Comment by coppsilgold

Comment by coppsilgold 15 hours ago

6 replies

View on Hacker News

There are also HTTP fingerprints. I believe it's named after akamai or something.

All of it is fairly easy to fake. JavaScript is the only thing that poses any challenge and what challenge it poses is in how you want to do it with minimal performance impact. The simple truth is that a motivated adversary can interrogate and match every single minor behavior of the browser to be bit-perfect and there is nothing anyone can do about it - except for TPM attestations which also require a full jailed OS environment in order to control the data flow to the TPM.

Even the attestation pathway can probably be defeated, either through the mandated(?) accessibility controls or going for more extreme measures. And putting the devices to work in a farm.

peetistaken 5 hours ago

Indeed, I named it after akamai because they wrote a whitepaper for it. I think I first used akamai_fingerprint on https://tls.peet.ws, where you can see all your fingerprints!

Reply View 0 replies
delusional 14 hours ago

This is exactly right, and it's why I believe we need to solve this problem in the human domain, with laws and accountability. We need new copyrights that cover serving content on the web, and gives authors control over who gets to access that content, WITHOUT requiring locked down operating systems or browser monopolies.

Reply View 4 replies
  • dpoloncsak 7 hours ago

    >with laws and accountability.

    Isn't this how we get EU's digital ID nonsense? Otherwise, how do you hold an anon user behind 5 proxies accountable? What if its from a foreign country?

    Reply View 0 replies
  • Symbiote 8 hours ago

    Laws are only enforceable in their own country, and possibly some friendly countries.

    If that means blocking foreign access, the problem is solved anyway.

    Reply View 0 replies
  • [removed] 13 hours ago
    [deleted]
    Reply View 0 replies
  • bbarnett 8 hours ago

    Laws only work in domestic scenarios.

    If laws appear, the entire planet, all nations must agree and ensure prosecuting on that law. I cannot imagine that happening. It hasn't with anything compute yet.

    So it'll just move off shore, and people will buy the resulting data.

    Also is your nick and response sarcasm?

    Reply View 0 replies