Rocksolid Light

Welcome to RetroBBS

mail  files  register  newsreader  groups  login

Message-ID:  

System checkpoint complete.

devel / comp.infosystems.gemini / Re: Can Gemini protect against Tracking?

SubjectAuthor
* Can Gemini protect against Tracking?Martin
`- Re: Can Gemini protect against Tracking?Jaakko Keränen

1
Can Gemini protect against Tracking?

<sv4m0d$1fsg$1@gioia.aioe.org>

  copy mid

https://www.rocksolidbbs.com/devel/article-flat.php?id=183&group=comp.infosystems.gemini#183

  copy link   Newsgroups: comp.infosystems.gemini
Path: i2pn2.org!i2pn.org!aioe.org!8ki2aW4Meuyo7UViq0yStw.user.46.165.242.75.POSTED!not-for-mail
From: martin@datapulp.de (Martin)
Newsgroups: comp.infosystems.gemini
Subject: Can Gemini protect against Tracking?
Date: Wed, 23 Feb 2022 07:59:16 +0100
Organization: Aioe.org NNTP Server
Message-ID: <sv4m0d$1fsg$1@gioia.aioe.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Info: gioia.aioe.org; logging-data="49040"; posting-host="8ki2aW4Meuyo7UViq0yStw.user.gioia.aioe.org"; mail-complaints-to="abuse@aioe.org";
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101
Thunderbird/91.6.1
X-Notice: Filtered by postfilter v. 0.9.2
Content-Language: en-US
 by: Martin - Wed, 23 Feb 2022 06:59 UTC

I was thinking about the following situation: I become delivered a
Gemini page with links in it. These links are dynamically created by the
server and on this server coupled to my ip address. If I call the link,
the server knows, that I'm interested in this stuff in some way.

Restriction: This just works as long the links point to this (or another
associated) analyzing server, as it is with the web's technology.

A protection would just be, if no links are used at all or if data links
are used, so that all data is loaded at one with the page.

What do you think?

Martin

Re: Can Gemini protect against Tracking?

<sv4utk$dqh$1@dont-email.me>

  copy mid

https://www.rocksolidbbs.com/devel/article-flat.php?id=184&group=comp.infosystems.gemini#184

  copy link   Newsgroups: comp.infosystems.gemini
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!.POSTED!not-for-mail
From: jaakko.keranen@iki.fi (Jaakko Keränen)
Newsgroups: comp.infosystems.gemini
Subject: Re: Can Gemini protect against Tracking?
Date: Wed, 23 Feb 2022 11:31:31 +0200
Organization: A noiseless patient Spider
Lines: 26
Message-ID: <sv4utk$dqh$1@dont-email.me>
References: <sv4m0d$1fsg$1@gioia.aioe.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Wed, 23 Feb 2022 09:31:32 -0000 (UTC)
Injection-Info: reader02.eternal-september.org; posting-host="95cf1f04f19d61f86f2b6a4c4c866a21";
logging-data="14161"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1/0LNnQpfPlI7LC51QG84nE"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0)
Gecko/20100101 Thunderbird/91.6.1
Cancel-Lock: sha1:RFX9kdIYnIJBaMyy8NcJPHoGH6Q=
In-Reply-To: <sv4m0d$1fsg$1@gioia.aioe.org>
Content-Language: en-US
 by: Jaakko Keränen - Wed, 23 Feb 2022 09:31 UTC

On 23.2.22 8.59, Martin wrote:

> I was thinking about the following situation: I become delivered a
> Gemini page with links in it. These links are dynamically created by the
> server and on this server coupled to my ip address. If I call the link,
> the server knows, that I'm interested in this stuff in some way.
>
> Restriction: This just works as long the links point to this (or another
> associated) analyzing server, as it is with the web's technology.

The Gemini protocol does not prevent this type of tracking. The server
knows what requests you make, and sees an IP address and perhaps some
identifiable characteristics of your SSL connection. The rest is up to
the user/client:

* Do not activate a client certificate unless required.
* Use a VPN service (that you can trust) to obfuscate your IP address
and approximate location. Never a bad idea if you ask me...
* Check the actual link URIs before clicking on them.
* Observe what redirects occur when navigating on pages.

Having a client option to make redirects require user acknowledgement
could be an effective way to uncover server-side tracking, although it's
at the cost of user experience.

--jaakko

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor