“Exclude my own visits” vs. “Bypass ad blockers”? #3941
-
|
I might be missing an option, but is it possible to configure the value that is written via As far as I can see, this means that any ad blocker or NoScript-style extension could trivially disable Umami by simply setting this Is there a way to:
Thanks. ~ Sam. |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
|
Nevermind. The value is hardcoded, which at least answers my question. Still, I’m wondering whether this approach is really appropriate. But in practice it behaves very similarly to DNT, which can also be set or overridden by browser add-ons (which is also read by the tracker on the very same place linked above), so the effect is essentially the same and can be triggered externally anyway. From that perspective, the mechanism seems mostly symbolic and not very meaningful in terms of distinguishing “exclude my own visits” from a generic client-side opt-out. Edit (After thinking about it a few more minutes): DNT is not the same as “do not record that a visit happened at all”. It usually means, in my understanding, do not uniquely identify or track a user across visits. That implies no IP storage, no persistent identifiers, and no fingerprinting. Recording that a visit occurred in an aggregated and non-identifying way for example “a Firefox user on a mobile device visited the page” should not violate DNT, as long as no unique or persistent identification is involved. So from my understanding, treating DNT as a full opt-out from any kind of visit counting conflates two different concepts: So using DNT this way doesn't seem to make sense at all. But Privacy, I guess. |
Beta Was this translation helpful? Give feedback.
Nevermind.
The value is hardcoded, which at least answers my question.
Still, I’m wondering whether this approach is really appropriate. But in practice it behaves very similarly to DNT, which can also be set or overridden by browser add-ons (which is also read by the tracker on the very same place linked above), so the effect is essentially the same and can be triggered externally anyway. From that perspective, the mechanism seems mostly symbolic and not very meaningful in terms of distinguishing “exclude my own visits” from a generic client-side opt-out.
Edit (After thinking about it a few more minutes):
DNT is not the same as “do not record that a visit happened at all”. It usually mea…