[ihuman]

Why would Apache include the Permission-Policy header when they previously chose to ignore the "Do Not Track" header?

[dmitriid]

The Do Not Track ended up being used for tracking and identifying users. Support for it is now removed even from Safari, https://webkit.org/tracking-prevention/

> Removed the Do Not Track flag, which ironically was used as a fingerprinting vector, adding uniqueness to the users who had enabled it.

[sanxiyn]

Because users want to? I would like to think Apache httpd project listens to their users.