Conversation

Notices

Embed this notice
Trezzer (aka Helvedeshunden) (trezzer@social.linux.pizza)'s status on Saturday, 13-Jan-2024 20:17:47 JST Trezzer (aka Helvedeshunden)

Wow. This is some seriously smelly bullshit. #privacy #cnn #corporations
In conversation about 10 months ago from social.linux.pizza permalink
Attachments
1. Screenshot showing an error message on CNN's website indicating 'Browser Blocked' due to current browser settings preventing required privacy components from functioning. The message suggests using a different browser or disabling the 'EasyList Cookie' filter.
  https://cdn.social.linux.pizza/system/media_attachments/files/111/748/108/940/437/961/original/4a4731a9be01c959.jpeg
- Haelwenn /элвэн/ :triskell: likes this.
- Embed this notice
  etsy :kirby_walk: :kirby_fly: (avrin@infosec.exchange)'s status on Sunday, 14-Jan-2024 01:16:31 JST etsy :kirby_walk: :kirby_fly:
  - To-BOO-as HELL-gren
  @thanius @trezzer I've gotten this using Firefox+ublock. it's detecting the blocklist not the content blocker/browser.
  
  In conversation about 10 months ago permalink
- Embed this notice
  Trezzer (aka Helvedeshunden) (trezzer@social.linux.pizza)'s status on Sunday, 14-Jan-2024 02:04:10 JST Trezzer (aka Helvedeshunden)
  in reply to
  - To-BOO-as HELL-gren
  - etsy :kirby_walk: :kirby_fly:
  @avrin @thanius I just use Consent-o-Matic to automatically configure the minimum possible amount. The browser blocks third party cookies and now and then I flush. The issue pops up when 1Blocker works its magic on HTML-views that otherwise don't have full extension support. In a full browser window, I could have temporarily disabled content blockers and let Consent-o-Matic do its work. As it is, I just don’t go back to sites that have nefarious designs like this, but private mode is a temp fix.
  
  In conversation about 10 months ago permalink
- Embed this notice
  etsy :kirby_walk: :kirby_fly: (avrin@infosec.exchange)'s status on Sunday, 14-Jan-2024 02:04:11 JST etsy :kirby_walk: :kirby_fly:
  in reply to
  - To-BOO-as HELL-gren
  @trezzer @thanius ironically with features like firstPartyIsolate/TCP on Firefox and state partitioning and perSiteProcesses on chromium, it doesn't really matter anyways because cookies can only communicate and be accessed with the domain that issued them. a cookie issued by CNN.com cannot track you any website other than CNN.com, although I wouldn't be surprised if they employ generous amounts of browser fingerprinting for profile building, as well.
  I find it less intrusive and awkward to just auto accept cookies via the extension I still don't care about cookies and then clear all cookies on browser restart via Cookie AutoDelete.
  In conversation about 10 months ago permalink
  Attachments
  1. Domain not in remote thumbnail source whitelist: media.cnn.com
    
    Breaking News, Latest News and Videos | CNN
    
    from Monica Sarkar
    
    View the latest news and breaking news today for U.S., world, weather, entertainment, politics and health at CNN.com.
- Embed this notice
  etsy :kirby_walk: :kirby_fly: (avrin@infosec.exchange)'s status on Sunday, 14-Jan-2024 02:04:14 JST etsy :kirby_walk: :kirby_fly:
  in reply to
  - To-BOO-as HELL-gren
  @trezzer @thanius yes but not all tracking is malicious. I would prefer none of it as well but in site tracking of how many articles read and what not isn't harmful
  
  In conversation about 10 months ago permalink
- Embed this notice
  Trezzer (aka Helvedeshunden) (trezzer@social.linux.pizza)'s status on Sunday, 14-Jan-2024 02:04:14 JST Trezzer (aka Helvedeshunden)
  in reply to
  - To-BOO-as HELL-gren
  - etsy :kirby_walk: :kirby_fly:
  @avrin @thanius I agree. But we know that's not the main reason why they track. If this were some small hobbyist site, I'd believe the intent were different, you know?
  
  In conversation about 10 months ago permalink
- Embed this notice
  etsy :kirby_walk: :kirby_fly: (avrin@infosec.exchange)'s status on Sunday, 14-Jan-2024 02:04:16 JST etsy :kirby_walk: :kirby_fly:
  in reply to
  - To-BOO-as HELL-gren
  @thanius @trezzer the only justifiable reason I can think of to implement something like this is to ensure they are GDPR/CCPA compliant by forcing users to see the cookie banner. often times, if you block the banner, the site will just assume acceptance and issue a cookie. just becaue the banner is gone doesn't mean the cookie is, so by requiring users to see that banner, the user HAS to select "accept" or "reject cookies".
  
  In conversation about 10 months ago permalink
- Embed this notice
  Trezzer (aka Helvedeshunden) (trezzer@social.linux.pizza)'s status on Sunday, 14-Jan-2024 02:04:16 JST Trezzer (aka Helvedeshunden)
  in reply to
  - To-BOO-as HELL-gren
  - etsy :kirby_walk: :kirby_fly:
  @avrin @thanius The very easiest thing is to simply not insist on setting cookies on users' browsers. You only run into GDPR issues by tracking.
  
  In conversation about 10 months ago permalink
- Embed this notice
  etsy :kirby_walk: :kirby_fly: (avrin@infosec.exchange)'s status on Sunday, 14-Jan-2024 02:04:17 JST etsy :kirby_walk: :kirby_fly:
  - To-BOO-as HELL-gren
  @thanius @trezzer ironically though, I'm not using any Easylist filters either but I am using a different cookie banner blocking list which I'm assuming is what they're detecting. Firefox also has a built in cookie banner blocker setting which isn't as good but can cause this warning to pop up.
  
  In conversation about 10 months ago permalink
- Embed this notice
  Haelwenn /элвэн/ :triskell: (lanodan@queer.hacktivis.me)'s status on Sunday, 14-Jan-2024 07:23:37 JST Haelwenn /элвэн/ :triskell:
  in reply to
  
  @trezzer As expected of something CNN would tell you I guess.
  
  In conversation about 10 months ago permalink

Public

Conversation

Notices

Feeds