Yahoo Will Ignore IE 10's "Do Not Track"

dsinc writes "And so it begins... Yahoo has made it official: it won't honor the Do Not Track request issued by Internet Explorer 10. Their justification? '[T]he DNT signal from IE10 doesn't express user intent" and "DNT can be easily abused.'" Wonder what percentage of users would rather be tracked by default.

Shocking

See now, the trouble here is that all of these privacy settings rely on corporate "good will", when there is no such thing.

Really, the only way to ensure your privacy is extreme paranoia. Sorry.

Re:Shocking

[Grishnakh]

What's even more shocking is that there's people still using Yahoo.

Re:Shocking

No, not at all. The real shock is anyone thinking that Microsoft isn't the one to blame here.

They didn't follow the standard, again, and so they knew the switch in IE would be ignored.

Re:Shocking

[TheGoodNamesWereGone]

I'm shocked, SHOCKED...

Re:Shocking

IE users, put in the restricted sites zone: *.yahoo.com, *.yimg.com.

I guess Marissa Mayer wants Yahoo to be known as the site that ignores do not track.

Re:Shocking

I don't know about you, but I'd eat Marissa Mayer's shit. Uhh, for the bacteria, I mean!

Re:Shocking

You forgot *.yui.com, and anything else on Yahoo beginning with 'y'. Do a view source to find all their tracking domians. Also add *.flickr.com for their photo entity too.

But that's right, restricted sites zone means no cookies and no scripts allowed. Even if they ignore di not track, restricted sites zone will stop their tracking cold, all they will get is ip address and browser user agent.

Re:Shocking

[captain_sweatpants]

You seem to have neglected to read this bit, so I'll repeat it for you

They didn't follow the standard, again

Anyway it's a pointless standard so the argument is moot. A voluntary standard that gets in the way of profits is a standard that will never be followed.

Re:Shocking

[TheGratefulNet]

I use flickr and mostly (same reason people stick with 'certain social networks') its because there are some really good people I stay in touch with. its a damned shame that flickr is also yahoo.

I have quite a complex set of adblock filters for yahoo and they often get in the way when I try to do some editing in flickr. some dialogs take nearly a minute to pop up! god knows what jscript evil they are doing, but my systems just hangs and times out until their crap gives up and finally presents me with the dialog box I was trying to get (move photos into a group, etc). their STUPID gui programming interlaces too well with the ads and stuff that catches my filters, the site is nearly unusable. and its totally unusable without any filtering. lose/lose.

its a shame yahoo has mostly died. we do need alternatives. but their mail is unusable on my system and flickr is mostly unusable if you try to do anything other than a simple upload and tag.

hell, even dpreview (used to be a good photo site) has jumped the shark with their new reinvention of their web code. almost nothing works for me, there, now.

what is it with webmasters and the desire to use the most broken coding they can get away with? this really is breaking the web. the web was NOT meant for your javascript 'catch me if you can!' bullshit. it really was not!

Re:Shocking

[tofubeer]

They do 100% the opposite of what the draft "standard" says...

http://www.w3.org/2011/tracking-protection/drafts/tracking-dnt.html#determining

"A user agent must have a default tracking preference of unset (not enabled) unless a specific tracking preference is implied by the decision to use that agent. For example, use of a general-purpose browser would not imply a tracking preference when invoked normally as "SuperFred", but might imply a preference if invoked as 'SuperDoNotTrack' or 'UltraPrivacyFred'."

IE 10 does not imply a tracking preference.

To be fair this was changed recently, but on the other hand Microsoft has had plenty of time to change the default setting. The could have the browser start the first time on a page that let's the user change the setting and be complaint.

Re:Shocking

[Peter+Bortas]

MS broke the standard agreement for do-not-track, so I don't blame anyone for ignoring the setting if from IE10. The standard was there for a reason: It was the only chance any site would agree to following the headers intention.

Re:Shocking

[KaoticEvil]

I resent your statement that Evil can be "chaotic"... Now Kaotic, otoh....

Re:Shocking

[KaoticEvil]

What's even more shocking is that there's people still using Yahoo.

You meant IE and not yahoo, right?

Re:Shocking

[maxwell+demon]

Google's results aren't exactly good these days, and they've proven themselves to be far more at the chaotic evil end of the spectrum when it comes to personal data.

And let's face it, nobody knows about DuckDuckGo.

I guess the name isn't exactly helpful in convincing users to use it.
But then, I think nobody knows about Startpage either.

Re:Shocking

[ls671]

Really, the only way to ensure your privacy is extreme paranoia. Sorry.

I would just say "sane" paranoia.

Re:Shocking

[TrueSpeed]

Google's results aren't exactly good these days, and they've proven themselves to be far more at the chaotic evil end of the spectrum when it comes to personal data.

And let's face it, nobody knows about DuckDuckGo.

And let's face it, nobody gives a shit about DuckDuckGo except paranoid idiots. These are the same idiots that have no problem freeloading on services provided by Google, etc because they think they're entitled. They foolishly think they're being clever by going out of their way by using services like DuckDuckGo or browser plugins to cover their tracks, but what they fail to realize, in their infinite wisdom, is that they think they've already been proactively tagged and tracked by their ISP and cell phone carrier who sell their information to the highest bidder.

So, the next time you think you're being clever by using some 'alternate' search engine because it gives you a false sense of security of not being tracked, be sure to also cancel your ISP and Smartphone contracts and stay off the grid otherwise you're just living in a fantasy world.

Re:Shocking

[rtfa-troll]

proactively tagged and tracked by their ISP and cell phone carrier who sell their information to the highest bidder.

In the civilised world this is illegal and the mobile networks are legally required to provide proper privacy. In fact, employees occasionally go to jail for breaching telecom privacy rules. It does happen in some countries but that is an exception. There are plenty of us who would spend money to have that kind of privacy guarantee extended to internet connections.

Re:Shocking

[ChatHuant]

MS broke the standard agreement for do-not-track, so I don't blame anyone for ignoring the setting if from IE10. The standard was there for a reason: It was the only chance any site would agree to following the headers intention.

If you stop and think for a minute, this alleged "standard" is nothing more than a promise from the ad companies that they will honor the "do not track" flag as long as we promise to never set it. And you really don't see a problem with that, but blame MS instead? Sheesh, you should be glad MS has called their bluff and exposed the "standard" as the fraud it really is.

Re:Shocking

That is a VERY recent change to the standard which was put in AFTER MS gave users an option which was well within the standard. Advertisers realised they would be fucked so they changed the standard.

Re:Shocking

I haven't used yahoo for a long time and now I probably never will again.

Re:Shocking

[TrueSpeed]

Verizon must operate in a non civilised world then. Verizon proactively collects and sells your information unless you log into their portal and turn off the service - providing you can find it. And Verizon isn't the only one - they all do it. Why would any company turn down such as easy way to make money that requires virtually no effort on their part.

Re:Shocking

[Billly+Gates]

That is a VERY recent change to the standard which was put in AFTER MS gave users an option which was well within the standard. Advertisers realised they would be fucked so they changed the standard.

Mod up. Advertisers also made sure Apache ignored it by default as well and frankly bribed them and threatened to hose websites using their network and only supporting IIS unless they caved in.

Re:Shocking

[rtfa-troll]

Verizon must operate in a non civilised world then.

Correct.

Re:Shocking

[Fjandr]

No way you can classify them as chaotic evil. Lawful or neutral evil certainly could have good arguments made for them, but not chaotic...

Re:Shocking

They did follow the standard. The standard shifted out from under them. I disagree with the standard shifting because privacy should be the default. The actions of Yahoo, etc., are evidence that the standard was never sensible in the first place.

In the same way that Security by Obscurity is no security at all, Privacy that only works when it's off by default isn't really Privacy.

Re:Shocking

MS didn't break it, they followed the standard. The standard changed after the fact to break MS.

If the standard cannot work when it's on by default, then it is ridiculous because its usefulness is inherently self-limiting. It's a genius bonus to the few that know about it and if word ever gets out, it stops being useful because people switch from the default. It's one thing to say that security can't be too tight on users because it's obnoxious to the user, but quite another to say that privacy restrictions can't be too tight on non-users when it's less than or equal obnoxiousness to the user.

Any privacy measure whose design requires it to be useless to the majority of consumers is broken. DNT was always broken, both the old standard and the new standard, but we tried it anyway in the hope that the honour system would work. This whole situation is evidence that the honour system won't work.

Re:Shocking

I still use Yahoo because I've had an email account with them in the late 90s (high school for me) and have no compelling reason to change. What else was a big win for me back then was their online gaming services, like chess and a few other ones. It was quick and simple to fire up a game between your mates at school.

Recently I had a look at their gaming service and was pleased they still kept their old games (java applets). I played pool with my friend in Vietnam. Apparently Yahoo has a massive penetration over there. The locals use their email and messenger service a lot.

So anyway, it's 2012 and simple java applet games still do it for me. YMMV.

Re:Shocking

[humanrev]

How is this modded Score: 5? No-one uses the Yahoo search engine anymore, but you can bet there are tons of users of Yahoo email, Delicious, Flickr, and so on.

Geeks should know better than to throw out statements just for karma.

Re:Shocking

[AmiMoJo]

If they advertised it heavily as protecting your privacy then that would seem to imply that users choosing it were expressing a preference... At least it would if it were not the default Windows 8 browser.

Re:Shocking

[UltraZelda64]

You bring up a good point. I hear about Yahoo! occasionally when it makes the news, like now, but I haven't used their search engine since... forever? Hell, I don't even remember what search engine I used before I switched to Google (and I was late into the Google crowd), it may or may not have been Yahoo!. When I think the company these days, I think of their messenger program and protocol... as a search engine, I don't have too many memories of them, they're mostly forgotten history to me. And as a search engine, that is exactly what they are... history... because they don't even run their own engine any more. They use Bing.

I almost never even use my Yahoo! Messenger account these days, although my instant messaging client automatically logs into it. I plan on switching 100% to Google Talk and MSN Messenger... which shouldn't be too difficult, it might just take a while to get in contact with my friends and tell them of the change. One friend in particular may be a problem, he seems stubborn and has been a Yahoo! user for years... as from the way it sounds, he even uses Yahoo! as his primary e-mail service. Luckily I barely have any people in my Yahoo! Messenger contacts list; the only problem is the few I do have on there, I never get in contact, and in some cases it is extremely difficult to get in contact with them.

Re:Shocking

[AmiMoJo]

A voluntary standard that gets in the way of profits is a standard that will never be followed.

Which is why it needs to be made law. In the EU companies now have to ask for permission to use cookies. The result is that when you visit web sites there is a notification bar or similar. It was derided when it came in but actually it has raised awareness of cookies and tracking a great deal, if nothing else.

Re:Shocking

[sjames]

They followed it just fine. They allow the user to choose the common default configuration and CORRECTLY guessed that most commonly, people don't want to be tracked like an animal.

If the user would like to be tracked, they may choose that as well. It's not like allowing tracking requires a registry hack.

Re:Shocking

And now Yahoo doesn't either as they can't tell if the user made an active choice in setting the DNT or not. Hell I could set my user agent string, scripts, return data e.t.c. to simulate IE10 and still be tracked with DNT on. Just go to show how utter useless DNT really is without a legal framework.

Re:Shocking

> What's even more shocking is that there's people still using Yahoo.
And Internet Explorer...

Re:Shocking

> The real shock is anyone thinking that Microsoft isn't the one to blame here.

For adding a HTTP custom header just like HTTP standards say you must do if you want to add meta information to HTTP messages? Yeah fuck them.

Re:Shocking

These are the same idiots that have no problem freeloading on services provided by Google, etc because they think they're entitled.

I like how you just fling out the word "entitled" as if it means anything. It's become nothing more than a meaningless insult and a straw man. I'd say that very few people believe that Google owes them anything.

So, the next time you think you're being clever by using some 'alternate' search engine because it gives you a false sense of security of not being tracked, be sure to also cancel your ISP and Smartphone contracts and stay off the grid otherwise you're just living in a fantasy world.

Well, you're quite a hateful individual, aren't you? That said, there are options besides cancelling them entirely, and one of those is encryption (for the ISP, at least).

Even if it's just using DDG, that's still one less company with your information.

Re:Shocking

[symbolset]

There are enough laws. We need a rule that if you want to enact a new law it must repeal five old ones as well as whatever else it is supposed to do.

Re:Shocking

[icebraining]

If you're using HTTPS, the ISP can't track what you're searching, just that you are accessing DDG.

Re:Shocking

[oldlurker]

MS broke the standard agreement for do-not-track, so I don't blame anyone for ignoring the setting if from IE10. The standard was there for a reason: It was the only chance any site would agree to following the headers intention.

MS broke the standard agreement for do-not-track, so I don't blame anyone for ignoring the setting if from IE10. The standard was there for a reason: It was the only chance any site would agree to following the headers intention.

The advertising industry never intended to honor Do Not Track anyway.

It is the wrong choice that cross site tracking and data aggregation on users should be the default expectation, and this standard is the unholy result of advertising driven companies bending over backwards to try to make a compromise with the big advertisers - that never even intended to honor the choice of users who did manually try to opt out!

I remember the exact same discussion and arguments when pop-up blockers first appeared included in browsers, that it was wrong and harmful to web sites' economy that they were on by default, and that this did not reflect an active user choice.

Re:Shocking

It would be equally shocking if Microsoft's own sites, including Bing, ever even considered obeying a default DNT.

Re:Shocking

[GuldKalle]

That law is stupid, though. A browser could easily implement the same by asking you at every new domain it encounters. It would even get rid of 3rd party cookies from ad companies, which the EU law would not stop.
The reason no browser is set up like that is that people don't want to be asked, just like always when it comes to security or technical questions.

Re:Shocking

[symbolset]

There is no Yahoo search engine any more. Yahoo's search results are decided by Bing.

Re:Shocking

[Lincolnshire+Poacher]

Why would any company turn down such as easy way to make money that requires virtually no effort on their part.

"we provide Internet access without monitoring and filtering as is our protected right under EU law."

And that's just one ISP of many that have such a policy.

Perhaps you should write to them and ask them which they feel morality usurps profits?

Re:Shocking

Right, the standard heavily influenced by ad industry lobbying, and of which Google, and other advertising companies are members.

Is there any logical contortion slashdotters won't go through to suck Google's dick?

Re:Shocking

[Ginger+Unicorn]

You're conflating having your physical position logged and having your viewing choices logged. I can't control the former while still using a cellphone, but I can control the latter to some extent by using https forcing and cookie management plugins and a google proxy site like startpage.

Granted it's hardly bulletproof, but it's infinitely better than broadcasting everything in the clear, and having every question that ever pops into my head logged by one corporation.

I'm under no illusion as to how far this setup is from being remotely private. For the tiny amount of effort involved, the modest improvement seems perfectly fine.

Re:Shocking

There are enough laws. We need a rule that if you want to enact a new law it must repeal five old ones as well as whatever else it is supposed to do.

That is not a good rule, when all bad laws are removed the good ones will follow, eventually we will have anarchy.

In my opinion it would be better if the parliament had to read trough the complete law at the beginning of every year.
If it is too much for someone who gets paid to know the law then you can't expect the population to do it either. If there are too many laws it will be in the parliaments interest to remove the bad or outdated ones and consolidate different laws covering similar situation whenever possible.

Perhaps it would be even better to have them cast a vote on every law to keep or remove it but I suspect that that will lead to situation where the law changes too much. I don't think that it is a good idea to change the laws too often, once a citizen knows the law he shouldn't have to relearn all of it every year.

Re:Shocking

[arobatino]

I don't think the standard has any business dictating what the default setting is. People can choose their software partly based on whether its defaults correspond to what they want. Here, the standard perversely says that in order to indicate an active user choice, the default has to be the opposite of that.

Re:Shocking

Advertisers realised they would be fucked so they changed the standard.

No, advertisers doesn't get fucked with the no-tracking implemented. They will still be able to advertise and will still be able to place targeted ads on web-pages that have a specific theme like ads for computer related products on a gaming related page.
The only thing this does is that they can't have the same advertisements follow me around wherever I go.

I don't like to have Element 14 ads when I browse for porn and I certainly do not like to have porn ads when I browse for electronics.
I am in completely different mindsets when I do the two different things and the targeted ads creates a connection between me being irritated and whatever they are advertising.

The no-tracking might not be what advertisers wants but it is good for them too.
It's the same way with your dog. He might not like the leash since it prevents him from chasing cars, this doesn't mean that chasing cars is good for him.

Re:Shocking

[Loosifur]

Well, but if the standard (which, to be fair, was changed very recently) defaults to violating user privacy, I fail to see how MS isn't on the side of the angels here. And we all know how effective shunning IE because it doesn't follow standards has been; anyone who's had to write the same damn page twice because IE doesn't support X can speak to that.

Now, since the standard shifted rather suspiciously, companies like Yahoo can track users as much as they'd like, with no notice, and claim that they're doing so for the lofty moral goal of supporting the W3's standards. IMO, it's a bad standard, and it ought to be restored to defaulting to privacy.

Re:Shocking

Google are not idiots. They have learned from Microsoft's antitrust lawsuit in the 90s and are allowing Bing and Yahoo! to exist through just enough user siphoning through random preference selection, tie-in deals, and underhanded tactics—all of which overlap.

Look at this chart. Google has 90%+ of search in almost every country! As much of an Internet cornerstone as they have been in the past, I have little doubt in Yahoo!'s ability to maintain 14% of U.S. search market share solely through their own abilities and latent name recognition.

