Still sending site URL

  • @mattrad Arguably, the site URL is the most privacy-impacting thing sent (in the “User-Agent” header). But this plugin still sends it – there’s no code to remove that header.

    Is that intentional?

Viewing 1 replies (of 1 total)
  • Plugin Author Matt Radford

    (@mattrad)

    Hi David

    Yes, that is intentional. However, I’ve been following your discussion on Trac about this; I hadn’t realised that you could send a fake site URL and updates would still work as usual. So I think the next step for this small plugin is to either intentionally send a fake site URL (and other data) or implement a settings page where people can choose what to send/not send.

Viewing 1 replies (of 1 total)
  • The topic ‘Still sending site URL’ is closed to new replies.