 15 minutes.
-
:-D Thanks @PJH
what would we do without you?:-D
-
-
EEEEEK!
don't scare me like that! it's not all hallows eve yet!
-
I think it’s a good idea to always provide HTTPS on a website, but unless your website uses authentication, please don’t enforce it.
The SSL handshake can make a noticeable load time difference on slow Internet connections.I had some small ISPs completely ruining the website's functionality with their broken injected crap. I had no choice. For the most part, 98% of the site's functionality requires you to be logged in so it doesn't hurt just SSLing it entirely. There's like 3 informational pages that reasonably don't need it but I'm not going to start wasting time with declaring per page SSL rules.
Funny enough, my only issue is now that some piece of shit antivirus/firewall products are now blocking the SSL on the website. AVG being one of them. So much for security eh?
-
Ah hah, AVG was shutting off Use TLS 1.0 on install.
What the fuck? It also left Use SSL 2.0 on for one user.
-
It ain't working anyway. There's no way a day passed before rad posted that and tried to edit it... maybe 6 hours, max.
-
Mind doing a bit of digging and see if you can edit one of your posts made > 24 hrs ago but < 1 week?
I'd try myself, but usual caveats apply with me doing meta stuff on here, and weekends.
-
It works for me.
-
Is that setting any post, or just new thread posts?
In any case, I'm not saying the 1-week value isn't working, I'm saying that the previous 1-day value wasn't working. Otherwise rad3534534535 would have had no trouble editing the OP in this thread.
-
Is that setting any post, or just new thread posts?
In any case, I'm not saying the 1-week value isn't working, I'm saying that the previous 1-day value wasn't working. Otherwise rad3534534535 would have had no trouble editing the OP in this thread.
I bet a daily job updates which posts you can edit, so if you post a minute before that job runs, you can't edit two minutes later.
Completely horrible way to do it, which is why I expect it of Discourse.
-
Is that setting any post, or just new thread posts?
My impression is it's site-wide, thus any post including those made pre-change.
-
Still have Jeff moderating the forum? :-o
The Evil Ideas thread is ...
No, just go BELGIUM yourself! This is too foul for any topic.
-
As far as I can tell, the non-ninja edit window was not the issue, I was able to edit the post using internet explorer.
-
As far as I can tell, the non-ninja edit window was not the issue
It has been for a few other people.
-
Looks like Verizon will stop injecting the UUIDs if you opt-out.
Edit: though they appear to still be injecting them at the current time.
-
Update: They haven't stopped lol
-
Update: They haven't stopped lol
Yeah, I'm still running a VPN on my phone until they actually allow me to kill the cookie. It was, literally, the only reason I ended up paying the $10/year or whatever it cost me for the service.