|
|
|
|
|
|
by moreless
3026 days ago
|
|
|
Also, you can keep just a hash(seed + IP address) - enough to uniquely identify user session (so you can debug possible problems) but not enough to pinpoint a specific user. Of course in reality nothing is that simple, but it can be done, and it can be done automatically. I am sure there will be GDPR nginx plugins/configs available soon. |
|
|
(Brute force of few billion hashes in the days of crypto currencies is a walk in the park)