Hacker News new | ask | show | jobs
by rablackburn 1552 days ago
> It also leaks the usage to jquery, …

This is the first time I’ve read someone refer to loading jquery as a data leak.

Ideally they shouldn’t be using jquery, or just shipping it with the app/self-hosting. But for the general case, are you saying your ideal would be an app prompting you for permission before it loaded any external resource from any url? Even one as ubiquitous as jquery?

How is the fact that your IP address requested a copy of jquery, one of the most downloaded JavaScript libraries of all time, any kind of meaningful signal?

I’d be more worried about it as an attack vector than a privacy infringement.
2 comments
pickledcods 1552 days ago
I would like an app that handles the functioning of my paid product locally without internet access. The product was sold with strings attached that was not mentioned.

Loading any framework script not hosted on the site the app originates is the same kind of leak as the facebook pixel. jquery gets my IP, access time and referrer. They can cross-site track me over all pages that load their scripts.

I also use frameworks scripts, only I host them locally to counter this kind of leakage.

link
alar44 1552 days ago
You're a drop of water in the ocean. Protect the shit that matters and stop worrying about apps "stealing" your contacts or whatever.
link
alar44 1552 days ago
That's the thing, people actually think their data matters. It doesn't. Your a point in a multi billion point multimillion dimensional cloud. Your data doesn't matter. Yeah, data farms can glean data trends from populations, but there's infinite ways to do this and most aren't actually concerned about who "you" are, but what "people" are doing. In short, you're not that important, you're not being individually spied on, get over yourself. You're uninteresting as fuck.
link
duckmysick 1551 days ago
It's a matter of perspective. My particular data doesn't matter to a company in the grand scheme of things; they will be fine without it. But it matters to me. I have to deal with the spam. I have to answer the robocalls. I have to worry about my personal details being leaked. I have to deal with identity theft targeting me. There's only one person who's concerned about me - me.

I want to avoid the hassle because it affects me and my life. I might not be important to others, but I'm important to myself. Don't tell me to get over myself.

link