Re:Shocking

[gmueckl]

I know this isn't the place for facts, but the Windows 8 installer asks the user whether to enable Do Not Track on the first start. The switch is on by default, but it can be turned off then. This happens well before IE10 is even started for the first time. And Windows 8 is currently the only available edition of IE10...

Re:Shocking

[deergomoo]

Am I in the minority by really not giving a shit about being tracked? It's not personally identifying and I'd rather be shown ads that are relevant than something I have no interest in. For example, a few weeks ago Slashdot were running Nexus 7 adverts. First ad I've clicked in 10 years or so.

Re:Shocking

[Savage-Rabbit]

And now Yahoo doesn't either as they can't tell if the user made an active choice in setting the DNT or not. Hell I could set my user agent string, scripts, return data e.t.c. to simulate IE10 and still be tracked with DNT on. Just go to show how utter useless DNT really is without a legal framework.

I don't think anybody really cares whether the do-not-track option is set or not. It sure as hell does not seem to matter to Facebook. The other day I kept being bothered by an nag screen due to an invalid Facebook SSL certificate. Setting the do-not-track check-box in my browser had no effect, it wasn't until I installed a dedicated Facebook blocker that the damn thing went away. If you want anonymous browsing don't rely on do-not-track options, either get yourself some sort of a general purpose anti tracking addon for your browser or download a browser specially designed for anonymous browsing.

Re:Shocking

See now, the trouble here is that all of these privacy settings rely on corporate "good will

Corporate? What part of this is unique to corporations? From what I've seen they rely on the goodwill of the remote host, regardless of whether it's corporate, private, government, or run by little green aliens.

Re:Shocking

Which is why it needs to be made law. In the EU companies now have to ask for permission to use cookies. The result is that when you visit web sites there is a notification bar or similar

Wrong. Companies which host out of the EU, or are otherwise subject to EU law, have to ask for permission. Everybody else on the planet doesn't give a fuck about your local laws.

Re:Shocking

[You're+All+Wrong]

False - they followed the standard. Then somebody on the standards committee (Fielding, presumably) *changed* the standard.

Look at the date stamps on the released versions of the W3C standards - look at the minutes of the meetings of the committee. If you have more than half a brain you will notice that the change between the most recent version and the previous version of the standard - which *did not* have the default clause you seem to think has been there for ever - was not discussed in any meeting.

The WC3 is being influenced by shills. I'd put money on there being some Yahoo! input on the W3C committee.

Re:Shocking

[You're+All+Wrong]

> The WC3 is being influenced by shills. I'd put money on there being some Yahoo! input on the W3C committee.

Oh Jesus, it's worse than I thought. Head over to
http://www.w3.org/2012/dnt-ws/

Right on the front page - a hiuge great banner:
"""
Workshop Sponsor

sponsored by Yahoo!

Contact W3C if you are interested in Sponsorship
"""

Corrupt as fuck.

Re:Shocking

[lxs]

Yahoo finance is nice, and... euhmmm... nothing really.
Besides, 99% of Yahoo finance hits must come from scraper applications. I doubt that they accept cookies.

Re:Shocking

[You're+All+Wrong]

Like MS, you're behind the times. W3C have changed the standard in the most recent draft.
The fact that this change was published months after Fielding (on the W3C committee) posted his patch to the Apache server making it ignore IE10's DNT=true setting is I'm sure pure coincidence.

Re:Shocking

[You're+All+Wrong]

Downmod parent. It is predicated upon an absurd falsity - namely that there is a single standard.

It's a document in its draft form, there are new versions every few months. To pretend that there is one single absolute set of rules or guidelines which may be called "the standard" is naive at best, and disingenuous at worst. In particular, the "defaults" section is changing with every single draft. The most recent (only a matter of weeks back, IIRC) says the default must be 'no user preference set'. The previous version didn't say that. A prior version said "DNT=true" may be a browser default.

However, you're right that ultimately the users will have to take matters into their own hands, and can't expect corporations to look after their interests for them.

Re:Shocking

[captain_sweatpants]

I kind of agree with you that in principle it would be better to default to privacy - only this approach makes tracking completely impossible, because who is going to enable tracking? Answer - Noone - which mean none of the interested parties will want to conform to it.

With the default set the other way the companies can keep tracking people and keep their profits whilst simultaneously claming the high ground. The people who want privacy can enable the setting and the ignorant/apathetic can continue with the status quo. If you want a voluntary system this is the only possible way it could work. The only alternative is to outlaw tracking, which is fine, but that still doesn't guarantee you won't be tracked.

Re:Shocking

How do you set the flag when they are going to ignore it if it is set to yes EVEN if that was my choice?
Add a 3rd option yes I really , really want this to be set?

Re:Shocking

[captain_sweatpants]

actually... yes. DNT - default and DNT - user choice is a valid distinction. Still the whole thing is stupid because it relies on third parties "doing the right thing" which is foolish. Just build and use browsers/plugins that actively disrupt the tracking process - then you don't need to trust anyone (well except the author of the browser/plugin). I think this approach is also superior to enacting laws - outlawing something that can be solved with good design is a sub-optimal solution.

Re:Shocking

[Wandering+Voice]

I kind of agree with you that in principle it would be better to default to privacy - only this approach makes tracking completely impossible, because who is going to enable tracking? Answer - Noone - which mean none of the interested parties will want to conform to it.

In general, I would agree with you. However, this is not true when the visitors of a site, really want to support a site. For example, check any story on Ars when the subject of NoScript and AdBlockPlus come up and see how many people say they whitelist Ars. But Ive also seen Ars staff respond in threads about actively blocking offensive ads, which Im sure had built much good will with the community.

Re:Shocking

[dywolf]

Just reinforces who the real customer of Yahoo is.
It's not the user, it's the ad companies, just like tv shows.
And just like tv shows can be killed by bad ratings, yahoo can likewise be killed by losing its already small user base.

Stop using yahoo until they honor the flag.

Re:Shocking

[SuperDre]

BS, ms does follow the guidelines. that's the problem with the dnt guidelines, they are open for interpretation. ms clearly states in their express-settings text that dnt is enabled if the user selects the express-option. also remember dnt is completely voluntairy, no site has to actually honor it as there are no laws (yet). but for most people it doesn't matter anyway as they are using blocking plugins.. just let thos advertisement bastards show ad's based on the content that is shown, not on the user who is watching it...

Re:Shocking

[Pharmboy]

Yahoo also has an ecommerce platform. We have been on it for over 10 years, doing a couple million in sales. It is a bit overpriced but service is decent, uptime is good, and it is expensive to trade platforms.

Re:Shocking

[wisnoskij]

It is a great standard that would of worked.

For the tiny minority of people who knew enough and cared enough it only makes sense to allow no tracking to make them happy. Particularly since they the users would of found a way not to be tracked no matter what in most cases.

Re:Shocking

[penix1]

In my opinion it would be better if the parliament had to read trough the complete law at the beginning of every year.

Let me tell you why that good idea won't work....

The US does have that rule for new legislation. They also have a rule that allows them to dispense with the reading of the law in question if everyone agrees. Every so often a legislator will object to the dispensing of the reading and the reading will continue. They use it as a delaying tactic because the reading blocks any further business from being conducted. The same will occur with your proposed law. It will give them a reason to not get anything at all done (like they need another reason).

Re:Shocking

[__aaltlg1547]

No, not at all. The real shock is anyone thinking that Microsoft isn't the one to blame here.

They didn't follow the standard, again, and so they knew the switch in IE would be ignored.

What they're not telling you is that they'll also ignore the DNT setting on every other browser.

Re:Shocking

[__aaltlg1547]

I kind of agree with you that in principle it would be better to default to privacy - only this approach makes tracking completely impossible, because who is going to enable tracking? Answer - Noone - which mean none of the interested parties will want to conform to it. With the default set the other way the companies can keep tracking people and keep their profits whilst simultaneously claming the high ground. The people who want privacy can enable the setting and the ignorant/apathetic can continue with the status quo. If you want a voluntary system this is the only possible way it could work. The only alternative is to outlaw tracking, which is fine, but that still doesn't guarantee you won't be tracked.

A voluntary system can't work because there is more money to be made by ignoring the setting than there is by implementing DNT when requested.

Re:Shocking

[elabs]

The standard (if you go read the original) explicitly allows what Microsoft is doing! Go read it! Now a new copy surfaced a few weeks ago that changes this but that didn't exist when Microsoft was finishing IE10.

Re:Shocking

[elabs]

The original standard RFC allowed defaulting. Go read it. Now people are scrambling to change the standard after the fact. Microsoft put the finishing touches on IE10 months ago, way before the latest changes to disallow defaulting. Corporate goodwill is worth absolutely zero. Have you not been reading the papers about the banking industry for the past four years? No, any standard that relies on corporate goodwill is toothless and won't be adopted by 99% of companies. What we need to legislature so we can sue any company that violates the standard.

Re:Shocking

No, MS quite thoroughly broke the standard first, then the specification was changed to specifically forbid breaking the standard in this particular manner.

DNT does not protect against advertisers tracking you. That was never its purpose. It's there as a way to explicitly request not to be tracked. It simply provides that information to the advertisers - it doesn't control what they do about it. If it's switched on by default then it doesn't indicate anything at all anymore.

Re:Shocking

[VortexCortex]

The browsers used to pop up a dialog on fresh installs when a site tried to set a cookie asking you if you wanted YOUR BROWSER to accept (save and re-send) the cookie.

Much like UAC, the users click whatever to get rid of the annoyance:
This site wants to set a cookie.
[OK] ----- [Cancel]
[x] Remember this setting.

There is no need for legislation -- Folks, our browsers have the power to put an end to any and all cookies, don't make devs re-invent the wheel on every damn website for a feature that you have always had all along. RTFM.

Re:Shocking

Has anyone checked this IE 10's Do Not Track Button, to see if it really works or maybe it sends your whereabouts secretly to the desktops of China's 200,000,000 5th graders ?

Are you smarter than a Chinese fifth grader?

Re:Shocking

[sjames]

You may be in the minority. Of course, the question is do you actually WANT to be tracked or do you just not care? Also, do you tend to take default settings when installing software?

Note that the information CAN be used to identify you to a fair degree of accuracy if anyone cares to correlate it all. More likely though, it'll be used to categorize you for price discrimination.

Re:Shocking

[tofubeer]

As I said "To be fair this was changed recently, but on the other hand Microsoft has had plenty of time to change the default setting."

Re:Shocking

[LocalH]

You meant IE and not yahoo, right?

You meant IE6 and not IE9/10, right?

Re:Shocking

[war4peace]

Count me in. Oh and Adblock is the key.

Re:Shocking

[Cyberllama]

And yet, they're willing to abide by the flag as long as it isn't set by default. There's nothing that obliges them to do that much--it's against their own self-interest. This is just Microsoft trying to undermine Google's business model because they compete in other areas.

Re:Shocking

Am I in the minority by really not giving a shit about being tracked?

Yes.

Re:Shocking

[Grishnakh]

Actually, no. While some others make a good point about Flickr, it's perfectly understandable why a bunch of poor bastards are using IE, especially version 6: it's because their dumb employers are forcing them to on their work computers, usually because they stupidly bought into some crappy "enterprise" web application that only works in IE6.

Re:Shocking

[hardwarefreak]

The only thing this does is that they can't have the same advertisements follow me around wherever I go.

Which is really damn annoying. Newegg is really bad about this targeted ad bullshit. I really like Newegg but I'm really getting tired of hitting various news and other non product selling websites to see an ad for a product I recently viewed on Newegg. If I'm going to buy it, I'll buy it. Having something I'm not going to buy but merely looked at shoved in my face on a dozen different websites, simply makes me want to take my business elsewhere. I could probably defeat this by deleting all my Newegg cookies, but then goes cookies I probably need for navigating the site in the manner I'm accustomed.

Re:Shocking

[kqs]

Just about everyone I know uses store loyalty cards, mostly for grocery stores but lately I've seen them for a lot of other stores. My wife has a stack of them in her purse an inch thick. The privacy policies for most of these cards mostly say "we can use this data however we want to and sell it however we want to."

So, given this, are you seriously saying that "people don't want to be tracked"? Really? How do you handle the cognitive dissonance this causes?

Sure, people are inconsistant and often don't think through the consequences of their actions. But are you really, truly saying that people who willingly sign up for loyalty cards care about privacy? Or are you so convinced of your superiority that you want to make the decision for them?

Re:Shocking

[sjames]

I'll bet they get something in return for the tracking, like discounts, don't they? I'll further bet that's why they got those cards in the first place. I also suspect that they only present those at the chain they are for and not all over town. They're more like having an Amazon account than they are to the sort of tracking DNT addresses.

Re:Shocking

The thing is IE doesn't follow the DNT standard, you have to do a bunch of javascript nonsense to parse the DNT setting instead of just receiving a header. Noone should honor the IE DNT setting until it operates like all the rest.

Re:Shocking

I receive 20-40 auto-updates every month from micro$oft, they can't make a simple patch for this?

Re:Shocking

[u64]

I agree with Microsoft that Tracking should be OFF by default. And then allow people to *choose* their privacy.

(I agree with Microsoft - and now i know what it's like in the Twilight-zone)

Re:Shocking

[Mabhatter]

Microsoft doesn't implement a standard, they can't use to "made lemonade" for their advantage.

Microsoft doesn't have to implement the "search picker" anymore, so they ship Bing as default... They already capture the search info through the OS... That's not part of a BROWSER standard.

So they have their monopoly hedge... Everybody else is the bad guy for seeing that Microsoft is just trying to lock up Windows and cut off other Ad agencies.

EMBRACE
EXTEND
EXTINGUISH

Re:Shocking

[tepples]

Advertisers also made sure Apache ignored it by default as well and frankly bribed them and threatened to hose websites using their network and only supporting IIS unless they caved in.

I'm not sure I'm parsing this correctly. Were the advertisers only going to support sites running on IIS, the web server software published by the publisher of IE 10?

Re:Shocking

[Mr.+Slippery]

We need a rule that if you want to enact a new law it must repeal five old ones as well as whatever else it is supposed to do.

It is a serious error to think that "number of laws" correlates to "liberty" or "quality of government". Repealing Amendments I-V of the U.S. Constitution, for example, would give us fewer laws. Replacing current tax laws (as hideously complex as they are) with "send in all your dough" would give us fewer laws.

Re:Shocking

[Mr.+Slippery]

The browsers used to pop up a dialog on fresh installs when a site tried to set a cookie asking you if you wanted YOUR BROWSER to accept (save and re-send) the cookie.

Whaddya mean, "used to"? I have Firefox still do this. (Preferences - Privacy - Keep until: ask me every time). I deny most cookies, allow them for session if needed, and let my bank and a few others store permanent cookies.

Re:Shocking

[HarrySquatter]

So then what's the point if when you asked not to be tracked and they can just freely ignore it?

Re:Shocking

[symbolset]

Ignorance of the law is no excuse. And yet laws have grown so numerous that no one could know them all, let alone understand them. This has given rise to a clergy of legalists to moderate a citizen's interaction with law: lawyers. And the lawyers invaded government to induce ever more use for their services by creating more complex and inscrutable law. And the lawyers coopted the system of justice such that one almost must be a lawyer to be a judge and interpret the law. And then they coopted the practice of making law so much that almost all legislators are lawyers also. Now even the president is a lawyer.

If you can afford the best quality of lawyer you can do what you will, and your lawyer will find a way to make it legal. The less able you are to support this system, the more you are a victim of it.

For a lawyer it's best if law is a fractal that bends back upon itself to permit anything and deny everything, based on the skill of the lawyer to bend the client's use into the "permitted" zone. That allows the lawyer to become the permitter and denier of strategies - the one with the power. The enabler of progress. And that's what our system of law has become.

Ultimately verbose and ineffable laws lead to citizen simplifications.

If you're not a lawyer and not bent on pushing the edge of law to your advantage, less law is better.

We've been doing this for over 5,000 years and derived through experience the least possible and most optimal law: the one law that by itself supplants all the many shelf-feet of the United States Code. This is the base primitive law that defines what law should be in eight words: "If it harm none, do what you will." Those eight words should be the whole of the law.

Re:Shocking

[arkane1234]

Verizon is the walmart/mcdonalds/microsoft of the mobile phone market. If you use them, your walking into known territory and your willingly fucked.

Re:Shocking

Most common people aren't even aware they're being tracked, let alone protest against it.

Re:Shocking

[roca]

People keep saying this, but it's not true.

Here's a post from the end of May explaining why the IE10 choice is wrong, and explaining that the consensus view of the DNT group is that it is wrong. Mozilla helped create DNT, remember.
https://blog.mozilla.org/privacy/2012/05/31/do-not-track-its-the-users-voice-that-matters/
That's about five months ago, of course.

Re:Shocking

[Gonoff]

It will give them a reason to not get anything at all done (like they need another reason).

This might not be a completely bad thing. If our legislatures created no new laws for a while, they could devote themselves to repealing or at least simplifying what already exists.

Re:Shocking

[indifferent+children]

The only thing this does is that they can't have the same advertisements follow me around wherever I go.

That is not all that a strict no-data-collection policy (such as some that are under consideration in the DNT WG) would do. If they aren't careful, they could prevent "frequency capping", the practice whereby each user will only be shown each ad a limited number of times. The advertiser who pays for 1 million ad impressions doesn't want to hit 1,000 users 1,000 times. They want to hit at least 100,000 users no more than 10 times each. In order for an ad network to honor that kind of contract, it needs some way to know when the same person (or browser-instance, anyway) comes back to their site for an ad. They aren't compiling your personal information; they just need to not show you the same ad too many times.

