Hacker News new | ask | show | jobs
by uptown 4531 days ago
If you're referencing a CDN for your javascript, chances are somebody at your CDN provider can match your identity up against other data. For instance, since he's serving jquery from a Google CDN, couldn't Google match the call to load JQuery from an administrative page on his blog with an IP address to his GMail account (assuming he has one)?
2 comments
spindritf 4531 days ago
It's a static blog so I'm guessing no administrative page? Either way, when interacting with the blog, he uses Tails which means all outside connections go through Tor. And he explicitly writes about not creating a GMail account because Google requires phone verification.

But even if they did all that, they'd learn that the author of Untraceableblog.com uses Tor which is what he wrote he does.

link
leobelle 4531 days ago
No that wouldn't work at all. You could thwart this just with an incognito browser and plugins disabled.
link
uptown 4531 days ago
How does an incognito browser hide your IP address?
link
leobelle 4531 days ago
I thought tor was assumed. I meant with an incognito/private browser while using tor.
link
uptown 4531 days ago
What about your browser's "signature"? I know this tool's veracity has been debated, but your web browser is still very "leaky" even in incognito mode.

https://panopticlick.eff.org/

link