121
My experiences with Pi-hole
(scribe.disroot.org)
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
much thanks to @gary_host_laptop for the logo design :)
The first example I gave is a Classico way that a person would examine favicons to determine the software serving the website. If I wanted to do this to your website I’d resolve a bunch of your sites pages and look for a favicon that’s the default of like nginx or something then when I find it I know what I’m up against.
There’s not really a way to do caching that defeats the second example. The whole point of caching is to avoid sending a bunch of data back and forth, so even if you don’t let a website touch and grab all over the objects in the cache and instead only treat the page’s content as a manifest then the website will still be able to figure out what favicons corresponding to dates and times you’ve got in there by seeing weather or not the browser asks for them to be sent.
I guess you could just not say anything to the web server, let it send whatever it wants and ignore it, but at that point you’d be better off to do the default behavior of just not caching favicons instead and skip a step.
But the idea is that the website can't tell that, because websites would use a different cache store than the new tab page.
Even if facebook's icon is saved in the new tab page's cache, when a website wants to load that icon it will only try to find it in the normal cache. If it's not there or it is expired, it is requested again, passed to the normal cache store, and the normal cache store can also give that to the cache store if the new tab page.