Re:Shocking

[indifferent+children]

That is a VERY recent change to the standard ...

The actual verbiage is new, to make it explicitly clear that what MS was threatening would violate the standard, but it was clear from very early in the working group's collaboration that the DNT signal is required to signify the user's preference. When MS decided to chose for the user, they violated decisions that were already consensus within the working group.

Re:Shocking

[sjames]

Sure, that's what defaults are FOR. How many of those unaware people do you suppose would WANT to be tracked if they were fully informed about it before being allowed to click yes or no in the configuration.

Re:Shocking

[suutar]

Even if they did absolutely nothing during that time, I'll lay odds that it would be a net improvement on average.

Re:Shocking

[suutar]

yeah, but within 5 minutes someone'll gripe that they got harmed by someone (even unknowingly) and they need compensation, and then there'll have to be laws on how to handle that.

Re:Shocking

The way I get away with issues like this is two fold: 1) setup an OpenVPN session (I use WiTopia) against a location in a different geography, and 2) run my browsing session inside a non-persistent virtual machine. From that perspective, I really don't care what they are trying to feed me, their tracking for both, IP and browser cookies will be useless.

Re:Shocking

It pops up on screen with a checklist of things you may or may not want, each line clearly indicating what it is and what it does, and gives you the option to "disable" do not track if you want to.

It's not like it doesn't show all the users the option.

so now we need to start class action lawsuits against any company or organization that chooses to ignore the parameter. It's just that simple.

Re:Shocking

I also agree with Microsoft too, and I also believe they should have used Ghostery like code to ensure that the trackers remain blocked even if they ignore the field.

Re:Shocking

Boycott Yahoo - they are biased, corrupt, and wrong about most everything.

Re:Shocking

http://www.ledflashingfan.com http://www.egiftok.com

Re:Shocking

Up against the wall...

Re:Shocking

[robsku]

Yeah, it feels strange but for the first time since... ever? not sure... I'm siding with MS on this one :x

Re:Shocking

You must be very boring. :D

Targeted ads for me can be um.. colorful/questionable. :D Having said that, think about someone using my computer/browser. And knowing that ads are targeted, well, a lot can be gleaned from said ads. Not exactly something I want which is why I block everything I can no matter what I'm doing. Doing this by DEFAULT is the simplest way to roll, so I roll that way.

About you being in the minority... I'd say you are. I'd even wager people say they don't care out loud, but definitely DO care... all for show.

Re:Shocking

So wait, people still click on ads? Seriously? As a person on Slashdot, you honest to god clicked an ad. That just kinda blows my mind.

If I happen to see an ad (at work, since I have adblock and noscript at home) for something I might be interested in, you can be damned sure I'll google the name of it and do my own research, and buy from where I want to LONG before I'd actually click on an ad.

Ad companies had their chance countless times over the past decade. They continued their assault on our senses, and absolutely refused to make non-obnoxious ads until Google came along and showed them how it's done.

So no, they've had their chance. I don't care if ads nowadays are more subtle, informative, well-designed, and useful than ever before... they've had their chance. Not only will I absolutely fight to the bitter end to never see an ad on a webpage again, but if the horrendously slim chance comes up that I see an ad that I WANT to know more about, I will actively avoid clicking the ad PURELY to decrease ad revenue to the site with the ad, and look up the product myself.

Sorry advertisers... the barn door was left open ages ago, and those horses are thousand miles away by the time you thought it might be a good idea to close the door.

Re:Shocking

Don't just look at the sponsors. Look at the Program Committee:

        * Adrian Bateman, Microsoft
        * Arvind Narayanan, Princeton University
        * Bil Corry, PayPal
        * Christine Runnegar, Internet Society
        * David Singer, Apple
        * David Stark, ESOMAR
        * Deirdre Mulligan, UC Berkeley
        * Ed Felten, Princeton University
        * George Pappachen, WPP
        * Hannes Tschofenig, Nokia Siemens Networks
        * Heather West, Google
        * Ian Brown, University of Oxford
        * Joe Hall, Center for Democracy and Technology
        * Jules Polonetsky, Future of Privacy Forum
        * Kasey Chapelle, Vodafone
        * Madi Solomon, Pearson
        * Marc Groman, Network Advertising Initiative
        * Pierangela Samarati, University of Milan
        * Rigo Wenning, W3C
        * Rob van Eijk, Leiden University
        * Seda Gürses, KU Leuven
        * Shane Wiley, Yahoo!
        * Sid Stamm, Mozilla
        * Tao Hong, Baidu
        * Tara Whalen, Office of the Privacy Commissioner of Canada
        * Wendy Seltzer, W3C

Re:Shocking

[symbolset]

There doesn't need to be laws to handle that. That is what judges are for. Before when this was done any mutually acceptable citizen could judge the matter in dispute. If the parties couldn't agree on a judge there were volunteer judges to settle those issues and mete court costs to be approved by a citizen jury - even if the jury had to be rousted from the nearest tavern, or pressed from the street for a few minutes of query.

And users will continue

To ignore Yahoo till it dies a nice slow death....

Re:And users will continue

[Grishnakh]

"Slow" being the operative word, if Yahoo is anything like AOL. AOL is still around, somehow, though I have no fucking clue how. I'm guessing it'll be able to hang on and generate revenue until its users all die of old age (which probably won't be that long).

Re:And users will continue

They also own a rather large blog network. Ever use Engadget or Joystiq? They're owned by AOL, there's a little AOL icon at the top of the page.

Re:And users will continue

[Dahamma]

But Yahoo isn't anything like AOL in terms of survivability. Yahoo made an insanely good investment in Alibaba so now they can pretty much coast on those profits through years of horrible web apps and intrusive advertising...

Re:And users will continue

[zill]

AOL is still around, somehow, though I have no fucking clue how.

Lies! I haven't received any free coasters from them for years now.

Re:And users will continue

[Billly+Gates]

Then why are they laying off employees and using revolving CEOs? The investors disagree with that assertion

Re:And users will continue

[Dahamma]

Selling almost $8B in Alibaba stock isn't an assertion, it's a fact. Look it up. It may end up being the main reason Yahoo is around in 5 years.

Sort of like how Tivo is only around because they have sued Dish Network, Verizon, etc for hundreds of millions, not because they are actually making a profit from their service any more...

Re:And users will continue

[TubeSteak]

Lies! I haven't received any free coasters from them for years now.

That's how they saved the company!
You wouldn't believe how much they were spending to press & mail out those CDs.

Re:And users will continue

AOL is still around, somehow, though I have no fucking clue how.

I was in a fairly important position with the company that bought my countries part of AOL a couple years ago, so I can tell you how.

One, large parts were sold off. We bought the ISP part and the call centers. That was over half of the entire operation in this country.

Two, half of the remaining people were canned. In other countries, many more.

Three, the remaining part was largely in the portal / advertisement business and had a life-line because contracts with periods of several years were part of the selling-off deal. So if you bought a part of AOL, you also bought into its portal as a partner. At least for my company, that was a loss from the start.

Four, the remaining operation went through several reorganisations and downsizings. Basically, it was kept alive on life-support, but no viable business has ever emerged.

Posting AC because I don't want to know how much of that some lawyer might still consider trade secrets after all these years.

Why not?

Even Apache doesn't honor DNT if it has been issued by IE10

http://www.pcworld.com/article/262150/apache_web_servers_will_ignore_ie10s_do_not_track_settings.html

Re:Why not?

False. It is configured to do this by default via the httpd.conf, which is easily altered. Saying Apache doesn't honor DNT based on user agent is misleading.

Re:Why not?

Wow you really managed to split that hair so fine.

Re:Why not?

[Billly+Gates]

Because Google, doubleclick, and every e-marketer on the planet gives money to Apache and writes modules for it.

If Apache respected it they would get some angry phone calls and threatening actions like ad networks only supporting IIS. Either you do not support it or we will cut you out of the market with someone else instead!!

Re:Why not?

How can you say it is false when in the next couple of words you say it is true?

Yes, it can be altered. Anything can be altered. But why would the DEFAULT be to violate the privacy of IE 10 users? Either the apache programmers are fucking insane and retarded, or they are being bribed by advertisers and crooks. Occam's razor, bitches.

Re:Why not?

[tofubeer]

Or Microsoft isn't following the spec, so people are ignoring the setting for them: http://www.w3.org/2011/tracking-protection/drafts/tracking-dnt.html#determining

Re:Why not?

[Xest]

If giving users privacy by default is ignoring the spec then the spec is already meaningless.

As such I and no doubt many others will continue to use ad-blockers and roll out ad-blockers to friends, family, and the businesses we work for to ensure that if they're going to track us regardless of our DNT setting, then they wont get any ad-revenue at all.

So here's the thing, if I go into IE's options and disable DNT, and then re-enable it giving express consent according to the DNT spec then tell me, why is my DNT option still going to be ignored by Apache, Yahoo etc. hmm? Who is breaking the spec to make money and suit themselves then?

Re:Why not?

[bloodhawk]

Microsoft follows the spec just fine, They give the users a choice at setup for enabling the DNT, but scumbag advertisers and those bought out by them in the industry never had any intention of this being an effective means to prevent tracking. The intention was to slap lipstick on the privacy pig so they could tell regulators that there is no need to crack down on them. Unfortunately MS has spoiled there little butt fucking party by making it easy for the user to make the intelligent choice.

Re:Why not?

> Anything can be altered.

Not true. But you can try.

> But why would the DEFAULT be to violate the privacy of IE 10 users?

Violation of privacy is an undefined event for an undefined legal concept (spanning not just the US). The more specific reason the technical standard is flawed, is why "choice" means a setting in the browser. That's not a choice, that's an arbitrary series of interactions. This is not the same as "choice". Using a specific browser, is a choice.

Re:Why not?

MS were following the spec, The spec was explicitly changed recently to try and stop MS giving users the choice.

Re:Why not?

So Apache does honor DNT. Way to double down once you recognize you're wrong.

Re:Why not?

> Or Microsoft isn't following the spec, so people are ignoring the setting for them

Using IE vs Firefox vs Chrome vs Opera vs Safari, etc. is a choice. This has already been determined in US court. Not sure why DNT standard proponents imply choice can only be "ui interactions from within the browser", oh yeah, it's not an open standard as much as a backroom deal disguised as a technical solution. Good on MS and good on Yahoo.

Re:Why not?

[Billly+Gates]

How can you say it is false when in the next couple of words you say it is true?

Yes, it can be altered. Anything can be altered. But why would the DEFAULT be to violate the privacy of IE 10 users? Either the apache programmers are fucking insane and retarded, or they are being bribed by advertisers and crooks. Occam's razor, bitches.

Google is a top funder of Apache and if advertisers like doubleclick and Google band up together, then website operators will lose revenue if they only support IIS. In this way Apache is more afraid to lose the e-marketers than a few angry geeks on slashdot sadly.

Re:Why not?

[symbolset]

IE users have no privacy. They use the world's least secure browser on the world's least secure OS. Remote management of their PC and copies of their most private info is bought and sold on the black market for pennies, because there are far more sellers than there ever could be buyers who wouldn't just get it themselves directly.

Re:Why not?

If giving users privacy by default is ignoring the spec then the spec is already meaningless.

If providing a spec in which the result is skewed by two thirds to let the advertisers do exactly what they please than the spec truly is meaningless (no choice (#1) or setting DNT to Zero (#2) is supposed to mean you do not mind being tracked. Only a DNT of One (#3) means the opposite)

And lets not talk about the same specs which allow a website to ignore the setting no matter what it says.

My apologies to the people who came up with this "solution" and had good intentions, but this DNT is even more damaging to customer than not having it at all. In its current form its nothing more than a smokescreen, used toward gullible as a "see ? We really did give you/them a choice".

Re:Why not?

[Xest]

I don't think you need to apologise, let's be honest this spec was created at the behest of the advertising industry to try and keep the industry regulators and national data protection and privacy authorities off of their backs.

The sooner it's exposed as that and they get the authorities onto them regardless and force them to respect people's default will for privacy the better.

Re:Why not?

[Chelloveck]

If giving users privacy by default is ignoring the spec then the spec is already meaningless.

If the standard is based on the bad guys doing the right thing, then the spec is already meaningless.

DNT makes as much sense as the evil bit. It would be a great thing, if only the opponent would cooperate. But that's not going to happen, is it? I don't care what the standard says, it's advisory at best. And it requires that the advertisers give a flying fuck about the desires of the end user, which they obviously don't(*). If they did, we wouldn't need anti-spam software and pop-up blockers. DNT only works in a world where the targets already all play nicely, but if they already all played nicely DNT wouldn't be necessary. It's a dumb idea and I hope it dies a quick death.

(* Okay, some vanishingly small number of advertisers do care. But they're not the targets of DNT.)

Re:Why not?

[roca]

The record is very clear that DNT was invented by Mozilla and a few others in an attempt to give people some meaningful way to improve their privacy on the Internet.

You just made up a conspiracy theory because it sounds good in a Slashdot comment and gives you a warm feeling inside.

Re:Why not?

[roca]

You seem not be aware that a lot of big advertisers had already promised to abide by DNT.

Maybe they would have abided by their commitment, maybe they wouldn't have. If they hadn't, we could at least call them to account for failing to abide by a previous commitment.

Now that Microsoft and their supporters (like you) have sabotaged DNT, it's not clear what will happen.

Re:Why not?

[Xest]

Oh more Mozilla incompetence? Colour me suprised.

Obviously

[Skyshadow]

Is it really a surprise that a failing business like Yahoo! would ignore its users in an attempt to make money?

Look, the obvious lesson here is that no business can be trusted to keep secrets. Also: Water is wet, fire is hot. Don't give out anything you don't want to get out there, no matter what some PHB promises you.

Yahoo Leads the Way

[ohnocitizen]

Yahoo leads the way forward, whether it is in their innovative email platform with intuitive ui (ads), their reporting (entertainming/advertising) with an insightful comments from the community (tea partying racists), or their home page that I haven't visited but I hear has relevant content (ads) - Yahoo is the future. We can't expect anything less than a rejection of IE's fascist desire to make advertising less lucrative. After all, users want nothing more than for the advertising they see to be as intrusive and lucrative for companies as possible.

Re:Yahoo Leads the Way

[ohnocitizen]

Apparently disagreeing with something = mod it troll. I'm guessing its the tea party racist bit - which is a very accurate reflection of the comments section on a yahoo article. Accuracy can sometimes sting just a little.

Re:Yahoo Leads the Way

[Ash-Fox]

I'm guessing its the tea party racist bit - which is a very accurate reflection of the comments section on a yahoo article.

I read Yahoo articles on yahoo.co.uk most of the time, I see nothing about tea party. Are you just applying this to a small section of Yahoo and not Yahoo as a whole?

Re:Yahoo Leads the Way

[ohnocitizen]

Ah, to their US site. How typically American of me to ignore the .others

Re:Yahoo Leads the Way

The racist (and the asshole) is you pal. Yahoo is a biased crock of shit destined to fade into obscurity.

Stupid choice from Microsoft

[da_matta]

They should have made a huge startup dialog "Do you want to be tracked" and achieved 90+% block without these complaints. They might still have ignored it but at least it would have been clearly a DNT violation

Re:Stupid choice from Microsoft

You are naively assuming that Microsoft intention with that choice is to avoid their users being tracked and not just boom the DNT thingy.

Re:Stupid choice from Microsoft

[Billly+Gates]

Knowing Slashdot they would then be bashed for annoying pop ups and letting advertisers track them.

Clueless users would feel IE is stalking them after seeing it pop up every 5 seconds browsing the web and would switch to Chrome so they do not have to feel tracked.

Re:Stupid choice from Microsoft

They should have made a huge startup dialog "Do you want to be tracked"

Have you actually seen the startup dialog?

It's not that DNT is on by default; as is made clear, choosing the Express settings will turn it on.

The browser out of the box does not have DNT set in either state.

Re:Stupid choice from Microsoft

[wierd_w]

They should have set the DNT field to a null string when not explicitly selected by the user, telling IE not to respond with a DNT response. When a site asks about DNT, and the value isnt initialized, then it can inform the user something like "$DomainHost has requested information about your willingness to receive targeted advertisement information, and other targeted web services via the DNT function. You can read more about this functionality at $MSDNPageReferenceURL. Would you like to enable this feature for this session? You can set your choice globally in the browser options page, and change your preference at any time."

That would have nailed the lid on the "User Intent" issue down hard.

Re:Stupid choice from Microsoft

[Xest]

Actually good on them for exposing what a sham DNT is.

These companies ignoring it are just using whatever excuse under the sun to do what they were always going to do anyway, and ignore it.

As I've said elsewhere, if I disable DNT in IE, then re-enable it, then there's no breach of the spec, and I've provided my express consent for the DNT option, but despite that these companies like Yahoo, and webservers like Apache will still ignore my choice if I use IE10 meaning that it's actually them who are violating DNT.

In other words, these folks will ignore DNT regardless, for no reason other than the fact they're complete and utter privacy violating money grabbing cunts.

Re:Stupid choice from Microsoft

[Billly+Gates]

Right destroyed by all so evil MS since they are the only ones implementing anything AT ALL. W3C changed the standard after spammers and advertisers whinned and paid them off.

