[Foundation-l] Cookie based blocking and bug #3233. A quick hack implimented on commons.

Jeff V. Merkey jmerkey at wolfmountaingroup.com
Tue Dec 12 17:17:30 UTC 2006


Tim Starling wrote:

>Jeffrey V. Merkey wrote:
>  
>
>>A better solution is to embed the MAC address of the workstation into 
>>the cookie itself, so you can track someone no matter what account
>>or IP they use.
>>    
>>
>
>It should be obvious that you can't obtain the MAC address using any
>documented Java or JavaScript interface, that would be a privacy issue. 
>
I think you can, but yes, this is an intrusion of peoples privacy.

Jeff

>I
>once suggested a browser plugin, "click yes at the security dialog box to
>allow editing from AOL", but for some reason the response from those
>present was not positive... You might expect some anti-spyware advocates
>to get annoyed, since in essence that's what it would be. Then there's the
>issue of trusting data from the client: if you want to add anti-debugger
>and anti-disassembly measures then it becomes a significant development
>task, and no such measure is perfect anyway.
>
>-- Tim Starling
>
>_______________________________________________
>foundation-l mailing list
>foundation-l at wikimedia.org
>http://mail.wikipedia.org/mailman/listinfo/foundation-l
>
>  
>




More information about the wikimedia-l mailing list