W3C home > Mailing lists > Public > public-tracking@w3.org > March 2012

Re: Initial feedback on the well-known URI Proposal

From: David Singer <singer@apple.com>
Date: Tue, 27 Mar 2012 16:44:42 -0700
Message-id: <4D9031A4-2EF4-4242-91CD-3840582610ED@apple.com>
To: "public-tracking@w3.org (public-tracking@w3.org)" <public-tracking@w3.org>

On Mar 6, 2012, at 4:13 , Shane Wiley wrote:

> 
> The one choice that does appear to be off the table at this point (unless someone strongly disagrees) is Response Headers in isolation as this would take years before medium to small web sites would be able to support DNT then (would require standard web server systems to come with off-the-shelf support for Response Headers).  Agreed?
> 

I think if you're not doing any tracking, then they are roughly equally easy:
a) write the server config file to say "I am not tracking" in the response to every request
or
b) write a resource at the well-known location that says the same thing.

I am less clear about sites that do "small-scale" or "simple" tracking (is there such a thing)?

On hosted sites, I would have thought that most of them don't give access to the data that would allow tracking in the first place.  If they *do* give such access, then their life is more complex.  If they use the data themselves, it is similarly more complex.  One nasty hole would be a hosting service that enables its customers to track their customers, but not to see the DNT header or generate a response. They have work to do.

David Singer
Multimedia and Software Standards, Apple Inc.
Received on Tuesday, 27 March 2012 23:45:10 UTC

This archive was generated by hypermail 2.3.1 : Friday, 21 June 2013 10:11:26 UTC