I see nothing but good and no harm. Maybe if Firefox wasn't so scared of Google and started implementing more and more privacy settings we could then see a change. I just do not see how this is bad unless someone's hatred towards Microsoft blinds them so much they refuse to want to even see.

Re:Stupid choice from Microsoft

Hey Billy!

Since you love Neowin.net so much why do not you go back with the other MS fanbois?

Re:Stupid choice from Microsoft

Microsoft was working within the standard, however advertisers saw that the way MS was doing their browser choice would mean most users opted in for DNT. hence THEY CHANGED the Standard. The scumbags here are the ones writing the standard. if you could call it that as it is expressly designed to ensure users don't get privacy.

Re:Stupid choice from Microsoft

Ah yes, I call this one the Apple approach.

Apologise by saying others copied you and the courts are breaking the law.

"But your honor, we offered the users a choice, see, look at this screen on our BRAND NEW WINDOWS 9 NOW WITH HYPER MIND IE11. See, there is the pop-ups. All 100 of them asking you if you wish to be stalked by evil companies wanting to inhale your family and friends. Was it not enough? Should we have took it to 101?"

Re:Stupid choice from Microsoft

[Racemaniac]

Thanx for this post!

I thought microsoft had actually enabled it by default, which would be understandable, but against the spec

But here the user actually makes the choice. it's not on by default, but on if the user chooses to use the express settings (and it's clearly indicated)

Or maybe a bit clearer: If clicking "I agree" under a wall of legalese text is acceptable for everyone to agree to the most outrageous demands of the companies. Then choosing express settings with mentioning clearly in a not "wall of legalese" that you're choosing to block tracking is making a choice to block tracking, not being enabled by default without the user knowing it.

I find it strange that so many here attack microsoft for it. I know we're all supposed to hate them, but here the others are really being total assholes. If eulas are okay, then this too.

Re:Stupid choice from Microsoft

[symbolset]

By making it the default they can claim they are trying to protect users and have their sockpuppets bash Google and Yahoo for ignoring it, all the while secretly ignoring it themselves. In 'Softy land that's a win/win/win: Strategic perfection, except that nobody believes them any more.

Re:Stupid choice from Microsoft

[symbolset]

Microsoft would know about scumbags writing standards. They ruined the ISO's credibility that way by railroading through their OOXML standard using means disreputable and despicable.

Re:Stupid choice from Microsoft

Actually I had not seen that one, I thought it was just on by default. Even though you can argue "user intent in default settings", I'd say that is pretty good way to do it. People who don't bother reading that is better off having it on.

PS. One of these days Slashdot will have a dynamic login in the comment dialog so I would not need to debate anonymous vs. copytext-login-reload-refindcomment-paste.

Re:Stupid choice from Microsoft

That's pretty much what they did. When you start IE for the first time, you get a dialog asking you to set the settings. The "express settings" button specifically says that it enabled do not track.

Re:Stupid choice from Microsoft

[HarrySquatter]

You are naively assuming that DNT was anything but a worthless standard.

M$ responds by...

[AlienSexist]

Changing the DNT request text from: "DNT (Default)" to "DNT (User's Choice)" Now Yahoo! will be ignoring the wishes of the user.

Re:M$ responds by...

[allo]

its a 0/1/absent header, no text.

There HAS to be an alternative to:

-this kindergarten bitch game of appealing to a bunch of assholes to comply with a pre-poisoned protocol of centrally regulated tracking. Let this be a binary battle instead, where a distinct line of intelligent development and availability divides those who strive for privacy and those who expect it. Really, I find myself utterly perplexed that browsers are not the culprit. With ANY browser, most people have essentially two choices: Sell your soul to "Add Ons", or deal with a shiny and fast POS. I think the fact that mainstream browsers require a slew of additions to ascend from the cyber-toilet, deserves some healthy resentment.

Re:There HAS to be an alternative to:

[Trilkin]

Slew? You only really need two: NoScript and AdBlock (or any of its forks.) You can't stop people from making bad decisions or to think selfishly. Thinking you can, even with any sort of regulation in place, is pretty dumb. There isn't much soul selling involved here - especially if you use a fork of AdBlock that isn't explicitly being 'donated to' by a big advertisement company. NoScript itself also pretty much funded by donations from users and is otherwise done as a 'spare time' project by its authors.

I think I prefer it this way rather than a truly regulated WWW, honestly. That alternative is a potentially very scary one.

Why assume permission?

[Todd+Knarr]

The rule on private property is that you do not have permission to use it unless and until the property owner says you do. If he doesn't say anything, you don't have permission.

The rule about inviting yourself into someone else's home is that you don't have the right to unless they say you can. If they don't say, you don't have permission.

Our world's full of things where a lack of explicit permission means you don't have permission. Now, as far as the site itself is concerned I don't object to them tracking what I do on that site. It's their site, I can't expect to access it without them knowing what I'm doing. But a third party, it's not their site. Why should the rule not be that, absent my express permission for them to track my comings and goings, they do not have permission?

Re:Why assume permission?

[BeanThere]

Why should the rule not be that, absent my express permission for them to track my comings and goings, they do not have permission?

Basically, it should be, this is common sense. The problem now is for those in the advertising industry whose business model has been based on the ability to deceptively trick the majority of users into not realizing just how badly they're being tracked online and how broadly their info is being sold etc.

I think if your business model is based on tricking people into doing something that they would reject if they fully knew and understood what you were doing, then you are doing something wrong.

That said, I think the claims that the industry would just die without the ability to track users are overblown. I think the effectiveness of personalized advertising is exaggerated, as well as the perceived value in compiling detailed user profiles with full web histories. The reason is that targeted advertising doesn't really increase the number of dollars available to chase after goods. Example: you don't really suddenly decide to buy a motorcycle because of a targeted advert ... in most cases you probably decided you wanted a motorcycle first, and then you probably anyway ignored most the adverts in order to do some more solidly grounded market research, e.g. looking at the specs of the bikes, getting some advice from friends or online forums, and looking at what motorcycles actually appeal to you. A targeted ad in that case might make you statistically very slightly more likely to favor another brand .... but for most people the decision will be based mostly on things like advice from friends, comparison of specs, and test rides. And after you buy the motorcycle, those dollars are basically no longer available to spend on all the other crap being advertised online to you.

If targeted advertising based on tracking your data etc. was as useful as has been claimed, Facebook would have made a killing from it, but instead it was a flop, and they have now desperately resorted to just making companies pay for 'sponsored posts' now instead to dump the crap in your feed.

Re:Why assume permission?

[Gordo_1]

Why should the rule not be that, absent my express permission for them to track my comings and goings, they do not have permission?

Why should the rule be that the information you explicitly (or unknowingly) divulge through your web browser in the form of cookies, IP addresses, referers, information input into forms, and so on is NOT something you have essentially shared with that party as well as any 3rd-parties they wish to share it with?

As far as I'm concerned, if you hang your tighty whiteys on a clothesline, your neighbors have every right to sell T-shirts with a picture of your skid marked underwear on them. Don't like it? Get a dryer. ...or in this case, get blocking software or simply don't visit the site.

IE10's DNT implementation is a bad joke and as far as I'm concerned Yahoo! has every right to ignore it.

Re:Why assume permission?

Because assuming permission makes more money. Marketers do not care about the product's privacy, it's one of the many perks of having no soul.

Re:Why assume permission?

A thousand times this. Where do people get off assuming every bit of information they send around the web is somehow their property by default and everyone else has to ask permission to share or even store it?

Don't get me wrong, a simple and clearly worded agreement between an information-based company and a customer is generally a great idea, and I might even go so far as to entertain the notion of some thread-bare regulations on such services, but giving people almost complete legal control over the distribution of their personal information is to me extreme, deeply unnatural, inefficient, and immoral.

The number of people that support the idea that others don't have a right to collect, store, and share information freely given to them tells me there is a significant demographic of blatant hypocrites here on Slashdot. Copyright is such an unpopular notion and there is more than a minority here attacking it on the grounds that a right to control the distribution of information is based purely in economics and not at all in morality.

Re:Why assume permission?

> I think if your business model is based on tricking people into doing something that they would reject if they fully knew and understood what you were doing, then you are doing something wrong.

The financial sector disagrees strongly and effectively, with their enormous piles of cash.

Re:Why assume permission?

[Todd+Knarr]

Why should the rule be that the information you explicitly (or unknowingly) divulge through your web browser in the form of cookies, IP addresses, referers, information input into forms, and so on is NOT something you have essentially shared with that party as well as any 3rd-parties they wish to share it with?

So, if you write a check to me or pay me with a credit card, why should I not be able to hand your checking-account number or credit-card number and CVV2 code to any 3rd parties I wish to share it with? How about your address and phone number? As usual, common sense here says that giving information to one entity is not blanket permission for them to go spreading that information to others. If they want to do that, the general rule everywhere else is that they need to say who they're going to give it to and get permission first. Absent that permission, they do not have permission to give it out. Even those photos, people don't in fact have a right to sell them when my clothesline's in the back yard not readily visible from public property and you needed my permission to be somewhere you could take the photos in the first place. And if it's a photo of me, you don't even have a right to sell it if it was taken in a public place. You need permission (and a model release) from me first, and absent that permission you don't have it.

Re:Why assume permission?

Why should the rule not be that, absent my express permission for them to track my comings and goings, they do not have permission?

Why should the rule be that the information you explicitly (or unknowingly) divulge through your web browser in the form of cookies, IP addresses, referers, information input into forms, and so on is NOT something you have essentially shared with that party as well as any 3rd-parties they wish to share it with?

Sharing is something you do together. Everything you mention, except information put into forms, is something the browser does behind the scenes, most people have little or no insight in what is going on, and it seems that most people are not good at understanding what they can't see. That puts the ones 'sharing' and the ones collecting information in very unequal positions.

As far as I'm concerned, if you hang your tighty whiteys on a clothesline, your neighbors have every right to sell T-shirts with a picture of your skid marked underwear on them.

I disagree. Neighbours can see lots of things about your life, but you expect them to be decent about it. I used to have a neighbour, an elderly woman, who was a terrible gossip. She watched every move people made. I once witnessed her being offended when a neighbour had done something that prevented her from seeing and hearing what she wanted. She thought she was entitled to that information, and she was upset because she wouldn't be able to share it with a friend, another gossip who lived around the corner. Did people think it was fine for her to behave like that? According to your logic they should, you 'share' it if you don't hide it. In reality everyone (except her gossip friend) hated her guts. People naturally expect others to ignore quite a lot of the information about them they could lay their hands on. People who actively collect and use it are called gossips and stalkers, and that is not considered to be acceptable behaviour. Why should we accept it from corporations? I think they are very similar to this lady.

I know very well that on the internet it's wise to keep your curtains drawn day and night. But because I need to take measures against corporate stalkers anyway does not imply that their behaviour is acceptable. As they obviously aren't grown-up and responsible enough to restrain themselves they need some parenting. The EU does that through legislation.

What browser makers really need to do is

What browser makers really need to do to prevent tracking is to simply clear cookies when you close your browser. For good measure also clear flash and silverlight cookies. That prevents persistent tracking. It works perfectly for me. I've never needed do not track.

Re:What browser makers really need to do is

[pitchpipe]

What browser makers really need to do to prevent tracking is to simply clear cookies when you close your browser. For good measure also clear flash and silverlight cookies. That prevents persistent tracking. It works perfectly for me. I've never needed do not track.

How do you know they aren't tracking you by IP address and habit of sites you visit?

Re:What browser makers really need to do is

[bloodhawk]

They do that even with the DNT cookie, DNT is purely a do not send me targeted ads, they are still allowed to track you even while honouring DNT. The whole DNT thing is pointless and whoever came up with it as a way to move forward should be lined up and shot.

Re:What browser makers really need to do is

[Geeky]

Not much hope of IP address tracking if you're using 3G mobile internet in the UK. You're lucky if your IP address stays the same for more than an hour or so - even in a single location (so it's not related to the tower you're connected to).

Yahoo still the king of sports coverage

[Andy+Prough]

Can't beat their sports coverage, live score tracking, and their collection of sports writers. Yahoo is still the best if you are trying to track numerous college or pro football games on Saturday or Sunday. CBSsports.com is a close second. ESPN's website is too flash-heavy, and slow to load most pages.

Re:Yahoo still the king of sports coverage

So it's the mouth-breathing retarded sports fans that keep Yahoo alive? Good to know, thx

Re:Yahoo still the king of sports coverage

[Andy+Prough]

So it's the mouth-breathing retarded sports fans that keep Yahoo alive? Good to know, thx

Yup - just me and my knuckle-dragging buddies following sports on our 486-PC's in our caves. We like Yahoo because it renders well in our non-updated IE4 browsers. If not for us, Jerry Yang would no longer lead the company, and Yahoo stock would only be worth a fraction of its all-time high of $118 a share in January, 2000.

...oh wait...

Yahoo?

What's yahoo?

Re:Yahoo?

is a group of 20-60 yo men and women who have decided to follow you and your children around the Internet

I didn't use Yahoo! before...

[twocows]

And I definitely won't use them now. They can rot.

Makes it easy

[Joe+U]

Now I know to do full ad and cookie blocking for yahoo sites.

Thanks Yahoo, you made my decision easier.

Re:Makes it easy

[thegarbz]

Wait you don't do this by default for the entire internet?

Re:Makes it easy

Are you really that bothered with ads?

I block pop-ups and I block Flash, but other than that I really don't mind seeing a few ads, if it helps the websites get some money.

If I don't like to support a website I'll block ads on it or just not even visit it.

Re:Huge percentage are IE users

[Billly+Gates]

What's even more shocking is that there's people still using Yahoo.

When working on any neophytes or old persons computer Yahoo is there under IE with the default homepage 80% of the time. Reason being is the crapware that OEMs install as well as ISP software both reset the users homepage too it for $$$ cash back.

Ones with MSN as the default page are typically corporate users. If MS decided not to be retarded and capture the market from Google they would put it in the Windows contract to not change the homepage at the OEM level. ... anyway I can see why Yahoo would be threatened by this as smart users like us who go to sites like slashdot use an alternative browser. Or if we do use IE we change the homepage to Google or something similar. Yahoo is the oldschool portal that regular people use who are not into computers very reminiscent of AOL back in the day 10 years earlier.

Microsoft should...

Retaliate by getting rid of DNT entirely and then reconfiguring the defaults to be as follows:

Accept First Party Cookies
Block ALL Third Party Cookies
Accept Session Cookies
Delete All Session Cookies on Program Termination

Is anyone else bothered by the fact that MICROSOFT gives more of a shit about the end user than everyone else?

Re:Microsoft should...

[tuppe666]

Is anyone else bothered by the fact that MICROSOFT gives more of a shit about the end user than everyone else?

All that Microsoft did achieve...and all it could achieve is to have others ignore the functionality. They actually destroyed its functionality by embracing it. If Microsoft gave a shit it would be using Tor, or creating similar technology...or even just making their own OS less spyware. I was shocked at how much information Windows 8 wanted from me.

Re:Microsoft should...

[Opportunist]

Not really, actually, it's logical. For MS, we're the customer. For Yahoo, we're the product.

Re:Microsoft should...

[Xtifr]

Actually, for MS, Dell is the customer. Except for their advertising department (aka Bing) where you are the product.

Re:Microsoft should...

[westlake]

If Microsoft gave a shit it would be using Tor, or creating similar technology...or even just making their own OS less spyware.

Let me introduce you to In-Private Browsing and Anti-Tracking Lists

Why rely on this for your privacy?

[Virtucon]

DNT+, Ghostery these are all out there. Frankly there's probably very few websites now that don't track your IP address and other details with multiple
trackers.

Hell go to cnn.com and Ghostery blocks 10 trackers alone. Two of those are )(*@!@)*# Facebook trackers. Frankly, the amount of information people are collecting about our web browsing activities is becoming staggering and I for one won't rely on a company saying they'll honor "Do not Track" options from the browsers.

As Navin Johnson said "It's out there, see a doctor get rid of it" - The Jerk

Re:Why rely on this for your privacy?

Don't use Ghostery, it is created by an advertising company that is most likely tracking you through the plugin itself.

Re:Why rely on this for your privacy?

[bgarcia]

Frankly there's probably very few websites now that don't track your IP address

Well... yeah. That's how they're able to send you the web page that you requested.

Re:Why rely on this for your privacy?

Why not take a different approach and generate plugins that "poison the well" by directly
feeding misinformation to the trackers? There must be some way to make it so untrustworthy
that companies stop paying for this sort of stuff.

Re:Why rely on this for your privacy?

[allo]

mod parent up, and install ABP with the no-tracking blocklist. Ghostry is dubios.

Re:Why rely on this for your privacy?

Got any backing to those claims yet, or just more tinfoil hattery?

Re:Why rely on this for your privacy?

http://yro.slashdot.org/comments.pl?sid=3212703&cid=41788883

Re:Why rely on this for your privacy?

No, mod grandparent DOWN, Ghostery only tracks you if you enable GhostRank.

Case closed.

Re:Why rely on this for your privacy?

http://yro.slashdot.org/comments.pl?sid=3154101&cid=41507821

Checkmate!

Re:Why rely on this for your privacy?

[allo]

ghostery is a product of a tracking company.

Yahoo has this 100% correct

[frobbie]

The W3C DNT spec explicitly says that a browser should not set this by default, yet Microsoft is completely ignoring the spec and turning it on by default. What Yahoo is doing it 100% correct - it's the only right answer to Microsoft completely ignoring the DNT spec, both in it's intent as well as it's actual words. Every other major web property WILL do the same. Apache already has a patch to ignore DNT from IE10, now Yahoo is doing the same, and the rest will follow.

Re:Yahoo has this 100% correct

[vistapwns]

I love the obtuseness on this sentiment, which is very common. The 'standard' was changed after it was discovered that MS was going to enable DNT by default, in that sense, it's part of the standard, but that aspect of the standard is ad hoc and politically/financially motivated. Users should have privacy by default, period. If web sites want to make money, they should innovate to attract more users, offer more services, or require a pay wall if they can't innovate. There is no pro-user argument for DNT must be user selected, except the round-a-bout 'web sites need to track most users to make money'. In that light, DNT would be ignored any way if most users used it (since that's what the complaint of IE10 really is - that most users will have privacy, not that they want to be tracked), which makes this whole issue a farce. People here jump on as a reason to bash MS (excuse me, "M$"), in an epic show of short-sightedness that is common here. yea, yea, -1 incoming, whatever.

Re:Yahoo has this 100% correct

[bloodhawk]

What yahoo is doing is 100% INCORRECT. they are ignoring the standard, MS was within the standard up until they changed the standard a few weeks ago with the express intent to make what MS was doing out of spec. When win 8 went RTM they were within spec. The standard is being written to expressly protect privacy invasive behaviour so it isn't suprising that the scumbags writing it changed it when they saw people would actually use. The standard was never intended to protect people, it was intended to protect advertisers from governments cracking down on them.

Re:Yahoo has this 100% correct

[rastos1]

Isn't it then logical to invert the meaning of the flag when it comes from IE?

Re:Yahoo has this 100% correct

[betterunixthanunix]

The W3C DNT spec explicitly says that a browser should not set this by default, yet Microsoft is completely ignoring the spec and turning it on by default.

No, when you first run IE10, it asks if you would like to turn DNT on as a recommended setting. The user has the choice. Before you say, "Nobody reads that anyway!" keep in mind that the justification for privacy invasion by sites like Yahoo is that they "clear" state it in the fine print (which, in fact, fewer people read).

Re:Yahoo has this 100% correct

[allo]

so if i set "please do track me", they do not track me?

Slashdot uses apache...

Users of the SourceForge, Slashdot and Freecode websites have choices regarding the collection and use of information through our websites. This page summarizes some of those choices regarding our use of cookies, some advertising and other tools we use on our websites, and choices that you have about receiving newsletters and other communications from Geeknet. This page is designed to highlight some of the choices you have; for a more detailed discussion, please see Geeknet’s Privacy Statement.

If you feel that DNT should be respected, and you would like to opt-out, please send an email to bitbucket@slashdot.org, devnull@slashdot.org, and trashcan@slashdot.org. Your email will not be read and no action will be taken.

Fuck No

Just because M$ is wrong, does not make Y! correct. Not even fucking close.

Y! would be more correct to just stop supporting M$ browsers at all, and if shit breaks remind the user that they should switch to a supported browser.

Opt in is the right way, but then they'd get no...

[girlinatrainingbra]

Opt in is the right way to do this sort of tracking or marketing to, but the problem with the opt-in is that then they'd get no takers. It's the same reason that MS did so well by bundling IE into the OS: people stick with the default option and do not change things.

.

It's the same way that political polls and statisticians can lie with numbers: you can ask the same question in ways that can "force" or "prompt" a particular answer. (See also episodes of Yes, Prime Minister for examples.

I want to be tracked!!!

I think it should be illegal to avoid tracking and the evidence suggests the majority of people agree with me on this one.

All major cities have cameras and tracking these days, 99.98% of the population carriers a tracking device on them, and almost nobody uses the software which would reduce the effectiveness of tracking (Tor).

After all it's for your own safety!

Re:I want to be tracked!!!

[Opportunist]

If I just could opt out of that delusion of safety. In return, I promise I won't complain if the boogeyman du jour (is it still terrorists? I lost interest a while ago) kills me.

Agreed? No? Gee, why not?

Re:I want to be tracked!!!

And if opt-in was the only way guys would contact girls, the species would be extinct.

All joking aside, opt-out marketing is what provides us with yahoo's services, as well as google, some microsoft stuff, hell even bittorrent is sponsored by this sort of stuff. Is it such a bad trade ?

Let me explain why Yahoo feels this way (political

I've been using Yahoo for many years and I tried very hard to understand how their company works and why they are always politically biased and publish articles that are very controversial. There are two reasons for this, the first reason that we're all well familiar with is money. They make money for posting controversial articles because they have about 8 advertisements per page, often times videos load immediately when we don't like it (ABP was designed against these kinds of intrusive tactics). The second thing that is least obvious is their ties with the feds. As it turns out, I have spoken to three reputable individuals that were able to confirm various websites that work hand in hand with the federal government, Yahoo being one of them, but more specifically DISQUS. In attempt to monitor potential terrorists, DISQUS as well as many other social networks have cooperated to invalidate people's privacy for a matter of national security.

While I may not agree with their tactic, it is entirely legal, and there's only one thing that can defend us from being spied on from these networks and that's to just not use them. However, nearly all networks will be monitored sometime next year, I believe around May or June and collectively stored in a vary large data center in Utah. However, commenting is not just the only method of which there are privacy concerns but it extends as far as allowing E-Mails to be read by "authorized" authorities, and scanned (I believe only the title) and stored into a "smart" database. In some rare instances, you only need to be logged into facebook and yahoo to be "linked" between accounts when the proper authority uses the correct parser. It's no longer about posting things, but rather just signing in.

I won't tell you guys who told me this, and how many there were, but it's something that is bothersome and will only become worse from now. I don't really care about certain things because I don't do anything illegal, but it's the principle that matters to me. I don't like a "big brother" watching me, because they are civil servants and nothing more. Thank you for reading this.

hunh...

Okay, I may understand user intent. But easily abused? That is like saying, turning the lights off in my house to save money is abusing use the power company.
I have a question, I wonder how would they react if instead of setting the DNT status to a default state, the browser asked the user at setup or first run what state they want DNT in? Why do I get the feeling that they would say that it's unfair and they still wont honor it.

*I* Rather be tracked by default

[Quick+Reply]

It makes me feel good inside to know that I am creating revenue for the website that I visit, which helps cover the cost of providing that website. Tracking a user and giving targeting advertising increases the value of the advertising campaigns, which translates into more money for the website.

If we didn't have this, the web is going to become subscription-only very quickly.

Slashdot gives me the option to "Disable Advertising" for having positive Karma, but I choose not to use this.

What is annoying, is that the tracking wouldn't be an issue if the online advertising industry would be more honest to consumers about their practices from be beginning so that it would have been accepted early on, and also not give online advertising a bad name by not tricking websites into displaying ads that the web developer has said not to, and also allowing intrusive or misleading advertising (like how many fake 'Download' buttons do you see on Download sites for example).

Re:*I* Rather be tracked by default

[Opportunist]

I agree with you yet I do have a very strict ad blocker in effect. Why, you ask?

Because I do NOT want to reward pages that trick me into visiting them by allowing them to spam ads at me. Rather, I would prefer to damage them by increasing their bandwidth without getting them any ad revenue in turn. If enough people did it, such pages that hook onto common search queries without actually providing the relevant information would quickly cease to exist.

If, and only if, a page offers me what I want, be it information, entertainment or just a joke, I go out of my way to enable their ads if, and only if, they don't slap me in the face with popups and more windows opening than the average person can close in a lifetime. If the ads are actually on topic (like Slashdot's are more often than not, interestingly) I will even click them to see what's on the other end of it.

Ads are not bad by definition. Ads can actually be very informative, I would have never discovered a few games and other goodies I treasure if it was not for ads. They received their bad name by ad companies that thought it's a bright idea to make them annoying. Annoying ads don't work in the online world where I, not the ad company, decide what I'll get to see. Make ads informative and you'll see people will not only stop blocking them, they'll actually follow the link they provide to learn more about the product.

Of course, for that to work you'd first of all need a product that people actually wanted and that doesn't need hard selling...

Re:*I* Rather be tracked by default

[Xest]

Yes, because before ads and subscription only became the norm there was nothing on the internet whatsoever, no content at all, nope, none whatsoever. Even sites like Wikipedia don't actually exist and we all just imagined them because they don't have ads or tracking so they can't possibly be real.

For what it's worth the quality of content has gone down with the increase in ad-revenue run sites. You only have to look at Slashdot for example - nowadays due to being so reliant on gathering ad-revenue they regularly post stories that are out and out flamebait and not correct, informative, or interesting whatsoever purely to gain ad-revenue. Ad run websites have merely created a race to the bottom- to provide as much untrue inciteful bollocks as possible to make people come and see what the fuss is all about to increase ad revenue.

Re:*I* Rather be tracked by default

[jimicus]

I never bothered with an ad blocker for years.

It was just one single product that made me change my mind. A single product that kept on putting up intrusive ads - ads with no obvious way to close them, ads which were overlaid across the page I wanted to read, ads which quite obviously used Javascript that hadn't been tested on Safari under OS X because they broke horribly.

(I particularly draw your attention to that last bit. The product in question was MacKeeper).

Re:*I* Rather be tracked by default

Good, subscription only, for the majority of the content I don't have any interest in and when I'm searching for information and stuff i'm interested in comes up with a million commercial sites. I'm just not interested. I share freely (and stand the cost) and I'm interested in what others do and share freely, now get off my internet and get behind your paywall where you belong.
   

Re:*I* Rather be tracked by default

If we didn't have this, the web is going to become subscription-only very quickly.

There was a web that existed before advertising, and new websites (like wikipedia) that stay true to that spirit. There are websites that don't need advertising for revenue, because they sell a useful product or service. And then there's the advertising-supported web, which is the only part that's at risk of becoming subscription-only - and frankly, I'd consider it a net positive if it disappeared altogether. Yes, despite the loss of Slashdot. We get 90% of its functionality out of Usenet, anyway.

Re:*I* Rather be tracked by default

I agree with this. To various extents.

The only things I block are abusive advertisers, horribly optimized Flash advertisers, pop-anything advertisers, you know, the scrubby companies like those.
I'd also make it a point to send them an e-mail every so often so explain why I have blocked their ads in hopes something changes. But they won't.
Websites that abuse ads by having way too many of them, some times they have print articles available, sometimes they don't. I'll hit the print article most times or just deal with it. But I won't bother going about blocking them 90% of the time since the site likely has some decent stuff on it too. (like news websites, as insufferable as some can be, more news sites are always good for a better point of view)

Everyone else is fine to me. I regularly check out ads for interesting things and deals.
In fact, I found many of the things I use today due to this, including many smaller projects and websites that have a very tiny footprint in very tiny portals of the web.

I remember seeing a Java applet ad before. The horror.

Re:*I* Rather be tracked by default

[Kergan]

It makes me feel good inside to know that I am creating revenue for the website that I visit, which helps cover the cost of providing that website. Tracking a user and giving targeting advertising increases the value of the advertising campaigns, which translates into more money for the website.

If we didn't have this, the web is going to become subscription-only very quickly.

Where your argument falls apart is that displaying advertisements and tracking users are mostly orthogonal problems. The print business has been doing OK without tracking users in magazines, and so does the TV business. They *do* track users, mind you, but they do so by doing surveys in which users *volunteer* information. They can then display targeted ads according to the three most relevant means of segmenting a market: sex, age and revenue.

Web advertisers, by contrast, decided it was a good thing to track each and every move and interaction from a user, in the name of improving ad responses. Yet, there's absolutely no valid reason whatsoever to favor automatic tracking and (widely mis-)inferring profiles, over periodically surveying users to know who they are in their words. I'd actually argue the contrary: things have gotten so bad and out of control with erroneous finger tapping on tablets, that ads are more irrelevant than ever. It's time for them to stop tracking and get back to the tried and tested techniques of segmenting markets.

Re:*I* Rather be tracked by default

[allo]

with this argument, you need to click on the ads (because there is no revenue for the site owner if you do not), and then buy some product (because there is no revenue for the advertiser, if you do not). And if you do this, the products will get more expensive, because they need to finance the ads.

If you really want to do this, why not donate the money to the site, instead of buying too expensive products from somebody who's putting ads on the internet?

Re:*I* Rather be tracked by default

[CRC'99]

It makes me feel good inside to know that I am creating revenue for the website that I visit, which helps cover the cost of providing that website. Tracking a user and giving targeting advertising increases the value of the advertising campaigns, which translates into more money for the website.

Don't fool yourself. I get about 800 unique visits a day to my web site - the data transfer out is about ~550Mb per day of mostly static content. I have a small block of Google Ads on my site - thinking it'd help me pay the bills.

Let me share some results:
In the last 7 days: 1,126 ads displayed, 0 clicks = $0.00
So far this month: 4,172 ads displayed, 2 clicks = $0.33
Last month: 3,903 ads displayed, 7 clicks = $2.98

Since the 1st of June this year, advertising has clocked up $11.02.

Advertising wouldn't even pay for the electricity to run the server. Yes, I could get obnoxious advertisements and make things nasty for the user, but I don't want to. Keep your privacy - as it certainly doesn't benefit the people running the sites...

Re:*I* Rather be tracked by default

"not give online advertising a bad name... "

Did they ever have a good name? I rate them only slightly above lawyers but below slugs and bivalve molluscs.

Re:*I* Rather be tracked by default

[swillden]

Make ads informative and you'll see people will not only stop blocking them, they'll actually follow the link they provide to learn more about the product.

One very interesting example of this is Google's shift to "skippable" ads on YouTube. I'm sure we'd all rather not have video ads at all, but I've noticed that when advertisers realize they only have a few seconds to hook you before you click the "skip" button, they come up with some pretty entertaining ads. More often than not I don't click "skip".

Re:*I* Rather be tracked by default

slash comma

Re:*I* Rather be tracked by default

[AthanasiusKircher]

It makes me feel good inside to know that I am creating revenue for the website that I visit, which helps cover the cost of providing that website.

See, I prefer to know up-front that they plan to track me. If I have flash blockers, script blockers, cookie blockers, etc. in my browser, and I try to visit a site which says "this site won't work without enabling these things," I click the back button and never return to that site.

If a site had a button that asked me to donate if I appreciated the content, I might do so, as I have actually done for some useful sites voluntarily in the past. Or at least put up a message every time you visit that says, "We'd really appreciate it if we could put ads up and track you and... so please click 'yes' to support us and you'll never see this message again." I might actually click that if I felt the site was worthwhile and they explained EXACTLY what they would do with my information. Just doing it without my permission is not acceptable.

Tracking a user and giving targeting advertising increases the value of the advertising campaigns, which translates into more money for the website.

Seriously, you click on ads??? You really trust advertising campaigns? If I want to buy a product, I'll go research it from reputable third-party reviews or recommendations, thank you very much. I've stopped watching TV because of the advertisements. I don't believe most of the things a used car salesman says to me either... but the internet is worse. Considering a product solely on the basis of an internet ad is like believing some guy who drives by you in an unmarked van while you're walking down the street and offers to sell you a stereo system for a "great deal."

I don't want people to "target" ads for me. I NEVER want to see an ad involuntarily on my personal computer. NEVER. I have NEVER, EVER clicked on an internet ad voluntarily. If I want to know whether a product is out there that I haven't considered and may be useful for my life, I'll search for it myself, thank you very much. If it's really that great, probably someone I know will tell me about it or be using it, and I'll ask about it and decide whether I'm interested.

If we didn't have this, the web is going to become subscription-only very quickly.

Yeah, because there was nothing on the internet until ads existed. And there aren't any sites around today that exist on the basis of donations or out the charity of their owners rather than by selling me out to giant corporations who want to invade my home and steal my money for their random crappy products by brainwashing me through "targeted" ad campaigns.

Re:*I* Rather be tracked by default

[couchslug]

"nowadays due to being so reliant on gathering ad-revenue they regularly post stories that are out and out flamebait and not correct, informative, or interesting whatsoever"

I contend that they simply don't give a fuck since the money will still flow. They can afford to be completely lazy and get rich, so they do.

Re:*I* Rather be tracked by default

[antdude]

I disable /.'s advertising with its option. I notice sometimes it gets unchecked after a few months. I assume it is not permanent with my cookies?

Re:*I* Rather be tracked by default

[Mandrel]

Ads are not bad by definition. Ads can actually be very informative, I would have never discovered a few games and other goodies I treasure if it was not for ads. They received their bad name by ad companies that thought it's a bright idea to make them annoying. Annoying ads don't work in the online world where I, not the ad company, decide what I'll get to see. Make ads informative and you'll see people will not only stop blocking them, they'll actually follow the link they provide to learn more about the product.

Yes ads are intrinsically bad. They don't tell the whole truth. But they're often necessary because there usually isn't enough third-party information (professional and social/word-of-mouth) to help you discover and choose. And even when ads are unnecessary, things are still advertised because spin and push is so lucrative, getting more sales at a higher premium.

But it'd be wrong to equally condemn all types of advertising. There's the more intrusive types like door-to-door, telemarketing, animated billboards, distracting media insertions, and ads based on creepy tracking. Compare that to classified ads, somewhat-targeted direct mail, point-of-sale, search-driven text ads, and white papers.

The problem is that the better the content of a website or other publication, the more distracting its ads must be to lure users' attention. That's why I don't think encouraging ads in media to be non-intrusive is a good solution to the content-funding dilemma.

It's MS ignoring users, Yahoo&DNT want user ch

Yahoo (and the DNT standard) are pushing for the exact opposite of ignoring users. The Do Not Track standard says the header is to be sent if the user expressly chooses they do not want customizations. It's Microsoft breaking the standard, setting DNT in the absence of any user choice.

That means IE's header does NOT indicate that the user prefers non-customized pages. Indeed with IE the header means nothing and therefore SHOULD be ignored.

Dear industry

[Opportunist]

If you want us to stop using tracking and ad blockers, you might want to put pressure on companies (like, say, Yahoo) that make us use them.

Sincerely, your user.

Re:Dear industry

[wierd_w]

(assumes role of Devil's Advocate...)

Dear User,

The reason we want you to stop using software to block advertisements and tracking cookies is manifold; we rely on advertisement revenue to supply you with our web content. In addition to that, we rely on tracking cookies to track your browser session. We do this to differentiate your session from other registered users, and to maintain the contents of any internet shopping queues you may have currently active. Obstruction the function of these two required services greatly reduces our ability to both provide the content you come to our site for, and our ability to provide you a quality user experience.

The DNT setting is intended, by the specification handed down by the W3C organization, to have no default value. It is intended to contain only the explicit desired value, as chosen exclusively by you, the end user.

Microsoft's decision to set DNT's status in their express setup wizard has made this valuable feature completely useless for its intended function, which is to express you, the end user's, wishes about your privacy online. If we wanted to know Microsoft's opinion on the matter, we would have simply asked them, instead of trying to work with the W3C to get yours.

Due to Microsoft's abuse of the feature poisoning the results, we have no choice but to ignore this setting for Internet Explorer 10 users.

We will (*inaudible mumble*) your preferences with the DNT setting on any other browser, however, so please feel free to migrate away from IE10 if you wish to use this feature.

Thank you,
$InternetContentIndustry

Re:Dear industry

[allo]

dear internetcontentindustry, ie10 asked me if the default settings were okay. They listed DNT and offered me the option to turn it on by clicking "next" or to disable it. I pondered it for a while, then i decided tracking is bad and clicked next to enable it. Now you do not only ignore my explicit choice to use this setting, but even the choice of people who turned it on, then off, then on again, explicitly in the options dialogue. So why don't you respect our choice, when you respect the choice of firefox users, who turned DNT on in the preferences just after the first start?

Re:Dear industry

[Opportunist]

I hear with regret that it seems the quarrels between MS and you in the end hit me as the only victim.

I guess I'll furthermore have to rely on ad and tracking blocking software on my end instead of hoping and relying on you to actually treat me like a business partner and not some kind of livestock to be bought and sold. If that makes it "impossible" to you to do business with me, I guess I have to find another company who can make it possible. Somewhere on this globe, one will emerge who is more interested in selling me what I want than selling me. Long live the free market!

Sincerely,
your ex-user.

Re:Dear industry

Dear Fucking Moron,
Clearly you have never used IE10, which explicitly asks you the first time it is run if the default settings (as yet unset) are acceptable. On display is that DNT will be enabled. There is no default activation of this setting. Because you are a cock sucking bag of shit, and it is easier to bash Microsoft then it is to educate yourself, you have continued to swallow the lying Slashdot cum that you so eagerly enjoy. Never mind that the DNT standard was changed after the fact in order to, in a way, sabotage IE10 in favor of the trackers and advertisers. It is said that you are so incapable of generating an original thought, and instead prefer to simply believe whatever lie is force feed down your fat, neck bearded throat. Ten years from now, when you have moved out of your mother's basement (you will be about 50 years old at this point), you may come to realize that Microsoft is not always the bad guy in every situation. In fact, the other corporations you so readily worship are quite often far worse with their treatment of users (Google, Apple, Yahoo, etc.). You should look forward to this future where you gain such an understanding.
Sincerly,
Go Fuck Yourself

Re:Dear industry

In addition to that, we rely on tracking cookies to track your browser session. We do this to differentiate your session from other registered users, and to maintain the contents of any internet shopping queues you may have currently active.

Dear Fucktard,

That's not remotely what "tracking cookies" means.

Switch ? more technically

[ls671]

Switch ? more technically, I would bet it is a custom HTTP header.

http://en.wikipedia.org/wiki/List_of_HTTP_header_fields

Re:Switch ? more technically

[deniable]

That sounds like something to add on a proxy.

This is nothing but a MS IE PR campaign

[TrueSpeed]

I don't think this company knows what a standard is because they seem to fight them every chance they get. They think they're getting brownie points for being "Pro Consumer", but as always they just end up looking like fools in the end. This is nothing but a PR campaign to prop their lousy browser back into relevance after being embarrassed repeatedly by Chrome.

Re:This is nothing but a MS IE PR campaign

[Billly+Gates]

IE 10 is very competitive to both Firefox and Chrome. Javascript tests even surprise it or tie it. In other words it is a good browser again. MS really did fuck up IE after IE 6.

It lacks add ons so for me I probably wont rely on it but it is a great browser for office drones. This is another step displaying MS upping their game. However, it is too little too late at this game. Many of us will not go back again just like hardly anyone went back to RealPlayer after they fixed themselves nor will any of us go back to Norton anti virus of AOL.

But with Windows RT only allowing IE, at least MS is making it tolerable and making website designers lives easier.

Re:This is nothing but a MS IE PR campaign

this is not a case of MS fighting the standard, rather the standard fighting them. The standards body (ie scum sucking advertisers) saw what MS was doing and changed the standard so they could have an excuse to ignore the setting. The fools here is anyone that believes the arseholes writing this standard aren't the bad guys.

I don't use IE

[rossdee]

Does Yahoo honour the Do Not Track of any browser?
If so, which?

Re:I don't use IE

Yes, it does. It's only in this particular case where Microsoft doesn't follow the draft standard and enables DNT by default. No other browser does this, and the reaction is hardly unsurprising. Yahoo generates money through ad revenue. This basically is asking them to shoot themselves in the foot and like it. Regardless of your opinion on ads, they still are the way those services are paid for.

Re:I don't use IE

Yes, it does. It's only in this particular case where Microsoft doesn't follow the draft standard and enables DNT by default. No other browser does this, and the reaction is hardly unsurprising. Yahoo generates money through ad revenue. This basically is asking them to shoot themselves in the foot and like it. Regardless of your opinion on ads, they still are the way those services are paid for.

But this shows the key issue with DNT - it is only acceptable to the industry as long as almost no users actually enable it. If MS were smart they would drop default DNT and "inform" the user about the setting (and the privacy violations it helps to prevent) instead - would be entertaining to watch advertising companies come up with excuses to ignore DNT in that case but no matter how silly the reasoning they would find a way to justify their decision.

What use is a standard that comapnies will only adhere to as long as it is not widely used?

Re:I don't use IE

Yes, it does.

Are you sure they have the same interpretation as you of what it actually means to "honour DNT"?

Re:I don't use IE

Yes, it does. It's only in this particular case where Microsoft doesn't follow the draft standard and enables DNT by default. No other browser does this, and the reaction is hardly unsurprising. Yahoo generates money through ad revenue. This basically is asking them to shoot themselves in the foot and like it. Regardless of your opinion on ads, they still are the way those services are paid for.

What Microsoft is doing was actually in line with the standard before it was changed last minute due to pressure from advertising industry to try to stop what Microsoft are doing here. And the others shouldn't have let themselves been pressured into this change, but then they have a vested interest in it themselves. Follow the money. If anybody else than Microsoft did what they are doing here Slashdot would be all over supporting it, pointing out how wrong the standard suddenly turned out to please advertising networks.

Re:I don't use IE

Yahoo is actually quite serious about actually honoring DNT for users that set it (and that's on *all* browsers that are not IE10). It isn't treated as a joke within the company, the genuine intent is to honor a user's preferences. The $64,000 question with IE10 is whether or not what the browser is sending is actually considered a *user's* preference.

The debate over whether or not the IE10 default actually represents an active choice by a user can easily go either way, even among Slashdot users, so Yahoo's stance that the default isn't an actual user's choice isn't completely unreasonable, even if some people here disagree with it.

(Also, none of this stops you from being able to opt out of targeted advertising via the normal methods -- Yahoo (like many companies) allows you to set a preference on your account that will turn off tracking no matter what browser you're using or what your DNT header is set to.)

Believe it or not, the people at Yahoo are generally good people and do actually try to do the right thing.

Disclaimer: I work for Yahoo, though not with anything particularly affected by DNT.

Re:I don't use IE

The debate over whether or not the IE10 default actually represents an active choice by a user can easily go either way, even among Slashdot users, so Yahoo's stance that the default isn't an actual user's choice isn't completely unreasonable, even if some people here disagree with it.

When you set up IE10 you choose either Express setting (which tells you that it will set DNT on) or Custom settings where you go through settings including DNT "manually". It is not in any setup scenario enabled without user being aware of the choice. So not respecting it for these users is really stretching the argument in my view.

But, disregarding that, what about pop-up blocking being on by default in a browser, is that also not an active user choice so web sites would be right in trying to circumvent it?

Justification

Their justification? '[T]he DNT signal from IE10 doesn't express user intent" and "DNT can be easily abused.'"

Well, I guess that sounds better than what will be other advertiser's justification, "because we can".

Evil bit?

Relying on corporations to honor the DNT is like relying on intruders to set the evil bit.

it's 10 ads vs 1 targeted ad

[NotRealName]

If I have to choose between 1 targeted ad, and 10 random ads, I'll take the tracking.

Re:it's 10 ads vs 1 targeted ad

Why would you say something like that and why the fuck did you get modded up for that?

Why does slashdot even exist if its entire purpose seems to be to disseminate blatantly false and incorrect information? ...maybe that is the reason it exists. I'm sorry to say this, but if this site only exists to serve as a tool to be used to spread lies, I can't rationalize visiting it anymore.

Re:it's 10 ads vs 1 targeted ad

[mellyra]

Why would you say something like that and why the fuck did you get modded up for that?

Why does slashdot even exist if its entire purpose seems to be to disseminate blatantly false and incorrect information? ...maybe that is the reason it exists. I'm sorry to say this, but if this site only exists to serve as a tool to be used to spread lies, I can't rationalize visiting it anymore.

Seeing how GP is just expressing his personal opinion without making any claims that could be objectively falsified it is pretty bold of you to accuse him of lying.

Can you see into his head?

The general idea implied in his post - "let's make up for the loss of revenue from DNT (and incentivize the user to turn it off again) by just showing more non-targeted ads" - seems plausible to me (although I can't recall reading about such a scheme having been implemented in practice - but then GP doesn't claim that, he just says "If I were facing this choice I would do X")

Re:it's 10 ads vs 1 targeted ad

[Ash-Fox]

I also agree with the original poster, I would rather see targeted advertising over random advertising that has no relevance to my interest.

Re:it's 10 ads vs 1 targeted ad

personally I am the opposite, Actually I would like to see no ads, but that isn't realistic, so I will settle for them not trying to target me to suck money out of my wallet. What really offends me about this standard and targeted advertising is that the people that really would benefit form this are the ones that don't understand they are being targeted and exploited, they also won't be bright enough to find another browser or to work out how to manually configure the DNT. this whole standard is a farse. OPT IN should be the default, this is actually one of the few times I think it would be better if government steps in and regulates the hell out of this industry

Re:it's 10 ads vs 1 targeted ad

[Ash-Fox]

personally I am the opposite, Actually I would like to see no ads, but that isn't realistic, so I will settle for them not trying to target me to suck money out of my wallet.

I'm happy to have targeted advertising if I don't have to pay for services out of my pocket for everything online, I don't see any better alternatives.

What really offends me about this standard and targeted advertising is that the people that really would benefit form this are the ones that don't understand they are being targeted and exploited, they also won't be bright enough to find another browser or to work out how to manually configure the DNT.

The more I think about this argument, the more I have a problem with the idea that targeted advertising is exploiting. It's delivering relevant content to people that they're interested in, which helps stimulate the economy if they bite. People maybe happier and better off with getting something they discovered that may improve their life (be it through entertainment, some device that makes things just a bit easier or even a new hobby so they can break up the dreary day to day life).

Also, ignoring the above, I just wouldn't be offended and I imagine that's partly because I take this mantra to heart.

OPT IN should be the default

I have yet to really see the negative effects in targeted advertising. I've seen worse from the untargeted advertising that delivers malware. I think people have this innate 'fear' of being 'stalked' from some sort of primal instinct that is driving them along this reaction - From a cold logical point of view, I'm not seeing the problem.

Re:it's 10 ads vs 1 targeted ad

[raynet]

There is no need for tracking with targeted ads. Show me random ads normally and when I go to Amazon etc to search for some product, then give me relevant ads. Though I will most likely ignore them in any case, but you might just get lucky by offering me the product I am looking for with slightly lower price and I just might click on the ad, maybe.

Re:it's 10 ads vs 1 targeted ad

Why don't you just telegraph you profit by advertising. You suck up our bandwidth and speed we pay for with your ads. You also take away cpu cycles, ram, and other types of i/o too by running ads we're not interested in seeing in the first place. which also means you also make us use more electricity we pay for as well. You infect us with malicious scripts also topping it all off. Do you think we want to hear your crap attempting to justify those things? Go away. Your kind's not wanted here.

Re:it's 10 ads vs 1 targeted ad

You gave yourself away ad boy right here http://slashdot.org/comments.pl?sid=3212703&cid=41795823 so go away. We don't want your kind here.

Re:it's 10 ads vs 1 targeted ad

[Ash-Fox]

Why don't you just telegraph you profit by advertising.

Except I don't. Feel free to show me which website I'm running that has ads that I make a profit from. And don't worry, there are many sites I run.

"DNT can be easily abused."

And so we will!?!

Re:It's MS ignoring users, Yahoo&DNT want user

You are a good corporate educated sheep. No matter how you spin it and how much Microsoft hate there is still in you it's a good thing this is turned on by default and every browser should turn it on by default and any company ignoring it should be named and shamed. I can't see a single reason why a normal intelligent being would want to be tracked.

Panopticlick : identifying information leaks out

[girlinatrainingbra]

Well, along with easily knowing your IP address and the referall site that got you to the current site you are browsing, they can also track you by

- the details and specificity of your browser of choice as indicated by your browser agent,

- your browser settings,

- your screen real estate in pixels,

- your system fonts,

- your browser plug-ins,

- and the content of your HTTP_ACCEPT headers,

- your time-zone,

- and your javascript-abilities. My browser as set gives out 18.43 bits of identifying information as calculated by the EFF at

.

https://panopticlick.eff.org/

.

Click on their Test Me link to see how much information your browser gives away, and how well you could be tracked even if you opt-out of cookies, and tracking, and Flash cookies, and use Ghostery etc. A lot of your identifying information leaks out anyway.

Use a "real" standard.

[UltraZelda64]

Disable third-party cookies and install the Do Not Track Plus and NoScript extensions. Then to really fuck with the assholes, set up AdBlock Plus and disable its bullshit "non-intrusive advertising" whitelist, and to make sure your point finally sinks in, go into your browser's preferences and enable Do Not Track. In this case, since the Do Not Track header is worse than worthless because it will always will fail miserably to actually do what it claims, the header itself will act as sort of a "fuck off" header instead.

Maybe we need to enhance the "standard" by allowing something like: DNT=FUCK_OFF ...which would be used by people who have their own set of privacy tools. Would this proposed update to the standard pass? After all... dumber things have been approved. Like, say, the DNT standard itself. I would consider a FUCK_OFF flag a massive improvement to such a pathetic standard... at least it would allow you to not only express your desire not to be tracked, but also to tell them what you really think of their joke of a standard.

If my browser featured this, hell... I'd turn it on.

Re:Use a "real" standard.

Wold all packets in reply to the DNT=FUCK_OFF be required to have the evil bit set, see relevant RFC?

Re:Use a "real" standard.

[distilate]

Wold all packets in reply to the DNT=FUCK_OFF be required to have the evil bit set, see relevant RFC?

That would be RFC 3514 "The Security Flag in the IPv4 Header"

Re:Use a "real" standard.

Unfortunately the DNT option in my Firefox config is a boolean.

Re:Use a "real" standard.

Doesn't mean a standard can't change in an updated version. After all, isn't that the whole point of an update? Changes?

Leading Questions

[Frankie70]

http://www.youtube.com/watch?v=G0ZZJXw4MTA

Are you for real?

And so it begins... Yahoo has made it official: it won't honor the Do Not Track request issued by Internet Explorer 10.

One company has admitted that it won't honor DNT. Big deal! In the real world, no company will honor DNT.

Since people call the TSA "Security Theater," why haven't they figured out yet that DNT is "Privacy Theater?"

Re:Arbitrary and capricious

We need a law against idiots pouring good tea into our harbors.

Microsoft has won

[allo]

They are now showing the world, what it is like to use a setting, where the obedience of the websites is voluntary. And they have their cross-site-tracking detection feature.

written from firefox with DNT on, noscript and adblockplus with no-tracking blacklist (no ghostery, as its rather dubious and ABP can do the same with the right lists)

Re:Microsoft has won

>written from firefox with DNT on, noscript and adblockplus with no-tracking blacklist
Continue to live under the rock

Re:Time will Tell!!! Another open hole in windows.

[symbolset]

Obvious incompetence is not malice. They have plenty of both, but let us not confuse one for the other. They lack the skill to hide this many backdoors so well. Occam's razor demands we attribute these to simple innocence of security best practice established in the 1970's, or inability to understand and implement these principles.

