Y
Hacker News
new
|
ask
|
show
|
jobs
by
iCarrot
2416 days ago
What you just described is actually a web beacon [1], in which case the one that embed the URL is the user (and not the one who load the <img>). Web beacon can be used to implement useful thing like visitor counter service [2].
[1]:
https://en.wikipedia.org/wiki/Web_beacon
[2]:
https://www.hitwebcounter.com/
1 comments
oefrha
2416 days ago
It's also "useful" for cross-site request forgery.
link
iCarrot
2415 days ago
Cross-site request forgery is only "useful" in auth context. There is no auth in Volatile, nor in the hit counter.
link