from Hacker News

Tracking Users with CSS (2018)

by zinssmeister on 1/23/19, 12:37 AM with 16 comments

  • by saagarjha on 1/23/19, 10:13 AM

    This article seems to have a threat model where a website is “compromised” into sending user data to a third party, but I don’t really see anything that protects users from a website whose owner actively wants to track them. This is an odd threat model to have.

    Also, as an aside:

    > For example, by detecting whether the browser supports the Calibri font family, we can assume that the browser is running in Windows

    I’m pretty sure that Safari has stopped allowing the use of third party fonts for exactly this reason, and now reports a standard set of fonts as being available.

  • by Tepix on 1/23/19, 9:34 AM

    I like the idea of loading all linked content at page load time.

  • by jwilk on 1/23/19, 11:14 AM

  • by fawelo123 on 1/24/19, 11:46 AM

    Afaik doesnt work on Firefox.

  • by interfixus on 1/23/19, 7:17 AM

    Css is fundamentally breaching the contract by messing in any way whatsoever with content.