Percentage of users who don't want to be tracked

[fgouget]

Wonder what percentage of users would rather be tracked by default.

According to a 2012 Pew Internet study, 73% of search engine users said they were against tracking by the search engines, and 68% were against targeted advertising.

The corollary is that respecting DNT even for IE 10 matches what over 70%(*) of the users want, while ignoring it only satisfies the wishes of 28%(**) of the users.

(*) I'm starting with the 'targeted ads' numbers which are the more conservative ones. The survey shows 28% of the users want them and 68% oppose them. Furthermore another study shows that, when they have to manually hunt and set DNT, 5 to 6% of the overall population turns it on. Given that we know 68% favor DNT that means 7 to 9% of the users will go through the hassle. So if DNT is on by default on IE 10 we can expect 7 to 9% of the I-want-targeted-ads crowd to turn it back off which translates to 2 to 2.5%. So if DNT is honored for IE 10 these 2 to 2.5% users will get what they want as well as the 68% who are fine with the default setting, yielding a total of 70 to 70.5% users getting what they want.

(**) Or, conversely, going against the wishes of 68% of the users (the remaining 4% don't know what they want).

Has the patch been patched out yet?

The apache tracking logs indicated that this SINGLE USER patch was being considered for removal as it wasn't discussed.

Re:Let me explain why Yahoo feels this way (politi

[Ash-Fox]

*Posting of personal experience*

Posting as AC makes you a fairly questionable source, as such, I don't feel the need to believe anything you say.

The ones hating MS for this are not the normal

The ones hating MS for this are not the normal people who have genuine gripes against MS.

The ones hating MS for this are the ones who shill for the corporate welfare. They shill for MS when it comes to them being sanctioned over antitrust. This case is one where their reasons for supporting MS (they are a company) is not enough for them to ignore the entitled wish of the advertisers (they are from companies, note the plural).

Strawman

[Grismar]

It's not Yahoo that's at fault here, at least not all by itself. Microsoft chose to implement an "on by default" DNT feature in IE10, which goes against the agreed intention of DNT. Microsoft can fix this in many ways, the simplest of which could be to offer the user a choice upon first using IE10 - heck, they can even have the "activate Do Not Track" option selected by default, so people will only have to click "OK".

Why, do you think, did Microsoft choose not to do this? Do you really think that removing that choice from the first use degrades the user experience so much that it validates ignoring a standard and risking justified behavior from parties like Yahoo? Or could it be that it is Microsoft that would like to see DNT marginalized and sees this as the perfect way of doing so: embrace (done), extend (done), extinguish (in 3.. 2.. 1...)

Re:Strawman

you are wrong, startup dialog courtesy of this post

Re:Strawman

[Disfnord]

WTF does that have to do with a "Strawman"?

Re:Strawman

[You're+All+Wrong]

> goes against the agreed intention of DNT

What complete nonsense. If you want to know what the *intention* of DNT was, look at the RFC. Notice how it explicitly states that what poeple claim MS is doing is valid behaviour. If you're going to point at the version of the DNT standard which was released only a few weeks ago, then you will find that it supports your PoV, but if you look at any prior version, all the way back to the RFC, you will see that it does not support your PoV. And I would say that for deciding the *intent* of the standard, the prior versions together weigh more heavily than the single most recent shilled-up version.

According to all reports I've read, before IE10 ever sends even one DNT=true header, right on first use, it asks the user whether s/he wants to be tracked, and therefore it *is* an explicit user preference. So MS aren't even breaking the current version of the spec. It is already doing the "fix" you ask it to do.

I am amazed that I'm supporting MS, as I abhor almost everything about them, but this anti-MS nonsense is based on so much misinformation I am morally obliged to support them in this single issue.

Re:Strawman

[elabs]

No, turning it on by default does NOT go against the agreed intention of DNT. Nowhere in the spec does it say anything about defaults. ALL browsers should turn it on by default, then we as a community should sue any company that chooses not to respect it.

Re:Strawman

This is a lie.

It prompts you when you install if you want it enabled or not.

Here is the prompt

Let's be realistic here. DNT has always been a joke. It's like getting stacks of hundrad dollar bills, setting them up on a table in times square next to a sign with reads "please don't take my money because I trust you and am doing nothing to protect it other then putting up this sign." Even making this a law will be ineffective. Browser makers need to refuse anything that ever resembles cross-site cookies or images. That's the only fix and even there I can think of about a dozen ways around it.

Re:Leading Questions clip of yes minister

[girlinatrainingbra]

Thanks for the pointer to that "Yes, Minister" clip. That is exactly the scene I was thinking of! The scary part seems to be that much of politics probably plays out the same way even today. The rest of the episode is amazing, and there's pretty much something to learn (at least for me) in every episode of that series. And something in every episode is "spot on" relevant to politics in SD at the city level, or CA at the state level, or the USA at the national level.

How can you abuse DNT?

[BluPhenix316]

Really, how can you abuse DNT? OMG! That browser allows that person to surface completely anonymously, thats abuse of the DNT system. Users shouldn't be allowed to be completely anonymous. IE10's DNT feature isn't the user's intent? Hmmm I click a button or use a switch that enables Do Not Track. That doesn't mean I don't want to be tracked though. I don't know what i'm doing. I just like hitting buttons. I'm pretty sure there is a whole lot more to it than this but seriously? The way the summary is worded, yahoo is saying we are all idiots and don't know options that we want and not being able to be tracked is a abuse of power.

Make no mistake

All Internet corporations that offer stuff "for free" make their money by tracking and recording your preferences and behavior.

Two years from now, Yahoo will be history.

Don't believe this ?

Wait and see.

The chick running the show is incompetent. I worked with her
at another company which will not be named here cough
and she really was clueless in many respects. But she did have a nice ass.

subject

[Legion303]

TFA doesn't say anything at all about Firefox, but I'm going to block Yahoo at the firewall anyway. Just to be sure. Thanks for the heads-up, Yahoo.

which is a bad choice of apache

[allo]

regardless what you think of DNT and DNT with IE10, but thats a choice, the tracking webapp needs to make. When apache filters IE10 DNT-headers, the webapp CANNOT decide to honor them even when its a default. So apache limits the choice of the tracking-software implementors to honor it. Thats filtering on the wrong layer.

Solution

[allo]

Change the user agent string of IE10.

Re:Huge percentage are IE users

If MS decided not to be retarded and capture the market from Google they would put it in the Windows contract to not change the homepage at the OEM level.

Given that they got slapped with an anti-trust suit for forcing OEMs to ship with IE and not an alternative, they would actually be retarded to try what you suggest.

Who is using Yahoo anyway?

You'd have to have brain damage to be using any of Yahoo's "services". West-coast AOL.

So what?

I'm fine with Yahoo only ignoring IE10 and not any other browsers with DNT turned on. Just gives Windows users another reason not to use IE. Go Yahoo!

What logic is this?

[nitehawk214]

Yahoo: We are going to abuase DNT because DNT can be easily abused.

What.

Re:What logic is this?

[fatphil]

Hilarious! Dang, no modpoints, that's both from insightful to funny.

Re:What logic is this?

[fatphil]

Shit. I have lost the power of Englishing.

Re:What logic is this?

[nitehawk214]

Your previous comment was funnier than mine. It caused my brain to malfunction.

Better than Ghostery, AdBlock, DNT, etc.

So - IF you don't want to be:

A.) Tracked
B.) Spammed
C.) Speed/bandwidth hogged by ads (as well as electricity, CPU cycles, RAM, & other forms of I/O as well)
D.) Hit by malware or malicious scripts (for better "layered-security"/"defense-in-depth")
E.) Hit by DNS poisoning redirection (OR DNS servers being "downed") losing reliability
F.) Blocked out & have even more 'anonymity' (to an extent vs. DNS request logs) + being able to "blow by" what you may feel are unjust blocks (in DNSBL's)... ...& more?

---

APK Hosts File Engine 5.0++ 32-bit & 64-bit:

http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74

---

Custom hosts files gain me the following benefits (A short summary of where custom hosts files can be extremely useful):

---

1.) Blocking out malware/malscripted sites.
2.) Blocking out Known sites-servers/hosts-domains that are known to serve up malware.
3.) Blocking out Bogus DNS servers malware makers use.
4.) Blocking out Botnet C&C servers.
5.) Blocking out Bogus adbanners that are full of malicious script content.
6.) Blocking out known spammers &/or phishers.
7.) Blocking out TRACKERS.
8.) Getting you back speed/bandwidth you paid for by blocking out adbanners + hardcoding in your favorite sites (faster than remote DNS server resolution).
9.) Added reliability (vs. downed or misdirect/poisoned DNS servers).
10.) Added "anonymity" (to an extent, vs. DNS request logs).
11.) The ability to bypass DNSBL's (DNS block lists you may not agree with).
12.) More screen "real estate" (since no more adbanners appear onscreen eating up CPU, Memory, & other forms of I/O too - bonus!).
13.) Truly UNIVERSAL PROTECTION (since any OS, even on smartphones, usually has a BSD drived IP stack).
14.) Faster & MORE EFFICIENT operation vs. browser plugins (which "layer on" ontop of Ring 3/RPL 3/usermode browsers & are generally written in slower INTERPRETED languages (e.g. AdBlock = python/perl/javascript)- Whereas by way of comparison, the hosts file operates @ the Ring 0/RPL 0/Kernelmode of operation (far faster) as a filter for the IP stack itself which is written in C & Assembly language...).
15.) Custom hosts files work on ANY & ALL webbound apps (browser plugins do not).
16.) Custom hosts files offer a better, faster, more efficient way, & safer way to surf the web & are COMPLETELY controlled by the end-user of them.

---

* There you go... & above all else IF you choose to try it for the enumerated list of benefits I extolled above?

Enjoy the program!

(However, more importantly, enjoy the results in better speed/bandwidth, privacy, reliability, "layered-security"/"defense-in-depth", & even anonymity to an extent (vs. DNS request logs & blowing past DNSBL's) + more, that custom hosts files can yield...)

Of course, THIS is NOT going to "go well" with 3 types of people out there online, profiting by advertising & nefarious exploits + more @ YOUR expense as the consumer:

---

A.) Malware makers & the like (botnet masters, etc./et al)
B.) ADVERTISERS - the TRULY offended ones, as it is their "lifeblood" in psychological attack galore, tracking, & more, etc.!
C.) Webmasters (who profit by ad banners, but fail to realize that those SAME adbanners suck away the users' bandwidth/speed, electricity, CPU cycles, RAM, & other forms of I/O they PAY FOR, plus, adbanners DO get infested with malicious code, & if anyone wants many "examples thereof" from the past near-decade now? Ask!)

---

APK

P.S.=> Lastly - It does a BETTER JOB than AdBlock &/or Ghostery (both of those are OWNED BY ADVERTISERS & are crippled in the former by default, + track you via the latter)

AND

It als

Now for the real action

[Myopic]

The plan is complete.

1. Society recognizes problem with unregulated market segment
2. Society asks market to please regulate itself
3. Market tries to come up with a solution
4. Market decides, hey, fuck customers and ethics, it's all about the Benjamins suckas!
5. Legal regulation

Having reached step 4, we can now move on to step 5. I am glad about this. Congressional action will merely extend the protections currently enjoyed by Americans to the realm of targeted advertising. Sometimes legal action isn't required. For instance, the movie industry has successfully used their rating system to satisfy the public and stop Congress from getting involved. Sadly, only rare industries do that successfully.

Don't Give a Fuck

Maybe if I had any reason to use anything developed by Yahoo I'd give two fucks, but alas, I did not wake up from a 10-year-long coma.

did anyone really expected DNT to work?

[someones]

did anyone really expected DNT to work?
srsly?

I will henceforth avoid all yahoo sites

[elabs]

ALL browsers should enable Do Not Track by default!!!

When visiting Yahoow (ewww) sites...

[elabs]

switch IE10 into IE9 compatibility mode.

Adblock, noscript

[Chewbacon]

All the more reason to use it!

Do your part.

Boycott Yahoo!

MS tracks you already with Bing + Win8!

This new DNT setting is Micosoft saying they don't want OTHER COMPANIES to track their captive Windows 8 users. It's almost impossible to use Windows 8 without a Bing/Live/Whatever-they-call-it-now signon. You can install Win8 and use a local account, but the don't-call-it-Metro apps (sports, weather, etc) don't work. Only a sophisticated user would bypass the Bing setup step (or even notice it could be bypassed) during first boot in the first place.

I can't believe the media is not all over this story - Microsoft is releasing Win8 to monetize their captive audience. They track you when you use their apps. They don't want others to monetize the same users.

Re:Let me explain why Yahoo feels this way (politi

I agree; why didn't the Anonymous above provide some sort of backstory explaining why they chose to post anon? (Although, Ash, why feel the need to believe anyone? Shouldn't belief be your choice?)

(For example, I post Anon since everyone at my office likes to read /. and I'd rather not get into that can of worms as myself.)

Thunderbird to the rescue!

[couchslug]

" their mail is unusable on my system "

You Are Doing It Wrong.

I read my accumulation of Yahoo and Gmail and other accounts using Thunderbird (on Linux) and Thunderbird Portable (on Windows, I copy it from my USB key, use it, then cut/paste it back for speed or leave the program folder on permanent installs. Can't beat the ease of backup!)

I don't see Yahoo or Google mail pages or deal with their annoying layour, let alone their adverts. Doing so would not serve me.

Fuck 'em with George Carlin's proverbial Big Rubber Dick. :-)

http://portableapps.com/apps/internet/thunderbird_portable

Yahoo will also continue to ignore ...

[Kaz+Kylheku]

a whole bunch of RFC's, and mails to their abuse account.

What else is new?

The Story of the Wolves and Sheep.

[Deathlizard]

The standard is stupid; in fact, it's so stupid that it makes less sense when used in a fable. So...

Once upon a time, there was a group of 4 sheepherders that tended to their sheep in the far far away land of internetia. Farmer Bill, Steve, Larry and Gary tended their flocks and would try to draw more sheep with either better grass, or shelter from the weather, or protection from predators. it got so competitive that sheep from other farms would jump the fences because some farms offered better comforts than others.

One day, a large pack of wolves (Genus: advertis infectus) started eating the sheep. The farmers responded accordingly. Farmer Bill first bought a "Tracking Protection" Caliber Shotgun. Which sometimes killed some wolves but would take about 10-30 shots before it killed them. Farmer Gary built a doghouse in which the sheep hired a German adblockplus and a Dutch noscript to protect them, which worked very well. Farmer Larry also built a doghouse, but was not as nice as Farmer Gary's doghouse. Eventually a German Adblockplus moved in, but it would get sick due to the cold getting into the doghouse and some wolves would get to the sheep. Eventually, Farmer Bill saw how well the sheepdogs worked and finally built a kennel by his own design to attract sheepdogs directly, but it was so badly designed that very few sheepdogs took the opportunity to live in it, and the few that did couldn't do their job well because they were sick all of the time. Farmer Steve didn't seem to do anything worthwhile and the sheep we so enamored by Steve's aura and immaculate looking farm that they didn't seem to care.

The wolves, losing many a comrade to the Sheepdogs, decided they needed to take action. First they asked the grass to stop growing if the sheepdogs protected the sheep that hired the sheepdogs, but the grass didn't stop growing. Finally the Wolves went to the World Carnivore Collection Consortium (W3C) and proposed the following treaty.

The farmers would have a can of Red Paint handy that the Sheep could use to put a Red X on their back. Any Sheep with the red X on their back would not be touched by the wolves. However, according to the rules, the Farmer could not paint the sheep themselves.

Farmer Gary and Steve adopted the practice quickly. Some Astute sheep noticed that the sheep with the Red X never got attacked by wolves and put the Red X on themselves, while other sheep didn't trust the wolves and still hired the sheepdogs. Farmer Larry wasn't too fond of the paint, since he secretly had a wolf as a pet, but eventually he made the red paint available as well as built a better doghouse for the Sheepdogs.

Farmer Bill, on the other hand, saw an opportunity to turn this into a feature that could protect his sheep and draw some sheep from other farms, since so many sheep jumped his fence to go to the nicer pastures of Firefox Ranch and Chrome Acres. But he had to find a way to follow the rules but get as many Sheep to put on the Red X as possible. Then he had the solution. His solution was to ask the sheep if they wanted the default pasture experience. If they wanted the Experience, all they had to do was put a Red X on their back. Eventually all of the sheep in the 10th pasture had a red X on their back.

The wolves noticed all of the Red Xs at the IE Corral and started crying foul. When Farmer Bill said he was following the rules and wouldn't change the policy, they first changed the treaty to forbid what Farmer Bill did, but the damage was already done, So the wolves decided to take a different approach to combat the problem. First they went to the Apache Fertilizer Co. and convinced them to add something to their fertilizer that when ingested by any Sheep in the IE corral, that it would dissolve the red X on their back. Other Wolves, such as the one named 'Yahoo' decided to ignore the Red X on the IE sheep altogether and started attacking the sheep Regardless if they had paint on their back or not.

Some Sheep as well as the other three farmers, start to hate what

Re:The Story of the Wolves and Sheep.

[Simon80]

Farmer Bill, on the other hand, saw an opportunity to turn this into a feature that could protect his sheep and draw some sheep from other farms, since so many sheep jumped his fence to go to the nicer pastures of Firefox Ranch and Chrome Acres.

You're saying that IE having DNT on by default is a feature that could win users over from other browsers. However, if a user is aware of and cares about DNT, they would never switch to IE just because it's enabled there by default. It's easier to just enable it in their existing browser than it is to switch to another browser that has it on by default.

Also, yes, the idea of advertisers voluntarily respecting a flag like this is ludicrous, but it's in their best interests to do it. The alternative for them is technical measures like adblock that completely cut them out of the picture. However, I think their historical behaviour implies that they do whatever they can get away with, so any measure that relies on voluntary good behaviour from them is destined to fail.

Re:The Story of the Wolves and Sheep.

This is the best story I have ever read here. Ever.

Re:The Story of the Wolves and Sheep.

[suutar]

It's in their best interest in the long term... but who cares about the long term? Quarterly reports, baybee!

Computer Fraud and Abuse Act

[weiserfireman]

has had it's meaning stretched against all meaning before. Could we stretch it a little more to prosecute companies who ignore the DNT flag?

Up until now, the Internet has basically been run by the people who have the websites. If you visit their website, you are going to get anything they want to give you. If they wanted to be fussy, they might have a TOS that says something like "by visiting this website, you agree to allow us to track you".

There has never been a way for the consumer of the information to tell the website what they were authorized to transmit to the consumers machine. Now there is, Do Not Track. It can interpreted to mean the website is authorized to do anything it wants except, track the user. If the website tracks the user, after receiving a DNT flag, they have accessed the Consumer's PC beyond their authorization.

Each individual violation is very small damages, but in aggregate, when they ignore the flag on millions of visits, it could potentially be big fines/damages. Perfect territory for a Class Action Lawsuit or an adventurous DA trying to make a name for himself. They even open themselves up for this type of lawsuit by publicly announcing they will ignore the flag.

This is a battle for power. The consumer is trying to grab a little power and privacy back from the websites with DNT. The major advertisers are freaking out about even this minor shift in the balance of power.

We can be followed in other ways

[kawabago]

Companies don't need to put tracking bits on our computers, they can pool information and mine everything which they'll do if it's the only way forward for them.

It goes to show...

[BillX]

Don't trust a "legislative" solution to a technical problem. DNT is a polite suggestion, nothing more; implementation is on-your-honor (or dishonor, in this case). Is anyone *that* surprised about stories like this?

Now begin (or should) the technical countermeasures. Suggestions to MS for IE 10.01: If *.yahoo.com in domain:

* Expiry for all cookies and cache resources from this domain set to 7 days or the end of a session (browser exited), whichever comes first. "Cache resources" includes without limitation caches maintaned by plugins (e.g. Flash persistent storage).

* Cookie and cookie-equivalent data retrieval sandboxed by clickstream. E.g. hit yahoo.com - sets cookie. Click to yahoo.com/link - cookie readable (same clickstream scope). User opens a new window and manually browses to yahoo.com - cookies set in first window's session unreadable (out of scope) to 2nd window's session. This behavior may have to extend to cache objects (see "evercookie" and friends)

most fail to understand DNT

[Onymous+Coward]

The point of DNT is not itself to stop tracking, but to give the user a voice about their preference. The difference is a bit subtle, but you can understand it in less than 30 seconds if you try.

Before DNT, you did not have a way to say whether you preferred that companies not track you or you preferred that they track you and give you delightfully relevant targeted advertising. Now you have a way to express this to the sites you visit. DNT is your choice voice.

Giving your preferences a voice is valuable.

It doesn't mean that the sites who get the message are going to obey it. It's an expression of your preference, not a magical spell to cause them to act a certain way. However, when this protocol for expressing choice becomes adequately standardized, when we know that DNT expresses the actual user's desires (rather than is automatically set), we can then enact laws to coerce businesses into complying with users' desires.

Re:most fail to understand DNT

[ChatHuant]

The point of DNT is not itself to stop tracking, but to give the user a voice about their preference. The difference is a bit subtle, but you can understand it in less than 30 seconds if you try. [...]
 
Giving your preferences a voice is valuable.

Well, I tried understanding what you're talking about for more than thirty seconds and I'm sorry, but your post doesn't make sense. MS's decision to set DNT by default does not in any way remove the user's "voice about their preference". Any users who prefer being tracked or find it interferes with their browsing experience can disable the flag, so your argument is completely besides the point.
 
What you should perhaps think instead about for a few seconds (hopefully it won't even require 30) is the real issue: the fact that we were offered such a Catch 22 of a "standard", with no teeth, no way to enforce the user's choice, and not even a way for users to know if their option is honored. *That*'s the issue, and I'd like to understand why such a broken design is even seriously considered for a standard. The only reasonable explanation I could come up with is that the whole thing is just a PR exercise, a snow job whose purpose is to make Google and Mozilla seem user friendly; I'm surprised so many technical people have swallowed this whole, hooks and all - so much so that they complain when the whole thing is proven not to work.

Re:most fail to understand DNT

[Fastolfe]

I think his post made perfect sense.

The status quo today is that information is collected and used as you browse sites that participate in the same ad network. If you wish to opt out, you don't have an easy way to say that without digging through preferences, assuming the ad network even lets you (some, like Google, let you).

The DNT standard introduces a mechanism for you to state that you are unhappy with the status quo. Consequently, the DNT signal is only useful if the default is equivalent to the status quo. If you make the default something other than the status quo, you can't differentiate between those that are OK with the status quo, and those that are not.

Re:Huge percentage are IE users

Hmm... but if I'm sort of serious about looking for something to buy on Craigslist, Yahoo Tubes makes it possible, moreso than writing a bunch of scripts that filter down wget output, for example... I might actually spend some time trying to filter down Google search results on technical stuff, since Google decided they needed to go away from exact-word/exact-phrase matching (rather than simply obfuscating it away).

It Is A Technical Problem

[EXTomar]

I believe the issue with Apache (and I suspect any other web server software service) is that to honor the "Do Not Track" would break its architecture. To do its own internal work Apache must TRACK the request as it handles the request.

The real issue is that DNT requires a "trust" when there is no mechanism for trust. On the web client side there is no mechanism to make sure the server honors the request. On the server side there is no reason why it would honor a remote setting over its own configuration. We might as well implement the GOOD setting in HTTP as well so servers know that when GOOD is enabled that information is not allowed to be stolen.

Re:It Is A Technical Problem

[allo]

There would even be no so big problem, when apache implemented DNT for its logfiles and ignored it for IE10. But they steal the header for webapps, which want to decide on their own. When i code a web application, i want to get the full headers, so i can decide what to do with them.

Isn't this what we asked for?

When advertising started on the Internet the complaint was that the adverts were irrelevant and needed to be targeted. Which means tracking.

Re:Let me explain why Yahoo feels this way (politi

I am the king of a country, you should listen to me!

If people are too stupid...

[pouar]

...to figure out how to change to a better browser, they're probably too stupid to notice they're being tracked

0.68 seconds

that is how long it takes to turn from tracked to "BITCH"
if you like being the "BITCH" then go ahead install it use it. Agree to the EULA which also asks for your next two grandchildren to be sacrificed to Cthulu.

The idea that because you "HAVE" a phone number I can robo-dial you is the same concept as if you "HAVE" an email address I can spam you and the same concept as if you "HAVE" my browser I can record all your internet activity and then sell it to make money without paying you any.

That's funny Yahoo...

I don't remember providing you may intent on being tracked in the first place. I don't see any warning banners of you tracking me when I surf the internet, why do you not provide an opt-out solution for me in the first place.

Sheesh, does Yahoo or any other site that tracks not remember they implemented tracking without first determining user's intended desires for such?

To whoever downmodded my post

Per my subject-line - You/re MORE THAN WELCOME to attempt to disprove ANY of its points I stated here -> http://yro.slashdot.org/comments.pl?sid=3212703&cid=41789205

* Best part is, I KNOW YOU CAN'T (and you know it too)...

(All you've got is an effete downmod that has NO SUBSTANCE behind it @ all, period)

APK

P.S.=> “If you know your enemies and know yourself, you will not be imperiled in a hundred battles.” - Sun Tzu (in “The Art of War”) ...

... apk

Re:Let me explain why Yahoo feels this way (politi

You're questionable after this ad boy http://slashdot.org/comments.pl?sid=3212703&cid=41795823

In other news

[bursch-X]

The rest of the world will ignore Yahoo.

Re:AdBlock's inferior to this... apk

Fuck right off, you boring great tool.

Disprove my points troll (you can't)... apk

Awww, poo' lil' wuss having a tantrum, but unable to disprove my points here -> http://yro.slashdot.org/comments.pl?sid=3212703&cid=41795545

"Fuck right off, you boring great tool." - by Anonymous Coward on Sunday October 28, @11:12AM (#41796495)

OOOooo, sounds "kinky" little troll, but... alas, sorry - you FAIL (and, you KNOW it, see my subject-line above!)

* :)

LMAO!!!

Yes, the result's ALWAYS THE SAME, lol...

---

1.) Effete tantrums
2.) Bogus unjustifiable downmods (seems you ran dry on those, lol)
3.) Illogical off-topic failing ad hominem attack attempts
4.) "FoAmiNg-@-the-MouTh" profanity-riddled rants now, too?

---

( Please... lol!)

APK

P.S.=> Getting a "ReAcTiOn" like that, instead of YOU disproving my points, you effete little troll? Priceless... &, of course, lastly??

Well... you KNOW I've just GOTTA say it, as-is-per-my-usual "inimitable style":

THIS? This was just "too, Too, TOO EASY - just '2ez'"... lol, & it ALWAYS IS, vs. puny trolls like you!

... apk

Bring your Mod Points!

[Gallomimia]

Someone please mod Yahoo +5 for ironic as fuck. Tracking internet users has no potential for abuse at all right Yahoo? Microsoft and IE are obviously trying to cut into your market share by deploying rogue technology against you.

It's not just about ads.

Yahoo! may be the first big website destination to announce this, but they will be far from the last.

First of all... Yahoo has very granular (and publicly available settings) which you can use to control the amount of tracking they do.

Secondly... tracking definitely does improve the quality of the ads Yahoo! (and other sites) present. That's well known. What people seem to forget, though, is that it also affects the quality of the content you see. The more you use the service, the more it learns what you do and don't like to see, and the higher quality the content is shown. If a default "on" was accepted, then all of a sudden everybody who logged into Yahoo! after upgrading to Windows 8 would have a markedly degraded experience, and it's a fairly safe bet that outside of our little ultra-techie circle there, that it would raise a ruckus.

Slashdot is a biased sample. The majority of Internet users would be much more upset about losing the quality of service than losing the DNT option in IE10. And if people didn't like the content, then there wouldn't still be 650 million unique visitors each month.

What this all boils down to is that you can't have your cake and eat it too.

Re:It's MS ignoring users, Yahoo&DNT want user

[joaosantos]

The DNT standard was based on good faith of all parts, and it's better than the previous situation in which you had to use drastic measures to opt out of tracking. If browsers turn the flag on by default, websites will just ignore it and you will be right back where you started.

Yahoo is full of shit

Do you really think all this bullshit would be going on if Mozilla had a wizard setting for DNT ? Will Yahoo, and the other bullshitters who are all of a sudden so concerned with user intent, ignore every default setting in every application ????? Pure unadulterated bullshit. Boycott Yahoo, boycott adobe, boycott apache - they are all fucking liars with an agenda. These scumbags are as bad as journalists.

Re:AdBlock's inferior to this... apk

Is that the mating call of a defeated troll or what? Hahahaha

Re:Panopticlick : identifying information leaks ou

[robsku]

OMG, despite the fact that I knew about all this in theory I really had to see the difference with firefox + torbutton in non-tor mode vs. tor-mode, let alone tor-mode with noscript blocking scripts - the difference was staggering.

Trolls downmodding me: Disprove this... apk

See subject-line & disprove facts I listed here -> http://yro.slashdot.org/comments.pl?sid=3212703&cid=41795545

(You CAN'T, & you know it, I KNOW IT, & anyone reading with 1/2 a brain does also, since ALL YOU HAVE, is an unjustifiable downmod... nothing more!)

* :)

LMAO!!!

Yes, the result's ALWAYS THE SAME, lol...

---

1.) Effete tantrums
2.) Bogus unjustifiable downmods
3.) Illogical off-topic failing ad hominem attack attempts
4.) "FoAmiNg-@-the-MouTh" profanity-riddled rants now, too?

---

( Please... lol!)

APK

P.S.=> Getting a "ReAcTiOn" like that, in an "effete retaliation" in a totally UNJUSTIFIABLE DOWNMOD of my post, instead of YOU disproving my points, you effete little troll? Priceless... &, of course, lastly??

Well... you KNOW I've just GOTTA say it, as-is-per-my-usual "inimitable style":

THIS? This was just "too, Too, TOO EASY - just '2ez'"... lol, & it ALWAYS IS, vs. puny trolls like you!

... apk

AdBlock's INFERIOR to custom hosts files... apk

AdBlock only operates on Mozilla products, it's written in slower javascript/perl/python, & operates in SLOWER ring 3/rpl 3/usermode, LAYERED OVER ALREADY SLOWER ring 3/rpl 3/usermode apps in browsers (vs. custom hosts operating in ring 0/rpl 0/kernelmode, merely acting as a filter for the IP stack which is written in C & Assembly language - FAR faster!). AdBlock also can't speedup your favorite sites and protect you vs. DNS poisoning (as well as making access to your fav. sites more reliable), and more where it's inferior to custom hosts files...

So - IF you don't want to be:

A.) Tracked
B.) Spammed
C.) Speed/bandwidth hogged by ads (as well as electricity, CPU cycles, RAM, & other forms of I/O as well)
D.) Hit by malware or malicious scripts (for better "layered-security"/"defense-in-depth")
E.) Hit by DNS poisoning redirection (OR DNS servers being "downed") losing reliability
F.) Blocked out & have even more 'anonymity' (to an extent vs. DNS request logs) + being able to "blow by" what you may feel are unjust blocks (in DNSBL's)... ...& more?

---

APK Hosts File Engine 5.0++ 32-bit & 64-bit:

http://start64.com/index.php?option=com_content&view=article&id=5851:apk-hosts-file-engine-64bit-version&catid=26:64bit-security-software&Itemid=74

---

Custom hosts files gain me the following benefits (A short summary of where custom hosts files can be extremely useful):

---

1.) Blocking out malware/malscripted sites.
2.) Blocking out Known sites-servers/hosts-domains that are known to serve up malware.
3.) Blocking out Bogus DNS servers malware makers use.
4.) Blocking out Botnet C&C servers.
5.) Blocking out Bogus adbanners that are full of malicious script content.
6.) Blocking out known spammers &/or phishers.
7.) Blocking out TRACKERS.
8.) Getting you back speed/bandwidth you paid for by blocking out adbanners + hardcoding in your favorite sites (faster than remote DNS server resolution).
9.) Added reliability (vs. downed or misdirect/poisoned DNS servers).
10.) Added "anonymity" (to an extent, vs. DNS request logs).
11.) The ability to bypass DNSBL's (DNS block lists you may not agree with).
12.) More screen "real estate" (since no more adbanners appear onscreen eating up CPU, Memory, & other forms of I/O too - bonus!).
13.) Truly UNIVERSAL PROTECTION (since any OS, even on smartphones, usually has a BSD drived IP stack).
14.) Faster & MORE EFFICIENT operation vs. browser plugins (which "layer on" ontop of Ring 3/RPL 3/usermode browsers & are generally written in slower INTERPRETED languages (e.g. AdBlock = python/perl/javascript)- Whereas by way of comparison, the hosts file operates @ the Ring 0/RPL 0/Kernelmode of operation (far faster) as a filter for the IP stack itself which is written in C & Assembly language...).
15.) Custom hosts files work on ANY & ALL webbound apps (browser plugins do not).
16.) Custom hosts files offer a better, faster, more efficient way, & safer way to surf the web & are COMPLETELY controlled by the end-user of them.

---

* There you go... & above all else IF you choose to try it for the enumerated list of benefits I extolled above?

Enjoy the program!

(However, more importantly, enjoy the results in better speed/bandwidth, privacy, reliability, "layered-security"/"defense-in-depth", & even anonymity to an extent (vs. DNS request logs & blowing past DNSBL's) + more, that custom hosts files can yield...)

Of course, THIS is NOT going to "go well" with 3 types of people out there online, profiting by advertising & nefarious exploits + more @ YOUR expense as the consumer:

---

A.) Malware makers & the like (botnet masters, etc./et al)
B.) ADVERTISERS - the TRULY offended ones, as it is their "lifeblood" in psychological attack galore, tracking, & more, etc.!
C.) Webmaster

"Checkmate this" - you FAIL... apk

1.) Adblock's written in SLOWER interpreted code (javascript/python/perl) - hosts files operate merely as a filter for the IP Stack itself, which was written in far, Far, FAR FASTER C & Assembly language code (& has been optimized for over 40++ yrs. since 1970 too)...

2.) AdBlock &/or Ghostery CANNOT speed-up your favorite sites as custom hosts files do (via "hardcodes" of your favorite sites into them as line records).

3.) AdBlock &/or Ghostery are OWNED BY ADVERTISERS - you can't trust them...

4.) AdBlock &/or Ghostery only operate on browsers (and not ALL of them either afaik) - hosts do, and on ANY "WebBound" app...

5.) AdBlock + Ghostery aren't "multiplatform" as in smartphones for example - hosts files, are!

... for STARTERS...

---

(Want MORE?)

* See subject-line above... you FAIL!

APK

P.S.=> When will these PUNY trolls ever learn, that when they *try* to "take me on", it's like a single ANT attacking a MASTODON!

... apk