Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> This measurement will not include a client identifier

That cannot be correct unless they have figured out a way to transfer the user's data without using IP. The Source Address and other fields in the IP header can easily be enough to fingerprint the user[1]. Mozilla may not be storing the data in the current version, but they are still collecting a de fact client identifier.

(it wouldn't surprise me if the data is submitted over HTTPS, which might include headers with additional bits fingerprintable entropy)

> and will not be associated with our standard telemetry

Just because they are not currently intending to correlate the databases doesn't prevent them (or others) from doing so in the future. This kind of claim isn't worth much without a Ulysses Contract[2][3] binding their future actions.

[1] https://news.ycombinator.com/item?id=17170468

[2] https://en.wikipedia.org/wiki/Ulysses_pact

[3] https://www.youtube.com/watch?v=zlN6wjeCJYk



Mozilla's answer is clearly some PR attempt again. Anyone with basic technical understanding knows that any form of communication includes ways ot identifying and tracking.

The dishonesty of silently installing telemetry to monitor people who disable telemetry is a telltale sign of this attitude.

Once again it is weakening the leftover trust in mozilla and pushes long time supporter away to alternatives such as waterfox. It raises the question again of mozilla " making far-reaching and very short-sighted decisions in a vacuum." taking control away from users, not respecting privacy and user choice.

http://forums.mozillazine.org/viewtopic.php?f=7&t=2970749




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: